$ rpki-client -vvf rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/323830343a316230343a3a2f33322d3438203d3e203533303438.roa File: 323830343a316230343a3a2f33322d3438203d3e203533303438.roa (raw, json) Hash identifier: Yr4E9+z/5F0guiJtesfecuSMeOMmf9ndDDz5FFFAij8= Subject key identifier: D9:96:C1:63:97:57:7D:92:ED:AD:99:84:26:A8:DD:47:3D:69:49:EC Certificate issuer: /CN=A910E04F27510FFF1E8362052070412C903FFD8B Certificate serial: 44A1A38D4193035BEE4AEF27D5A04BC8560FE8BB Authority key identifier: A9:10:E0:4F:27:51:0F:FF:1E:83:62:05:20:70:41:2C:90:3F:FD:8B Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A910E04F27510FFF1E8362052070412C903FFD8B.cer Subject info access: rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/323830343a316230343a3a2f33322d3438203d3e203533303438.roa Signing time: Fri 31 Jan 2025 12:51:59 +0000 ROA not before: Fri 31 Jan 2025 12:46:59 +0000 ROA not after: Fri 30 Jan 2026 12:51:59 +0000 asID: 53048 IP address blocks: 2804:1b04::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/A910E04F27510FFF1E8362052070412C903FFD8B.crl rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/A910E04F27510FFF1E8362052070412C903FFD8B.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A910E04F27510FFF1E8362052070412C903FFD8B.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Feb 2025 08:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:a1:a3:8d:41:93:03:5b:ee:4a:ef:27:d5:a0:4b:c8:56:0f:e8:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A910E04F27510FFF1E8362052070412C903FFD8B Validity Not Before: Jan 31 12:46:59 2025 GMT Not After : Jan 30 12:51:59 2026 GMT Subject: CN=D996C16397577D92EDAD998426A8DD473D6949EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a1:3b:a7:aa:60:8a:54:01:99:32:d4:ac:44: e4:9d:25:43:59:d1:a3:52:15:fd:ec:ae:e5:b4:03: 16:ca:43:0f:1d:96:c5:dc:2c:8b:3c:5d:dd:c4:1a: 6e:97:93:7f:3e:cb:62:e8:34:38:c2:69:96:65:59: 4e:1c:34:72:b8:3a:f6:ee:8a:3d:9d:19:c2:09:ab: a7:8a:f9:2b:64:83:18:80:c9:8e:e6:2f:b5:d8:48: 8c:47:d5:91:73:36:6c:91:56:e5:51:d2:05:03:61: a4:79:6b:69:b6:61:2b:3e:b9:20:ab:6f:98:8b:19: e2:32:d8:b8:88:e8:14:e1:1c:bd:61:4d:a3:d7:c4: 75:b7:1f:98:0a:30:e6:ad:4c:69:b2:31:c7:26:4f: a1:ca:2b:a9:40:77:c0:86:79:31:8a:3b:49:f5:c5: 38:a9:9d:e0:ae:78:be:6b:51:56:6c:6a:ae:21:3b: b3:35:e9:4c:77:6c:99:ad:9b:b1:bc:de:c6:d7:f3: 69:0f:f9:68:97:bb:d4:5e:10:8c:55:b6:a2:9c:3c: 5a:db:aa:7a:35:74:fb:34:c6:7f:f7:d8:11:81:ab: 88:20:af:19:67:cb:8a:d0:05:01:bb:c6:97:5a:07: c2:f8:ae:1b:6e:e6:dc:1a:f9:65:5e:f6:96:2b:9a: 55:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:96:C1:63:97:57:7D:92:ED:AD:99:84:26:A8:DD:47:3D:69:49:EC X509v3 Authority Key Identifier: keyid:A9:10:E0:4F:27:51:0F:FF:1E:83:62:05:20:70:41:2C:90:3F:FD:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/A910E04F27510FFF1E8362052070412C903FFD8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A910E04F27510FFF1E8362052070412C903FFD8B.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/323830343a316230343a3a2f33322d3438203d3e203533303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:1b04::/32 Signature Algorithm: sha256WithRSAEncryption 2f:c5:d4:72:06:f8:90:d6:aa:b3:06:ed:c1:1c:89:14:c6:19: 04:46:f0:f1:20:b9:e3:ef:4e:30:2c:e6:b5:ee:c4:f1:fe:53: 8e:02:8c:7e:ec:cc:f4:fe:b9:7c:12:4f:59:01:4b:a6:ed:8d: c6:b9:8d:5f:ce:8c:a9:c0:0c:22:03:49:52:2d:98:48:99:0a: 82:bc:b8:9b:91:e2:88:e7:2f:60:42:d1:63:bd:43:94:c8:d1: 7f:a2:d9:bc:01:63:67:58:11:cb:0f:d9:e1:2e:8a:d2:72:26: b8:a5:20:4b:1b:26:eb:65:98:4f:43:a3:45:16:95:69:dc:05: f6:2a:4f:5a:f3:a2:ab:b5:ef:ea:4b:a8:06:3e:a8:b8:ce:41: 48:62:e4:22:02:d7:28:53:09:0e:73:b5:79:76:cf:07:cc:0c: 0e:86:93:3a:f5:76:06:65:29:0a:d8:21:df:36:b7:40:7e:f5: f1:35:29:26:91:09:f8:7e:22:a0:d4:0d:75:16:40:96:23:5f: c1:2f:08:87:20:cc:d1:9f:16:23:2d:cb:de:18:22:c3:02:09: be:0d:1c:2e:32:48:19:bd:f4:18:88:8f:c5:67:bd:6e:cd:cf: a2:95:2e:30:2b:ce:db:13:28:d9:a8:0c:54:de:ef:75:6a:0e: 5c:6b:99:69 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIURKGjjUGTA1vuSu8n1aBLyFYP6LswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMEUwNEYyNzUxMEZGRjFFODM2MjA1MjA3MDQxMkM5 MDNGRkQ4QjAeFw0yNTAxMzExMjQ2NTlaFw0yNjAxMzAxMjUxNTlaMDMxMTAvBgNV BAMTKEQ5OTZDMTYzOTc1NzdEOTJFREFEOTk4NDI2QThERDQ3M0Q2OTQ5RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdoTunqmCKVAGZMtSsROSdJUNZ 0aNSFf3sruW0AxbKQw8dlsXcLIs8Xd3EGm6Xk38+y2LoNDjCaZZlWU4cNHK4Ovbu ij2dGcIJq6eK+StkgxiAyY7mL7XYSIxH1ZFzNmyRVuVR0gUDYaR5a2m2YSs+uSCr b5iLGeIy2LiI6BThHL1hTaPXxHW3H5gKMOatTGmyMccmT6HKK6lAd8CGeTGKO0n1 xTipneCueL5rUVZsaq4hO7M16Ux3bJmtm7G83sbX82kP+WiXu9ReEIxVtqKcPFrb qno1dPs0xn/32BGBq4ggrxlny4rQBQG7xpdaB8L4rhtu5twa+WVe9pYrmlXHAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQU2ZbBY5dXfZLtrZmEJqjdRz1pSewwHwYDVR0j BBgwFoAUqRDgTydRD/8eg2IFIHBBLJA//YswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1g1dWZ4Mm5yUkNrdjdzZVlxdVBHZTFjSFVTcGpZMVZZVm9SNEJnTkNF QWkvMC9BOTEwRTA0RjI3NTEwRkZGMUU4MzYyMDUyMDcwNDEyQzkwM0ZGRDhCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E5MTBFMDRGMjc1MTBGRkYx RTgzNjIwNTIwNzA0MTJDOTAzRkZEOEIuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNYNXVmeDJuclJDa3Y3c2VZcXVQR2UxY0hVU3BqWTFWWVZvUjRCZ05DRUFpLzAv MzIzODMwMzQzYTMxNjIzMDM0M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzUzMzMw MzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACgEGwQwDQYJKoZIhvcNAQELBQADggEBAC/F1HIG+JDW qrMG7cEciRTGGQRG8PEguePvTjAs5rXuxPH+U44CjH7szPT+uXwST1kBS6btjca5 jV/OjKnADCIDSVItmEiZCoK8uJuR4ojnL2BC0WO9Q5TI0X+i2bwBY2dYEcsP2eEu itJyJrilIEsbJutlmE9Do0UWlWncBfYqT1rzoqu17+pLqAY+qLjOQUhi5CIC1yhT CQ5ztXl2zwfMDA6Gkzr1dgZlKQrYId82t0B+9fE1KSaRCfh+IqDUDXUWQJYjX8Ev CIcgzNGfFiMty94YIsMCCb4NHC4ySBm99BiIj8VnvW7Nz6KVLjArztsTKNmoDFTe 73VqDlxrmWk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:17:58 2025 by rpki-client