$ rpki-client -vvf rpki-repo.registro.br/repo/884CcEVgc8vvCBg4CUA181vaxZpscLtA3tpBsBfr6woy/0/323830343a313638383a613030303a3a2f33352d3335203d3e20323633323930.roa File: 323830343a313638383a613030303a3a2f33352d3335203d3e20323633323930.roa (raw, json) Hash identifier: fZo7+7L1N0ml78AVyKqFwsjj/jUx6aOxuAIw16xvpW8= Subject key identifier: 25:95:3B:2A:F0:8C:C6:12:F1:AE:E8:E3:18:58:96:10:AD:02:BD:AB Certificate issuer: /CN=665361CB3ACA4197B4ACFD257ECFEA3E0D21C9B7 Certificate serial: 3A2EF13673B54C13302F6475ECE9F065A89E4049 Authority key identifier: 66:53:61:CB:3A:CA:41:97:B4:AC:FD:25:7E:CF:EA:3E:0D:21:C9:B7 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/665361CB3ACA4197B4ACFD257ECFEA3E0D21C9B7.cer Subject info access: rsync://rpki-repo.registro.br/repo/884CcEVgc8vvCBg4CUA181vaxZpscLtA3tpBsBfr6woy/0/323830343a313638383a613030303a3a2f33352d3335203d3e20323633323930.roa Signing time: Tue 03 Jun 2025 13:54:13 +0000 ROA not before: Tue 03 Jun 2025 13:49:13 +0000 ROA not after: Tue 02 Jun 2026 13:54:13 +0000 asID: 263290 IP address blocks: 2804:1688:a000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/884CcEVgc8vvCBg4CUA181vaxZpscLtA3tpBsBfr6woy/0/665361CB3ACA4197B4ACFD257ECFEA3E0D21C9B7.crl rsync://rpki-repo.registro.br/repo/884CcEVgc8vvCBg4CUA181vaxZpscLtA3tpBsBfr6woy/0/665361CB3ACA4197B4ACFD257ECFEA3E0D21C9B7.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/665361CB3ACA4197B4ACFD257ECFEA3E0D21C9B7.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 10 Jun 2025 07:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2e:f1:36:73:b5:4c:13:30:2f:64:75:ec:e9:f0:65:a8:9e:40:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=665361CB3ACA4197B4ACFD257ECFEA3E0D21C9B7 Validity Not Before: Jun 3 13:49:13 2025 GMT Not After : Jun 2 13:54:13 2026 GMT Subject: CN=25953B2AF08CC612F1AEE8E318589610AD02BDAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:2f:06:39:cb:b7:a8:51:b4:b5:ed:de:21: 3d:c4:37:9a:82:ad:0a:f3:dd:d4:8b:86:ba:39:cd: 85:bc:8e:f7:7c:8e:eb:b0:a3:ba:d9:43:74:b3:33: a8:00:c3:e4:21:e7:a4:8d:b5:4a:07:b3:1a:7a:b2: 3f:68:e2:4d:07:46:d7:36:26:e8:b9:a7:30:a1:0a: a6:89:35:28:a7:bc:80:3b:86:b7:62:db:4e:4b:a1: 55:2b:66:d1:a0:0b:47:b2:e7:a4:de:e5:78:f5:29: cf:b5:35:21:6e:83:ed:5e:b8:8e:34:3a:f5:75:b3: 45:df:e3:a8:8c:e6:9b:c9:ca:49:83:45:e1:4f:44: e8:60:7b:7a:c1:9d:0a:c3:5d:f7:34:11:b1:d7:81: 83:05:70:85:48:a5:cc:20:46:ef:ea:89:46:fb:5e: 9b:3c:f1:f2:1c:e8:56:8f:f5:39:e1:fc:67:4b:df: 04:60:d7:cb:0e:bd:1e:77:6f:2e:9a:a6:41:ff:9e: df:bc:59:6c:7d:bb:5f:b2:78:71:c0:8e:7c:b0:bf: 66:74:97:f3:68:01:4f:7c:b8:83:ec:0c:52:4f:59: 8d:d6:31:01:86:44:20:aa:9f:d2:32:93:5a:9d:04: 71:cb:0e:f0:7b:2b:b3:fa:46:ef:10:d3:04:c5:b3: 24:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:95:3B:2A:F0:8C:C6:12:F1:AE:E8:E3:18:58:96:10:AD:02:BD:AB X509v3 Authority Key Identifier: keyid:66:53:61:CB:3A:CA:41:97:B4:AC:FD:25:7E:CF:EA:3E:0D:21:C9:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/884CcEVgc8vvCBg4CUA181vaxZpscLtA3tpBsBfr6woy/0/665361CB3ACA4197B4ACFD257ECFEA3E0D21C9B7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/665361CB3ACA4197B4ACFD257ECFEA3E0D21C9B7.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/884CcEVgc8vvCBg4CUA181vaxZpscLtA3tpBsBfr6woy/0/323830343a313638383a613030303a3a2f33352d3335203d3e20323633323930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:1688:a000::/35 Signature Algorithm: sha256WithRSAEncryption 4b:f6:93:0f:2f:25:6e:e0:69:c7:d9:18:d5:c2:fc:ef:17:93: 18:78:a6:88:e5:64:17:3d:6b:c9:3f:ac:24:78:83:fa:c7:e0: c4:1f:4a:f6:15:69:40:c6:c5:43:f7:8c:fa:7e:65:d7:da:7c: 39:fe:25:5a:d1:3a:42:03:e2:6c:0b:bb:5c:a6:a9:72:f6:80: 99:76:33:2e:3b:6e:f2:86:0b:30:30:b6:6e:e8:13:9d:aa:3f: 42:85:f3:ce:4f:46:9f:e8:fb:9e:aa:38:94:58:5f:1f:3d:40: b5:a7:a4:1f:a5:5d:99:28:62:cd:ac:f6:60:02:ef:b1:00:06: b2:fe:8e:65:2b:e7:a1:b1:6b:4b:a5:cf:62:c1:71:ad:41:a4: 3a:5c:2c:64:1d:3c:5a:f5:3a:dd:af:22:72:a9:6f:d9:48:d7: da:91:75:db:ea:57:f2:b7:c9:0e:ae:64:01:26:34:63:ef:6f: 20:3c:cd:d3:40:77:22:58:fc:25:1f:1f:95:67:9a:e2:29:c9: b9:9b:a2:ec:a4:76:14:0a:02:31:ae:14:17:aa:68:58:aa:aa: 27:5d:66:00:ab:44:fb:13:2a:b0:8e:04:c4:76:c5:37:6f:72: 14:da:91:01:d3:55:9a:df:20:9f:bc:b4:61:94:08:e0:b7:7b: dc:4c:c2:87 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUOi7xNnO1TBMwL2R17OnwZaieQEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY1MzYxQ0IzQUNBNDE5N0I0QUNGRDI1N0VDRkVBM0Uw RDIxQzlCNzAeFw0yNTA2MDMxMzQ5MTNaFw0yNjA2MDIxMzU0MTNaMDMxMTAvBgNV BAMTKDI1OTUzQjJBRjA4Q0M2MTJGMUFFRThFMzE4NTg5NjEwQUQwMkJEQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC40C8GOcu3qFG0te3eIT3EN5qC rQrz3dSLhro5zYW8jvd8juuwo7rZQ3SzM6gAw+Qh56SNtUoHsxp6sj9o4k0HRtc2 Jui5pzChCqaJNSinvIA7hrdi205LoVUrZtGgC0ey56Te5Xj1Kc+1NSFug+1euI40 OvV1s0Xf46iM5pvJykmDReFPROhge3rBnQrDXfc0EbHXgYMFcIVIpcwgRu/qiUb7 Xps88fIc6FaP9Tnh/GdL3wRg18sOvR53by6apkH/nt+8WWx9u1+yeHHAjnywv2Z0 l/NoAU98uIPsDFJPWY3WMQGGRCCqn9Iyk1qdBHHLDvB7K7P6Ru8Q0wTFsyRrAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUJZU7KvCMxhLxrujjGFiWEK0CvaswHwYDVR0j BBgwFoAUZlNhyzrKQZe0rP0lfs/qPg0hybcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vODg0Q2NFVmdjOHZ2Q0JnNENVQTE4MXZheFpwc2NMdEEzdHBCc0JmcjZ3 b3kvMC82NjUzNjFDQjNBQ0E0MTk3QjRBQ0ZEMjU3RUNGRUEzRTBEMjFDOUI3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY2NTM2MUNCM0FDQTQxOTdC NEFDRkQyNTdFQ0ZFQTNFMEQyMUM5QjcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzg4NENjRVZnYzh2dkNCZzRDVUExODF2YXhacHNjTHRBM3RwQnNCZnI2d295LzAv MzIzODMwMzQzYTMxMzYzODM4M2E2MTMwMzAzMDNhM2EyZjMzMzUyZDMzMzUyMDNk M2UyMDMyMzYzMzMyMzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSgEFoigMA0GCSqGSIb3DQEBCwUA A4IBAQBL9pMPLyVu4GnH2RjVwvzvF5MYeKaI5WQXPWvJP6wkeIP6x+DEH0r2FWlA xsVD94z6fmXX2nw5/iVa0TpCA+JsC7tcpqly9oCZdjMuO27yhgswMLZu6BOdqj9C hfPOT0af6PueqjiUWF8fPUC1p6QfpV2ZKGLNrPZgAu+xAAay/o5lK+ehsWtLpc9i wXGtQaQ6XCxkHTxa9TrdryJyqW/ZSNfakXXb6lfyt8kOrmQBJjRj728gPM3TQHci WPwlHx+VZ5riKcm5m6LspHYUCgIxrhQXqmhYqqonXWYAq0T7EyqwjgTEdsU3b3IU 2pEB01Wa3yCfvLRhlAjgt3vcTMKH -----END CERTIFICATE-----Generated at Mon Jun 9 11:55:50 2025 by rpki-client