$ rpki-client -vvf rpki-repo.registro.br/repo/4BMXt6pXVYueaQZD8qpd1hMEq1RKBGkV3AocBFHRAm8T/1/323830343a346138633a3130303a3a2f34302d3430203d3e20323637323438.roa File: 323830343a346138633a3130303a3a2f34302d3430203d3e20323637323438.roa (raw, json) Hash identifier: V3fffgqCN3ORQOxU//QC0eXQOytJiGD37tPjec0DJ9k= Subject key identifier: B8:5D:78:F7:4C:A9:81:F6:B6:E3:73:C8:6F:17:AC:48:87:FC:D0:8A Certificate issuer: /CN=481B24AC6523E8C3FCCEDE9FC8B8A74CC2C4E5F9 Certificate serial: 0FDE29D2B97BE06804E9CA807E15177AFE477552 Authority key identifier: 48:1B:24:AC:65:23:E8:C3:FC:CE:DE:9F:C8:B8:A7:4C:C2:C4:E5:F9 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/481B24AC6523E8C3FCCEDE9FC8B8A74CC2C4E5F9.cer Subject info access: rsync://rpki-repo.registro.br/repo/4BMXt6pXVYueaQZD8qpd1hMEq1RKBGkV3AocBFHRAm8T/1/323830343a346138633a3130303a3a2f34302d3430203d3e20323637323438.roa Signing time: Wed 05 Mar 2025 19:00:00 +0000 ROA not before: Wed 05 Mar 2025 18:55:00 +0000 ROA not after: Wed 04 Mar 2026 19:00:00 +0000 asID: 267248 IP address blocks: 2804:4a8c:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4BMXt6pXVYueaQZD8qpd1hMEq1RKBGkV3AocBFHRAm8T/1/481B24AC6523E8C3FCCEDE9FC8B8A74CC2C4E5F9.crl rsync://rpki-repo.registro.br/repo/4BMXt6pXVYueaQZD8qpd1hMEq1RKBGkV3AocBFHRAm8T/1/481B24AC6523E8C3FCCEDE9FC8B8A74CC2C4E5F9.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/481B24AC6523E8C3FCCEDE9FC8B8A74CC2C4E5F9.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 14 Apr 2025 04:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:de:29:d2:b9:7b:e0:68:04:e9:ca:80:7e:15:17:7a:fe:47:75:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=481B24AC6523E8C3FCCEDE9FC8B8A74CC2C4E5F9 Validity Not Before: Mar 5 18:55:00 2025 GMT Not After : Mar 4 19:00:00 2026 GMT Subject: CN=B85D78F74CA981F6B6E373C86F17AC4887FCD08A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e3:2c:f2:10:b2:36:c9:ed:6d:f6:18:fd:b2: 2f:b6:5a:e1:b2:d7:20:d3:09:3b:4e:8f:dd:3d:24: 4e:cc:f2:15:e7:b6:4a:08:57:7f:21:70:1a:02:68: c3:91:ce:dc:55:f2:1d:b0:1f:28:47:32:96:39:58: eb:f7:59:5b:22:01:2a:c5:4c:61:53:3a:9d:bf:28: 03:e8:31:54:ca:2a:4d:96:0a:15:ed:69:07:11:58: d1:b8:13:32:e8:54:2f:95:9a:1c:c4:aa:55:8e:50: 2a:6b:45:92:df:fd:24:58:77:51:97:f2:e7:ae:c2: ef:51:35:14:94:26:2f:08:c3:48:89:c0:7b:62:61: ad:1e:cd:98:23:1a:ab:4d:df:51:35:62:63:5a:e9: b8:8d:dc:5f:65:42:34:62:56:36:46:0b:0f:c3:d1: 80:52:c7:ea:80:a9:b6:31:92:a5:36:14:ef:90:58: 18:2d:58:f8:15:ee:c1:f5:e4:ca:19:0c:c5:02:4c: bc:44:b8:20:ff:5a:b1:76:13:41:dc:86:7e:fa:aa: 85:6d:33:7c:e7:4b:dc:d3:5d:c6:f7:c7:af:ed:6a: 2e:83:3f:e5:26:41:2d:c7:ba:9c:54:95:c8:aa:93: 9e:e6:28:e0:e9:37:ad:3f:7e:fe:95:03:32:76:45: 7e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:5D:78:F7:4C:A9:81:F6:B6:E3:73:C8:6F:17:AC:48:87:FC:D0:8A X509v3 Authority Key Identifier: keyid:48:1B:24:AC:65:23:E8:C3:FC:CE:DE:9F:C8:B8:A7:4C:C2:C4:E5:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4BMXt6pXVYueaQZD8qpd1hMEq1RKBGkV3AocBFHRAm8T/1/481B24AC6523E8C3FCCEDE9FC8B8A74CC2C4E5F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/481B24AC6523E8C3FCCEDE9FC8B8A74CC2C4E5F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4BMXt6pXVYueaQZD8qpd1hMEq1RKBGkV3AocBFHRAm8T/1/323830343a346138633a3130303a3a2f34302d3430203d3e20323637323438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:4a8c:100::/40 Signature Algorithm: sha256WithRSAEncryption 6a:5a:72:10:0e:fa:97:71:64:1b:d9:b9:6c:c2:33:18:a1:21: 40:ff:97:a4:74:06:56:a4:dd:2f:1b:e2:23:00:1d:d9:79:da: fd:32:9a:27:ae:e1:5d:23:c7:ce:3f:45:91:97:bd:d7:5f:41: 8b:d0:9f:52:45:ed:81:5e:69:8d:de:8b:c3:ba:39:f2:d7:6c: b1:73:ef:19:b5:83:79:2d:28:77:c0:1f:72:47:35:4b:5c:50: 75:7c:40:f9:63:46:c3:8d:c6:a0:09:9a:fb:8c:b7:d2:14:fc: 01:69:30:fd:0c:4a:24:69:06:b5:11:18:92:16:bc:94:98:c4: 18:06:71:63:0a:65:7d:ec:55:ec:88:07:25:d2:b4:be:88:4a: 32:d2:ac:a9:11:a8:d7:89:06:d3:54:f8:ff:06:73:79:b9:7a: 16:26:49:2f:8d:7e:c4:f6:14:0a:3a:1c:ad:f4:30:36:69:07: 1c:5e:1b:86:12:a9:53:a6:9e:d9:38:43:35:6c:b1:e5:9f:85: 0f:eb:13:b8:aa:85:a5:d5:53:0d:33:c4:01:15:26:93:b4:5e: ac:8b:87:93:0c:e3:45:cd:a8:d8:af:d3:9d:f9:e7:5a:48:30: 03:96:30:46:b1:b6:19:59:9e:ca:51:c3:0c:b8:2c:7f:9a:fb: 4d:04:aa:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUD94p0rl74GgE6cqAfhUXev5HdVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgxQjI0QUM2NTIzRThDM0ZDQ0VERTlGQzhCOEE3NEND MkM0RTVGOTAeFw0yNTAzMDUxODU1MDBaFw0yNjAzMDQxOTAwMDBaMDMxMTAvBgNV BAMTKEI4NUQ3OEY3NENBOTgxRjZCNkUzNzNDODZGMTdBQzQ4ODdGQ0QwOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK4yzyELI2ye1t9hj9si+2WuGy 1yDTCTtOj909JE7M8hXntkoIV38hcBoCaMORztxV8h2wHyhHMpY5WOv3WVsiASrF TGFTOp2/KAPoMVTKKk2WChXtaQcRWNG4EzLoVC+VmhzEqlWOUCprRZLf/SRYd1GX 8ueuwu9RNRSUJi8Iw0iJwHtiYa0ezZgjGqtN31E1YmNa6biN3F9lQjRiVjZGCw/D 0YBSx+qAqbYxkqU2FO+QWBgtWPgV7sH15MoZDMUCTLxEuCD/WrF2E0Hchn76qoVt M3znS9zTXcb3x6/tai6DP+UmQS3HupxUlciqk57mKODpN60/fv6VAzJ2RX4xAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUuF1490ypgfa243PIbxesSIf80IowHwYDVR0j BBgwFoAUSBskrGUj6MP8zt6fyLinTMLE5fkwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNEJNWHQ2cFhWWXVlYVFaRDhxcGQxaE1FcTFSS0JHa1YzQW9jQkZIUkFt OFQvMS80ODFCMjRBQzY1MjNFOEMzRkNDRURFOUZDOEI4QTc0Q0MyQzRFNUY5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQ4MUIyNEFDNjUyM0U4QzNG Q0NFREU5RkM4QjhBNzRDQzJDNEU1RjkuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRCTVh0NnBYVll1ZWFRWkQ4cXBkMWhNRXExUktCR2tWM0FvY0JGSFJBbThULzEv MzIzODMwMzQzYTM0NjEzODYzM2EzMTMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNl MjAzMjM2MzczMjM0Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYI KwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAoBEqMATANBgkqhkiG9w0BAQsFAAOC AQEAalpyEA76l3FkG9m5bMIzGKEhQP+XpHQGVqTdLxviIwAd2Xna/TKaJ67hXSPH zj9FkZe9119Bi9CfUkXtgV5pjd6Lw7o58tdssXPvGbWDeS0od8Afckc1S1xQdXxA +WNGw43GoAma+4y30hT8AWkw/QxKJGkGtREYkha8lJjEGAZxYwplfexV7IgHJdK0 vohKMtKsqRGo14kG01T4/wZzebl6FiZJL41+xPYUCjocrfQwNmkHHF4bhhKpU6ae 2ThDNWyx5Z+FD+sTuKqFpdVTDTPEARUmk7RerIuHkwzjRc2o2K/TnfnnWkgwA5Yw RrG2GVmeylHDDLgsf5r7TQSqDA== -----END CERTIFICATE-----Generated at Sun Apr 13 18:29:44 2025 by rpki-client