$ rpki-client -vvf rpki-repo.registro.br/repo/3QVXf4hxGFcmYty4H668eWrqugg8VrkD3sDAH9qpPoxX/1/323830343a383534633a3a2f33322d313238203d3e20323732353730.roa File: 323830343a383534633a3a2f33322d313238203d3e20323732353730.roa (raw, json) Hash identifier: /jjNTYdHgGu54/KsbvfYxBSxmVomJOu/7haHE2jkFo8= Subject key identifier: 45:4D:E7:D2:40:D4:F1:D0:6A:4E:B3:9A:D8:B4:33:2D:9C:26:B3:8F Certificate issuer: /CN=114C34E702D6B3C78DB6AD0C8B6A12A4F6C962F2 Certificate serial: 2AE3A561A8F2BCDC421EFC8A6195364E15BE7E4D Authority key identifier: 11:4C:34:E7:02:D6:B3:C7:8D:B6:AD:0C:8B:6A:12:A4:F6:C9:62:F2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/114C34E702D6B3C78DB6AD0C8B6A12A4F6C962F2.cer Subject info access: rsync://rpki-repo.registro.br/repo/3QVXf4hxGFcmYty4H668eWrqugg8VrkD3sDAH9qpPoxX/1/323830343a383534633a3a2f33322d313238203d3e20323732353730.roa Signing time: Fri 14 Feb 2025 20:42:40 +0000 ROA not before: Fri 14 Feb 2025 20:37:40 +0000 ROA not after: Fri 13 Feb 2026 20:42:40 +0000 asID: 272570 IP address blocks: 2804:854c::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3QVXf4hxGFcmYty4H668eWrqugg8VrkD3sDAH9qpPoxX/1/114C34E702D6B3C78DB6AD0C8B6A12A4F6C962F2.crl rsync://rpki-repo.registro.br/repo/3QVXf4hxGFcmYty4H668eWrqugg8VrkD3sDAH9qpPoxX/1/114C34E702D6B3C78DB6AD0C8B6A12A4F6C962F2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/114C34E702D6B3C78DB6AD0C8B6A12A4F6C962F2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 13 Apr 2025 14:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e3:a5:61:a8:f2:bc:dc:42:1e:fc:8a:61:95:36:4e:15:be:7e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=114C34E702D6B3C78DB6AD0C8B6A12A4F6C962F2 Validity Not Before: Feb 14 20:37:40 2025 GMT Not After : Feb 13 20:42:40 2026 GMT Subject: CN=454DE7D240D4F1D06A4EB39AD8B4332D9C26B38F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b1:a2:4e:ec:7f:e9:99:9a:36:b4:d6:c8:57: 3d:7b:d2:3f:78:45:ec:3e:77:95:1f:02:12:f5:b6: c3:06:c9:11:71:7f:20:dc:f9:df:81:2e:91:f8:27: eb:b7:1e:5a:a9:fe:8b:76:1a:69:a9:fb:45:d6:3a: 8d:fb:0e:a5:33:35:1a:2c:4f:0b:6f:49:18:3b:04: d5:03:50:32:c1:0a:47:a0:0b:83:69:89:e4:38:4a: 1e:b1:32:87:0c:c9:16:68:2b:37:f5:91:53:44:0c: 46:a4:ee:3c:3b:68:0f:03:32:2f:db:dc:cc:18:aa: a3:33:96:5b:e9:18:ec:e0:f4:29:3c:1c:fb:6c:de: 80:3c:71:d4:50:d9:fe:f1:ce:53:e2:aa:af:d6:aa: 7e:d1:ae:2c:72:eb:51:35:98:3f:2c:0a:29:e8:28: be:1d:f7:27:b2:82:1e:91:6a:45:ea:e6:0c:29:7a: 58:3c:44:2c:8c:66:cb:a1:9e:af:55:b9:f9:22:1b: c9:78:7f:ac:a5:cc:5b:55:3d:cd:3f:25:6a:63:0d: 8b:8a:9e:72:5e:79:22:aa:b2:5e:1b:a8:e1:d2:ad: 71:92:d5:39:42:c0:85:90:b7:3a:ac:a1:b0:aa:81: d7:5d:54:c9:b4:15:ec:2f:d0:2a:b8:0a:02:e7:03: 92:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:4D:E7:D2:40:D4:F1:D0:6A:4E:B3:9A:D8:B4:33:2D:9C:26:B3:8F X509v3 Authority Key Identifier: keyid:11:4C:34:E7:02:D6:B3:C7:8D:B6:AD:0C:8B:6A:12:A4:F6:C9:62:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3QVXf4hxGFcmYty4H668eWrqugg8VrkD3sDAH9qpPoxX/1/114C34E702D6B3C78DB6AD0C8B6A12A4F6C962F2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/114C34E702D6B3C78DB6AD0C8B6A12A4F6C962F2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3QVXf4hxGFcmYty4H668eWrqugg8VrkD3sDAH9qpPoxX/1/323830343a383534633a3a2f33322d313238203d3e20323732353730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:854c::/32 Signature Algorithm: sha256WithRSAEncryption 98:1e:99:b7:e3:5d:d1:b9:81:ba:24:2d:82:3c:b1:c3:7f:93: 12:e4:16:a8:ca:a5:f5:5c:50:46:99:79:81:68:d3:d8:b9:54: d1:a3:bb:43:e2:d8:01:57:69:6b:81:ec:6b:99:03:dd:72:d8: e1:0d:86:05:8b:11:db:90:d9:16:7a:2a:4d:9e:fa:92:c0:62: 11:da:da:0e:41:0c:fd:11:b3:dd:13:29:ca:87:0d:63:d5:61: 86:ee:46:26:f6:f8:b5:18:4e:78:60:88:70:f3:da:6b:0c:50: a6:71:c7:d5:6e:47:ea:dc:3f:24:0e:6a:06:d0:2e:74:62:2d: a8:ff:53:f6:99:b9:6d:de:e5:59:68:70:1c:1c:05:3b:67:6f: a5:36:90:19:25:af:c2:e2:7b:46:c5:38:88:0c:1a:2b:2f:2b: f2:6c:cf:46:b6:52:fb:b2:66:e7:e2:3d:cf:27:c8:2f:27:c2: a9:30:f4:b4:ec:7c:b8:42:8e:8a:03:e4:69:fd:05:b4:3a:b0: 4e:3f:c0:8d:42:00:23:cb:d3:5b:b0:47:6a:c8:a1:29:01:5e: cd:f4:a8:9a:a9:64:db:86:ce:ff:e1:d0:a0:fc:33:e7:5a:23: b0:ee:a2:e9:26:c0:3f:bc:59:52:ab:7e:5b:9a:d1:fe:15:b2: aa:d7:63:1b -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgIUKuOlYajyvNxCHvyKYZU2ThW+fk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE0QzM0RTcwMkQ2QjNDNzhEQjZBRDBDOEI2QTEyQTRG NkM5NjJGMjAeFw0yNTAyMTQyMDM3NDBaFw0yNjAyMTMyMDQyNDBaMDMxMTAvBgNV BAMTKDQ1NERFN0QyNDBENEYxRDA2QTRFQjM5QUQ4QjQzMzJEOUMyNkIzOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcsaJO7H/pmZo2tNbIVz170j94 Rew+d5UfAhL1tsMGyRFxfyDc+d+BLpH4J+u3Hlqp/ot2Gmmp+0XWOo37DqUzNRos TwtvSRg7BNUDUDLBCkegC4NpieQ4Sh6xMocMyRZoKzf1kVNEDEak7jw7aA8DMi/b 3MwYqqMzllvpGOzg9Ck8HPts3oA8cdRQ2f7xzlPiqq/Wqn7Rrixy61E1mD8sCino KL4d9yeygh6RakXq5gwpelg8RCyMZsuhnq9VufkiG8l4f6ylzFtVPc0/JWpjDYuK nnJeeSKqsl4bqOHSrXGS1TlCwIWQtzqsobCqgdddVMm0Fewv0Cq4CgLnA5JfAgMB AAGjggJSMIICTjAdBgNVHQ4EFgQURU3n0kDU8dBqTrOa2LQzLZwms48wHwYDVR0j BBgwFoAUEUw05wLWs8eNtq0Mi2oSpPbJYvIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1FWWGY0aHhHRmNtWXR5NEg2NjhlV3JxdWdnOFZya0Qzc0RBSDlxcFBv eFgvMS8xMTRDMzRFNzAyRDZCM0M3OERCNkFEMEM4QjZBMTJBNEY2Qzk2MkYyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzExNEMzNEU3MDJENkIzQzc4 REI2QUQwQzhCNkExMkE0RjZDOTYyRjIuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNRVlhmNGh4R0ZjbVl0eTRINjY4ZVdycXVnZzhWcmtEM3NEQUg5cXBQb3hYLzEv MzIzODMwMzQzYTM4MzUzNDYzM2EzYTJmMzMzMjJkMzEzMjM4MjAzZDNlMjAzMjM3 MzIzNTM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUH AQcBAf8EETAPMA0EAgACMAcDBQAoBIVMMA0GCSqGSIb3DQEBCwUAA4IBAQCYHpm3 413RuYG6JC2CPLHDf5MS5BaoyqX1XFBGmXmBaNPYuVTRo7tD4tgBV2lrgexrmQPd ctjhDYYFixHbkNkWeipNnvqSwGIR2toOQQz9EbPdEynKhw1j1WGG7kYm9vi1GE54 YIhw89prDFCmccfVbkfq3D8kDmoG0C50Yi2o/1P2mblt3uVZaHAcHAU7Z2+lNpAZ Ja/C4ntGxTiIDBorLyvybM9GtlL7smbn4j3PJ8gvJ8KpMPS07Hy4Qo6KA+Rp/QW0 OrBOP8CNQgAjy9NbsEdqyKEpAV7N9KiaqWTbhs7/4dCg/DPnWiOw7qLpJsA/vFlS q35bmtH+FbKq12Mb -----END CERTIFICATE-----Generated at Sun Apr 13 02:07:34 2025 by rpki-client