$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/3138372e3130392e3135322e302f32322d3234203d3e203236353631.roa File: 3138372e3130392e3135322e302f32322d3234203d3e203236353631.roa (raw, json) Hash identifier: 1SEOJEguVS9JZdx9o6WKUCx8xZrGnn1MAuhhqwAGSpI= Subject key identifier: 2B:F9:3C:D8:F8:BD:20:78:E2:82:76:7C:0E:01:90:41:F5:6D:22:5B Certificate issuer: /CN=9687E9759E87C680DEC08116FB6F44EC73175390 Certificate serial: 065DD9D1D9EB1D0E58EECB3312C839026C1F2D69 Authority key identifier: 96:87:E9:75:9E:87:C6:80:DE:C0:81:16:FB:6F:44:EC:73:17:53:90 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9687E9759E87C680DEC08116FB6F44EC73175390.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/3138372e3130392e3135322e302f32322d3234203d3e203236353631.roa Signing time: Mon 28 Apr 2025 15:36:44 +0000 ROA not before: Mon 28 Apr 2025 15:31:44 +0000 ROA not after: Mon 27 Apr 2026 15:36:44 +0000 asID: 26561 IP address blocks: 187.109.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/9687E9759E87C680DEC08116FB6F44EC73175390.crl rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/9687E9759E87C680DEC08116FB6F44EC73175390.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9687E9759E87C680DEC08116FB6F44EC73175390.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 29 Apr 2025 16:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:5d:d9:d1:d9:eb:1d:0e:58:ee:cb:33:12:c8:39:02:6c:1f:2d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9687E9759E87C680DEC08116FB6F44EC73175390 Validity Not Before: Apr 28 15:31:44 2025 GMT Not After : Apr 27 15:36:44 2026 GMT Subject: CN=2BF93CD8F8BD2078E282767C0E019041F56D225B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:45:3a:62:22:c3:37:40:94:ec:21:d7:d8:0e: 99:38:0c:9b:61:ad:6c:e8:05:bb:6b:d2:0e:13:4a: 8c:eb:1c:52:ed:75:4f:61:84:e1:35:e1:cb:23:de: 9a:35:dd:16:6b:3b:e5:d0:e3:82:83:9a:31:6d:ed: a4:a5:18:45:d1:a1:43:ee:23:da:62:b1:27:a5:a5: c1:7f:a4:17:09:cb:12:41:2b:5b:f5:39:18:c2:86: 3b:a6:b4:04:37:20:3a:80:4c:2d:a7:0f:b4:11:b8: 10:41:47:a0:5b:14:43:6e:3b:ef:a0:89:e8:88:e1: 21:b7:69:95:5f:17:1a:a5:33:fd:a6:c8:ba:bf:36: d6:85:9e:e9:65:01:d4:6d:f0:92:69:47:70:fd:dc: bb:e0:64:f7:e4:d6:07:12:09:cc:91:09:8f:6c:23: 21:b0:d3:96:23:8e:e2:ce:45:16:e0:03:8c:bf:d4: 42:1c:fa:5c:4b:88:1e:36:82:09:87:54:ce:41:83: df:d3:41:29:95:3d:55:d4:7e:50:3e:c2:2b:34:b1: fc:ae:5e:8e:1e:21:0e:c0:ca:19:a7:fe:93:6d:da: 7f:8f:20:61:ff:d0:60:d2:b9:29:c9:8b:3c:16:f0: 37:3a:45:9c:ae:ac:95:12:38:8e:a8:d6:47:77:75: e3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F9:3C:D8:F8:BD:20:78:E2:82:76:7C:0E:01:90:41:F5:6D:22:5B X509v3 Authority Key Identifier: keyid:96:87:E9:75:9E:87:C6:80:DE:C0:81:16:FB:6F:44:EC:73:17:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/9687E9759E87C680DEC08116FB6F44EC73175390.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9687E9759E87C680DEC08116FB6F44EC73175390.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/3138372e3130392e3135322e302f32322d3234203d3e203236353631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 187.109.152.0/22 Signature Algorithm: sha256WithRSAEncryption 09:91:ea:ab:88:08:e3:e1:c7:0f:bb:8f:b7:6d:cd:c3:7b:71: 5c:bd:c7:e3:2d:90:15:91:79:99:f0:9a:19:1a:b8:1e:de:02: 2a:00:84:6a:28:6e:46:37:68:dc:53:57:87:7e:7e:be:e8:b7: b3:fd:33:3c:88:5c:82:05:06:66:4a:9d:8b:bf:b7:ac:9a:02: c7:bb:85:b8:09:2c:d8:73:0e:3a:51:e4:f2:08:b2:bd:8c:91: e0:65:26:64:34:aa:58:d5:71:2b:c3:30:7a:df:02:53:ff:eb: 50:ff:d5:cc:31:49:ab:9a:f2:67:cc:fb:cd:6d:6c:8b:a6:4c: 72:5f:d6:6e:05:39:2b:49:f4:e7:cc:42:8e:f5:9b:91:7c:7f: d3:92:24:66:36:54:fe:ee:2c:35:29:ee:37:41:0d:a4:2c:d9: 4b:ae:44:f3:04:59:6a:9d:38:bc:c7:97:8e:10:fe:5f:20:5f: 52:20:4e:a8:7d:15:cb:26:5e:65:5c:2c:67:f3:77:68:a4:6a: d1:59:ff:12:0c:aa:cd:7b:cd:d6:95:d4:3b:18:98:17:79:3c: 81:52:c2:0c:c8:78:b6:a9:5c:cd:03:ce:2d:cb:bb:2c:ee:b7: 2b:9f:3d:a1:4f:8e:b1:b6:1a:ba:c9:8c:d2:fe:32:e0:a4:a9: db:07:15:02 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUBl3Z0dnrHQ5Y7sszEsg5AmwfLWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY4N0U5NzU5RTg3QzY4MERFQzA4MTE2RkI2RjQ0RUM3 MzE3NTM5MDAeFw0yNTA0MjgxNTMxNDRaFw0yNjA0MjcxNTM2NDRaMDMxMTAvBgNV BAMTKDJCRjkzQ0Q4RjhCRDIwNzhFMjgyNzY3QzBFMDE5MDQxRjU2RDIyNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiRTpiIsM3QJTsIdfYDpk4DJth rWzoBbtr0g4TSozrHFLtdU9hhOE14csj3po13RZrO+XQ44KDmjFt7aSlGEXRoUPu I9pisSelpcF/pBcJyxJBK1v1ORjChjumtAQ3IDqATC2nD7QRuBBBR6BbFENuO++g ieiI4SG3aZVfFxqlM/2myLq/NtaFnullAdRt8JJpR3D93LvgZPfk1gcSCcyRCY9s IyGw05YjjuLORRbgA4y/1EIc+lxLiB42ggmHVM5Bg9/TQSmVPVXUflA+wis0sfyu Xo4eIQ7Ayhmn/pNt2n+PIGH/0GDSuSnJizwW8Dc6RZyurJUSOI6o1kd3deMFAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUK/k82Pi9IHjignZ8DgGQQfVtIlswHwYDVR0j BBgwFoAUlofpdZ6HxoDewIEW+29E7HMXU5AwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDM5ODkxZWYtMzExMy00Yjc3LWEzOGEtZWE0MjJmNTFk YjA1LzAvOTY4N0U5NzU5RTg3QzY4MERFQzA4MTE2RkI2RjQ0RUM3MzE3NTM5MC5j cmwweAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVw by5yZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS85Njg3RTk3NTlFODdDNjgw REVDMDgxMTZGQjZGNDRFQzczMTc1MzkwLmNlcjCBrwYIKwYBBQUHAQsEgaIwgZ8w gZwGCCsGAQUFBzALhoGPcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQv cmVwb3NpdG9yeS80Mzk4OTFlZi0zMTEzLTRiNzctYTM4YS1lYTQyMmY1MWRiMDUv MC8zMTM4MzcyZTMxMzAzOTJlMzEzNTMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIw MzIzNjM1MzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEArttmDANBgkqhkiG9w0BAQsFAAOCAQEACZHq q4gI4+HHD7uPt23Nw3txXL3H4y2QFZF5mfCaGRq4Ht4CKgCEaihuRjdo3FNXh35+ vui3s/0zPIhcggUGZkqdi7+3rJoCx7uFuAks2HMOOlHk8giyvYyR4GUmZDSqWNVx K8Mwet8CU//rUP/VzDFJq5ryZ8z7zW1si6ZMcl/WbgU5K0n058xCjvWbkXx/05Ik ZjZU/u4sNSnuN0ENpCzZS65E8wRZap04vMeXjhD+XyBfUiBOqH0VyyZeZVwsZ/N3 aKRq0Vn/EgyqzXvN1pXUOxiYF3k8gVLCDMh4tqlczQPOLcu7LO63K589oU+OsbYa usmM0v4y4KSp2wcVAg== -----END CERTIFICATE-----Generated at Mon Apr 28 17:47:08 2025 by rpki-client on console.sobornost.net