$ rpki-client -vvf rpki-repo.registro.br/repo/22PvtXpQutRKvxkUY8Y7ekqiX3MHzkPbm9WCFjoWWxDK/0/323830343a376636633a383030303a3a2f33342d3334203d3e20323731363837.roa File: 323830343a376636633a383030303a3a2f33342d3334203d3e20323731363837.roa (raw, json) Hash identifier: 5TMk5YZM3syJ1yqwEglSXGn2sQ6fulO0vtjl4iX6kxI= Subject key identifier: C2:D5:9D:4D:7E:8E:8C:75:9D:5A:4B:DD:D2:21:0E:5F:2F:E0:53:F9 Certificate issuer: /CN=70C0B50747FC1E7BE87716B663F0AA749E426EE1 Certificate serial: 2FA2303ADDB12A0D4205CC1CDAEFD2705BB71D56 Authority key identifier: 70:C0:B5:07:47:FC:1E:7B:E8:77:16:B6:63:F0:AA:74:9E:42:6E:E1 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70C0B50747FC1E7BE87716B663F0AA749E426EE1.cer Subject info access: rsync://rpki-repo.registro.br/repo/22PvtXpQutRKvxkUY8Y7ekqiX3MHzkPbm9WCFjoWWxDK/0/323830343a376636633a383030303a3a2f33342d3334203d3e20323731363837.roa Signing time: Tue 01 Apr 2025 15:58:57 +0000 ROA not before: Tue 01 Apr 2025 15:53:57 +0000 ROA not after: Tue 31 Mar 2026 15:58:57 +0000 asID: 271687 IP address blocks: 2804:7f6c:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/22PvtXpQutRKvxkUY8Y7ekqiX3MHzkPbm9WCFjoWWxDK/0/70C0B50747FC1E7BE87716B663F0AA749E426EE1.crl rsync://rpki-repo.registro.br/repo/22PvtXpQutRKvxkUY8Y7ekqiX3MHzkPbm9WCFjoWWxDK/0/70C0B50747FC1E7BE87716B663F0AA749E426EE1.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70C0B50747FC1E7BE87716B663F0AA749E426EE1.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 24 Apr 2025 11:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:a2:30:3a:dd:b1:2a:0d:42:05:cc:1c:da:ef:d2:70:5b:b7:1d:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70C0B50747FC1E7BE87716B663F0AA749E426EE1 Validity Not Before: Apr 1 15:53:57 2025 GMT Not After : Mar 31 15:58:57 2026 GMT Subject: CN=C2D59D4D7E8E8C759D5A4BDDD2210E5F2FE053F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d1:01:45:f6:79:23:44:c9:d3:1c:e0:de:d2: 56:b4:06:03:b5:4e:69:e9:0b:7a:40:93:a7:07:4e: 5b:d8:e0:c8:bb:19:30:e7:b9:98:9b:65:bb:e1:6f: 80:2e:92:ae:7d:52:d3:b0:b1:c1:13:6d:b9:77:f8: 7a:23:bb:61:0d:32:91:06:b4:22:e7:8f:d7:fc:20: 8f:dc:83:a6:3a:24:a5:99:77:00:47:63:02:16:7a: fb:ba:b0:98:d6:d3:47:f5:1d:a5:05:2e:e9:67:44: 7f:5c:cc:db:63:23:e1:f0:ff:4c:a8:af:96:de:4f: bb:d0:15:88:28:a7:e1:a8:69:8c:61:30:a6:b7:e6: 78:8f:da:fe:7f:1c:43:aa:67:2f:d7:ef:e2:d8:b6: 30:a3:30:d9:85:6f:3b:4e:c8:2b:b9:f5:96:56:e9: 86:58:a2:68:05:85:e0:0d:79:d6:30:92:c8:c3:be: bd:58:ed:89:d5:21:f5:13:4b:c7:88:5e:32:05:c1: 7d:f6:f1:c5:2b:de:c3:1f:91:7b:67:58:72:31:40: a0:41:eb:2e:9b:6d:9d:8a:1b:8c:69:12:0d:99:0a: 94:1c:67:aa:75:d1:36:33:b4:df:5f:fe:6e:8d:f0: 84:f8:f0:e6:85:01:5c:5d:ed:8d:48:39:c4:95:01: 80:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:D5:9D:4D:7E:8E:8C:75:9D:5A:4B:DD:D2:21:0E:5F:2F:E0:53:F9 X509v3 Authority Key Identifier: keyid:70:C0:B5:07:47:FC:1E:7B:E8:77:16:B6:63:F0:AA:74:9E:42:6E:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/22PvtXpQutRKvxkUY8Y7ekqiX3MHzkPbm9WCFjoWWxDK/0/70C0B50747FC1E7BE87716B663F0AA749E426EE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70C0B50747FC1E7BE87716B663F0AA749E426EE1.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/22PvtXpQutRKvxkUY8Y7ekqiX3MHzkPbm9WCFjoWWxDK/0/323830343a376636633a383030303a3a2f33342d3334203d3e20323731363837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:7f6c:8000::/34 Signature Algorithm: sha256WithRSAEncryption 39:61:06:36:41:32:f5:bf:02:11:52:26:9b:55:48:f0:f1:21: 14:1f:4c:1b:87:35:ed:07:ea:d6:02:ab:a5:9d:06:4e:51:9f: 6b:30:74:13:cb:d9:df:31:5c:21:f0:06:40:56:78:81:6f:34: a0:6b:55:16:04:6a:4c:d6:e0:e5:90:e4:71:94:50:96:7b:f1: 7e:45:c9:bd:b1:8f:db:1c:aa:dd:18:94:88:61:8a:d8:c0:9a: e8:de:49:5a:c6:d3:e6:88:f1:ed:9b:6e:80:5d:f4:10:16:be: 9d:c5:13:95:44:95:0b:90:b3:04:c5:c0:a9:a6:a0:cc:46:94: c4:c9:e2:fa:b4:00:0c:75:de:81:17:80:1b:da:54:89:aa:24: 13:a0:45:05:d0:f0:c2:a0:5e:d5:92:04:3c:64:6c:0c:92:41: 9d:e3:ee:04:42:3d:a3:16:83:c1:12:52:eb:94:fc:78:1b:c2: 26:a3:dc:3d:b3:27:cc:52:b0:01:39:77:57:7c:43:b5:9c:49: 8f:df:3b:d4:15:c2:87:90:0d:bd:b7:f4:3f:38:63:8b:e6:9a: 3f:c2:0a:8c:f8:0b:30:79:ef:ae:72:e1:ff:f5:f7:66:97:09: 51:ea:76:ff:b2:2f:91:56:dd:30:a1:01:82:00:f0:27:87:8d: 16:1c:87:10 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUL6IwOt2xKg1CBcwc2u/ScFu3HVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBDMEI1MDc0N0ZDMUU3QkU4NzcxNkI2NjNGMEFBNzQ5 RTQyNkVFMTAeFw0yNTA0MDExNTUzNTdaFw0yNjAzMzExNTU4NTdaMDMxMTAvBgNV BAMTKEMyRDU5RDREN0U4RThDNzU5RDVBNEJEREQyMjEwRTVGMkZFMDUzRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK0QFF9nkjRMnTHODe0la0BgO1 TmnpC3pAk6cHTlvY4Mi7GTDnuZibZbvhb4Aukq59UtOwscETbbl3+Hoju2ENMpEG tCLnj9f8II/cg6Y6JKWZdwBHYwIWevu6sJjW00f1HaUFLulnRH9czNtjI+Hw/0yo r5beT7vQFYgop+GoaYxhMKa35niP2v5/HEOqZy/X7+LYtjCjMNmFbztOyCu59ZZW 6YZYomgFheANedYwksjDvr1Y7YnVIfUTS8eIXjIFwX328cUr3sMfkXtnWHIxQKBB 6y6bbZ2KG4xpEg2ZCpQcZ6p10TYztN9f/m6N8IT48OaFAVxd7Y1IOcSVAYAtAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUwtWdTX6OjHWdWkvd0iEOXy/gU/kwHwYDVR0j BBgwFoAUcMC1B0f8Hnvodxa2Y/CqdJ5CbuEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMjJQdnRYcFF1dFJLdnhrVVk4WTdla3FpWDNNSHprUGJtOVdDRmpvV1d4 REsvMC83MEMwQjUwNzQ3RkMxRTdCRTg3NzE2QjY2M0YwQUE3NDlFNDI2RUUxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcwQzBCNTA3NDdGQzFFN0JF ODc3MTZCNjYzRjBBQTc0OUU0MjZFRTEuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzIyUHZ0WHBRdXRSS3Z4a1VZOFk3ZWtxaVgzTUh6a1BibTlXQ0Zqb1dXeERLLzAv MzIzODMwMzQzYTM3NjYzNjYzM2EzODMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzczMTM2MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEf2yAMA0GCSqGSIb3DQEBCwUA A4IBAQA5YQY2QTL1vwIRUiabVUjw8SEUH0wbhzXtB+rWAqulnQZOUZ9rMHQTy9nf MVwh8AZAVniBbzSga1UWBGpM1uDlkORxlFCWe/F+Rcm9sY/bHKrdGJSIYYrYwJro 3klaxtPmiPHtm26AXfQQFr6dxROVRJULkLMExcCppqDMRpTEyeL6tAAMdd6BF4Ab 2lSJqiQToEUF0PDCoF7VkgQ8ZGwMkkGd4+4EQj2jFoPBElLrlPx4G8Imo9w9syfM UrABOXdXfEO1nEmP3zvUFcKHkA29t/Q/OGOL5po/wgqM+Aswee+ucuH/9fdmlwlR 6nb/si+RVt0woQGCAPAnh40WHIcQ -----END CERTIFICATE-----Generated at Wed Apr 23 12:59:25 2025 by rpki-client