$ rpki-client -vvf rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/323830343a313139343a663030303a3a2f34362d313238203d3e20323633343234.roa File: 323830343a313139343a663030303a3a2f34362d313238203d3e20323633343234.roa (raw, json) Hash identifier: 8Bv66QOjRrtLuOChGjtPQW+N4sMzXiza2xWgiOXp6dE= Subject key identifier: 56:27:A4:B7:D1:46:74:F3:6B:28:2C:73:00:4C:08:2C:22:72:36:78 Certificate issuer: /CN=695A28FC133EB5408B9BA126D9FFE20884EDECD2 Certificate serial: 3DF6C71C4D208BED16ADC8E7308367C4A1AC00CA Authority key identifier: 69:5A:28:FC:13:3E:B5:40:8B:9B:A1:26:D9:FF:E2:08:84:ED:EC:D2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/695A28FC133EB5408B9BA126D9FFE20884EDECD2.cer Subject info access: rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/323830343a313139343a663030303a3a2f34362d313238203d3e20323633343234.roa Signing time: Wed 26 Mar 2025 11:43:37 +0000 ROA not before: Wed 26 Mar 2025 11:38:37 +0000 ROA not after: Wed 25 Mar 2026 11:43:37 +0000 asID: 263424 IP address blocks: 2804:1194:f000::/46 maxlen: 128 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/695A28FC133EB5408B9BA126D9FFE20884EDECD2.crl rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/695A28FC133EB5408B9BA126D9FFE20884EDECD2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/695A28FC133EB5408B9BA126D9FFE20884EDECD2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 19:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:f6:c7:1c:4d:20:8b:ed:16:ad:c8:e7:30:83:67:c4:a1:ac:00:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=695A28FC133EB5408B9BA126D9FFE20884EDECD2 Validity Not Before: Mar 26 11:38:37 2025 GMT Not After : Mar 25 11:43:37 2026 GMT Subject: CN=5627A4B7D14674F36B282C73004C082C22723678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:00:9c:87:cb:4c:8f:c4:88:d9:62:7f:a3:82: de:a9:8a:ff:d3:3a:8e:4c:f4:3e:aa:92:6a:b6:8f: 9d:ba:23:fe:2e:c4:9c:92:e6:07:1c:3e:06:cc:45: 36:9a:1e:d3:91:ce:5a:45:39:be:07:ac:1e:e8:b1: 1f:63:d4:c8:c2:0a:9f:e9:45:e7:4e:7e:1c:84:07: 0f:a1:c0:90:f4:b6:81:4f:b0:b9:b6:98:77:2d:0c: 0a:57:56:60:fc:91:ba:b6:1a:88:1a:cb:e5:e5:f9: a6:c2:a7:bf:0e:71:c7:22:3f:99:ad:fe:a8:fd:47: 8a:6b:36:34:30:c6:43:8b:61:ee:0e:b8:21:22:88: 20:b4:7a:f2:f3:1e:cd:5a:93:6e:61:21:8c:ad:49: 44:88:94:75:df:7e:3b:3d:3c:a0:02:73:7c:cd:3c: d5:45:e7:8b:bb:8b:97:66:7d:5e:9c:fb:2d:67:f9: 20:01:a8:aa:2c:9f:2f:1a:5d:dc:d6:ec:c0:a4:2c: 0a:24:27:3b:63:86:46:12:df:aa:7b:94:7a:e7:3b: f7:51:d5:54:6b:75:6c:7f:f2:bb:00:dc:7e:0e:6f: ed:d9:2b:fb:cb:fa:7e:05:d6:0e:51:dc:7b:2c:00: f3:a2:fa:87:39:96:de:e7:9b:42:f1:16:8b:3d:74: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:27:A4:B7:D1:46:74:F3:6B:28:2C:73:00:4C:08:2C:22:72:36:78 X509v3 Authority Key Identifier: keyid:69:5A:28:FC:13:3E:B5:40:8B:9B:A1:26:D9:FF:E2:08:84:ED:EC:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/695A28FC133EB5408B9BA126D9FFE20884EDECD2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/695A28FC133EB5408B9BA126D9FFE20884EDECD2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/323830343a313139343a663030303a3a2f34362d313238203d3e20323633343234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:1194:f000::/46 Signature Algorithm: sha256WithRSAEncryption 88:5b:88:f7:20:ab:05:23:a9:df:3d:ed:51:46:57:c1:ab:dd: ff:2b:3a:ee:36:3e:0b:c6:33:ec:a1:2e:04:4f:28:48:f8:77: 8f:05:b7:a1:2e:f6:c8:bd:b5:ea:ae:43:84:18:c8:40:a2:b6: c7:75:53:2a:93:74:39:07:b2:f9:4d:0f:ad:0c:7e:2d:42:2a: 16:25:9a:3e:40:a6:96:b5:86:f2:fc:c3:37:20:4f:9a:b3:b3: 19:63:47:5c:48:d6:5a:34:ac:72:30:60:a3:bc:45:16:9d:32: e9:54:f8:78:ca:8a:82:56:b1:f0:ba:d7:8b:3f:0b:73:1d:8c: c2:cb:75:c1:3f:a8:37:36:4e:ee:30:b8:ca:9b:b4:48:e8:fd: 9c:e8:3d:60:c2:cf:f2:17:cd:b7:ae:01:7f:b5:fe:dd:04:14: 73:9a:26:03:42:77:7b:51:67:44:69:0b:af:cc:d2:29:06:b8: 12:71:0d:3b:78:d7:e5:64:13:b1:d0:7a:cb:13:73:1b:e0:8e: f0:5f:40:cb:48:c5:f8:4b:ee:f9:18:06:55:e3:07:65:43:d2: 09:84:b5:e8:19:6b:5e:38:33:3b:66:59:87:8e:24:cf:fb:47: 6e:f1:f0:c0:c1:6f:55:c1:40:56:ae:46:59:b6:31:8a:24:77: e9:05:f2:bb -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUPfbHHE0gi+0WrcjnMINnxKGsAMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk1QTI4RkMxMzNFQjU0MDhCOUJBMTI2RDlGRkUyMDg4 NEVERUNEMjAeFw0yNTAzMjYxMTM4MzdaFw0yNjAzMjUxMTQzMzdaMDMxMTAvBgNV BAMTKDU2MjdBNEI3RDE0Njc0RjM2QjI4MkM3MzAwNEMwODJDMjI3MjM2NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0AJyHy0yPxIjZYn+jgt6piv/T Oo5M9D6qkmq2j526I/4uxJyS5gccPgbMRTaaHtORzlpFOb4HrB7osR9j1MjCCp/p RedOfhyEBw+hwJD0toFPsLm2mHctDApXVmD8kbq2Gogay+Xl+abCp78OccciP5mt /qj9R4prNjQwxkOLYe4OuCEiiCC0evLzHs1ak25hIYytSUSIlHXffjs9PKACc3zN PNVF54u7i5dmfV6c+y1n+SABqKosny8aXdzW7MCkLAokJztjhkYS36p7lHrnO/dR 1VRrdWx/8rsA3H4Ob+3ZK/vL+n4F1g5R3HssAPOi+oc5lt7nm0LxFos9dBm5AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUViekt9FGdPNrKCxzAEwILCJyNngwHwYDVR0j BBgwFoAUaVoo/BM+tUCLm6Em2f/iCITt7NIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNUhFWVJMOHlrV3hBNWFNMnZqbjdqWTI1WHYzYnF2bXk5dGlnRkJOcVJr TjgvMi82OTVBMjhGQzEzM0VCNTQwOEI5QkExMjZEOUZGRTIwODg0RURFQ0QyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY5NUEyOEZDMTMzRUI1NDA4 QjlCQTEyNkQ5RkZFMjA4ODRFREVDRDIuY2VyMIG4BggrBgEFBQcBCwSBqzCBqDCB pQYIKwYBBQUHMAuGgZhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzVIRVlSTDh5a1d4QTVhTTJ2am43alkyNVh2M2Jxdm15OXRpZ0ZCTnFSa044LzIv MzIzODMwMzQzYTMxMzEzOTM0M2E2NjMwMzAzMDNhM2EyZjM0MzYyZDMxMzIzODIw M2QzZTIwMzIzNjMzMzQzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCKAQRlPAAMA0GCSqGSIb3DQEB CwUAA4IBAQCIW4j3IKsFI6nfPe1RRlfBq93/KzruNj4LxjPsoS4ETyhI+HePBbeh LvbIvbXqrkOEGMhAorbHdVMqk3Q5B7L5TQ+tDH4tQioWJZo+QKaWtYby/MM3IE+a s7MZY0dcSNZaNKxyMGCjvEUWnTLpVPh4yoqCVrHwuteLPwtzHYzCy3XBP6g3Nk7u MLjKm7RI6P2c6D1gws/yF823rgF/tf7dBBRzmiYDQnd7UWdEaQuvzNIpBrgScQ07 eNflZBOx0HrLE3Mb4I7wX0DLSMX4S+75GAZV4wdlQ9IJhLXoGWteODM7ZlmHjiTP +0du8fDAwW9VwUBWrkZZtjGKJHfpBfK7 -----END CERTIFICATE-----Generated at Wed Apr 9 02:25:43 2025 by rpki-client