$ rpki-client -vvf rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/323830343a3137303a3a2f33322d3332203d3e203238313331.roa File: 323830343a3137303a3a2f33322d3332203d3e203238313331.roa (raw, json) Hash identifier: 1rGuIDzWKdjZ8sfNRuNpir5rQPE8te1SMicTdAZMSHU= Subject key identifier: EB:42:AF:1F:49:AF:CF:49:A8:94:59:14:83:26:6B:07:69:8F:1D:E4 Certificate issuer: /CN=03981ED1B457034CCBAC00F384454B3A021E294E Certificate serial: 132699D9237EF96CDF196815059278C07B78EEF5 Authority key identifier: 03:98:1E:D1:B4:57:03:4C:CB:AC:00:F3:84:45:4B:3A:02:1E:29:4E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/03981ED1B457034CCBAC00F384454B3A021E294E.cer Subject info access: rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/323830343a3137303a3a2f33322d3332203d3e203238313331.roa Signing time: Thu 06 Mar 2025 03:55:54 +0000 ROA not before: Thu 06 Mar 2025 03:50:54 +0000 ROA not after: Thu 05 Mar 2026 03:55:54 +0000 asID: 28131 IP address blocks: 2804:170::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/03981ED1B457034CCBAC00F384454B3A021E294E.crl rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/03981ED1B457034CCBAC00F384454B3A021E294E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/03981ED1B457034CCBAC00F384454B3A021E294E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 04:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:26:99:d9:23:7e:f9:6c:df:19:68:15:05:92:78:c0:7b:78:ee:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03981ED1B457034CCBAC00F384454B3A021E294E Validity Not Before: Mar 6 03:50:54 2025 GMT Not After : Mar 5 03:55:54 2026 GMT Subject: CN=EB42AF1F49AFCF49A894591483266B07698F1DE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e2:a6:2b:15:86:29:eb:eb:bd:37:bf:2b:44: 2f:b4:e5:de:e2:ad:68:33:39:db:86:cb:ed:e2:bd: 4f:1d:ac:13:f2:1a:fe:0b:ca:30:79:66:9f:4e:26: 6d:5f:e0:88:71:06:d5:1a:3b:9d:71:5d:9d:04:7a: 78:e2:f7:44:ab:df:4f:d1:c2:58:82:fb:73:cc:bc: 47:96:d8:00:3a:31:6e:1d:11:9a:46:ce:37:d8:07: 44:e1:52:94:e3:51:c8:c4:38:e7:8e:56:69:73:27: 12:7c:dc:9b:0c:29:69:74:c9:c7:b2:f8:b5:02:6e: 79:22:7f:bb:31:c6:ed:d5:f5:7a:39:87:33:c6:ca: 2e:33:1c:0a:5c:76:ab:0b:09:74:4f:a6:8e:50:af: d5:e0:35:20:41:19:3a:75:ca:4d:6b:f6:82:11:1b: 8c:40:fc:05:27:d7:b3:9f:27:b9:fd:ca:28:31:c3: 14:ef:6b:ae:a1:fc:62:a7:65:f9:4b:c8:95:65:07: 8f:5d:b6:af:cb:b5:00:a8:2e:ba:15:ed:ce:33:55: 37:c4:a4:8b:47:9b:b1:ff:3a:eb:c5:be:3e:e1:fc: a4:58:59:78:dd:00:21:0b:01:72:a1:d8:92:55:18: eb:87:83:d0:5e:72:e3:1a:99:cd:c6:71:3e:a6:10: 85:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:42:AF:1F:49:AF:CF:49:A8:94:59:14:83:26:6B:07:69:8F:1D:E4 X509v3 Authority Key Identifier: keyid:03:98:1E:D1:B4:57:03:4C:CB:AC:00:F3:84:45:4B:3A:02:1E:29:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/03981ED1B457034CCBAC00F384454B3A021E294E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/03981ED1B457034CCBAC00F384454B3A021E294E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/323830343a3137303a3a2f33322d3332203d3e203238313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:170::/32 Signature Algorithm: sha256WithRSAEncryption 7b:69:7e:2d:c5:5e:87:2d:0a:8a:75:e3:6a:f8:29:f3:01:d7: c9:67:ac:61:5c:f6:78:cb:e5:ef:2f:b8:15:64:d4:28:d6:99: 58:6a:59:88:b9:b0:df:77:18:dd:9d:32:cf:a7:ff:84:46:45: 6d:c7:cf:17:9a:f5:da:4e:79:49:68:b0:76:a2:fd:d2:57:cb: e1:c5:7f:fc:72:bb:80:65:08:e3:53:6a:14:81:fb:42:ad:1f: ca:4a:28:92:7b:f5:1c:ef:90:49:e2:e6:eb:77:95:9f:e0:58: db:06:98:ed:b9:a5:93:26:31:8f:44:07:e9:75:be:e3:8e:e6: 6b:3e:28:2e:86:f5:a0:e0:5a:74:e1:4b:84:e3:09:ae:68:d9: 65:d4:7e:de:77:12:bf:86:9c:fa:4e:8e:ea:8e:cf:8f:a7:60: 68:f5:2a:40:70:4e:9c:84:03:f2:22:1b:48:8a:f7:9a:62:03: 4f:c9:9c:c3:ef:b5:0c:d2:be:3f:5e:84:94:0e:d5:49:1d:95: f0:54:ef:57:33:b0:8c:3d:c8:60:4d:e3:1b:f1:2f:13:af:5f: 57:90:3f:47:23:8a:16:9e:4a:32:cd:8b:ec:67:3b:ca:db:9b: 16:d2:2f:c9:28:79:2b:44:5a:0d:6f:e4:b4:24:56:4e:17:00: 66:10:d7:7e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUEyaZ2SN++WzfGWgVBZJ4wHt47vUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM5ODFFRDFCNDU3MDM0Q0NCQUMwMEYzODQ0NTRCM0Ew MjFFMjk0RTAeFw0yNTAzMDYwMzUwNTRaFw0yNjAzMDUwMzU1NTRaMDMxMTAvBgNV BAMTKEVCNDJBRjFGNDlBRkNGNDlBODk0NTkxNDgzMjY2QjA3Njk4RjFERTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK4qYrFYYp6+u9N78rRC+05d7i rWgzOduGy+3ivU8drBPyGv4LyjB5Zp9OJm1f4IhxBtUaO51xXZ0Eenji90Sr30/R wliC+3PMvEeW2AA6MW4dEZpGzjfYB0ThUpTjUcjEOOeOVmlzJxJ83JsMKWl0ycey +LUCbnkif7sxxu3V9Xo5hzPGyi4zHApcdqsLCXRPpo5Qr9XgNSBBGTp1yk1r9oIR G4xA/AUn17OfJ7n9yigxwxTva66h/GKnZflLyJVlB49dtq/LtQCoLroV7c4zVTfE pItHm7H/OuvFvj7h/KRYWXjdACELAXKh2JJVGOuHg9BecuMamc3GcT6mEIUBAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQU60KvH0mvz0molFkUgyZrB2mPHeQwHwYDVR0j BBgwFoAUA5ge0bRXA0zLrADzhEVLOgIeKU4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNDJrRVF0OEdXR1laa1pKcktEZFpDNmdQemtOOUU4RnRjVGJEOTNnem1Q RFgvMS8wMzk4MUVEMUI0NTcwMzRDQ0JBQzAwRjM4NDQ1NEIzQTAyMUUyOTRFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAzOTgxRUQxQjQ1NzAzNEND QkFDMDBGMzg0NDU0QjNBMDIxRTI5NEUuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzQya0VRdDhHV0dZWmtaSnJLRGRaQzZnUHprTjlFOEZ0Y1RiRDkzZ3ptUERYLzEv MzIzODMwMzQzYTMxMzczMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzgzMTMz MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoBAFwMA0GCSqGSIb3DQEBCwUAA4IBAQB7aX4txV6HLQqK deNq+CnzAdfJZ6xhXPZ4y+XvL7gVZNQo1plYalmIubDfdxjdnTLPp/+ERkVtx88X mvXaTnlJaLB2ov3SV8vhxX/8cruAZQjjU2oUgftCrR/KSiiSe/Uc75BJ4ubrd5Wf 4FjbBpjtuaWTJjGPRAfpdb7jjuZrPiguhvWg4Fp04UuE4wmuaNll1H7edxK/hpz6 To7qjs+Pp2Bo9SpAcE6chAPyIhtIiveaYgNPyZzD77UM0r4/XoSUDtVJHZXwVO9X M7CMPchgTeMb8S8Tr19XkD9HI4oWnkoyzYvsZzvK25sW0i/JKHkrRFoNb+S0JFZO FwBmENd+ -----END CERTIFICATE-----Generated at Sun Apr 6 14:12:24 2025 by rpki-client