$ rpki-client -vvf rpki-repo.registro.br/repo/5x1DBr5uij9rUuc39pJTi2PBYzEiyBjXmZPicKy5AeUM/0/323830343a373066633a383030303a3a2f33332d3333203d3e20323730373630.roa File: 323830343a373066633a383030303a3a2f33332d3333203d3e20323730373630.roa (raw, json) Hash identifier: Cps3VWymUQl+2aAGYWUidl6ngaaR7DTOARje9qkPcTc= Subject key identifier: 16:23:99:49:FA:5E:D2:1C:F8:77:0C:4B:58:D4:86:25:2C:E4:92:A1 Certificate issuer: /CN=5C7EFAB7DE3678425BB38CB274647243463C6597 Certificate serial: 4E66ED30552C64629C326CD825B8DF3D468EB4A5 Authority key identifier: 5C:7E:FA:B7:DE:36:78:42:5B:B3:8C:B2:74:64:72:43:46:3C:65:97 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5C7EFAB7DE3678425BB38CB274647243463C6597.cer Subject info access: rsync://rpki-repo.registro.br/repo/5x1DBr5uij9rUuc39pJTi2PBYzEiyBjXmZPicKy5AeUM/0/323830343a373066633a383030303a3a2f33332d3333203d3e20323730373630.roa Signing time: Wed 15 Jan 2025 14:00:02 +0000 ROA not before: Wed 15 Jan 2025 13:55:02 +0000 ROA not after: Wed 14 Jan 2026 14:00:02 +0000 asID: 270760 IP address blocks: 2804:70fc:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/5x1DBr5uij9rUuc39pJTi2PBYzEiyBjXmZPicKy5AeUM/0/5C7EFAB7DE3678425BB38CB274647243463C6597.crl rsync://rpki-repo.registro.br/repo/5x1DBr5uij9rUuc39pJTi2PBYzEiyBjXmZPicKy5AeUM/0/5C7EFAB7DE3678425BB38CB274647243463C6597.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5C7EFAB7DE3678425BB38CB274647243463C6597.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 10 Apr 2025 09:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:66:ed:30:55:2c:64:62:9c:32:6c:d8:25:b8:df:3d:46:8e:b4:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C7EFAB7DE3678425BB38CB274647243463C6597 Validity Not Before: Jan 15 13:55:02 2025 GMT Not After : Jan 14 14:00:02 2026 GMT Subject: CN=16239949FA5ED21CF8770C4B58D486252CE492A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3c:0e:16:38:7a:13:d8:0e:1e:aa:e1:61:ce: 8f:fe:a7:4b:76:c0:85:7c:6f:b8:28:3d:2c:7c:6e: ef:a0:86:8c:3d:5a:fa:f4:8e:11:0c:69:c5:8b:91: 0c:dd:bc:41:e8:a0:69:69:2a:51:5d:5e:90:03:03: d5:d9:c5:a0:fc:ba:af:ff:9d:e7:93:80:2a:ad:53: 97:d4:14:16:8c:fb:22:f3:3b:37:d3:18:78:d5:e0: a1:4d:50:fc:69:9e:8c:25:69:39:e5:c4:e8:d2:7f: c7:61:8d:19:a6:21:75:e7:1b:39:92:07:b6:39:48: 85:80:1b:aa:d2:27:31:e6:af:5b:29:70:a3:2e:19: c0:30:3f:c9:93:db:b1:ec:e8:b3:d2:9b:c1:3d:2e: 91:93:c4:68:29:4f:55:e1:b7:5f:05:d6:b7:46:f0: 25:07:7c:eb:0d:44:5f:47:e3:a4:f3:02:7a:db:90: 8b:cf:29:03:ea:a5:40:29:77:bf:d5:08:16:94:29: c8:4e:be:aa:91:0e:ef:b3:b6:fa:38:34:ac:24:7c: 10:07:af:03:bf:8c:0b:93:8b:7b:a1:45:28:19:71: f1:44:95:e8:a7:cd:1b:18:aa:34:1a:a7:30:b0:4c: 91:64:20:1b:99:00:97:21:d9:3b:42:bd:51:b7:8f: 85:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:23:99:49:FA:5E:D2:1C:F8:77:0C:4B:58:D4:86:25:2C:E4:92:A1 X509v3 Authority Key Identifier: keyid:5C:7E:FA:B7:DE:36:78:42:5B:B3:8C:B2:74:64:72:43:46:3C:65:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/5x1DBr5uij9rUuc39pJTi2PBYzEiyBjXmZPicKy5AeUM/0/5C7EFAB7DE3678425BB38CB274647243463C6597.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5C7EFAB7DE3678425BB38CB274647243463C6597.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/5x1DBr5uij9rUuc39pJTi2PBYzEiyBjXmZPicKy5AeUM/0/323830343a373066633a383030303a3a2f33332d3333203d3e20323730373630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:70fc:8000::/33 Signature Algorithm: sha256WithRSAEncryption 9c:f6:19:4a:e5:36:b3:17:46:52:15:d0:99:d4:cd:ad:6b:81: 9e:90:28:22:ef:0f:62:6d:cb:39:f6:94:50:9e:d8:eb:6b:3b: 47:63:fe:2d:a3:92:64:51:7e:74:65:84:94:8a:63:09:3b:16: bb:83:70:1b:cd:06:01:d8:12:c4:b2:62:d2:c7:f7:4f:6a:ed: 89:d4:41:81:c5:20:d8:56:f8:e8:eb:a0:60:14:e8:f5:09:16: 73:f7:37:32:6c:d4:ad:32:7f:a6:bf:78:ea:57:34:a1:65:0f: 11:05:4d:91:44:8f:a6:6c:80:bd:a9:c4:f5:f2:b3:34:c8:8b: 0e:0b:e3:9e:11:05:a3:59:0a:12:73:bc:6f:5a:d9:fc:41:e9: 86:42:85:76:a1:c7:5c:57:98:b2:07:9f:d3:f3:a4:f4:1a:0a: f8:38:95:af:ab:59:89:80:91:95:12:a0:51:ee:15:61:95:12: d3:22:f4:9e:af:3f:88:53:c3:13:e7:3a:32:36:28:b4:71:5b: ba:f6:23:74:3e:1b:7c:71:17:79:fc:f8:2d:51:79:ec:98:76: fe:89:c9:a7:b5:f3:11:6d:d0:7e:ad:e1:84:77:fc:3e:53:7b: 69:cd:24:bd:47:59:6c:fe:8a:88:e3:ea:af:5e:99:57:f6:dd: df:1b:51:30 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUTmbtMFUsZGKcMmzYJbjfPUaOtKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM3RUZBQjdERTM2Nzg0MjVCQjM4Q0IyNzQ2NDcyNDM0 NjNDNjU5NzAeFw0yNTAxMTUxMzU1MDJaFw0yNjAxMTQxNDAwMDJaMDMxMTAvBgNV BAMTKDE2MjM5OTQ5RkE1RUQyMUNGODc3MEM0QjU4RDQ4NjI1MkNFNDkyQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdPA4WOHoT2A4equFhzo/+p0t2 wIV8b7goPSx8bu+ghow9Wvr0jhEMacWLkQzdvEHooGlpKlFdXpADA9XZxaD8uq// neeTgCqtU5fUFBaM+yLzOzfTGHjV4KFNUPxpnowlaTnlxOjSf8dhjRmmIXXnGzmS B7Y5SIWAG6rSJzHmr1spcKMuGcAwP8mT27Hs6LPSm8E9LpGTxGgpT1Xht18F1rdG 8CUHfOsNRF9H46TzAnrbkIvPKQPqpUApd7/VCBaUKchOvqqRDu+ztvo4NKwkfBAH rwO/jAuTi3uhRSgZcfFEleinzRsYqjQapzCwTJFkIBuZAJch2TtCvVG3j4WnAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUFiOZSfpe0hz4dwxLWNSGJSzkkqEwHwYDVR0j BBgwFoAUXH76t942eEJbs4yydGRyQ0Y8ZZcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNXgxREJyNXVpajlyVXVjMzlwSlRpMlBCWXpFaXlCalhtWlBpY0t5NUFl VU0vMC81QzdFRkFCN0RFMzY3ODQyNUJCMzhDQjI3NDY0NzI0MzQ2M0M2NTk3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVDN0VGQUI3REUzNjc4NDI1 QkIzOENCMjc0NjQ3MjQzNDYzQzY1OTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzV4MURCcjV1aWo5clV1YzM5cEpUaTJQQll6RWl5QmpYbVpQaWNLeTVBZVVNLzAv MzIzODMwMzQzYTM3MzA2NjYzM2EzODMwMzAzMDNhM2EyZjMzMzMyZDMzMzMyMDNk M2UyMDMyMzczMDM3MzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBygEcPyAMA0GCSqGSIb3DQEBCwUA A4IBAQCc9hlK5TazF0ZSFdCZ1M2ta4GekCgi7w9ibcs59pRQntjraztHY/4to5Jk UX50ZYSUimMJOxa7g3AbzQYB2BLEsmLSx/dPau2J1EGBxSDYVvjo66BgFOj1CRZz 9zcybNStMn+mv3jqVzShZQ8RBU2RRI+mbIC9qcT18rM0yIsOC+OeEQWjWQoSc7xv Wtn8QemGQoV2ocdcV5iyB5/T86T0Ggr4OJWvq1mJgJGVEqBR7hVhlRLTIvSerz+I U8MT5zoyNii0cVu69iN0Pht8cRd5/PgtUXnsmHb+icmntfMRbdB+reGEd/w+U3tp zSS9R1ls/oqI4+qvXplX9t3fG1Ew -----END CERTIFICATE-----Generated at Wed Apr 9 13:34:15 2025 by rpki-client