$ rpki-client -vvf rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/323830343a3a2f33322d3332203d3e2032373136.roa File: 323830343a3a2f33322d3332203d3e2032373136.roa (raw, json) Hash identifier: x38tG39nl1ilUl+38f7PY0m11lQElKlzwzGpMZ7eoCI= Subject key identifier: 6B:A1:45:85:46:EB:D1:AB:58:1C:CE:33:07:3D:6A:41:03:91:9E:13 Certificate issuer: /CN=D54C376960A26972A0B767BDA084048DFFE3673E Certificate serial: 4894403D0D86A9FC17086F52D5FD9DD5F1AF057B Authority key identifier: D5:4C:37:69:60:A2:69:72:A0:B7:67:BD:A0:84:04:8D:FF:E3:67:3E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D54C376960A26972A0B767BDA084048DFFE3673E.cer Subject info access: rsync://rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/323830343a3a2f33322d3332203d3e2032373136.roa Signing time: Wed 05 Mar 2025 19:00:01 +0000 ROA not before: Wed 05 Mar 2025 18:55:01 +0000 ROA not after: Wed 04 Mar 2026 19:00:01 +0000 asID: 2716 IP address blocks: 2804::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/D54C376960A26972A0B767BDA084048DFFE3673E.crl rsync://rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/D54C376960A26972A0B767BDA084048DFFE3673E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D54C376960A26972A0B767BDA084048DFFE3673E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 03:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:94:40:3d:0d:86:a9:fc:17:08:6f:52:d5:fd:9d:d5:f1:af:05:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54C376960A26972A0B767BDA084048DFFE3673E Validity Not Before: Mar 5 18:55:01 2025 GMT Not After : Mar 4 19:00:01 2026 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9f:7c:99:e7:c8:45:2a:35:7e:20:f7:9f:08: a8:b4:0e:43:ed:40:5f:96:11:c6:47:e4:70:af:04: 7b:89:92:dc:1a:cc:c6:f5:ca:d4:be:94:2e:e3:9b: 2c:86:d7:87:ba:97:60:ce:a4:38:f1:33:b0:c8:b2: ab:84:02:e3:a6:54:67:2d:7b:8a:77:e9:87:70:68: f1:88:75:da:31:b5:3d:eb:fc:08:10:96:24:f0:93: 59:1e:75:04:3c:81:19:9a:19:c6:d6:ae:66:6f:14: 5f:ad:0b:3d:c2:fa:a3:4b:55:0e:02:28:42:cd:7a: 1c:5e:e9:7e:99:80:c4:81:75:8e:ca:d5:a3:54:7e: ff:eb:ed:55:62:88:62:8e:53:f5:22:31:fc:fb:4a: 2f:07:1b:46:cf:42:61:6c:b4:01:8c:db:f7:46:8a: 80:e4:b9:e9:05:d8:de:5b:8e:89:20:cf:77:fb:d3: f1:78:eb:6b:f1:ed:a0:c7:0e:40:ad:f2:2b:0c:07: c9:fc:34:23:18:46:1f:fb:4b:d2:03:0f:37:d6:97: c4:3f:a0:a1:85:f4:70:6d:0a:0e:75:08:ac:fa:c4: e6:43:f5:aa:e4:e4:6d:d4:ef:20:f5:c8:fc:d9:f8: 19:fd:d0:e0:db:4f:d3:af:e5:c3:8b:a1:3f:1d:3c: 1b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A1:45:85:46:EB:D1:AB:58:1C:CE:33:07:3D:6A:41:03:91:9E:13 X509v3 Authority Key Identifier: keyid:D5:4C:37:69:60:A2:69:72:A0:B7:67:BD:A0:84:04:8D:FF:E3:67:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/D54C376960A26972A0B767BDA084048DFFE3673E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D54C376960A26972A0B767BDA084048DFFE3673E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/323830343a3a2f33322d3332203d3e2032373136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804::/32 Signature Algorithm: sha256WithRSAEncryption 87:29:2f:de:f0:4b:08:0e:79:31:91:b3:d7:c0:c7:b3:06:60: a4:3c:b7:fe:43:52:36:05:d7:fa:77:ac:75:42:1a:6f:56:2f: a3:5f:5a:68:8d:13:b4:fa:5d:2c:61:21:56:2a:de:af:7f:f8: 6a:24:be:ee:5e:e9:4d:60:14:76:68:13:b6:94:71:67:2d:26: 2d:36:09:35:41:ce:76:fc:84:e8:a8:fc:14:f3:7c:05:e4:d2: ad:d2:7a:fa:83:be:4e:68:f4:aa:8d:2a:4d:58:9c:3f:44:df: ad:27:b6:40:5a:86:79:60:67:19:cf:dd:85:46:8c:92:ee:d9: 1c:5e:ce:ba:ba:da:f3:85:1a:b8:bb:a0:de:9f:56:30:2c:95: fd:30:57:0e:0f:c3:df:23:55:a4:64:63:22:3a:ba:32:96:86: 02:48:83:a8:c5:46:44:fd:70:0c:3e:c9:8d:00:a1:60:8b:cb: 71:90:bc:c1:00:ab:20:de:26:a1:01:1c:a7:b7:d8:24:db:e2: 15:4c:3f:95:b7:3f:a4:70:20:18:d9:2c:42:a1:91:04:9d:e1: 30:18:7c:0c:15:c6:32:64:6c:a5:4a:be:23:bd:84:97:af:ef: 76:dd:27:3e:8a:3d:fe:cf:47:c7:3b:c2:a7:36:0e:8a:37:d1: 63:e5:44:f8 -----BEGIN CERTIFICATE----- MIIHMzCCBhugAwIBAgIUSJRAPQ2GqfwXCG9S1f2d1fGvBXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0QzM3Njk2MEEyNjk3MkEwQjc2N0JEQTA4NDA0OERG RkUzNjczRTAeFw0yNTAzMDUxODU1MDFaFw0yNjAzMDQxOTAwMDFaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQjQ5RjdDOTlFN0M4NDUyQTM1 N0UyMEY3OUYwOEE4QjQwRTQzRUQ0MDVGOTYxMUM2NDdFNDcwQUYwNDdCODk5MkRD MUFDQ0M2RjVDQUQ0QkU5NDJFRTM5QjJDODZENzg3QkE5NzYwQ0VBNDM4RjEzM0Iw QzhCMkFCODQwMkUzQTY1NDY3MkQ3QjhBNzdFOTg3NzA2OEYxODg3NURBMzFCNTNE RUJGQzA4MTA5NjI0RjA5MzU5MUU3NTA0M0M4MTE5OUExOUM2RDZBRTY2NkYxNDVG QUQwQjNEQzJGQUEzNEI1NTBFMDIyODQyQ0Q3QTFDNUVFOTdFOTk4MEM0ODE3NThF Q0FENUEzNTQ3RUZGRUJFRDU1NjI4ODYyOEU1M0Y1MjIzMUZDRkI0QTJGMDcxQjQ2 Q0Y0MjYxNkNCNDAxOENEQkY3NDY4QTgwRTRCOUU5MDVEOERFNUI4RTg5MjBDRjc3 RkJEM0YxNzhFQjZCRjFFREEwQzcwRTQwQURGMjJCMEMwN0M5RkMzNDIzMTg0NjFG RkI0QkQyMDMwRjM3RDY5N0M0M0ZBMEExODVGNDcwNkQwQTBFNzUwOEFDRkFDNEU2 NDNGNUFBRTRFNDZERDRFRjIwRjVDOEZDRDlGODE5RkREMEUwREI0RkQzQUZFNUMz OEJBMTNGMUQzQzFCMjEwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAtJ98mefIRSo1fiD3nwiotA5D7UBflhHGR+RwrwR7iZLcGszG9crU vpQu45sshteHupdgzqQ48TOwyLKrhALjplRnLXuKd+mHcGjxiHXaMbU96/wIEJYk 8JNZHnUEPIEZmhnG1q5mbxRfrQs9wvqjS1UOAihCzXocXul+mYDEgXWOytWjVH7/ 6+1VYohijlP1IjH8+0ovBxtGz0JhbLQBjNv3RoqA5LnpBdjeW46JIM93+9PxeOtr 8e2gxw5ArfIrDAfJ/DQjGEYf+0vSAw831pfEP6ChhfRwbQoOdQis+sTmQ/Wq5ORt 1O8g9cj82fgZ/dDg20/Tr+XDi6E/HTwbIQIDAQABo4ICQTCCAj0wHQYDVR0OBBYE FGuhRYVG69GrWBzOMwc9akEDkZ4TMB8GA1UdIwQYMBaAFNVMN2lgomlyoLdnvaCE BI3/42c+MA4GA1UdDwEB/wQEAwIHgDCBlAYDVR0fBIGMMIGJMIGGoIGDoIGAhn5y c3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvLzhFYjRBR2pmTlk5emQ3 dEJtd2hUWExUSnlGRkFGelVGcVBnZUhVQ04xU3dhLzEvRDU0QzM3Njk2MEEyNjk3 MkEwQjc2N0JEQTA4NDA0OERGRkUzNjczRS5jcmwweAYIKwYBBQUHAQEEbDBqMGgG CCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvL25p Y2JyX3JlcG8vMS9ENTRDMzc2OTYwQTI2OTcyQTBCNzY3QkRBMDg0MDQ4REZGRTM2 NzNFLmNlcjCBnQYIKwYBBQUHAQsEgZAwgY0wgYoGCCsGAQUFBzALhn5yc3luYzov L3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvLzhFYjRBR2pmTlk5emQ3dEJtd2hU WExUSnlGRkFGelVGcVBnZUhVQ04xU3dhLzEvMzIzODMwMzQzYTNhMmYzMzMyMmQz MzMyMjAzZDNlMjAzMjM3MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO AjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgEAAAwDQYJKoZIhvcNAQEL BQADggEBAIcpL97wSwgOeTGRs9fAx7MGYKQ8t/5DUjYF1/p3rHVCGm9WL6NfWmiN E7T6XSxhIVYq3q9/+Gokvu5e6U1gFHZoE7aUcWctJi02CTVBznb8hOio/BTzfAXk 0q3SevqDvk5o9KqNKk1YnD9E360ntkBahnlgZxnP3YVGjJLu2Rxezrq62vOFGri7 oN6fVjAslf0wVw4Pw98jVaRkYyI6ujKWhgJIg6jFRkT9cAw+yY0AoWCLy3GQvMEA qyDeJqEBHKe32CTb4hVMP5W3P6RwIBjZLEKhkQSd4TAYfAwVxjJkbKVKviO9hJev 73bdJz6KPf7PR8c7wqc2Doo30WPlRPg= -----END CERTIFICATE-----Generated at Sun Apr 6 18:43:56 2025 by rpki-client