$ rpki-client -vvf rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/323830343a333330303a3a2f33332d3333203d3e203631353837.roa File: 323830343a333330303a3a2f33332d3333203d3e203631353837.roa (raw, json) Hash identifier: GisVjklyto6VDvCaq4TcXE7SqO6k71Jc9KE070nbsGE= Subject key identifier: 86:4E:C3:53:0A:83:BC:D5:3D:21:57:A7:69:55:E8:28:1D:15:0C:FE Certificate issuer: /CN=1F11E558FC75D9DA15039EA58D5A166A6F5EF10B Certificate serial: 683A20D9BA2C7404A920CB60432A07A00D40241D Authority key identifier: 1F:11:E5:58:FC:75:D9:DA:15:03:9E:A5:8D:5A:16:6A:6F:5E:F1:0B Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1F11E558FC75D9DA15039EA58D5A166A6F5EF10B.cer Subject info access: rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/323830343a333330303a3a2f33332d3333203d3e203631353837.roa Signing time: Tue 31 Dec 2024 18:11:25 +0000 ROA not before: Tue 31 Dec 2024 18:06:25 +0000 ROA not after: Tue 30 Dec 2025 18:11:25 +0000 asID: 61587 IP address blocks: 2804:3300::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/1F11E558FC75D9DA15039EA58D5A166A6F5EF10B.crl rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/1F11E558FC75D9DA15039EA58D5A166A6F5EF10B.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1F11E558FC75D9DA15039EA58D5A166A6F5EF10B.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 22:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:3a:20:d9:ba:2c:74:04:a9:20:cb:60:43:2a:07:a0:0d:40:24:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F11E558FC75D9DA15039EA58D5A166A6F5EF10B Validity Not Before: Dec 31 18:06:25 2024 GMT Not After : Dec 30 18:11:25 2025 GMT Subject: CN=864EC3530A83BCD53D2157A76955E8281D150CFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0c:c1:ea:68:35:71:70:0e:b5:84:26:1c:39: 0b:38:a1:79:b2:b2:1d:57:0d:fb:6f:57:9e:92:ab: 7e:13:d6:5e:4d:77:4a:b6:54:00:cb:07:0a:50:60: e1:b6:c9:15:df:98:d8:c2:74:b1:ae:2f:23:6a:ea: 74:e0:5f:ce:7a:0f:b4:6e:27:5b:08:f8:3d:70:6a: d4:17:b3:69:c5:0c:74:7a:07:76:4d:aa:3d:3f:3d: 7d:40:45:4f:26:cb:60:50:64:92:e5:6d:0f:32:27: f8:f4:44:85:bf:ea:13:1f:62:f5:ad:1c:cd:1f:79: 9e:57:31:ab:65:a0:e7:36:a0:2a:ab:a7:29:0f:cc: 0b:b9:2b:5f:45:2a:aa:73:ba:f6:c8:a2:f7:f4:34: f7:6e:b5:d2:5e:1f:a3:52:c0:8d:b2:15:2c:3d:3a: 35:76:fd:0a:ea:2f:fe:b7:c8:64:fe:4d:b9:00:5f: a4:0e:e0:5b:c8:70:41:03:e1:35:50:fe:d2:1f:0e: 2e:04:4a:f5:d5:25:c3:ac:11:91:36:5f:5d:48:5e: e5:59:58:de:bf:65:60:c9:b5:16:1b:e9:50:fc:5c: b5:da:89:93:66:0a:6e:f3:e6:17:49:ac:f3:6e:1b: 31:f0:fa:5a:15:22:8c:b4:8c:61:99:71:ee:29:89: 63:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4E:C3:53:0A:83:BC:D5:3D:21:57:A7:69:55:E8:28:1D:15:0C:FE X509v3 Authority Key Identifier: keyid:1F:11:E5:58:FC:75:D9:DA:15:03:9E:A5:8D:5A:16:6A:6F:5E:F1:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/1F11E558FC75D9DA15039EA58D5A166A6F5EF10B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1F11E558FC75D9DA15039EA58D5A166A6F5EF10B.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/323830343a333330303a3a2f33332d3333203d3e203631353837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:3300::/33 Signature Algorithm: sha256WithRSAEncryption 99:c4:ff:73:ff:d7:07:14:d1:9e:01:de:02:2d:00:19:82:5a: 1e:7a:de:ca:6c:87:e4:8e:7a:dd:cf:84:71:bb:04:46:4b:c6: 1d:c3:42:31:cf:67:6b:a0:6b:d8:44:51:05:7b:a9:ac:e4:7c: d0:08:38:09:7f:26:12:ea:88:ec:6b:ce:96:44:37:4f:a3:5a: a0:12:51:fb:37:a8:0d:54:d3:15:d3:e8:c4:c5:f4:12:54:95: 26:6f:28:8b:ec:4b:be:f0:5d:ef:d4:22:7f:6c:fd:7b:78:86: 23:f3:af:0f:10:b6:d5:5c:b0:b7:e6:b8:ed:13:10:c2:8b:8c: 45:35:8d:c6:34:77:d4:0a:da:a7:be:7a:6b:ab:8e:be:55:43: f2:1d:96:9e:7d:25:4e:2f:92:da:05:38:bd:90:55:7e:ec:24: 31:04:58:92:83:37:9c:0f:54:e7:b2:96:94:db:ba:f2:3c:7d: d6:2f:08:a7:1d:59:b9:59:49:fc:c2:26:c6:7f:5c:cb:de:ef: c8:bc:37:61:6c:7a:79:1c:5e:cf:38:2b:92:97:a3:4e:18:90: 25:1c:33:13:0a:5d:6b:35:65:f8:66:1f:a4:60:a1:da:20:1d: 40:b0:c2:63:25:3b:e9:37:a1:3a:70:91:77:e2:3b:42:82:96: 62:54:c9:81 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUaDog2bosdASpIMtgQyoHoA1AJB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUYxMUU1NThGQzc1RDlEQTE1MDM5RUE1OEQ1QTE2NkE2 RjVFRjEwQjAeFw0yNDEyMzExODA2MjVaFw0yNTEyMzAxODExMjVaMDMxMTAvBgNV BAMTKDg2NEVDMzUzMEE4M0JDRDUzRDIxNTdBNzY5NTVFODI4MUQxNTBDRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUDMHqaDVxcA61hCYcOQs4oXmy sh1XDftvV56Sq34T1l5Nd0q2VADLBwpQYOG2yRXfmNjCdLGuLyNq6nTgX856D7Ru J1sI+D1watQXs2nFDHR6B3ZNqj0/PX1ARU8my2BQZJLlbQ8yJ/j0RIW/6hMfYvWt HM0feZ5XMatloOc2oCqrpykPzAu5K19FKqpzuvbIovf0NPdutdJeH6NSwI2yFSw9 OjV2/QrqL/63yGT+TbkAX6QO4FvIcEED4TVQ/tIfDi4ESvXVJcOsEZE2X11IXuVZ WN6/ZWDJtRYb6VD8XLXaiZNmCm7z5hdJrPNuGzHw+loVIoy0jGGZce4piWOLAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUhk7DUwqDvNU9IVenaVXoKB0VDP4wHwYDVR0j BBgwFoAUHxHlWPx12doVA56ljVoWam9e8QswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMjVtYXpYcXl3NFVjcGN3a1BkUWJQMVdqeWt3UDdraGpYRmQ5MXd6eExY ZTYvMC8xRjExRTU1OEZDNzVEOURBMTUwMzlFQTU4RDVBMTY2QTZGNUVGMTBCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzFGMTFFNTU4RkM3NUQ5REEx NTAzOUVBNThENUExNjZBNkY1RUYxMEIuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzI1bWF6WHF5dzRVY3Bjd2tQZFFiUDFXanlrd1A3a2hqWEZkOTF3enhMWGU2LzAv MzIzODMwMzQzYTMzMzMzMDMwM2EzYTJmMzMzMzJkMzMzMzIwM2QzZTIwMzYzMTM1 MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB /wQSMBAwDgQCAAIwCAMGBygEMwAAMA0GCSqGSIb3DQEBCwUAA4IBAQCZxP9z/9cH FNGeAd4CLQAZgloeet7KbIfkjnrdz4RxuwRGS8Ydw0Ixz2droGvYRFEFe6ms5HzQ CDgJfyYS6ojsa86WRDdPo1qgElH7N6gNVNMV0+jExfQSVJUmbyiL7Eu+8F3v1CJ/ bP17eIYj868PELbVXLC35rjtExDCi4xFNY3GNHfUCtqnvnprq46+VUPyHZaefSVO L5LaBTi9kFV+7CQxBFiSgzecD1TnspaU27ryPH3WLwinHVm5WUn8wibGf1zL3u/I vDdhbHp5HF7POCuSl6NOGJAlHDMTCl1rNWX4Zh+kYKHaIB1AsMJjJTvpN6E6cJF3 4jtCgpZiVMmB -----END CERTIFICATE-----Generated at Tue Apr 22 13:50:51 2025 by rpki-client