$ rpki-client -vvf rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/323830343a3732633a3a2f33322d3438203d3e203532383531.roa File: 323830343a3732633a3a2f33322d3438203d3e203532383531.roa (raw, json) Hash identifier: 4ctwHR1XhEpsrncdtYg84Jxcg/aaKfYuf310TvSbeeg= Subject key identifier: 86:43:A4:2C:37:17:F4:A1:24:49:1E:F3:84:74:40:55:C3:58:E4:73 Certificate issuer: /CN=010E573258A339BA98BB3BB090EDE36C06300407 Certificate serial: 337D3F746D0E05CD18837E91D70DC3CE722D5F85 Authority key identifier: 01:0E:57:32:58:A3:39:BA:98:BB:3B:B0:90:ED:E3:6C:06:30:04:07 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/010E573258A339BA98BB3BB090EDE36C06300407.cer Subject info access: rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/323830343a3732633a3a2f33322d3438203d3e203532383531.roa Signing time: Wed 23 Oct 2024 15:00:51 +0000 ROA not before: Wed 23 Oct 2024 14:55:51 +0000 ROA not after: Wed 22 Oct 2025 15:00:51 +0000 asID: 52851 IP address blocks: 2804:72c::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/010E573258A339BA98BB3BB090EDE36C06300407.crl rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/010E573258A339BA98BB3BB090EDE36C06300407.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/010E573258A339BA98BB3BB090EDE36C06300407.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 09:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:7d:3f:74:6d:0e:05:cd:18:83:7e:91:d7:0d:c3:ce:72:2d:5f:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=010E573258A339BA98BB3BB090EDE36C06300407 Validity Not Before: Oct 23 14:55:51 2024 GMT Not After : Oct 22 15:00:51 2025 GMT Subject: CN=8643A42C3717F4A124491EF384744055C358E473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:20:64:27:e8:0d:83:c7:6c:cf:4b:c7:b8:36: fe:d4:06:b0:5c:e5:57:03:a3:3d:bf:f2:23:9c:d6: 6b:21:f5:b6:54:3d:d9:6c:ba:95:e5:0e:f1:54:c7: df:f0:69:d2:45:a3:c7:16:7b:45:bb:5d:9e:d2:f7: b0:dc:00:95:3d:6e:5f:0e:d5:ec:7e:be:95:81:cc: 06:33:59:6c:9c:0c:17:fd:d5:e2:de:81:4a:bc:44: 47:e4:34:66:af:69:0c:09:f9:34:5d:58:9d:38:ae: d7:ea:30:0f:81:4b:18:e2:ad:d4:1c:08:5a:ea:12: bc:e9:06:45:c9:91:f6:40:32:fb:77:89:67:0d:30: 2c:ef:73:60:fc:04:f8:96:20:7f:a7:a1:e5:7b:3e: c5:46:57:63:78:d3:ee:60:a1:8c:15:33:75:33:a7: 7a:51:44:00:00:d1:d6:63:45:61:8d:34:52:a2:b9: 80:3c:87:36:42:ca:32:80:e9:67:ec:10:4c:2d:06: a8:db:7f:56:60:d3:05:7d:1d:e0:1d:0c:68:a9:0f: 8a:1a:4f:1a:3d:d9:62:34:da:18:ab:f0:ba:4d:97: 48:f3:f9:78:76:fc:20:b6:9e:e0:03:42:f0:4b:23: 25:e0:14:95:21:01:51:ad:dd:18:89:b5:f3:79:c7: fd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:43:A4:2C:37:17:F4:A1:24:49:1E:F3:84:74:40:55:C3:58:E4:73 X509v3 Authority Key Identifier: keyid:01:0E:57:32:58:A3:39:BA:98:BB:3B:B0:90:ED:E3:6C:06:30:04:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/010E573258A339BA98BB3BB090EDE36C06300407.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/010E573258A339BA98BB3BB090EDE36C06300407.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/323830343a3732633a3a2f33322d3438203d3e203532383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:72c::/32 Signature Algorithm: sha256WithRSAEncryption 2b:2a:7c:0e:0c:ec:b5:66:90:15:35:d5:af:af:45:09:d4:82: 79:37:4e:46:8e:b7:31:9f:ee:aa:bf:9d:71:43:ac:23:f0:3c: 3f:17:04:d4:2c:ae:fa:54:73:42:1b:92:ef:2d:04:cc:4a:7b: e8:36:fa:08:d6:f4:c3:9e:eb:bc:4a:37:96:f6:17:a5:6a:17: 1f:a4:e4:ca:bc:6c:91:f8:00:7a:23:db:6c:53:46:44:6a:a5: e1:6d:d4:a1:3f:2a:4f:68:d2:06:ac:47:7f:05:b0:e4:56:25: c2:32:88:56:f4:59:68:98:36:40:57:7c:e8:20:72:6f:59:10: 76:40:9a:d5:8a:ce:ec:30:31:19:de:cd:de:87:e0:d7:3b:df: ec:a3:9a:e6:0a:c2:e2:b5:c1:5d:4b:c4:cd:7c:af:1c:02:4a: 68:9d:d7:84:cf:f6:76:da:12:5e:01:c3:93:38:ae:c1:2d:46: 84:11:01:46:0a:a7:46:00:bb:ee:ec:26:70:d1:59:10:b5:22: b5:47:96:9a:d4:a0:e3:f8:8b:6f:14:84:ea:7d:ed:c4:40:79: 9e:0b:56:4b:e8:39:32:c7:00:06:3d:cf:9b:81:72:32:69:6b: ae:eb:3e:11:91:49:62:39:1b:8f:bd:21:16:6b:34:31:da:fe: 23:a9:e6:e0 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUM30/dG0OBc0Yg36R1w3DznItX4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEwRTU3MzI1OEEzMzlCQTk4QkIzQkIwOTBFREUzNkMw NjMwMDQwNzAeFw0yNDEwMjMxNDU1NTFaFw0yNTEwMjIxNTAwNTFaMDMxMTAvBgNV BAMTKDg2NDNBNDJDMzcxN0Y0QTEyNDQ5MUVGMzg0NzQ0MDU1QzM1OEU0NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoIGQn6A2Dx2zPS8e4Nv7UBrBc 5VcDoz2/8iOc1msh9bZUPdlsupXlDvFUx9/wadJFo8cWe0W7XZ7S97DcAJU9bl8O 1ex+vpWBzAYzWWycDBf91eLegUq8REfkNGavaQwJ+TRdWJ04rtfqMA+BSxjirdQc CFrqErzpBkXJkfZAMvt3iWcNMCzvc2D8BPiWIH+noeV7PsVGV2N40+5goYwVM3Uz p3pRRAAA0dZjRWGNNFKiuYA8hzZCyjKA6WfsEEwtBqjbf1Zg0wV9HeAdDGipD4oa Txo92WI02hir8LpNl0jz+Xh2/CC2nuADQvBLIyXgFJUhAVGt3RiJtfN5x/0vAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUhkOkLDcX9KEkSR7zhHRAVcNY5HMwHwYDVR0j BBgwFoAUAQ5XMlijObqYuzuwkO3jbAYwBAcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMk0yMXlWTXVWdTVhbXE5QXNpVWFnc3VhU1dTTUVYU294QnRyOWZpQkJR engvMC8wMTBFNTczMjU4QTMzOUJBOThCQjNCQjA5MEVERTM2QzA2MzAwNDA3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAxMEU1NzMyNThBMzM5QkE5 OEJCM0JCMDkwRURFMzZDMDYzMDA0MDcuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJNMjF5Vk11VnU1YW1xOUFzaVVhZ3N1YVNXU01FWFNveEJ0cjlmaUJCUXp4LzAv MzIzODMwMzQzYTM3MzI2MzNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM1MzIzODM1 MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoBAcsMA0GCSqGSIb3DQEBCwUAA4IBAQArKnwODOy1ZpAV NdWvr0UJ1IJ5N05Gjrcxn+6qv51xQ6wj8Dw/FwTULK76VHNCG5LvLQTMSnvoNvoI 1vTDnuu8SjeW9helahcfpOTKvGyR+AB6I9tsU0ZEaqXhbdShPypPaNIGrEd/BbDk ViXCMohW9FlomDZAV3zoIHJvWRB2QJrVis7sMDEZ3s3eh+DXO9/so5rmCsLitcFd S8TNfK8cAkpondeEz/Z22hJeAcOTOK7BLUaEEQFGCqdGALvu7CZw0VkQtSK1R5aa 1KDj+ItvFITqfe3EQHmeC1ZL6DkyxwAGPc+bgXIyaWuu6z4RkUliORuPvSEWazQx 2v4jqebg -----END CERTIFICATE-----Generated at Mon Apr 21 21:15:06 2025 by rpki-client