$ rpki-client -vvf rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/323830343a3837633a3a2f33322d3332203d3e203238323032.roa File: 323830343a3837633a3a2f33322d3332203d3e203238323032.roa (raw, json) Hash identifier: lokqxqEkL+QIklGmV2scG3jVfKBKRI+SnjjQo2MO0D8= Subject key identifier: 9C:87:B0:C6:D3:4E:BD:1D:8B:88:84:EC:3E:A1:7C:35:79:7A:A3:77 Certificate issuer: /CN=BE867134DD576AA44DA77A1C5D714DB384FEC083 Certificate serial: 700DC6683D9D3776D0F7EB5EF00E76BD5589958C Authority key identifier: BE:86:71:34:DD:57:6A:A4:4D:A7:7A:1C:5D:71:4D:B3:84:FE:C0:83 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BE867134DD576AA44DA77A1C5D714DB384FEC083.cer Subject info access: rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/323830343a3837633a3a2f33322d3332203d3e203238323032.roa Signing time: Mon 13 Jan 2025 13:32:20 +0000 ROA not before: Mon 13 Jan 2025 13:27:20 +0000 ROA not after: Mon 12 Jan 2026 13:32:20 +0000 asID: 28202 IP address blocks: 2804:87c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/BE867134DD576AA44DA77A1C5D714DB384FEC083.crl rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/BE867134DD576AA44DA77A1C5D714DB384FEC083.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BE867134DD576AA44DA77A1C5D714DB384FEC083.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 22 Feb 2025 04:55:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:0d:c6:68:3d:9d:37:76:d0:f7:eb:5e:f0:0e:76:bd:55:89:95:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE867134DD576AA44DA77A1C5D714DB384FEC083 Validity Not Before: Jan 13 13:27:20 2025 GMT Not After : Jan 12 13:32:20 2026 GMT Subject: CN=9C87B0C6D34EBD1D8B8884EC3EA17C35797AA377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d0:32:2d:7f:4e:fc:66:b8:d4:39:6a:21:cd: 00:63:f8:00:fc:73:1d:09:50:d2:e3:d3:73:99:1f: 32:da:5b:7e:ec:ee:a8:b9:b0:22:3d:96:1e:04:11: 97:be:67:97:2b:ad:bf:43:f3:31:d8:4e:cb:fe:69: 19:72:53:f7:c5:1c:e6:31:b8:c3:a5:1f:fd:d9:ff: 0f:a7:b5:b8:a0:ff:df:4e:f7:19:48:e3:db:5a:04: f0:74:10:f2:23:b7:82:0f:42:22:81:ee:69:5c:42: 6e:9a:80:22:53:86:98:f0:d6:55:c3:0d:c1:22:10: 0a:12:49:38:99:f5:97:95:89:c9:57:55:bc:f4:e7: 76:5e:8b:1a:6e:c0:68:39:83:ea:9a:0f:3a:5d:e2: fe:88:a4:e6:c7:9c:19:b0:79:d9:37:65:bc:31:c9: 01:05:66:f3:34:bb:45:13:e1:87:6e:28:88:71:1a: 65:17:74:0e:a4:35:df:fd:36:36:63:17:06:19:f7: f4:9d:36:f1:88:43:49:a1:09:6a:1f:3e:99:8c:bc: 2a:8a:90:f9:19:c1:55:09:98:21:f3:1b:93:09:b8: 38:c2:9d:d4:f4:d5:f1:3e:ec:f9:2b:52:a0:9d:94: 04:04:c5:76:58:46:6a:ac:f5:e8:75:10:6d:19:e8: e3:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:87:B0:C6:D3:4E:BD:1D:8B:88:84:EC:3E:A1:7C:35:79:7A:A3:77 X509v3 Authority Key Identifier: keyid:BE:86:71:34:DD:57:6A:A4:4D:A7:7A:1C:5D:71:4D:B3:84:FE:C0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/BE867134DD576AA44DA77A1C5D714DB384FEC083.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BE867134DD576AA44DA77A1C5D714DB384FEC083.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/323830343a3837633a3a2f33322d3332203d3e203238323032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:87c::/32 Signature Algorithm: sha256WithRSAEncryption a8:ff:02:25:35:e3:d8:e9:09:73:20:eb:78:07:15:f9:20:a5: 4c:d7:ff:00:bf:09:c7:c2:44:65:6e:42:ec:9d:ae:95:99:e3: e1:95:5c:04:08:e8:87:36:d3:b3:6a:87:eb:46:e8:55:77:b4: 00:e1:e9:5c:50:f5:60:70:b7:29:04:dd:65:2d:f7:5a:d5:62: ea:d4:e1:32:ac:3e:bf:fe:fc:62:3d:9d:ae:cf:9e:f0:23:88: ab:ec:92:6a:dc:07:84:2d:b6:7c:00:19:dd:d6:68:d4:88:33: 6e:c8:8e:18:4b:32:3b:88:ea:c3:e0:a0:d9:78:ad:1b:71:5d: e2:11:8e:34:02:20:2a:eb:79:b6:3e:7e:e2:9f:e9:48:6a:cb: ad:df:7f:20:6c:f3:1b:d1:10:f3:24:2e:40:44:cc:eb:66:ca: 93:e4:0e:74:fb:84:49:ee:bc:38:28:ed:fc:06:5f:d7:e4:dc: 6b:c8:73:d3:f3:6c:1d:d0:b2:77:85:f4:18:84:68:a5:d1:90: 1b:d1:00:6a:7a:e5:a6:36:50:1c:6f:d8:7b:ca:8d:cc:e7:e0: 89:d1:f8:c1:c8:ad:fa:99:23:ec:0a:5c:56:31:42:47:8d:5b: cd:de:ac:09:a9:46:4c:03:20:2d:d4:21:e8:df:5c:9c:7d:5d: 41:2d:a2:5d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUcA3GaD2dN3bQ9+te8A52vVWJlYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU4NjcxMzRERDU3NkFBNDREQTc3QTFDNUQ3MTREQjM4 NEZFQzA4MzAeFw0yNTAxMTMxMzI3MjBaFw0yNjAxMTIxMzMyMjBaMDMxMTAvBgNV BAMTKDlDODdCMEM2RDM0RUJEMUQ4Qjg4ODRFQzNFQTE3QzM1Nzk3QUEzNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs0DItf078ZrjUOWohzQBj+AD8 cx0JUNLj03OZHzLaW37s7qi5sCI9lh4EEZe+Z5crrb9D8zHYTsv+aRlyU/fFHOYx uMOlH/3Z/w+ntbig/99O9xlI49taBPB0EPIjt4IPQiKB7mlcQm6agCJThpjw1lXD DcEiEAoSSTiZ9ZeViclXVbz053ZeixpuwGg5g+qaDzpd4v6IpObHnBmwedk3Zbwx yQEFZvM0u0UT4YduKIhxGmUXdA6kNd/9NjZjFwYZ9/SdNvGIQ0mhCWofPpmMvCqK kPkZwVUJmCHzG5MJuDjCndT01fE+7PkrUqCdlAQExXZYRmqs9eh1EG0Z6OMxAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUnIewxtNOvR2LiITsPqF8NXl6o3cwHwYDVR0j BBgwFoAUvoZxNN1XaqRNp3ocXXFNs4T+wIMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNGRQN05GMUJkM3ZBekdEY2o3dm1RVlc5ZmtyQVE3UHltUDl1eE04Qk1V V00vMC9CRTg2NzEzNERENTc2QUE0NERBNzdBMUM1RDcxNERCMzg0RkVDMDgzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JFODY3MTM0REQ1NzZBQTQ0 REE3N0ExQzVENzE0REIzODRGRUMwODMuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRkUDdORjFCZDN2QXpHRGNqN3ZtUVZXOWZrckFRN1B5bVA5dXhNOEJNVVdNLzAv MzIzODMwMzQzYTM4Mzc2MzNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzgzMjMw MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoBAh8MA0GCSqGSIb3DQEBCwUAA4IBAQCo/wIlNePY6Qlz IOt4BxX5IKVM1/8AvwnHwkRlbkLsna6VmePhlVwECOiHNtOzaofrRuhVd7QA4elc UPVgcLcpBN1lLfda1WLq1OEyrD6//vxiPZ2uz57wI4ir7JJq3AeELbZ8ABnd1mjU iDNuyI4YSzI7iOrD4KDZeK0bcV3iEY40AiAq63m2Pn7in+lIasut338gbPMb0RDz JC5ARMzrZsqT5A50+4RJ7rw4KO38Bl/X5NxryHPT82wd0LJ3hfQYhGil0ZAb0QBq euWmNlAcb9h7yo3M5+CJ0fjByK36mSPsClxWMUJHjVvN3qwJqUZMAyAt1CHo31yc fV1BLaJd -----END CERTIFICATE-----Generated at Fri Feb 21 11:11:48 2025 by rpki-client