$ rpki-client -vvf rpki-repo.registro.br/repo/2MTu8yhFLroGNGCqVkS2iT9a8hN4qSy9Yds45rafAKU6/1/323830343a3863383a323030303a3a2f33352d3335203d3e20323632333933.roa File: 323830343a3863383a323030303a3a2f33352d3335203d3e20323632333933.roa (raw, json) Hash identifier: iG9MBxrBIm41u5GGH+CMZZXj4c+DUDay0eUrlH+XD/c= Subject key identifier: 38:1E:07:0B:B9:23:D1:2A:50:5A:FF:42:FF:12:FC:37:1C:B4:5A:E7 Certificate issuer: /CN=C8BB1F3C7B10677697D3675861F58EC5E4C4B1E5 Certificate serial: 1EA3FBD7225BCFF7F9772D383CB0B4D710C0AEF3 Authority key identifier: C8:BB:1F:3C:7B:10:67:76:97:D3:67:58:61:F5:8E:C5:E4:C4:B1:E5 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C8BB1F3C7B10677697D3675861F58EC5E4C4B1E5.cer Subject info access: rsync://rpki-repo.registro.br/repo/2MTu8yhFLroGNGCqVkS2iT9a8hN4qSy9Yds45rafAKU6/1/323830343a3863383a323030303a3a2f33352d3335203d3e20323632333933.roa Signing time: Sun 06 Apr 2025 22:08:52 +0000 ROA not before: Sun 06 Apr 2025 22:03:52 +0000 ROA not after: Sun 05 Apr 2026 22:08:52 +0000 asID: 262393 IP address blocks: 2804:8c8:2000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2MTu8yhFLroGNGCqVkS2iT9a8hN4qSy9Yds45rafAKU6/1/C8BB1F3C7B10677697D3675861F58EC5E4C4B1E5.crl rsync://rpki-repo.registro.br/repo/2MTu8yhFLroGNGCqVkS2iT9a8hN4qSy9Yds45rafAKU6/1/C8BB1F3C7B10677697D3675861F58EC5E4C4B1E5.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C8BB1F3C7B10677697D3675861F58EC5E4C4B1E5.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 23 Apr 2025 18:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:a3:fb:d7:22:5b:cf:f7:f9:77:2d:38:3c:b0:b4:d7:10:c0:ae:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8BB1F3C7B10677697D3675861F58EC5E4C4B1E5 Validity Not Before: Apr 6 22:03:52 2025 GMT Not After : Apr 5 22:08:52 2026 GMT Subject: CN=381E070BB923D12A505AFF42FF12FC371CB45AE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f0:66:f1:e5:23:84:69:f3:d9:1e:e1:07:4c: 88:61:59:ef:8e:0a:3f:fb:06:bb:49:4f:e2:69:9c: b5:f7:14:29:b6:a9:12:22:d4:8d:b0:2a:1d:88:02: 2d:17:76:61:5f:a1:81:96:e9:41:51:f4:94:79:b2: de:f0:4d:97:46:81:c8:c2:be:c2:1e:8e:ff:be:ef: 53:c7:75:0f:63:cb:02:ef:ee:0d:06:93:17:6c:64: 43:72:49:88:9a:92:d1:5a:e4:12:dc:8c:5a:b2:23: 1a:4e:ce:9f:8a:69:6a:a8:23:6f:17:5b:48:e9:30: 56:6e:1e:a2:b7:79:3f:13:ba:cb:6f:13:05:34:e4: dd:d6:fa:bb:91:fc:f0:f9:62:97:20:8b:25:d4:80: bb:f7:07:96:36:44:b3:42:69:38:d8:ac:35:76:71: 0d:e4:02:e8:89:90:96:e4:ac:55:b8:1c:c4:ad:ff: 7d:e5:61:b3:3b:ae:aa:1a:b1:8e:d2:8f:c9:ac:4a: 8a:c9:bf:0b:49:cc:10:71:cf:c5:80:9f:b9:b9:ef: 31:5b:19:ea:23:21:a0:a6:1c:2c:10:12:d0:bc:62: 14:43:6d:a5:a1:74:9c:6a:3f:2a:44:be:b4:e4:39: b5:a0:b6:5b:5d:98:6c:10:55:ea:dc:0a:ef:41:2b: d1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:1E:07:0B:B9:23:D1:2A:50:5A:FF:42:FF:12:FC:37:1C:B4:5A:E7 X509v3 Authority Key Identifier: keyid:C8:BB:1F:3C:7B:10:67:76:97:D3:67:58:61:F5:8E:C5:E4:C4:B1:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2MTu8yhFLroGNGCqVkS2iT9a8hN4qSy9Yds45rafAKU6/1/C8BB1F3C7B10677697D3675861F58EC5E4C4B1E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C8BB1F3C7B10677697D3675861F58EC5E4C4B1E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2MTu8yhFLroGNGCqVkS2iT9a8hN4qSy9Yds45rafAKU6/1/323830343a3863383a323030303a3a2f33352d3335203d3e20323632333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8c8:2000::/35 Signature Algorithm: sha256WithRSAEncryption 99:57:c6:25:ce:52:52:02:bc:cb:ee:ac:95:02:67:8e:fb:1f: 2b:1b:31:cf:d6:ec:3a:4b:ef:37:d4:b2:92:a9:5a:e1:69:1e: 57:73:a3:fc:15:4a:e1:4e:71:32:8d:e0:57:59:f2:d3:74:a2: b1:95:de:af:ea:e7:d5:b3:b0:17:a8:ca:51:cb:30:05:ec:ab: 54:4f:b1:a3:6b:99:45:d6:03:9b:ab:52:07:bf:1f:10:3a:dc: 27:d3:2a:c4:3b:e3:2d:a2:1e:40:ce:ad:ae:0c:85:c7:5b:0b: 35:13:e1:ef:6f:56:51:3a:75:15:ab:54:7c:6a:1d:f9:9c:86: 54:c0:11:8f:0f:1b:d6:2f:79:2d:7a:da:ff:26:84:70:e6:c5: c5:a5:3c:2c:c4:b1:39:8e:07:2b:f1:b6:e7:80:5b:8d:04:5a: 16:65:3c:bc:2b:5e:05:7b:d6:88:2c:2e:bd:1c:65:ef:d9:d9: 24:f0:aa:9e:21:dc:84:0d:9e:d3:f7:f4:45:09:89:51:46:b5: ea:7a:0d:c6:7a:00:76:a2:02:32:7f:64:c8:eb:57:6c:4a:63: 65:45:b2:84:81:b0:8c:a5:e5:dd:b6:c8:d0:7f:13:00:dc:f9: ef:d2:e9:46:6b:01:8a:16:d5:04:40:20:27:30:8d:95:16:7f: 41:e6:ac:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUHqP71yJbz/f5dy04PLC01xDArvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhCQjFGM0M3QjEwNjc3Njk3RDM2NzU4NjFGNThFQzVF NEM0QjFFNTAeFw0yNTA0MDYyMjAzNTJaFw0yNjA0MDUyMjA4NTJaMDMxMTAvBgNV BAMTKDM4MUUwNzBCQjkyM0QxMkE1MDVBRkY0MkZGMTJGQzM3MUNCNDVBRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg8Gbx5SOEafPZHuEHTIhhWe+O Cj/7BrtJT+JpnLX3FCm2qRIi1I2wKh2IAi0XdmFfoYGW6UFR9JR5st7wTZdGgcjC vsIejv++71PHdQ9jywLv7g0GkxdsZENySYiaktFa5BLcjFqyIxpOzp+KaWqoI28X W0jpMFZuHqK3eT8TustvEwU05N3W+ruR/PD5YpcgiyXUgLv3B5Y2RLNCaTjYrDV2 cQ3kAuiJkJbkrFW4HMSt/33lYbM7rqoasY7Sj8msSorJvwtJzBBxz8WAn7m57zFb GeojIaCmHCwQEtC8YhRDbaWhdJxqPypEvrTkObWgtltdmGwQVercCu9BK9GdAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUOB4HC7kj0SpQWv9C/xL8Nxy0WucwHwYDVR0j BBgwFoAUyLsfPHsQZ3aX02dYYfWOxeTEseUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMk1UdTh5aEZMcm9HTkdDcVZrUzJpVDlhOGhONHFTeTlZZHM0NXJhZkFL VTYvMS9DOEJCMUYzQzdCMTA2Nzc2OTdEMzY3NTg2MUY1OEVDNUU0QzRCMUU1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0M4QkIxRjNDN0IxMDY3NzY5 N0QzNjc1ODYxRjU4RUM1RTRDNEIxRTUuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJNVHU4eWhGTHJvR05HQ3FWa1MyaVQ5YThoTjRxU3k5WWRzNDVyYWZBS1U2LzEv MzIzODMwMzQzYTM4NjMzODNhMzIzMDMwMzAzYTNhMmYzMzM1MmQzMzM1MjAzZDNl MjAzMjM2MzIzMzM5MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYI KwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUoBAjIIDANBgkqhkiG9w0BAQsFAAOC AQEAmVfGJc5SUgK8y+6slQJnjvsfKxsxz9bsOkvvN9Sykqla4WkeV3Oj/BVK4U5x Mo3gV1ny03SisZXer+rn1bOwF6jKUcswBeyrVE+xo2uZRdYDm6tSB78fEDrcJ9Mq xDvjLaIeQM6trgyFx1sLNRPh729WUTp1FatUfGod+ZyGVMARjw8b1i95LXra/yaE cObFxaU8LMSxOY4HK/G254BbjQRaFmU8vCteBXvWiCwuvRxl79nZJPCqniHchA2e 0/f0RQmJUUa16noNxnoAdqICMn9kyOtXbEpjZUWyhIGwjKXl3bbI0H8TANz579Lp RmsBihbVBEAgJzCNlRZ/QeasKA== -----END CERTIFICATE-----Generated at Tue Apr 22 19:37:21 2025 by rpki-client