$ rpki-client -vvf rpki-repo.registro.br/repo/79nHiD4ipzr73U8L5SQHMaKRBkS1Gs5ahA4ct9RC3w8A/0/323830343a343138633a633030303a3a2f33342d3334203d3e20323637343430.roa File: 323830343a343138633a633030303a3a2f33342d3334203d3e20323637343430.roa (raw, json) Hash identifier: tkgFwH1N0oLwAFciYknMgYrhFdDW9K1fXNAIfURE3BQ= Subject key identifier: 70:C3:94:2A:58:BF:7E:DB:43:5A:2F:24:99:47:7B:FD:18:9E:96:B9 Certificate issuer: /CN=683528643A65F1188AB7E1EF5CB5E716A5A13959 Certificate serial: 65A71EB39EE670CD0F046935B20402C1FC2571E9 Authority key identifier: 68:35:28:64:3A:65:F1:18:8A:B7:E1:EF:5C:B5:E7:16:A5:A1:39:59 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/683528643A65F1188AB7E1EF5CB5E716A5A13959.cer Subject info access: rsync://rpki-repo.registro.br/repo/79nHiD4ipzr73U8L5SQHMaKRBkS1Gs5ahA4ct9RC3w8A/0/323830343a343138633a633030303a3a2f33342d3334203d3e20323637343430.roa Signing time: Mon 20 Jan 2025 14:46:22 +0000 ROA not before: Mon 20 Jan 2025 14:41:22 +0000 ROA not after: Mon 19 Jan 2026 14:46:22 +0000 asID: 267440 IP address blocks: 2804:418c:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/79nHiD4ipzr73U8L5SQHMaKRBkS1Gs5ahA4ct9RC3w8A/0/683528643A65F1188AB7E1EF5CB5E716A5A13959.crl rsync://rpki-repo.registro.br/repo/79nHiD4ipzr73U8L5SQHMaKRBkS1Gs5ahA4ct9RC3w8A/0/683528643A65F1188AB7E1EF5CB5E716A5A13959.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/683528643A65F1188AB7E1EF5CB5E716A5A13959.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 24 Apr 2025 01:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:a7:1e:b3:9e:e6:70:cd:0f:04:69:35:b2:04:02:c1:fc:25:71:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=683528643A65F1188AB7E1EF5CB5E716A5A13959 Validity Not Before: Jan 20 14:41:22 2025 GMT Not After : Jan 19 14:46:22 2026 GMT Subject: CN=70C3942A58BF7EDB435A2F2499477BFD189E96B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cb:7b:e4:d2:a0:d0:3c:56:88:05:9e:bc:ff: 81:a1:37:ef:c2:9e:bf:fc:23:13:6e:3d:8c:17:23: 03:9d:2c:32:a3:3e:62:50:d8:4f:40:f8:2e:79:69: f2:34:56:0b:ba:77:4c:e1:7a:2e:72:a1:c7:bf:35: 9f:5e:9b:ac:91:18:b4:5f:0a:0f:71:13:58:3f:86: 4f:97:e7:7a:68:aa:2d:86:77:62:29:22:cc:38:90: 4d:06:c8:98:55:0f:93:ee:75:f8:4b:8b:c9:db:77: a0:bc:a9:48:d2:d7:2b:26:40:19:f0:d6:d7:4d:bf: 51:1d:1e:3a:50:7a:82:1b:54:98:04:cd:c5:3e:dd: 7e:4b:bd:26:e7:08:56:90:6b:7f:e7:c4:69:cb:11: b4:1f:f9:83:b5:44:e4:8f:cb:aa:55:db:a4:72:47: c0:7c:a2:94:76:f7:0f:1d:50:1d:fb:39:8d:32:00: d3:83:3f:5f:76:49:20:c9:18:37:df:70:53:aa:65: 81:13:64:49:ec:b3:6a:a6:3a:d3:c0:bc:21:6d:4f: d8:5c:67:f9:ce:47:ac:d1:a0:81:63:c0:9b:21:b0: e7:7d:fd:57:5d:8a:b8:15:f2:f0:98:31:10:d9:dd: 73:e9:8d:2e:93:25:66:9b:d8:48:ff:58:3a:80:de: 19:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C3:94:2A:58:BF:7E:DB:43:5A:2F:24:99:47:7B:FD:18:9E:96:B9 X509v3 Authority Key Identifier: keyid:68:35:28:64:3A:65:F1:18:8A:B7:E1:EF:5C:B5:E7:16:A5:A1:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/79nHiD4ipzr73U8L5SQHMaKRBkS1Gs5ahA4ct9RC3w8A/0/683528643A65F1188AB7E1EF5CB5E716A5A13959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/683528643A65F1188AB7E1EF5CB5E716A5A13959.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/79nHiD4ipzr73U8L5SQHMaKRBkS1Gs5ahA4ct9RC3w8A/0/323830343a343138633a633030303a3a2f33342d3334203d3e20323637343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:418c:c000::/34 Signature Algorithm: sha256WithRSAEncryption b6:aa:ae:19:4f:92:d1:e5:11:91:86:66:ca:16:33:a4:6b:37: 02:ed:fc:e3:2e:96:51:96:fc:38:77:a1:7c:e3:4d:17:a7:de: c7:f1:c4:1d:49:89:b9:95:2a:1d:62:88:01:d4:e0:79:30:17: 82:0f:3a:4a:fe:9c:cf:2a:f6:c6:cc:70:cf:43:29:dd:d8:75: 83:8f:d6:73:94:8f:71:75:31:b0:c3:50:fd:08:ef:66:4e:c4: fe:fa:48:17:22:5b:81:22:5c:5d:9d:c1:5b:cb:8e:a7:51:06: c1:f6:3e:40:f8:d3:f5:3b:de:92:b6:af:78:55:69:d3:1f:7f: 0e:48:cc:43:96:de:5e:b0:d1:31:40:38:e4:e9:ce:7f:d5:95: ab:c1:af:30:32:d7:9e:14:6b:78:b0:40:0b:e5:d6:38:63:d4: 3c:cc:1c:c9:61:b1:11:f3:ad:08:76:e2:39:20:f3:cf:27:02: 27:8c:10:7c:c1:bd:a8:12:fc:9a:8d:c6:3b:d0:bb:98:4c:ab: a0:22:25:0c:a9:a0:74:1b:3e:ac:25:3b:1a:05:98:28:9e:be: cc:55:f3:26:c7:e3:f5:44:cc:b8:b0:ec:64:87:b4:49:be:1a: c6:6e:74:2a:ba:6b:10:53:fd:c3:41:d8:c5:21:7d:92:bd:45: cb:f9:8e:62 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUZaces57mcM0PBGk1sgQCwfwlcekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjgzNTI4NjQzQTY1RjExODhBQjdFMUVGNUNCNUU3MTZB NUExMzk1OTAeFw0yNTAxMjAxNDQxMjJaFw0yNjAxMTkxNDQ2MjJaMDMxMTAvBgNV BAMTKDcwQzM5NDJBNThCRjdFREI0MzVBMkYyNDk5NDc3QkZEMTg5RTk2QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiy3vk0qDQPFaIBZ68/4GhN+/C nr/8IxNuPYwXIwOdLDKjPmJQ2E9A+C55afI0Vgu6d0zhei5yoce/NZ9em6yRGLRf Cg9xE1g/hk+X53poqi2Gd2IpIsw4kE0GyJhVD5PudfhLi8nbd6C8qUjS1ysmQBnw 1tdNv1EdHjpQeoIbVJgEzcU+3X5LvSbnCFaQa3/nxGnLEbQf+YO1ROSPy6pV26Ry R8B8opR29w8dUB37OY0yANODP192SSDJGDffcFOqZYETZEnss2qmOtPAvCFtT9hc Z/nOR6zRoIFjwJshsOd9/VddirgV8vCYMRDZ3XPpjS6TJWab2Ej/WDqA3hl7AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUcMOUKli/fttDWi8kmUd7/RielrkwHwYDVR0j BBgwFoAUaDUoZDpl8RiKt+HvXLXnFqWhOVkwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNzluSGlENGlwenI3M1U4TDVTUUhNYUtSQmtTMUdzNWFoQTRjdDlSQzN3 OEEvMC82ODM1Mjg2NDNBNjVGMTE4OEFCN0UxRUY1Q0I1RTcxNkE1QTEzOTU5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY4MzUyODY0M0E2NUYxMTg4 QUI3RTFFRjVDQjVFNzE2QTVBMTM5NTkuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzc5bkhpRDRpcHpyNzNVOEw1U1FITWFLUkJrUzFHczVhaEE0Y3Q5UkMzdzhBLzAv MzIzODMwMzQzYTM0MzEzODYzM2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzNzM0MzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEQYzAMA0GCSqGSIb3DQEBCwUA A4IBAQC2qq4ZT5LR5RGRhmbKFjOkazcC7fzjLpZRlvw4d6F8400Xp97H8cQdSYm5 lSodYogB1OB5MBeCDzpK/pzPKvbGzHDPQynd2HWDj9ZzlI9xdTGww1D9CO9mTsT+ +kgXIluBIlxdncFby46nUQbB9j5A+NP1O96Stq94VWnTH38OSMxDlt5esNExQDjk 6c5/1ZWrwa8wMteeFGt4sEAL5dY4Y9Q8zBzJYbER860IduI5IPPPJwInjBB8wb2o EvyajcY70LuYTKugIiUMqaB0Gz6sJTsaBZgonr7MVfMmx+P1RMy4sOxkh7RJvhrG bnQqumsQU/3DQdjFIX2SvUXL+Y5i -----END CERTIFICATE-----Generated at Wed Apr 23 05:27:56 2025 by rpki-client