$ rpki-client -vvf rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/323830343a333466343a383030303a3a2f33332d3333203d3e20323635343931.roa File: 323830343a333466343a383030303a3a2f33332d3333203d3e20323635343931.roa (raw, json) Hash identifier: Bf178m77YabFltwawRymycznqjLZ1SnTY128jd9/dxA= Subject key identifier: 65:02:C9:80:AC:E3:44:52:A5:36:79:90:19:AF:9C:EE:92:92:7C:D2 Certificate issuer: /CN=963A564A40CD8C84E5D11B9970B53BA3A441CF46 Certificate serial: 3153D7FC6336CF1A4C5A37158EBECDD899AACC36 Authority key identifier: 96:3A:56:4A:40:CD:8C:84:E5:D1:1B:99:70:B5:3B:A3:A4:41:CF:46 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/963A564A40CD8C84E5D11B9970B53BA3A441CF46.cer Subject info access: rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/323830343a333466343a383030303a3a2f33332d3333203d3e20323635343931.roa Signing time: Tue 25 Feb 2025 19:17:25 +0000 ROA not before: Tue 25 Feb 2025 19:12:25 +0000 ROA not after: Tue 24 Feb 2026 19:17:25 +0000 asID: 265491 IP address blocks: 2804:34f4:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/963A564A40CD8C84E5D11B9970B53BA3A441CF46.crl rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/963A564A40CD8C84E5D11B9970B53BA3A441CF46.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/963A564A40CD8C84E5D11B9970B53BA3A441CF46.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 12:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:53:d7:fc:63:36:cf:1a:4c:5a:37:15:8e:be:cd:d8:99:aa:cc:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=963A564A40CD8C84E5D11B9970B53BA3A441CF46 Validity Not Before: Feb 25 19:12:25 2025 GMT Not After : Feb 24 19:17:25 2026 GMT Subject: CN=6502C980ACE34452A536799019AF9CEE92927CD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4a:9a:7b:4a:3a:9f:6b:fc:c8:35:12:5b:a1: d6:27:a8:6e:f3:cb:9c:78:51:54:f2:4a:b1:92:9b: f4:27:84:e5:29:f0:f8:f1:7c:e7:8f:a1:26:a1:8c: 48:7d:46:3f:d2:3b:41:4b:a2:20:92:04:f5:55:c4: 17:0b:2b:61:33:9e:37:ae:18:e5:c5:79:b1:71:8e: 0a:aa:ba:76:85:e0:24:a7:5b:2d:7b:c6:51:07:85: 72:47:f1:8d:5f:fb:ae:91:75:e7:c4:2e:e9:1c:63: c3:75:81:46:ba:a4:f4:f2:65:bd:b2:f3:4a:b4:97: 3e:f7:68:5f:25:f6:a6:ee:41:c1:bb:4b:e9:ce:65: b6:ba:17:64:b7:17:b8:4b:18:94:e6:49:17:96:48: 83:af:46:34:7c:b7:36:d9:30:e4:5d:af:bd:f6:b4: 38:fd:3c:97:f5:9d:66:ba:9c:ea:56:02:c2:70:c0: d4:34:d6:a2:0c:46:22:af:cc:8a:5b:99:e7:c0:b1: f4:41:39:f4:3a:8f:97:c6:83:a7:cd:ae:fb:a1:60: 30:7f:a8:f1:28:13:aa:fc:f3:0e:83:5d:db:60:c3: 4b:81:19:19:b7:a2:34:a1:2b:47:88:05:d3:ab:66: ce:eb:96:b2:3a:65:4b:cb:ae:b9:01:9f:66:0d:cf: 50:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:02:C9:80:AC:E3:44:52:A5:36:79:90:19:AF:9C:EE:92:92:7C:D2 X509v3 Authority Key Identifier: keyid:96:3A:56:4A:40:CD:8C:84:E5:D1:1B:99:70:B5:3B:A3:A4:41:CF:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/963A564A40CD8C84E5D11B9970B53BA3A441CF46.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/963A564A40CD8C84E5D11B9970B53BA3A441CF46.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/323830343a333466343a383030303a3a2f33332d3333203d3e20323635343931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:34f4:8000::/33 Signature Algorithm: sha256WithRSAEncryption 76:3c:4d:a1:70:75:8a:41:c0:7d:35:ad:7e:71:58:dc:eb:bc: cd:f1:30:eb:8e:a5:c2:b8:24:ff:b8:cd:4b:33:ab:a9:35:f0: c5:1f:18:64:1f:cb:1e:62:6f:f1:31:e1:bf:49:95:6f:f3:7d: 40:be:bb:b8:2a:17:d6:6a:6e:09:8d:f9:02:01:f6:d4:bb:f4: 99:d9:a1:2d:94:14:5f:d0:5b:1f:85:60:99:cc:eb:e7:87:bf: 66:cf:7b:20:07:e0:0d:63:10:48:ec:28:19:76:8a:70:6a:35: 90:3b:c4:1b:98:f8:34:55:80:ee:e3:0d:da:61:4f:8b:f1:17: cf:fd:b3:b0:aa:db:75:ce:1d:d8:8c:b1:ee:94:a0:a2:e7:f4: 8b:9b:aa:c8:81:b5:fe:93:ef:20:dc:30:5b:c5:a0:dc:9e:aa: 4f:01:b2:ae:a7:38:9b:0e:bb:50:2f:78:0c:ac:28:59:6e:79: cd:1c:4b:ce:35:7a:56:c7:df:5a:e4:fa:d3:06:5a:cb:7d:9d: 20:6c:05:71:88:8c:7b:f2:84:7c:a4:40:3f:b3:86:57:21:d3: e9:a0:a4:e3:93:85:72:70:38:8a:7a:39:2f:21:51:2b:a3:ab: 2b:82:69:a0:72:ed:62:28:5f:07:1f:05:ed:f0:16:59:2c:55: 93:79:3d:b0 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUMVPX/GM2zxpMWjcVjr7N2JmqzDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTYzQTU2NEE0MENEOEM4NEU1RDExQjk5NzBCNTNCQTNB NDQxQ0Y0NjAeFw0yNTAyMjUxOTEyMjVaFw0yNjAyMjQxOTE3MjVaMDMxMTAvBgNV BAMTKDY1MDJDOTgwQUNFMzQ0NTJBNTM2Nzk5MDE5QUY5Q0VFOTI5MjdDRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnSpp7Sjqfa/zINRJbodYnqG7z y5x4UVTySrGSm/QnhOUp8PjxfOePoSahjEh9Rj/SO0FLoiCSBPVVxBcLK2Eznjeu GOXFebFxjgqqunaF4CSnWy17xlEHhXJH8Y1f+66RdefELukcY8N1gUa6pPTyZb2y 80q0lz73aF8l9qbuQcG7S+nOZba6F2S3F7hLGJTmSReWSIOvRjR8tzbZMORdr732 tDj9PJf1nWa6nOpWAsJwwNQ01qIMRiKvzIpbmefAsfRBOfQ6j5fGg6fNrvuhYDB/ qPEoE6r88w6DXdtgw0uBGRm3ojShK0eIBdOrZs7rlrI6ZUvLrrkBn2YNz1CTAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUZQLJgKzjRFKlNnmQGa+c7pKSfNIwHwYDVR0j BBgwFoAUljpWSkDNjITl0RuZcLU7o6RBz0YwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOFF2UHg0UHpyTHRac1ZaYUo3RHBLM0Y4UkZWclNiUWpxY3FROXg3MjJl dUQvMC85NjNBNTY0QTQwQ0Q4Qzg0RTVEMTFCOTk3MEI1M0JBM0E0NDFDRjQ2LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzk2M0E1NjRBNDBDRDhDODRF NUQxMUI5OTcwQjUzQkEzQTQ0MUNGNDYuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzhRdlB4NFB6ckx0WnNWWmFKN0RwSzNGOFJGVnJTYlFqcWNxUTl4NzIyZXVELzAv MzIzODMwMzQzYTMzMzQ2NjM0M2EzODMwMzAzMDNhM2EyZjMzMzMyZDMzMzMyMDNk M2UyMDMyMzYzNTM0MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBygENPSAMA0GCSqGSIb3DQEBCwUA A4IBAQB2PE2hcHWKQcB9Na1+cVjc67zN8TDrjqXCuCT/uM1LM6upNfDFHxhkH8se Ym/xMeG/SZVv831Avru4KhfWam4JjfkCAfbUu/SZ2aEtlBRf0FsfhWCZzOvnh79m z3sgB+ANYxBI7CgZdopwajWQO8QbmPg0VYDu4w3aYU+L8RfP/bOwqtt1zh3YjLHu lKCi5/SLm6rIgbX+k+8g3DBbxaDcnqpPAbKupzibDrtQL3gMrChZbnnNHEvONXpW x99a5PrTBlrLfZ0gbAVxiIx78oR8pEA/s4ZXIdPpoKTjk4VycDiKejkvIVEro6sr gmmgcu1iKF8HHwXt8BZZLFWTeT2w -----END CERTIFICATE-----Generated at Tue Apr 8 16:47:47 2025 by rpki-client