$ rpki-client -vvf rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/323830343a313266633a333030303a3a2f34302d3430203d3e20323633353038.roa File: 323830343a313266633a333030303a3a2f34302d3430203d3e20323633353038.roa (raw, json) Hash identifier: 2M1BXFkRz7oBMJiw0H3JA7zTsKKZTLThpbxdrLRSRtE= Subject key identifier: 18:F9:1D:A2:FB:86:C9:BB:CF:DF:3D:26:52:F3:A7:03:38:CD:1D:06 Certificate issuer: /CN=028CDE0E764AA87F51C83E2608B8562B72B4E204 Certificate serial: 762B5547B57E1DE6EA48E8ABB26ACD76AF46B63D Authority key identifier: 02:8C:DE:0E:76:4A:A8:7F:51:C8:3E:26:08:B8:56:2B:72:B4:E2:04 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer Subject info access: rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/323830343a313266633a333030303a3a2f34302d3430203d3e20323633353038.roa Signing time: Thu 27 Feb 2025 15:59:07 +0000 ROA not before: Thu 27 Feb 2025 15:54:07 +0000 ROA not after: Thu 26 Feb 2026 15:59:07 +0000 asID: 263508 IP address blocks: 2804:12fc:3000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.crl rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 02:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:2b:55:47:b5:7e:1d:e6:ea:48:e8:ab:b2:6a:cd:76:af:46:b6:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028CDE0E764AA87F51C83E2608B8562B72B4E204 Validity Not Before: Feb 27 15:54:07 2025 GMT Not After : Feb 26 15:59:07 2026 GMT Subject: CN=18F91DA2FB86C9BBCFDF3D2652F3A70338CD1D06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c9:0a:c6:39:09:a3:d6:0f:2b:7a:d6:86:93: 71:c1:80:9c:c4:8b:be:5a:a2:cb:50:9d:38:11:dd: 69:12:51:4d:f9:c6:38:66:6c:8f:ad:e7:82:66:10: f8:4d:34:27:49:1a:d7:18:8e:98:9a:aa:24:60:42: b0:bf:91:04:3f:40:af:d6:2d:69:0d:86:ca:07:3e: 63:9d:13:70:c6:eb:c7:87:75:7d:f4:2f:0a:3f:29: fd:1c:86:9b:22:5b:95:26:8a:95:0d:d1:9e:56:a9: bb:3d:58:de:67:85:15:cb:12:d1:bd:23:85:9d:3c: 68:6b:b9:aa:c4:34:37:19:9f:7e:70:7f:3e:bb:98: 8d:63:eb:66:4c:68:74:ee:04:a3:85:0a:a2:2c:4b: 84:90:14:4b:d9:20:13:b6:f2:ef:e5:c8:88:b2:04: f9:56:0e:7f:1c:8c:22:60:a1:c5:20:46:19:ec:5f: 69:05:f5:a0:ae:3d:c0:62:f7:6c:14:d8:69:51:43: 27:0c:b4:2a:d2:84:e5:e2:77:20:0c:fc:52:39:f4: 6b:2c:bc:12:6b:ee:68:ae:6d:bc:b7:b9:10:8a:89: 21:d9:ee:12:97:0f:73:cc:f7:b0:ad:17:91:06:b3: 2a:ad:fe:14:7a:bd:89:1d:74:9e:67:eb:76:e6:05: 6c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F9:1D:A2:FB:86:C9:BB:CF:DF:3D:26:52:F3:A7:03:38:CD:1D:06 X509v3 Authority Key Identifier: keyid:02:8C:DE:0E:76:4A:A8:7F:51:C8:3E:26:08:B8:56:2B:72:B4:E2:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/323830343a313266633a333030303a3a2f34302d3430203d3e20323633353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:12fc:3000::/40 Signature Algorithm: sha256WithRSAEncryption 8c:af:b2:96:9c:dc:c3:04:37:14:b5:a8:cb:a3:16:0e:d3:e7: f4:16:0c:b6:88:d7:7d:c6:05:96:c5:8b:1d:e0:26:a3:1e:a4: 74:ff:9f:87:cf:23:00:7b:3f:00:7f:c8:b8:18:12:67:d6:d6: 5f:ba:0b:32:7e:10:ce:c6:b0:62:2a:a0:e2:95:1c:98:e6:7c: 4b:8f:5d:d7:d8:a5:58:98:84:84:45:c5:63:29:d1:da:1f:53: c3:04:70:04:1a:ba:a1:ab:ce:94:8d:f5:5e:70:71:cd:9a:1c: 97:e9:ed:75:58:59:c3:bd:c5:a9:fa:cd:0f:e7:c8:36:22:3e: b3:50:45:c2:49:22:a3:d5:62:3b:68:0c:f0:c8:c4:3a:72:42: 8a:bf:db:c5:a4:7b:72:81:06:38:c7:f3:dc:6f:ac:e4:c7:26: a4:d9:40:0a:78:a5:df:13:42:d6:25:e3:0a:db:c6:d1:39:28: 90:7f:dc:e0:ac:5d:9a:21:f4:f2:c4:70:74:ba:58:03:57:5e: 69:44:f1:9a:5d:cc:3c:7a:f1:f7:e9:69:0a:cc:a8:82:d2:e2: f0:6c:77:73:68:af:d6:1f:ca:82:6c:a5:5b:41:be:ff:3f:d3: 92:ab:10:e7:e7:d6:2a:e6:c4:49:c3:88:b7:1d:4d:25:55:00: 94:6c:e7:9d -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUditVR7V+HebqSOirsmrNdq9Gtj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI4Q0RFMEU3NjRBQTg3RjUxQzgzRTI2MDhCODU2MkI3 MkI0RTIwNDAeFw0yNTAyMjcxNTU0MDdaFw0yNjAyMjYxNTU5MDdaMDMxMTAvBgNV BAMTKDE4RjkxREEyRkI4NkM5QkJDRkRGM0QyNjUyRjNBNzAzMzhDRDFEMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxyQrGOQmj1g8retaGk3HBgJzE i75aostQnTgR3WkSUU35xjhmbI+t54JmEPhNNCdJGtcYjpiaqiRgQrC/kQQ/QK/W LWkNhsoHPmOdE3DG68eHdX30Lwo/Kf0chpsiW5UmipUN0Z5Wqbs9WN5nhRXLEtG9 I4WdPGhruarENDcZn35wfz67mI1j62ZMaHTuBKOFCqIsS4SQFEvZIBO28u/lyIiy BPlWDn8cjCJgocUgRhnsX2kF9aCuPcBi92wU2GlRQycMtCrShOXidyAM/FI59Gss vBJr7miubby3uRCKiSHZ7hKXD3PM97CtF5EGsyqt/hR6vYkddJ5n63bmBWw/AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUGPkdovuGybvP3z0mUvOnAzjNHQYwHwYDVR0j BBgwFoAUAozeDnZKqH9RyD4mCLhWK3K04gQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vN3p0UG43emNTOURlSHlraVhQRGVSYThNNk1FWjZQM3gyNXRzWnlWRDVD Vm4vMC8wMjhDREUwRTc2NEFBODdGNTFDODNFMjYwOEI4NTYyQjcyQjRFMjA0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAyOENERTBFNzY0QUE4N0Y1 MUM4M0UyNjA4Qjg1NjJCNzJCNEUyMDQuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzd6dFBuN3pjUzlEZUh5a2lYUERlUmE4TTZNRVo2UDN4MjV0c1p5VkQ1Q1ZuLzAv MzIzODMwMzQzYTMxMzI2NjYzM2EzMzMwMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNk M2UyMDMyMzYzMzM1MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACgEEvwwMA0GCSqGSIb3DQEBCwUA A4IBAQCMr7KWnNzDBDcUtajLoxYO0+f0Fgy2iNd9xgWWxYsd4CajHqR0/5+HzyMA ez8Af8i4GBJn1tZfugsyfhDOxrBiKqDilRyY5nxLj13X2KVYmISERcVjKdHaH1PD BHAEGrqhq86UjfVecHHNmhyX6e11WFnDvcWp+s0P58g2Ij6zUEXCSSKj1WI7aAzw yMQ6ckKKv9vFpHtygQY4x/Pcb6zkxyak2UAKeKXfE0LWJeMK28bROSiQf9zgrF2a IfTyxHB0ulgDV15pRPGaXcw8evH36WkKzKiC0uLwbHdzaK/WH8qCbKVbQb7/P9OS qxDn59Yq5sRJw4i3HU0lVQCUbOed -----END CERTIFICATE-----Generated at Mon Apr 21 15:41:58 2025 by rpki-client