$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/3138372e38352e33322e302f32322d3234203d3e203236353631.roa File: 3138372e38352e33322e302f32322d3234203d3e203236353631.roa (raw, json) Hash identifier: GzpLRt8XMGw+Ay4kHOw/KG+Npmd4WORzwcUdNBLJdb8= Subject key identifier: B4:D3:93:C6:31:00:41:83:FA:8B:CF:D6:DF:54:91:38:0F:84:55:FF Certificate issuer: /CN=9687E9759E87C680DEC08116FB6F44EC73175390 Certificate serial: 0E578B271A525312FA449D9ABAA351B950D7CE3D Authority key identifier: 96:87:E9:75:9E:87:C6:80:DE:C0:81:16:FB:6F:44:EC:73:17:53:90 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9687E9759E87C680DEC08116FB6F44EC73175390.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/3138372e38352e33322e302f32322d3234203d3e203236353631.roa Signing time: Mon 28 Apr 2025 15:26:32 +0000 ROA not before: Mon 28 Apr 2025 15:21:32 +0000 ROA not after: Mon 27 Apr 2026 15:26:32 +0000 asID: 26561 IP address blocks: 187.85.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/9687E9759E87C680DEC08116FB6F44EC73175390.crl rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/9687E9759E87C680DEC08116FB6F44EC73175390.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9687E9759E87C680DEC08116FB6F44EC73175390.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 29 Apr 2025 16:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:57:8b:27:1a:52:53:12:fa:44:9d:9a:ba:a3:51:b9:50:d7:ce:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9687E9759E87C680DEC08116FB6F44EC73175390 Validity Not Before: Apr 28 15:21:32 2025 GMT Not After : Apr 27 15:26:32 2026 GMT Subject: CN=B4D393C631004183FA8BCFD6DF5491380F8455FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6a:8c:65:1a:62:b1:ea:df:78:15:f6:98:75: 21:b9:77:a8:3a:73:0d:5a:01:13:ec:60:2e:6a:0d: 40:80:10:26:3b:90:c2:46:94:f8:52:6f:34:88:1c: 35:52:44:b0:42:d6:3b:b8:37:b8:5f:17:5d:48:c4: 89:c1:d7:f3:b3:39:e4:89:26:4f:e7:ec:00:b8:9f: df:ea:a5:dd:1d:55:72:e9:1c:8e:4f:e8:bd:e4:ae: c9:cd:b9:cf:a8:48:5d:b9:c2:51:50:5e:16:ba:94: ef:01:e4:2b:fb:35:b3:ac:1c:09:fe:28:48:bb:1b: 3b:c6:32:a8:35:6c:f8:be:94:44:ed:4b:58:bf:95: fc:78:2f:27:50:15:72:8a:cb:ac:64:20:a0:c7:b8: 9a:c4:ce:71:ad:2a:5b:f9:f5:a7:d2:6c:37:e7:52: 20:e8:c7:c8:1c:fd:40:90:bb:c3:13:9e:4b:69:3c: e0:57:40:a0:5d:e2:4d:1e:e5:c3:71:5e:d3:cd:c9: f4:ae:0c:1c:33:e3:af:94:47:7e:1e:57:7f:80:df: f3:b8:e1:d3:d2:35:92:ba:57:bb:ee:89:e8:9f:59: a2:c5:ec:23:51:75:6b:cc:6d:c9:b9:14:b5:4f:d4: 78:91:77:93:ee:02:3b:37:6a:72:bd:bc:7a:cf:84: 1c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D3:93:C6:31:00:41:83:FA:8B:CF:D6:DF:54:91:38:0F:84:55:FF X509v3 Authority Key Identifier: keyid:96:87:E9:75:9E:87:C6:80:DE:C0:81:16:FB:6F:44:EC:73:17:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/9687E9759E87C680DEC08116FB6F44EC73175390.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9687E9759E87C680DEC08116FB6F44EC73175390.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/439891ef-3113-4b77-a38a-ea422f51db05/0/3138372e38352e33322e302f32322d3234203d3e203236353631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 187.85.32.0/22 Signature Algorithm: sha256WithRSAEncryption a7:43:1e:20:43:20:d3:07:cc:9f:f2:36:41:6c:37:02:3d:3f: a4:81:c8:f8:97:27:13:f4:ef:59:62:b0:f3:2e:de:f0:42:e7: e6:c2:59:fa:5d:a6:c8:7d:a9:94:dc:df:02:e8:bd:6a:54:45: 56:f3:11:77:e2:ee:7b:68:30:8d:36:5d:e9:0e:88:40:c8:74: 06:ed:d5:2c:ff:47:73:db:29:1f:e8:32:10:33:d1:e8:59:11: d0:1c:b0:18:15:1f:cd:20:17:63:a1:fb:19:e2:05:77:bd:d5: 2b:19:07:c6:e6:52:32:54:9c:c8:d4:12:fe:3f:d7:e2:42:b8: ae:a1:4e:ce:da:e3:77:67:9e:27:9c:99:5f:97:55:91:5a:0e: f2:18:20:0a:a4:22:c7:9c:b2:4d:98:23:db:c6:39:df:d2:c4: 18:e0:6b:e7:f0:cd:a2:5e:83:fe:e6:52:c9:a1:4a:06:09:05: 17:c3:6b:8e:cb:8d:ad:fc:57:ec:50:19:99:da:67:d9:93:df: 4c:c8:ad:4b:2a:93:81:56:58:8f:5b:17:4b:f9:70:4b:98:6b: 46:8b:26:10:01:25:85:cd:de:83:1e:de:f1:41:13:cf:0d:c0: 6e:df:96:7a:72:ec:a4:f8:6a:5b:d8:09:c5:cb:2f:ca:2e:b1: b8:07:ab:90 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUDleLJxpSUxL6RJ2auqNRuVDXzj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY4N0U5NzU5RTg3QzY4MERFQzA4MTE2RkI2RjQ0RUM3 MzE3NTM5MDAeFw0yNTA0MjgxNTIxMzJaFw0yNjA0MjcxNTI2MzJaMDMxMTAvBgNV BAMTKEI0RDM5M0M2MzEwMDQxODNGQThCQ0ZENkRGNTQ5MTM4MEY4NDU1RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpaoxlGmKx6t94FfaYdSG5d6g6 cw1aARPsYC5qDUCAECY7kMJGlPhSbzSIHDVSRLBC1ju4N7hfF11IxInB1/OzOeSJ Jk/n7AC4n9/qpd0dVXLpHI5P6L3krsnNuc+oSF25wlFQXha6lO8B5Cv7NbOsHAn+ KEi7GzvGMqg1bPi+lETtS1i/lfx4LydQFXKKy6xkIKDHuJrEznGtKlv59afSbDfn UiDox8gc/UCQu8MTnktpPOBXQKBd4k0e5cNxXtPNyfSuDBwz46+UR34eV3+A3/O4 4dPSNZK6V7vuieifWaLF7CNRdWvMbcm5FLVP1HiRd5PuAjs3anK9vHrPhBzTAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUtNOTxjEAQYP6i8/W31SROA+EVf8wHwYDVR0j BBgwFoAUlofpdZ6HxoDewIEW+29E7HMXU5AwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDM5ODkxZWYtMzExMy00Yjc3LWEzOGEtZWE0MjJmNTFk YjA1LzAvOTY4N0U5NzU5RTg3QzY4MERFQzA4MTE2RkI2RjQ0RUM3MzE3NTM5MC5j cmwweAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVw by5yZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS85Njg3RTk3NTlFODdDNjgw REVDMDgxMTZGQjZGNDRFQzczMTc1MzkwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZsw gZgGCCsGAQUFBzALhoGLcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQv cmVwb3NpdG9yeS80Mzk4OTFlZi0zMTEzLTRiNzctYTM4YS1lYTQyMmY1MWRiMDUv MC8zMTM4MzcyZTM4MzUyZTMzMzIyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2 MzUzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCu1UgMA0GCSqGSIb3DQEBCwUAA4IBAQCnQx4gQyDT B8yf8jZBbDcCPT+kgcj4lycT9O9ZYrDzLt7wQufmwln6XabIfamU3N8C6L1qVEVW 8xF34u57aDCNNl3pDohAyHQG7dUs/0dz2ykf6DIQM9HoWRHQHLAYFR/NIBdjofsZ 4gV3vdUrGQfG5lIyVJzI1BL+P9fiQriuoU7O2uN3Z54nnJlfl1WRWg7yGCAKpCLH nLJNmCPbxjnf0sQY4Gvn8M2iXoP+5lLJoUoGCQUXw2uOy42t/FfsUBmZ2mfZk99M yK1LKpOBVliPWxdL+XBLmGtGiyYQASWFzd6DHt7xQRPPDcBu35Z6cuyk+Gpb2AnF yy/KLrG4B6uQ -----END CERTIFICATE-----Generated at Mon Apr 28 17:47:08 2025 by rpki-client on console.sobornost.net