$ rpki-client -vvf rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/323830343a326664383a383030303a3a2f33342d3334203d3e20323634393135.roa File: 323830343a326664383a383030303a3a2f33342d3334203d3e20323634393135.roa (raw, json) Hash identifier: Plp+C1RjQ1+JsfdBFgUtdLppXb2qvAKt+MNhIUkHz80= Subject key identifier: DB:16:3D:88:F3:E7:78:0E:46:0E:02:2D:3A:8D:32:79:A4:BF:85:E8 Certificate issuer: /CN=DC28C5A2EA1E56495AA966FB1984C7F3064FDA1D Certificate serial: 64D814D48B66C9882EDFFCEBE031239F30308923 Authority key identifier: DC:28:C5:A2:EA:1E:56:49:5A:A9:66:FB:19:84:C7:F3:06:4F:DA:1D Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DC28C5A2EA1E56495AA966FB1984C7F3064FDA1D.cer Subject info access: rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/323830343a326664383a383030303a3a2f33342d3334203d3e20323634393135.roa Signing time: Thu 13 Mar 2025 18:14:20 +0000 ROA not before: Thu 13 Mar 2025 18:09:20 +0000 ROA not after: Thu 12 Mar 2026 18:14:20 +0000 asID: 264915 IP address blocks: 2804:2fd8:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/DC28C5A2EA1E56495AA966FB1984C7F3064FDA1D.crl rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/DC28C5A2EA1E56495AA966FB1984C7F3064FDA1D.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DC28C5A2EA1E56495AA966FB1984C7F3064FDA1D.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 20:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:d8:14:d4:8b:66:c9:88:2e:df:fc:eb:e0:31:23:9f:30:30:89:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC28C5A2EA1E56495AA966FB1984C7F3064FDA1D Validity Not Before: Mar 13 18:09:20 2025 GMT Not After : Mar 12 18:14:20 2026 GMT Subject: CN=DB163D88F3E7780E460E022D3A8D3279A4BF85E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c9:9a:cf:3e:9f:64:36:c9:ca:79:30:3c:ef: 04:74:78:98:f7:8b:ab:4b:68:2f:a9:71:fc:7a:39: db:6f:1b:78:fd:f9:8e:3d:f1:89:09:92:9e:d6:29: 86:11:e4:35:7e:80:c1:d3:0c:58:2f:4e:9b:74:53: 58:52:ab:a0:91:0f:9c:27:a0:86:82:c9:7b:17:d7: e7:9d:36:68:ce:73:d3:b6:9e:91:a7:7e:ff:8b:e0: b8:11:3d:94:30:68:82:05:2e:e4:f1:54:35:b3:2c: 90:08:b7:99:11:47:e3:35:7d:3e:85:18:5f:dc:39: 5f:df:ac:8e:df:8b:f9:f8:4d:94:77:19:b9:55:8a: 03:af:58:90:7a:31:4a:19:20:c2:5e:5d:04:d3:9e: 82:bf:8d:07:b4:0e:8c:ab:97:70:95:da:98:12:38: 72:30:7b:85:e4:89:3b:48:f4:17:c7:56:e5:31:37: 29:78:b5:de:82:42:8e:a9:c3:0c:01:07:30:55:c7: 22:62:74:f6:20:92:98:01:7f:c3:7f:c1:ab:57:dc: 93:dc:d1:70:ef:41:e0:e5:99:8e:0d:29:a4:eb:6c: ad:8b:5a:f9:61:8f:82:a8:86:89:00:af:ad:69:74: 9d:c8:bf:c8:d9:1c:12:47:7f:33:35:d7:06:44:94: 6c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:16:3D:88:F3:E7:78:0E:46:0E:02:2D:3A:8D:32:79:A4:BF:85:E8 X509v3 Authority Key Identifier: keyid:DC:28:C5:A2:EA:1E:56:49:5A:A9:66:FB:19:84:C7:F3:06:4F:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/DC28C5A2EA1E56495AA966FB1984C7F3064FDA1D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DC28C5A2EA1E56495AA966FB1984C7F3064FDA1D.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/323830343a326664383a383030303a3a2f33342d3334203d3e20323634393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:2fd8:8000::/34 Signature Algorithm: sha256WithRSAEncryption 55:de:cc:0b:3c:e0:27:25:61:d4:15:a8:62:29:5a:d4:97:08: 9d:d4:eb:93:5a:06:cf:5e:24:43:23:50:3d:3e:a4:eb:7e:af: b9:cb:bd:76:2d:96:ab:4e:18:8b:96:7e:81:47:3a:da:73:56: 41:91:d2:f1:35:cc:16:ae:40:ae:5d:0d:26:93:93:3c:51:aa: 60:a0:16:8a:58:a9:34:b6:80:d9:9a:76:77:eb:76:1c:a6:a9: 09:05:a7:62:3b:25:c3:a2:d7:b7:9c:4f:56:95:96:da:58:1a: 96:8b:6a:2b:b3:a6:77:cb:b7:73:94:b4:9c:e8:e5:03:c7:f7: e0:98:4b:ff:f6:e9:bc:52:f4:3e:9f:d0:b2:14:61:a8:b9:2f: 93:fe:07:02:a0:d9:42:4c:64:5f:cc:79:f4:2e:9a:aa:a2:6a: 73:cc:96:ee:e1:a4:83:52:f6:0c:5d:0f:6e:b7:f0:73:63:4c: c4:0a:8a:3c:2a:29:cb:91:f5:ec:dc:f0:e9:f9:c7:7f:77:d2: 01:e1:9b:82:94:77:cf:ae:2f:e3:84:19:d2:5b:5b:77:12:a9: 95:54:fe:7c:a3:cc:04:50:c6:91:64:67:5a:e6:2d:fd:81:b8: f0:73:ca:fa:db:83:50:ad:ec:e8:4f:d4:1f:8f:20:e7:47:0e: fe:41:5e:52 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUZNgU1ItmyYgu3/zr4DEjnzAwiSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMyOEM1QTJFQTFFNTY0OTVBQTk2NkZCMTk4NEM3RjMw NjRGREExRDAeFw0yNTAzMTMxODA5MjBaFw0yNjAzMTIxODE0MjBaMDMxMTAvBgNV BAMTKERCMTYzRDg4RjNFNzc4MEU0NjBFMDIyRDNBOEQzMjc5QTRCRjg1RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYyZrPPp9kNsnKeTA87wR0eJj3 i6tLaC+pcfx6OdtvG3j9+Y498YkJkp7WKYYR5DV+gMHTDFgvTpt0U1hSq6CRD5wn oIaCyXsX1+edNmjOc9O2npGnfv+L4LgRPZQwaIIFLuTxVDWzLJAIt5kRR+M1fT6F GF/cOV/frI7fi/n4TZR3GblVigOvWJB6MUoZIMJeXQTTnoK/jQe0Doyrl3CV2pgS OHIwe4XkiTtI9BfHVuUxNyl4td6CQo6pwwwBBzBVxyJidPYgkpgBf8N/watX3JPc 0XDvQeDlmY4NKaTrbK2LWvlhj4KohokAr61pdJ3Iv8jZHBJHfzM11wZElGyZAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU2xY9iPPneA5GDgItOo0yeaS/hegwHwYDVR0j BBgwFoAU3CjFouoeVklaqWb7GYTH8wZP2h0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNUN6RVI2d0FnUnd2RVRNWmtvcmJxTHhNalhSeWNGTVlMbXBlR0t0Q0s3 a2MvMC9EQzI4QzVBMkVBMUU1NjQ5NUFBOTY2RkIxOTg0QzdGMzA2NEZEQTFELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RDMjhDNUEyRUExRTU2NDk1 QUE5NjZGQjE5ODRDN0YzMDY0RkRBMUQuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzVDekVSNndBZ1J3dkVUTVprb3JicUx4TWpYUnljRk1ZTG1wZUdLdENLN2tjLzAv MzIzODMwMzQzYTMyNjY2NDM4M2EzODMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzNDM5MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEL9iAMA0GCSqGSIb3DQEBCwUA A4IBAQBV3swLPOAnJWHUFahiKVrUlwid1OuTWgbPXiRDI1A9PqTrfq+5y712LZar ThiLln6BRzrac1ZBkdLxNcwWrkCuXQ0mk5M8UapgoBaKWKk0toDZmnZ363YcpqkJ BadiOyXDote3nE9WlZbaWBqWi2ors6Z3y7dzlLSc6OUDx/fgmEv/9um8UvQ+n9Cy FGGouS+T/gcCoNlCTGRfzHn0LpqqompzzJbu4aSDUvYMXQ9ut/BzY0zECoo8KinL kfXs3PDp+cd/d9IB4ZuClHfPri/jhBnSW1t3EqmVVP58o8wEUMaRZGda5i39gbjw c8r624NQrezoT9QfjyDnRw7+QV5S -----END CERTIFICATE-----Generated at Tue Apr 22 12:46:24 2025 by rpki-client