$ rpki-client -vvf rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/323830343a3666383a3a2f33322d3332203d3e203532383438.roa File: 323830343a3666383a3a2f33322d3332203d3e203532383438.roa (raw, json) Hash identifier: ArZW0IEPQT9qmNg5J+/twX+29UWHR8soH8MuXLBopaw= Subject key identifier: 3D:9F:88:15:93:EC:9E:62:00:00:79:05:24:C9:6A:F5:F3:75:B6:58 Certificate issuer: /CN=99143CBAF11D170944D719FD796009BC38F9F201 Certificate serial: 6C4886BDE3E7F981F3E19820D58DF62E56010423 Authority key identifier: 99:14:3C:BA:F1:1D:17:09:44:D7:19:FD:79:60:09:BC:38:F9:F2:01 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/99143CBAF11D170944D719FD796009BC38F9F201.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/323830343a3666383a3a2f33322d3332203d3e203532383438.roa Signing time: Fri 21 Feb 2025 13:31:57 +0000 ROA not before: Fri 21 Feb 2025 13:26:57 +0000 ROA not after: Fri 20 Feb 2026 13:31:57 +0000 asID: 52848 IP address blocks: 2804:6f8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/99143CBAF11D170944D719FD796009BC38F9F201.crl rsync://rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/99143CBAF11D170944D719FD796009BC38F9F201.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/99143CBAF11D170944D719FD796009BC38F9F201.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 16:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:48:86:bd:e3:e7:f9:81:f3:e1:98:20:d5:8d:f6:2e:56:01:04:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99143CBAF11D170944D719FD796009BC38F9F201 Validity Not Before: Feb 21 13:26:57 2025 GMT Not After : Feb 20 13:31:57 2026 GMT Subject: CN=3D9F881593EC9E620000790524C96AF5F375B658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cd:94:d6:83:26:e0:c2:b1:d6:c5:57:44:dc: 3d:09:52:54:c7:cb:11:77:bb:f2:21:a0:c1:70:0d: 77:34:79:3b:60:fe:2b:2d:53:89:88:dc:88:a9:ce: f1:ce:6f:67:ed:cc:29:f4:ba:56:a6:06:5d:af:f8: 5b:e0:ff:f1:03:58:91:75:d1:1b:49:04:64:1b:48: 15:2b:2d:06:ee:eb:32:80:47:2f:b5:20:55:bf:24: 37:6a:e6:47:41:3a:4c:a7:4e:f0:63:80:61:dc:f2: 6e:2f:50:4b:ac:50:10:a9:2e:64:5e:3b:98:dd:fa: 38:29:48:d4:6b:1b:11:94:48:7b:54:e7:c2:8d:98: 09:01:b2:25:1e:0a:3e:37:c7:92:02:f8:a0:a7:13: 2f:97:f1:1b:32:d7:da:0f:31:e7:53:33:31:78:ed: 36:f5:f6:b1:d2:72:92:df:be:a1:11:d8:b8:f3:5c: ad:3e:a8:45:39:68:9f:a1:b0:08:86:b3:30:e4:60: fb:a1:af:ae:85:a9:07:48:9e:53:ce:59:c0:30:39: 68:01:21:29:7c:2c:9c:d7:ad:02:30:40:ec:42:a4: cf:b4:58:32:74:6b:bd:9c:4a:29:d1:c7:cc:41:fc: 0d:c4:5b:55:31:4b:6b:2d:3f:41:65:c5:ae:73:19: fa:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:9F:88:15:93:EC:9E:62:00:00:79:05:24:C9:6A:F5:F3:75:B6:58 X509v3 Authority Key Identifier: keyid:99:14:3C:BA:F1:1D:17:09:44:D7:19:FD:79:60:09:BC:38:F9:F2:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/99143CBAF11D170944D719FD796009BC38F9F201.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/99143CBAF11D170944D719FD796009BC38F9F201.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/323830343a3666383a3a2f33322d3332203d3e203532383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:6f8::/32 Signature Algorithm: sha256WithRSAEncryption 2f:e5:a0:d6:9a:0d:28:d3:67:e3:de:8d:d5:af:4d:0e:38:28: f1:4a:48:72:b5:8b:0c:32:1d:2b:e9:14:d8:a7:9d:39:39:26: e0:72:13:dc:ed:71:c8:ef:eb:28:49:7c:19:f7:6f:a7:71:fa: 07:f9:77:5a:59:94:05:16:fd:db:75:cc:72:01:47:0e:32:a4: 23:69:35:70:f6:1c:55:9c:29:73:0f:80:1f:6a:92:d3:e3:ec: d9:da:99:76:db:14:68:56:17:85:d5:c9:84:c7:0f:99:be:0d: c1:87:3f:c8:a2:e5:93:69:7e:d9:f8:a7:4f:00:7e:0f:68:26: be:db:07:d1:a1:cd:55:cd:e9:75:b8:e8:35:4f:d8:06:b8:d2: 66:f3:f9:36:78:70:ed:ea:ef:a0:bc:99:8d:40:02:79:ef:70: 5c:bf:d1:1f:5b:d4:51:34:75:60:68:33:c8:e0:33:2b:87:ee: fd:d4:84:7f:2b:7b:6a:1f:ea:4f:fe:fe:fa:28:0e:bb:d7:ce: a2:4a:52:e7:99:46:80:1f:50:71:6f:8f:8a:36:32:3f:0c:3c: 4b:09:b0:4f:db:08:41:3f:20:6c:08:cd:d8:32:d6:43:d7:99: c9:9e:3e:a0:2a:6a:f2:49:ca:85:e5:15:f0:83:7d:33:65:a5: c8:7a:89:0a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUbEiGvePn+YHz4Zgg1Y32LlYBBCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTkxNDNDQkFGMTFEMTcwOTQ0RDcxOUZENzk2MDA5QkMz OEY5RjIwMTAeFw0yNTAyMjExMzI2NTdaFw0yNjAyMjAxMzMxNTdaMDMxMTAvBgNV BAMTKDNEOUY4ODE1OTNFQzlFNjIwMDAwNzkwNTI0Qzk2QUY1RjM3NUI2NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIzZTWgybgwrHWxVdE3D0JUlTH yxF3u/IhoMFwDXc0eTtg/istU4mI3IipzvHOb2ftzCn0ulamBl2v+Fvg//EDWJF1 0RtJBGQbSBUrLQbu6zKARy+1IFW/JDdq5kdBOkynTvBjgGHc8m4vUEusUBCpLmRe O5jd+jgpSNRrGxGUSHtU58KNmAkBsiUeCj43x5IC+KCnEy+X8Rsy19oPMedTMzF4 7Tb19rHScpLfvqER2LjzXK0+qEU5aJ+hsAiGszDkYPuhr66FqQdInlPOWcAwOWgB ISl8LJzXrQIwQOxCpM+0WDJ0a72cSinRx8xB/A3EW1UxS2stP0Flxa5zGfrxAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUPZ+IFZPsnmIAAHkFJMlq9fN1tlgwHwYDVR0j BBgwFoAUmRQ8uvEdFwlE1xn9eWAJvDj58gEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0N4eGQ4REJOTnREYXZMajRhbkZ2Q2U3aUwzNHRoQVpoOUFBdmF3aFRT RGQvMC85OTE0M0NCQUYxMUQxNzA5NDRENzE5RkQ3OTYwMDlCQzM4RjlGMjAxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzk5MTQzQ0JBRjExRDE3MDk0 NEQ3MTlGRDc5NjAwOUJDMzhGOUYyMDEuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNDeHhkOERCTk50RGF2TGo0YW5GdkNlN2lMMzR0aEFaaDlBQXZhd2hUU0RkLzAv MzIzODMwMzQzYTM2NjYzODNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDM1MzIzODM0 Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoBAb4MA0GCSqGSIb3DQEBCwUAA4IBAQAv5aDWmg0o02fj 3o3Vr00OOCjxSkhytYsMMh0r6RTYp505OSbgchPc7XHI7+soSXwZ92+ncfoH+Xda WZQFFv3bdcxyAUcOMqQjaTVw9hxVnClzD4AfapLT4+zZ2pl22xRoVheF1cmExw+Z vg3Bhz/IouWTaX7Z+KdPAH4PaCa+2wfRoc1Vzel1uOg1T9gGuNJm8/k2eHDt6u+g vJmNQAJ573Bcv9EfW9RRNHVgaDPI4DMrh+791IR/K3tqH+pP/v76KA67186iSlLn mUaAH1Bxb4+KNjI/DDxLCbBP2whBPyBsCM3YMtZD15nJnj6gKmryScqF5RXwg30z ZaXIeokK -----END CERTIFICATE-----Generated at Tue Apr 8 18:29:22 2025 by rpki-client