$ rpki-client -vvf rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/323830343a333466343a633030303a3a2f33342d3334203d3e20323635343931.roa File: 323830343a333466343a633030303a3a2f33342d3334203d3e20323635343931.roa (raw, json) Hash identifier: gJY1ZyTJ2t6n8ZiBVCKDZh2kD2KUUW3IOzsMiTULGTk= Subject key identifier: B5:E0:D0:76:FD:7A:6A:50:00:C9:8B:8E:97:4D:7C:15:63:A9:49:92 Certificate issuer: /CN=963A564A40CD8C84E5D11B9970B53BA3A441CF46 Certificate serial: 18505D23015EB6B15FBFF25A786A3C5F87D6A005 Authority key identifier: 96:3A:56:4A:40:CD:8C:84:E5:D1:1B:99:70:B5:3B:A3:A4:41:CF:46 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/963A564A40CD8C84E5D11B9970B53BA3A441CF46.cer Subject info access: rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/323830343a333466343a633030303a3a2f33342d3334203d3e20323635343931.roa Signing time: Tue 25 Feb 2025 19:17:25 +0000 ROA not before: Tue 25 Feb 2025 19:12:25 +0000 ROA not after: Tue 24 Feb 2026 19:17:25 +0000 asID: 265491 IP address blocks: 2804:34f4:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/963A564A40CD8C84E5D11B9970B53BA3A441CF46.crl rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/963A564A40CD8C84E5D11B9970B53BA3A441CF46.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/963A564A40CD8C84E5D11B9970B53BA3A441CF46.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 12:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:50:5d:23:01:5e:b6:b1:5f:bf:f2:5a:78:6a:3c:5f:87:d6:a0:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=963A564A40CD8C84E5D11B9970B53BA3A441CF46 Validity Not Before: Feb 25 19:12:25 2025 GMT Not After : Feb 24 19:17:25 2026 GMT Subject: CN=B5E0D076FD7A6A5000C98B8E974D7C1563A94992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:94:bb:ff:11:3f:34:bb:5d:36:6b:0f:20:72: 15:c3:d0:45:75:26:57:3f:83:f2:cb:f8:69:47:ad: ee:99:db:fc:13:0f:00:1b:04:6f:39:b4:68:48:3a: 78:b8:55:98:b8:d0:1d:e5:1e:96:2f:8b:d0:8d:73: c5:38:af:b9:88:fa:4c:6e:7f:10:a8:60:00:b2:e9: 05:35:61:d9:be:29:0f:3f:a5:95:8b:05:42:1b:4d: 1e:0a:9d:65:55:54:46:f1:c3:86:80:b7:d4:c4:df: e6:6a:ae:8a:06:0b:45:28:81:56:57:cd:45:c4:da: c7:1a:37:fe:f5:54:c0:84:fe:db:63:20:1b:39:5d: 7d:7d:aa:ed:24:80:6b:5d:73:ad:9c:d2:4b:c2:ff: 37:b1:96:e7:f9:aa:b8:9d:15:ae:a3:9c:0f:6d:e5: 59:ab:d5:a8:93:0a:66:27:d6:b8:45:dd:41:12:bf: fe:40:12:e6:a8:2c:b9:03:55:2b:4c:8f:f0:89:50: 8b:31:0b:3b:00:69:df:53:a7:3b:33:81:a3:09:19: 25:6e:07:c4:c7:1c:11:d3:59:e8:35:a0:bd:3e:a6: 2e:5f:09:9c:bb:cf:dd:02:68:da:e9:fc:da:d1:93: 64:03:96:83:b6:3e:15:c8:c0:b7:e4:a4:8e:ae:52: 75:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E0:D0:76:FD:7A:6A:50:00:C9:8B:8E:97:4D:7C:15:63:A9:49:92 X509v3 Authority Key Identifier: keyid:96:3A:56:4A:40:CD:8C:84:E5:D1:1B:99:70:B5:3B:A3:A4:41:CF:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/963A564A40CD8C84E5D11B9970B53BA3A441CF46.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/963A564A40CD8C84E5D11B9970B53BA3A441CF46.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/323830343a333466343a633030303a3a2f33342d3334203d3e20323635343931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:34f4:c000::/34 Signature Algorithm: sha256WithRSAEncryption 60:02:6c:dd:be:4d:61:d2:98:04:af:c8:0e:64:0f:2d:f0:1d: cd:01:92:91:28:91:88:67:19:b9:a0:d3:37:68:54:5f:bd:20: 3c:23:1b:de:36:22:ce:7d:bf:4d:64:5a:7c:ab:51:13:45:c3: c9:32:5d:80:f4:35:9b:2d:ef:50:7e:2a:f3:b9:8d:9b:e7:c6: 76:a4:77:a0:ed:85:f0:fe:fc:3a:9b:f1:cb:99:18:d4:07:48: 44:f8:e7:d1:11:55:de:b3:ef:11:11:86:cc:3b:07:ad:39:e5: ab:8a:ff:d0:c5:44:15:6d:8b:a9:b5:46:7f:8f:3b:fd:ec:c8: 72:15:12:eb:34:f6:28:71:d7:7a:78:fe:75:80:cf:87:36:60: d2:03:5b:ed:f2:13:5a:6a:49:fb:95:75:1e:56:23:96:d9:f9: e4:1a:c6:22:95:c0:ce:87:68:0c:c8:bb:6f:39:12:e6:fc:c0: 33:3f:09:2f:cc:68:2d:fd:47:32:46:5a:19:5f:0c:71:a6:8a: da:00:7f:28:06:05:34:74:a3:bc:ae:62:a2:23:90:ca:88:6f: df:8a:ab:c3:8e:c7:b1:1d:e5:b5:eb:e5:3b:2f:82:58:df:dc: 04:e1:72:bb:98:84:02:56:91:72:3f:ee:a4:34:7f:2b:68:6f: f4:6b:91:f0 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUGFBdIwFetrFfv/JaeGo8X4fWoAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTYzQTU2NEE0MENEOEM4NEU1RDExQjk5NzBCNTNCQTNB NDQxQ0Y0NjAeFw0yNTAyMjUxOTEyMjVaFw0yNjAyMjQxOTE3MjVaMDMxMTAvBgNV BAMTKEI1RTBEMDc2RkQ3QTZBNTAwMEM5OEI4RTk3NEQ3QzE1NjNBOTQ5OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0lLv/ET80u102aw8gchXD0EV1 Jlc/g/LL+GlHre6Z2/wTDwAbBG85tGhIOni4VZi40B3lHpYvi9CNc8U4r7mI+kxu fxCoYACy6QU1Ydm+KQ8/pZWLBUIbTR4KnWVVVEbxw4aAt9TE3+ZqrooGC0UogVZX zUXE2scaN/71VMCE/ttjIBs5XX19qu0kgGtdc62c0kvC/zexluf5qridFa6jnA9t 5Vmr1aiTCmYn1rhF3UESv/5AEuaoLLkDVStMj/CJUIsxCzsAad9TpzszgaMJGSVu B8THHBHTWeg1oL0+pi5fCZy7z90CaNrp/NrRk2QDloO2PhXIwLfkpI6uUnUxAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUteDQdv16alAAyYuOl018FWOpSZIwHwYDVR0j BBgwFoAUljpWSkDNjITl0RuZcLU7o6RBz0YwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOFF2UHg0UHpyTHRac1ZaYUo3RHBLM0Y4UkZWclNiUWpxY3FROXg3MjJl dUQvMC85NjNBNTY0QTQwQ0Q4Qzg0RTVEMTFCOTk3MEI1M0JBM0E0NDFDRjQ2LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzk2M0E1NjRBNDBDRDhDODRF NUQxMUI5OTcwQjUzQkEzQTQ0MUNGNDYuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzhRdlB4NFB6ckx0WnNWWmFKN0RwSzNGOFJGVnJTYlFqcWNxUTl4NzIyZXVELzAv MzIzODMwMzQzYTMzMzQ2NjM0M2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzNTM0MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigENPTAMA0GCSqGSIb3DQEBCwUA A4IBAQBgAmzdvk1h0pgEr8gOZA8t8B3NAZKRKJGIZxm5oNM3aFRfvSA8IxveNiLO fb9NZFp8q1ETRcPJMl2A9DWbLe9QfirzuY2b58Z2pHeg7YXw/vw6m/HLmRjUB0hE +OfREVXes+8REYbMOwetOeWriv/QxUQVbYuptUZ/jzv97MhyFRLrNPYocdd6eP51 gM+HNmDSA1vt8hNaakn7lXUeViOW2fnkGsYilcDOh2gMyLtvORLm/MAzPwkvzGgt /UcyRloZXwxxporaAH8oBgU0dKO8rmKiI5DKiG/fiqvDjsexHeW16+U7L4JY39wE 4XK7mIQCVpFyP+6kNH8raG/0a5Hw -----END CERTIFICATE-----Generated at Tue Apr 8 16:34:46 2025 by rpki-client