$ rpki-client -vvf rpki-repo.registro.br/repo/AD68ovQMgKfS85B7T5s6KowYcqL34UdHvEh2cBzk98K1/0/34352e3137302e37322e302f32322d3332203d3e20323638313533.roa File: 34352e3137302e37322e302f32322d3332203d3e20323638313533.roa (raw, json) Hash identifier: qR2rNcyFmZctcb7Zjs8Bgf0DPfIkHyfE4SOblqc9CSQ= Subject key identifier: 01:47:0E:67:16:18:F7:D2:80:6C:59:35:55:8D:B7:4E:9D:BC:65:E9 Certificate issuer: /CN=5FA7CBBBD1D1F79513C2EFD5247C3AA42FD0E76F Certificate serial: 5F89D35E6F0E0936451CBD59827721D27B75F93E Authority key identifier: 5F:A7:CB:BB:D1:D1:F7:95:13:C2:EF:D5:24:7C:3A:A4:2F:D0:E7:6F Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5FA7CBBBD1D1F79513C2EFD5247C3AA42FD0E76F.cer Subject info access: rsync://rpki-repo.registro.br/repo/AD68ovQMgKfS85B7T5s6KowYcqL34UdHvEh2cBzk98K1/0/34352e3137302e37322e302f32322d3332203d3e20323638313533.roa Signing time: Wed 30 Apr 2025 15:58:03 +0000 ROA not before: Wed 30 Apr 2025 15:53:03 +0000 ROA not after: Wed 29 Apr 2026 15:58:03 +0000 asID: 268153 IP address blocks: 45.170.72.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/AD68ovQMgKfS85B7T5s6KowYcqL34UdHvEh2cBzk98K1/0/5FA7CBBBD1D1F79513C2EFD5247C3AA42FD0E76F.crl rsync://rpki-repo.registro.br/repo/AD68ovQMgKfS85B7T5s6KowYcqL34UdHvEh2cBzk98K1/0/5FA7CBBBD1D1F79513C2EFD5247C3AA42FD0E76F.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5FA7CBBBD1D1F79513C2EFD5247C3AA42FD0E76F.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 06 May 2025 06:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:89:d3:5e:6f:0e:09:36:45:1c:bd:59:82:77:21:d2:7b:75:f9:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FA7CBBBD1D1F79513C2EFD5247C3AA42FD0E76F Validity Not Before: Apr 30 15:53:03 2025 GMT Not After : Apr 29 15:58:03 2026 GMT Subject: CN=01470E671618F7D2806C5935558DB74E9DBC65E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a9:70:c4:2f:e5:35:2a:35:03:6e:d8:48:fc: b6:62:3b:ea:04:f9:bf:cd:6f:0e:6f:f8:bb:ba:12: 61:10:d4:6d:9c:47:e6:b0:b0:4c:b7:12:a4:7a:bb: c0:fc:67:16:b9:01:d3:44:ee:c9:55:e2:57:d9:1d: 40:bc:56:a4:a6:00:9b:9f:6c:17:74:69:88:91:53: bf:2d:f5:8d:19:60:f6:3e:e3:f1:49:d5:56:12:37: f4:e9:71:96:b4:a2:32:06:1c:37:6c:b8:d3:0b:41: 4a:44:87:85:9e:02:95:c7:73:b0:d6:41:16:8d:d3: 31:9f:43:c5:ce:8d:d5:74:35:27:66:50:56:4c:97: 8a:7a:42:2b:b4:97:7f:6d:a3:35:62:94:c8:4a:59: f4:94:3e:5a:de:8b:17:53:4a:e9:10:3b:ee:02:c9: 7e:09:5a:57:1f:2b:3a:e8:27:a4:6e:c5:33:a0:38: 54:cc:a3:9c:b5:fd:1b:7e:29:5f:dd:15:f5:9b:62: 38:82:18:7c:f9:37:df:d9:38:5d:b5:24:7f:f6:b0: 0e:13:83:d4:fa:e2:2f:d0:99:d7:60:ca:d3:66:99: 91:d5:61:b6:8b:c9:1f:82:6d:eb:1f:8b:29:c6:5e: 4d:d0:4b:3e:3e:7c:a7:cc:31:7b:59:e6:9f:7a:b0: aa:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:47:0E:67:16:18:F7:D2:80:6C:59:35:55:8D:B7:4E:9D:BC:65:E9 X509v3 Authority Key Identifier: keyid:5F:A7:CB:BB:D1:D1:F7:95:13:C2:EF:D5:24:7C:3A:A4:2F:D0:E7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/AD68ovQMgKfS85B7T5s6KowYcqL34UdHvEh2cBzk98K1/0/5FA7CBBBD1D1F79513C2EFD5247C3AA42FD0E76F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5FA7CBBBD1D1F79513C2EFD5247C3AA42FD0E76F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/AD68ovQMgKfS85B7T5s6KowYcqL34UdHvEh2cBzk98K1/0/34352e3137302e37322e302f32322d3332203d3e20323638313533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.170.72.0/22 Signature Algorithm: sha256WithRSAEncryption 68:b9:9e:fa:86:ef:6f:7a:8c:42:01:33:03:8f:ea:27:93:95: 88:eb:95:d6:ac:99:b3:ad:cb:1d:4e:ba:66:c5:a1:48:e7:57: ec:b6:32:a2:f4:f7:f1:c6:81:73:38:f7:72:f2:b2:ed:36:b6: 59:8d:a0:62:53:b0:9f:fa:b7:42:0d:03:68:bb:44:5f:19:40: 6c:9b:b0:c7:b6:26:09:45:27:27:8b:c5:de:05:42:5d:b2:a8: dc:35:c6:3a:30:de:f4:84:06:d3:e9:18:8d:09:91:70:4a:e2: 2f:1d:d8:b3:e4:e8:b7:07:9e:08:31:ad:bd:53:34:b3:f7:50: ee:f6:a4:6f:5b:3a:74:c9:27:86:72:d4:33:99:c2:6a:f3:9a: 63:74:ce:87:e0:45:89:cb:3b:37:63:8a:a8:da:29:8d:49:28: 03:93:86:90:27:93:78:9f:59:62:68:fb:28:f3:56:c7:e9:98: ec:e4:52:cd:68:d0:7c:5f:06:62:fd:7d:3d:68:d3:f6:ac:4f: 81:e6:fc:b4:4f:9e:d4:b4:c0:84:89:82:91:3f:72:5a:77:eb: dd:05:e9:e0:2a:c4:4d:28:2e:22:5e:b3:c5:22:a0:c9:9b:56: 40:49:1b:7d:92:ce:20:9b:d8:37:65:92:46:e5:3c:54:fe:fd: 79:24:a7:b6 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUX4nTXm8OCTZFHL1Zgnch0nt1+T4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZBN0NCQkJEMUQxRjc5NTEzQzJFRkQ1MjQ3QzNBQTQy RkQwRTc2RjAeFw0yNTA0MzAxNTUzMDNaFw0yNjA0MjkxNTU4MDNaMDMxMTAvBgNV BAMTKDAxNDcwRTY3MTYxOEY3RDI4MDZDNTkzNTU1OERCNzRFOURCQzY1RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUqXDEL+U1KjUDbthI/LZiO+oE +b/Nbw5v+Lu6EmEQ1G2cR+awsEy3EqR6u8D8Zxa5AdNE7slV4lfZHUC8VqSmAJuf bBd0aYiRU78t9Y0ZYPY+4/FJ1VYSN/TpcZa0ojIGHDdsuNMLQUpEh4WeApXHc7DW QRaN0zGfQ8XOjdV0NSdmUFZMl4p6Qiu0l39tozVilMhKWfSUPlreixdTSukQO+4C yX4JWlcfKzroJ6RuxTOgOFTMo5y1/Rt+KV/dFfWbYjiCGHz5N9/ZOF21JH/2sA4T g9T64i/QmddgytNmmZHVYbaLyR+CbesfiynGXk3QSz4+fKfMMXtZ5p96sKrDAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUAUcOZxYY99KAbFk1VY23Tp28ZekwHwYDVR0j BBgwFoAUX6fLu9HR95UTwu/VJHw6pC/Q528wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQUQ2OG92UU1nS2ZTODVCN1Q1czZLb3dZY3FMMzRVZEh2RWgyY0J6azk4 SzEvMC81RkE3Q0JCQkQxRDFGNzk1MTNDMkVGRDUyNDdDM0FBNDJGRDBFNzZGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVGQTdDQkJCRDFEMUY3OTUx M0MyRUZENTI0N0MzQUE0MkZEMEU3NkYuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0FENjhvdlFNZ0tmUzg1QjdUNXM2S293WWNxTDM0VWRIdkVoMmNCems5OEsxLzAv MzQzNTJlMzEzNzMwMmUzNzMyMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzIzNjM4 MzEzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCLapIMA0GCSqGSIb3DQEBCwUAA4IBAQBouZ76hu9v eoxCATMDj+onk5WI65XWrJmzrcsdTrpmxaFI51fstjKi9PfxxoFzOPdy8rLtNrZZ jaBiU7Cf+rdCDQNou0RfGUBsm7DHtiYJRScni8XeBUJdsqjcNcY6MN70hAbT6RiN CZFwSuIvHdiz5Oi3B54IMa29UzSz91Du9qRvWzp0ySeGctQzmcJq85pjdM6H4EWJ yzs3Y4qo2imNSSgDk4aQJ5N4n1liaPso81bH6Zjs5FLNaNB8XwZi/X09aNP2rE+B 5vy0T57UtMCEiYKRP3Jad+vdBengKsRNKC4iXrPFIqDJm1ZASRt9ks4gm9g3ZZJG 5TxU/v15JKe2 -----END CERTIFICATE-----Generated at Mon May 5 13:26:12 2025 by rpki-client