$ rpki-client -vvf rpki-repo.registro.br/repo/3HLCS1E4Px1Gv3PT1pQkr3ruECEQqRPCQ3Zc4gpCobcc/1/323830343a366138303a333031313a3a2f34382d3438203d3e20323730333430.roa File: 323830343a366138303a333031313a3a2f34382d3438203d3e20323730333430.roa (raw, json) Hash identifier: 2kKEiyTFiOmhUk0aoZqeJVMh2uxvNnJbR4TxG8nWgwc= Subject key identifier: B2:45:E2:05:7B:4B:9D:7E:3C:1B:A8:DB:1B:17:7A:5B:30:D2:8E:8A Certificate issuer: /CN=71A34E8DF00965CA21C1AA4E3C37AC2A3119A8AF Certificate serial: 3A2F050B22BD582FA037E0A62CE8E1CF567FF400 Authority key identifier: 71:A3:4E:8D:F0:09:65:CA:21:C1:AA:4E:3C:37:AC:2A:31:19:A8:AF Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71A34E8DF00965CA21C1AA4E3C37AC2A3119A8AF.cer Subject info access: rsync://rpki-repo.registro.br/repo/3HLCS1E4Px1Gv3PT1pQkr3ruECEQqRPCQ3Zc4gpCobcc/1/323830343a366138303a333031313a3a2f34382d3438203d3e20323730333430.roa Signing time: Thu 06 Mar 2025 17:33:25 +0000 ROA not before: Thu 06 Mar 2025 17:28:25 +0000 ROA not after: Thu 05 Mar 2026 17:33:25 +0000 asID: 270340 IP address blocks: 2804:6a80:3011::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3HLCS1E4Px1Gv3PT1pQkr3ruECEQqRPCQ3Zc4gpCobcc/1/71A34E8DF00965CA21C1AA4E3C37AC2A3119A8AF.crl rsync://rpki-repo.registro.br/repo/3HLCS1E4Px1Gv3PT1pQkr3ruECEQqRPCQ3Zc4gpCobcc/1/71A34E8DF00965CA21C1AA4E3C37AC2A3119A8AF.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71A34E8DF00965CA21C1AA4E3C37AC2A3119A8AF.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 15:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2f:05:0b:22:bd:58:2f:a0:37:e0:a6:2c:e8:e1:cf:56:7f:f4:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71A34E8DF00965CA21C1AA4E3C37AC2A3119A8AF Validity Not Before: Mar 6 17:28:25 2025 GMT Not After : Mar 5 17:33:25 2026 GMT Subject: CN=B245E2057B4B9D7E3C1BA8DB1B177A5B30D28E8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ac:09:c1:f4:e0:7c:42:13:9b:da:4d:6e:19: c6:74:8f:db:36:ec:24:f3:95:70:8c:f4:73:b7:2c: e0:50:2c:77:f8:e7:9a:c4:7a:71:73:73:e1:87:a4: f5:0c:3f:b1:31:47:96:63:64:61:3b:f3:3d:0e:f5: 6a:2c:f4:4a:8f:29:48:3f:67:66:a6:d6:c2:6f:8c: 5f:b8:e2:8e:54:3a:f6:7d:a0:f4:c7:f3:eb:d2:fd: 64:52:73:16:9f:f4:54:3f:d2:44:05:a5:a6:68:4c: e4:4a:5d:2e:64:24:f5:6f:8d:b1:60:63:ef:b6:e9: b3:38:94:01:12:bf:ac:92:2a:87:40:59:c9:4f:99: a1:e6:8c:f8:c4:e6:85:33:ac:2c:83:83:64:22:16: fd:c3:58:cf:32:36:22:36:1a:c2:2d:04:93:45:e7: 34:b7:cb:b0:d3:57:6a:52:a3:18:e2:60:93:fc:06: 75:5c:9b:f5:c3:97:e5:2c:2b:2b:32:b4:ef:55:30: e8:52:11:c4:7a:e9:68:0e:17:bd:cc:a9:f1:73:5f: 61:da:3e:18:1f:ba:70:1f:25:73:e0:11:83:53:58: 1b:c9:03:df:7f:bf:65:8e:07:16:ff:0a:49:5a:ed: 97:32:c7:2a:34:ef:41:aa:25:16:48:cb:22:4a:3f: 7b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:45:E2:05:7B:4B:9D:7E:3C:1B:A8:DB:1B:17:7A:5B:30:D2:8E:8A X509v3 Authority Key Identifier: keyid:71:A3:4E:8D:F0:09:65:CA:21:C1:AA:4E:3C:37:AC:2A:31:19:A8:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3HLCS1E4Px1Gv3PT1pQkr3ruECEQqRPCQ3Zc4gpCobcc/1/71A34E8DF00965CA21C1AA4E3C37AC2A3119A8AF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71A34E8DF00965CA21C1AA4E3C37AC2A3119A8AF.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3HLCS1E4Px1Gv3PT1pQkr3ruECEQqRPCQ3Zc4gpCobcc/1/323830343a366138303a333031313a3a2f34382d3438203d3e20323730333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:6a80:3011::/48 Signature Algorithm: sha256WithRSAEncryption d4:8a:c0:48:45:e9:58:17:db:1c:d0:e9:59:c5:ac:48:ff:70: c6:c5:bb:e8:7c:4c:7e:72:a8:60:64:f0:81:5d:8b:67:f0:22: 62:03:a0:75:ee:08:6c:df:3d:ba:5a:e9:55:50:16:78:c0:6e: 6e:7d:2d:35:02:29:1b:4c:49:71:02:0a:77:26:c6:fd:57:c0: d1:20:e3:79:7e:df:c6:3a:bd:dd:35:12:b1:9d:bd:02:b7:fb: 63:9c:da:be:8e:4c:13:7b:68:3e:79:b6:d2:ec:c9:e7:39:c0: 64:33:7b:f3:36:c7:49:66:85:e9:08:38:98:a9:0f:d9:48:95: a5:65:cb:81:97:d6:08:a4:b4:a5:bd:47:e8:8e:a5:3f:f9:ce: b3:b5:fa:71:39:02:de:f5:ce:9f:ab:c0:0d:ea:8c:8d:78:87: 26:0d:aa:9d:c4:2e:c5:09:09:da:de:01:6e:54:6f:09:68:f2: a4:18:ce:50:d9:c6:be:16:35:53:98:02:07:fe:04:c7:f1:c0: 3d:a3:74:44:ba:d6:68:7d:91:99:2a:db:53:8c:38:19:6a:93: af:76:22:84:14:52:00:67:2a:1f:cb:2d:68:b3:e5:c8:72:1d: 27:ef:f4:7d:ec:43:4f:b7:6a:d7:b3:a5:7b:89:5b:cd:9a:b2: 34:dc:5d:d2 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIUOi8FCyK9WC+gN+CmLOjhz1Z/9AAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFBMzRFOERGMDA5NjVDQTIxQzFBQTRFM0MzN0FDMkEz MTE5QThBRjAeFw0yNTAzMDYxNzI4MjVaFw0yNjAzMDUxNzMzMjVaMDMxMTAvBgNV BAMTKEIyNDVFMjA1N0I0QjlEN0UzQzFCQThEQjFCMTc3QTVCMzBEMjhFOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzrAnB9OB8QhOb2k1uGcZ0j9s2 7CTzlXCM9HO3LOBQLHf455rEenFzc+GHpPUMP7ExR5ZjZGE78z0O9Wos9EqPKUg/ Z2am1sJvjF+44o5UOvZ9oPTH8+vS/WRScxaf9FQ/0kQFpaZoTORKXS5kJPVvjbFg Y++26bM4lAESv6ySKodAWclPmaHmjPjE5oUzrCyDg2QiFv3DWM8yNiI2GsItBJNF 5zS3y7DTV2pSoxjiYJP8BnVcm/XDl+UsKysytO9VMOhSEcR66WgOF73MqfFzX2Ha PhgfunAfJXPgEYNTWBvJA99/v2WOBxb/Ckla7Zcyxyo070GqJRZIyyJKP3tVAgMB AAGjggJcMIICWDAdBgNVHQ4EFgQUskXiBXtLnX48G6jbGxd6WzDSjoowHwYDVR0j BBgwFoAUcaNOjfAJZcohwapOPDesKjEZqK8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0hMQ1MxRTRQeDFHdjNQVDFwUWtyM3J1RUNFUXFSUENRM1pjNGdwQ29i Y2MvMS83MUEzNEU4REYwMDk2NUNBMjFDMUFBNEUzQzM3QUMyQTMxMTlBOEFGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcxQTM0RThERjAwOTY1Q0Ey MUMxQUE0RTNDMzdBQzJBMzExOUE4QUYuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNITENTMUU0UHgxR3YzUFQxcFFrcjNydUVDRVFxUlBDUTNaYzRncENvYmNjLzEv MzIzODMwMzQzYTM2NjEzODMwM2EzMzMwMzEzMTNhM2EyZjM0MzgyZDM0MzgyMDNk M2UyMDMyMzczMDMzMzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACgEaoAwETANBgkqhkiG9w0BAQsF AAOCAQEA1IrASEXpWBfbHNDpWcWsSP9wxsW76HxMfnKoYGTwgV2LZ/AiYgOgde4I bN89ulrpVVAWeMBubn0tNQIpG0xJcQIKdybG/VfA0SDjeX7fxjq93TUSsZ29Arf7 Y5zavo5ME3toPnm20uzJ5znAZDN78zbHSWaF6Qg4mKkP2UiVpWXLgZfWCKS0pb1H 6I6lP/nOs7X6cTkC3vXOn6vADeqMjXiHJg2qncQuxQkJ2t4BblRvCWjypBjOUNnG vhY1U5gCB/4Ex/HAPaN0RLrWaH2RmSrbU4w4GWqTr3YihBRSAGcqH8staLPlyHId J+/0fexDT7dq17Ole4lbzZqyNNxd0g== -----END CERTIFICATE-----Generated at Mon Apr 21 23:59:57 2025 by rpki-client