$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa File: 3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa (raw, json) Hash identifier: dQkX51yjGcHjDZqMIOXiamP0ChjVt6oU/B5+y5vRzFw= Subject key identifier: 0B:F1:31:5A:60:3A:BD:A8:D6:38:84:AF:23:DA:7A:E7:19:7F:75:17 Certificate issuer: /CN=D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF Certificate serial: 27AB250E63D638C2B75A16AB698D81824A2A0383 Authority key identifier: D5:41:B9:E1:C0:D6:AC:17:BF:11:5B:B1:B7:A8:7B:29:BE:DD:B0:DF Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF.cer Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa Signing time: Wed 30 Apr 2025 17:17:50 +0000 ROA not before: Wed 30 Apr 2025 17:12:50 +0000 ROA not after: Wed 29 Apr 2026 17:17:50 +0000 asID: 265080 IP address blocks: 170.233.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF.crl rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 02 May 2025 14:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ab:25:0e:63:d6:38:c2:b7:5a:16:ab:69:8d:81:82:4a:2a:03:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF Validity Not Before: Apr 30 17:12:50 2025 GMT Not After : Apr 29 17:17:50 2026 GMT Subject: CN=0BF1315A603ABDA8D63884AF23DA7AE7197F7517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:ea:ce:61:2e:e8:8a:56:43:74:b0:10:85:14: 38:14:ce:67:f6:46:71:90:1b:a3:78:ae:24:60:69: ae:37:be:99:36:7b:87:80:75:80:ce:77:3b:ad:0b: 30:f3:26:28:76:0c:a9:e3:9f:de:50:82:80:70:74: 7a:cf:cb:28:18:d2:15:d2:0e:2f:82:d5:50:1f:68: cc:30:0c:75:e5:c9:3d:8d:a4:6b:a9:fa:1d:3c:9c: 1e:7f:7c:d3:f2:a9:88:2f:30:be:e5:9a:f2:db:2b: e2:4f:89:55:6f:97:eb:9e:43:c7:f4:fa:dc:c3:54: 60:0b:08:ef:8a:ac:c9:c2:43:3c:52:06:8a:ca:a9: 38:aa:b9:ea:0f:af:1c:7d:76:a1:d8:86:09:9d:41: ab:f3:5e:a4:e0:76:99:a8:41:24:81:f8:8c:8b:50: 03:51:43:e2:83:c5:50:d3:a4:45:f0:ff:8b:d0:8d: f2:b9:c5:d8:96:5b:0b:a6:ae:31:0f:e6:e5:b1:83: ed:af:7b:9e:59:08:1f:85:0d:f2:53:99:e9:e1:23: c2:5e:bf:b1:ca:5b:bc:e9:ae:8e:fc:51:fc:0d:28: 4e:a1:e6:78:15:99:32:d9:fe:b1:19:3a:97:57:c5: 34:3d:e0:47:92:f8:36:44:5f:ab:25:dd:50:e5:a1: 2f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F1:31:5A:60:3A:BD:A8:D6:38:84:AF:23:DA:7A:E7:19:7F:75:17 X509v3 Authority Key Identifier: keyid:D5:41:B9:E1:C0:D6:AC:17:BF:11:5B:B1:B7:A8:7B:29:BE:DD:B0:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.120.0/22 Signature Algorithm: sha256WithRSAEncryption db:19:ce:5f:34:94:11:fb:74:65:26:52:1d:fd:02:1b:0d:e2: d6:4c:5b:26:40:a1:74:59:88:cb:67:eb:37:68:8f:f4:07:cc: ea:98:d8:b0:47:c9:a6:fa:ff:31:a1:96:79:a4:14:98:3b:f5: 17:c2:57:87:81:e2:31:9e:47:ee:c7:24:1f:b3:9f:18:29:60: b2:ab:48:5c:8a:9d:03:b2:b5:32:5b:62:67:97:44:39:38:b1: f4:b2:10:38:bc:eb:da:38:fc:0d:eb:76:3f:28:85:da:d6:3f: 3f:38:31:f9:01:b0:ec:74:55:42:fb:09:41:e0:03:78:2a:b3: 3a:d6:13:e4:5d:d1:3e:ea:31:f4:24:f7:04:63:ed:90:e3:3b: 51:fc:aa:a0:35:ea:e1:ac:fb:07:9c:2f:03:da:50:03:88:ad: 81:b1:9b:d4:bf:cb:c8:18:7a:78:e7:ec:3e:d7:ba:4f:ab:7d: 5b:2c:d8:39:7e:9b:20:37:28:61:ec:61:72:73:03:c6:d8:6e: fb:40:5b:b0:84:26:b4:2f:95:98:5b:56:bc:82:91:9b:cc:35: 33:fc:8e:3d:23:35:a7:e1:ec:46:66:17:f0:5b:11:ba:7d:0c: f8:e6:59:00:f9:93:77:45:78:a1:ed:2a:9a:06:78:79:37:bd: 78:76:d9:f4 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUJ6slDmPWOMK3WharaY2BgkoqA4MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0MUI5RTFDMEQ2QUMxN0JGMTE1QkIxQjdBODdCMjlC RUREQjBERjAeFw0yNTA0MzAxNzEyNTBaFw0yNjA0MjkxNzE3NTBaMDMxMTAvBgNV BAMTKDBCRjEzMTVBNjAzQUJEQThENjM4ODRBRjIzREE3QUU3MTk3Rjc1MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD26s5hLuiKVkN0sBCFFDgUzmf2 RnGQG6N4riRgaa43vpk2e4eAdYDOdzutCzDzJih2DKnjn95QgoBwdHrPyygY0hXS Di+C1VAfaMwwDHXlyT2NpGup+h08nB5/fNPyqYgvML7lmvLbK+JPiVVvl+ueQ8f0 +tzDVGALCO+KrMnCQzxSBorKqTiqueoPrxx9dqHYhgmdQavzXqTgdpmoQSSB+IyL UANRQ+KDxVDTpEXw/4vQjfK5xdiWWwumrjEP5uWxg+2ve55ZCB+FDfJTmenhI8Je v7HKW7zpro78UfwNKE6h5ngVmTLZ/rEZOpdXxTQ94EeS+DZEX6sl3VDloS8FAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUC/ExWmA6vajWOISvI9p65xl/dRcwHwYDVR0j BBgwFoAU1UG54cDWrBe/EVuxt6h7Kb7dsN8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRkZYa0xrYUtYSGVyWExwZlVBc283MzZyUUVlbnFNcGl2NlFlaEZ3bVUx dlcvMC9ENTQxQjlFMUMwRDZBQzE3QkYxMTVCQjFCN0E4N0IyOUJFRERCMERGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q1NDFCOUUxQzBENkFDMTdC RjExNUJCMUI3QTg3QjI5QkVEREIwREYuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZGWGtMa2FLWEhlclhMcGZVQXNvNzM2clFFZW5xTXBpdjZRZWhGd21VMXZXLzAv MzEzNzMwMmUzMjMzMzMyZTMxMzIzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy MzYzNTMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqrpeDANBgkqhkiG9w0BAQsFAAOCAQEA2xnO XzSUEft0ZSZSHf0CGw3i1kxbJkChdFmIy2frN2iP9AfM6pjYsEfJpvr/MaGWeaQU mDv1F8JXh4HiMZ5H7sckH7OfGClgsqtIXIqdA7K1MltiZ5dEOTix9LIQOLzr2jj8 Det2PyiF2tY/Pzgx+QGw7HRVQvsJQeADeCqzOtYT5F3RPuox9CT3BGPtkOM7Ufyq oDXq4az7B5wvA9pQA4itgbGb1L/LyBh6eOfsPte6T6t9WyzYOX6bIDcoYexhcnMD xthu+0BbsIQmtC+VmFtWvIKRm8w1M/yOPSM1p+HsRmYX8FsRun0M+OZZAPmTd0V4 oe0qmgZ4eTe9eHbZ9A== -----END CERTIFICATE-----Generated at Thu May 1 16:37:40 2025 by rpki-client