$ rpki-client -vvf rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/323830343a346335303a633030303a3a2f33342d3334203d3e20323637333633.roa File: 323830343a346335303a633030303a3a2f33342d3334203d3e20323637333633.roa (raw, json) Hash identifier: bH4lVTOGyZUO95gXtRnKD8fSXVY4xgI725xlr6v7WpM= Subject key identifier: 4F:7F:E6:DB:3B:F7:54:D9:F2:4C:BD:4C:5B:65:05:87:93:79:C7:C5 Certificate issuer: /CN=D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA Certificate serial: 13EB9F9C2EB2B74B4F32C70D6A510F46C19E0046 Authority key identifier: D7:C6:5B:91:75:A8:C5:5D:D1:BE:8B:5D:6F:51:15:2D:72:C5:05:AA Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.cer Subject info access: rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/323830343a346335303a633030303a3a2f33342d3334203d3e20323637333633.roa Signing time: Thu 06 Mar 2025 13:54:53 +0000 ROA not before: Thu 06 Mar 2025 13:49:53 +0000 ROA not after: Thu 05 Mar 2026 13:54:53 +0000 asID: 267363 IP address blocks: 2804:4c50:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.crl rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 12 Apr 2025 05:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:eb:9f:9c:2e:b2:b7:4b:4f:32:c7:0d:6a:51:0f:46:c1:9e:00:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA Validity Not Before: Mar 6 13:49:53 2025 GMT Not After : Mar 5 13:54:53 2026 GMT Subject: CN=4F7FE6DB3BF754D9F24CBD4C5B6505879379C7C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1d:38:77:55:49:9a:ac:dd:03:de:0e:f9:d4: 48:35:13:fd:17:8f:72:83:d4:3d:00:e1:69:31:e0: a5:ff:ae:ca:87:70:3e:a7:b6:ce:e9:88:89:46:54: 78:2b:09:32:39:9a:0d:0d:71:e6:a5:c4:74:6f:29: 6a:03:a9:f7:87:5f:cf:59:64:ad:20:d6:bf:95:48: 0c:ac:e5:98:49:e1:bf:49:e4:46:20:d2:81:46:5d: 14:70:d0:c2:49:88:51:bc:e8:4f:66:82:db:1f:f6: bc:34:73:cd:7a:59:8f:5f:c9:08:28:3e:50:b9:03: 89:6f:75:ff:e3:72:d7:00:99:e7:04:e9:45:d0:18: b8:87:b8:03:44:bc:2e:44:11:17:1e:ef:7f:0e:4b: 39:dd:a6:d0:35:97:69:51:a7:ff:93:a2:3c:e4:38: 95:9a:e8:5f:7e:78:49:f4:36:3a:46:84:08:45:66: 84:c8:d8:c2:5b:e5:8d:f7:85:a3:40:54:7d:9b:7b: 37:1e:0a:4e:82:b9:d0:26:bc:45:f1:8d:4c:e1:1c: bf:db:a4:45:77:3a:07:f1:dd:e0:7a:37:14:53:0a: e9:55:8a:25:e1:99:b0:31:d6:c9:16:fc:84:a9:12: 08:9a:00:c6:08:22:7c:4b:6a:fd:c7:db:12:b5:0d: af:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7F:E6:DB:3B:F7:54:D9:F2:4C:BD:4C:5B:65:05:87:93:79:C7:C5 X509v3 Authority Key Identifier: keyid:D7:C6:5B:91:75:A8:C5:5D:D1:BE:8B:5D:6F:51:15:2D:72:C5:05:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/323830343a346335303a633030303a3a2f33342d3334203d3e20323637333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:4c50:c000::/34 Signature Algorithm: sha256WithRSAEncryption 45:c6:f2:e3:93:b9:6a:97:7b:69:23:6d:8e:c6:74:53:4c:28: f5:8e:11:96:b9:cc:70:05:f4:fe:7d:d1:0a:49:9b:15:55:bf: 5a:a7:4f:05:1c:d1:d9:aa:2e:2f:b2:b4:00:60:7f:e0:69:4a: e1:2d:f9:7e:45:31:a8:7e:fc:f1:26:f0:2b:bf:e0:26:cf:c1: 2c:bb:6d:6f:c0:ee:e8:b2:ca:a1:89:ed:4c:3b:d1:e3:29:fc: 8f:3d:22:8a:07:cf:0c:be:bb:df:fc:50:8a:56:8e:ae:39:56: 92:46:8b:dc:63:90:e6:c8:0a:e1:af:41:41:d6:8c:49:98:02: 3d:ff:b2:e3:80:6f:8d:f2:fc:ab:6d:1e:e8:60:24:d4:70:8b: 71:21:f6:cb:a6:38:4b:12:89:13:61:f6:90:6a:43:f7:67:eb: f7:53:22:81:cd:b4:78:e6:9f:17:a7:a0:14:01:65:72:1a:e8: 97:64:c5:15:96:48:35:b3:58:bb:4d:09:f9:26:ca:56:da:a6: 7a:0c:2f:10:e8:3b:39:40:8b:15:c9:e2:45:b6:93:00:d4:25: 2f:a8:56:34:6b:55:a4:d7:e6:d4:28:42:fb:75:c7:e9:a2:6f: 86:ea:b9:6f:6b:56:ea:ea:34:f8:63:1d:d4:eb:a4:fc:7a:18: 32:e9:ba:d3 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUE+ufnC6yt0tPMscNalEPRsGeAEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdDNjVCOTE3NUE4QzU1REQxQkU4QjVENkY1MTE1MkQ3 MkM1MDVBQTAeFw0yNTAzMDYxMzQ5NTNaFw0yNjAzMDUxMzU0NTNaMDMxMTAvBgNV BAMTKDRGN0ZFNkRCM0JGNzU0RDlGMjRDQkQ0QzVCNjUwNTg3OTM3OUM3QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3HTh3VUmarN0D3g751Eg1E/0X j3KD1D0A4Wkx4KX/rsqHcD6nts7piIlGVHgrCTI5mg0NcealxHRvKWoDqfeHX89Z ZK0g1r+VSAys5ZhJ4b9J5EYg0oFGXRRw0MJJiFG86E9mgtsf9rw0c816WY9fyQgo PlC5A4lvdf/jctcAmecE6UXQGLiHuANEvC5EERce738OSzndptA1l2lRp/+Tojzk OJWa6F9+eEn0NjpGhAhFZoTI2MJb5Y33haNAVH2bezceCk6CudAmvEXxjUzhHL/b pEV3Ogfx3eB6NxRTCulViiXhmbAx1skW/ISpEgiaAMYIInxLav3H2xK1Da+1AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUT3/m2zv3VNnyTL1MW2UFh5N5x8UwHwYDVR0j BBgwFoAU18ZbkXWoxV3Rvotdb1EVLXLFBaowDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vODZFM1lqSHA0bXEzdGhvaGdhOWVaajJGallFQUIxYnR6dVVWbzFDZXBk YXcvMS9EN0M2NUI5MTc1QThDNTVERDFCRThCNUQ2RjUxMTUyRDcyQzUwNUFBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q3QzY1QjkxNzVBOEM1NURE MUJFOEI1RDZGNTExNTJENzJDNTA1QUEuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzg2RTNZakhwNG1xM3Rob2hnYTllWmoyRmpZRUFCMWJ0enVVVm8xQ2VwZGF3LzEv MzIzODMwMzQzYTM0NjMzNTMwM2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzNzMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigETFDAMA0GCSqGSIb3DQEBCwUA A4IBAQBFxvLjk7lql3tpI22OxnRTTCj1jhGWucxwBfT+fdEKSZsVVb9ap08FHNHZ qi4vsrQAYH/gaUrhLfl+RTGofvzxJvArv+Amz8Esu21vwO7ossqhie1MO9HjKfyP PSKKB88Mvrvf/FCKVo6uOVaSRovcY5DmyArhr0FB1oxJmAI9/7LjgG+N8vyrbR7o YCTUcItxIfbLpjhLEokTYfaQakP3Z+v3UyKBzbR45p8Xp6AUAWVyGuiXZMUVlkg1 s1i7TQn5JspW2qZ6DC8Q6Ds5QIsVyeJFtpMA1CUvqFY0a1Wk1+bUKEL7dcfpom+G 6rlva1bq6jT4Yx3U66T8ehgy6brT -----END CERTIFICATE-----Generated at Fri Apr 11 13:27:16 2025 by rpki-client