$ rpki-client -vvf rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/323830343a383236383a633030303a3a2f33342d3334203d3e20323732353138.roa File: 323830343a383236383a633030303a3a2f33342d3334203d3e20323732353138.roa (raw, json) Hash identifier: lgKZpEMQXJgbbGxAppKdGMzEqXxmi5YjRfS1hmqnWqk= Subject key identifier: 09:C4:BC:7C:0C:A6:91:61:39:31:58:3A:CF:4F:7D:01:F3:95:5B:88 Certificate issuer: /CN=3170E59F647D12F2C01381F789FEA19B94A7EA94 Certificate serial: 754A481BEAC21AC154BEC341CDA32C28CA55CF04 Authority key identifier: 31:70:E5:9F:64:7D:12:F2:C0:13:81:F7:89:FE:A1:9B:94:A7:EA:94 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3170E59F647D12F2C01381F789FEA19B94A7EA94.cer Subject info access: rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/323830343a383236383a633030303a3a2f33342d3334203d3e20323732353138.roa Signing time: Mon 23 Dec 2024 13:30:50 +0000 ROA not before: Mon 23 Dec 2024 13:25:50 +0000 ROA not after: Mon 22 Dec 2025 13:30:50 +0000 asID: 272518 IP address blocks: 2804:8268:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/3170E59F647D12F2C01381F789FEA19B94A7EA94.crl rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/3170E59F647D12F2C01381F789FEA19B94A7EA94.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3170E59F647D12F2C01381F789FEA19B94A7EA94.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 06:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4a:48:1b:ea:c2:1a:c1:54:be:c3:41:cd:a3:2c:28:ca:55:cf:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3170E59F647D12F2C01381F789FEA19B94A7EA94 Validity Not Before: Dec 23 13:25:50 2024 GMT Not After : Dec 22 13:30:50 2025 GMT Subject: CN=09C4BC7C0CA691613931583ACF4F7D01F3955B88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f0:d1:4b:55:57:87:e7:31:1d:de:b7:d7:2e: 99:51:10:34:97:e2:31:3c:31:43:1a:e7:af:24:4a: 99:34:a7:7b:3c:f1:cd:6e:be:c0:38:f6:48:88:26: c5:91:46:29:f5:74:b1:b2:10:40:96:f0:84:b4:a0: 84:49:dd:7a:03:3b:1d:59:87:b0:fe:45:1a:2c:9a: a9:be:8b:b3:83:b6:4a:be:00:60:b7:7e:6e:74:a3: d3:8b:43:34:2e:6b:3e:b5:85:a6:51:45:51:b5:61: c1:95:8b:4d:cf:ba:34:58:e0:7c:d2:1b:d5:fa:2d: 96:96:54:7d:68:04:31:a1:4c:aa:e5:e9:a2:ad:9f: d9:79:89:b9:af:d3:b4:60:23:dd:7c:a6:3e:5e:64: 80:f7:04:75:97:ba:3d:3f:35:cd:56:fe:3d:a1:4f: 59:70:38:90:3b:69:39:b3:fd:a7:e5:83:53:c5:84: 19:e6:41:88:59:d0:9e:92:1f:a3:e3:63:ae:64:54: b2:ee:65:ba:8c:bd:04:1a:24:43:b3:c4:f3:d0:ae: 8d:8c:17:a3:b4:94:49:ee:50:75:eb:da:09:da:3d: d2:96:2e:42:36:ee:21:70:98:27:eb:70:36:fc:9b: 98:d5:ac:30:f5:2e:18:9f:5b:3e:0e:4c:35:90:ad: 3e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C4:BC:7C:0C:A6:91:61:39:31:58:3A:CF:4F:7D:01:F3:95:5B:88 X509v3 Authority Key Identifier: keyid:31:70:E5:9F:64:7D:12:F2:C0:13:81:F7:89:FE:A1:9B:94:A7:EA:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/3170E59F647D12F2C01381F789FEA19B94A7EA94.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3170E59F647D12F2C01381F789FEA19B94A7EA94.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/323830343a383236383a633030303a3a2f33342d3334203d3e20323732353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8268:c000::/34 Signature Algorithm: sha256WithRSAEncryption 77:cf:43:94:3d:5a:05:99:ee:14:f4:47:28:d3:b5:96:ba:44: 81:b4:85:6b:90:42:5b:a7:5c:27:26:b2:cf:d6:61:b5:18:c6: c0:bc:a8:c9:26:b0:19:49:7b:fd:e2:84:e5:8c:d0:31:25:df: 15:b5:2e:c1:37:7a:e8:6e:5c:a9:aa:75:36:08:e6:a4:73:48: 96:c5:43:9e:a8:a0:d3:6b:77:47:2c:70:d7:b3:cf:24:79:8f: 1d:82:ce:5c:db:2a:b9:0b:50:87:32:1a:34:2d:b0:6a:44:cd: 03:90:87:0e:c7:e1:5a:fb:d1:c3:37:61:f7:e0:27:fb:82:1d: a8:5a:02:2a:af:30:fc:c8:bf:b0:07:82:08:5c:c6:07:7a:fb: 4b:84:67:6f:b1:fb:28:49:1c:83:57:04:30:b5:82:c3:6e:93: 5b:e0:ed:f2:5d:6c:61:21:1f:1b:6c:f4:e9:2f:73:ac:cb:90: d7:b1:e7:9a:0e:b0:94:53:8c:89:c9:b9:ef:a1:ed:83:8f:0c: c7:76:f0:02:ef:5b:b6:3d:27:c5:22:09:66:3d:89:dc:f4:7b: 33:f2:e7:99:cb:eb:88:44:e7:0d:c7:25:1b:32:67:96:95:c6: 25:ed:ac:bf:28:d9:85:55:b5:1c:3b:96:95:43:be:56:ac:57: a5:11:f2:6c -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUdUpIG+rCGsFUvsNBzaMsKMpVzwQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE3MEU1OUY2NDdEMTJGMkMwMTM4MUY3ODlGRUExOUI5 NEE3RUE5NDAeFw0yNDEyMjMxMzI1NTBaFw0yNTEyMjIxMzMwNTBaMDMxMTAvBgNV BAMTKDA5QzRCQzdDMENBNjkxNjEzOTMxNTgzQUNGNEY3RDAxRjM5NTVCODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC28NFLVVeH5zEd3rfXLplREDSX 4jE8MUMa568kSpk0p3s88c1uvsA49kiIJsWRRin1dLGyEECW8IS0oIRJ3XoDOx1Z h7D+RRosmqm+i7ODtkq+AGC3fm50o9OLQzQuaz61haZRRVG1YcGVi03PujRY4HzS G9X6LZaWVH1oBDGhTKrl6aKtn9l5ibmv07RgI918pj5eZID3BHWXuj0/Nc1W/j2h T1lwOJA7aTmz/aflg1PFhBnmQYhZ0J6SH6PjY65kVLLuZbqMvQQaJEOzxPPQro2M F6O0lEnuUHXr2gnaPdKWLkI27iFwmCfrcDb8m5jVrDD1LhifWz4OTDWQrT7xAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUCcS8fAymkWE5MVg6z099AfOVW4gwHwYDVR0j BBgwFoAUMXDln2R9EvLAE4H3if6hm5Sn6pQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOUIyR1RpN3BZakVmR1d4WURhNkZqYUx0SmVzaFFGWEpzVTlTc1pnVkY2 eHQvMC8zMTcwRTU5RjY0N0QxMkYyQzAxMzgxRjc4OUZFQTE5Qjk0QTdFQTk0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzMxNzBFNTlGNjQ3RDEyRjJD MDEzODFGNzg5RkVBMTlCOTRBN0VBOTQuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlCMkdUaTdwWWpFZkdXeFlEYTZGamFMdEplc2hRRlhKc1U5U3NaZ1ZGNnh0LzAv MzIzODMwMzQzYTM4MzIzNjM4M2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzczMjM1MzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEgmjAMA0GCSqGSIb3DQEBCwUA A4IBAQB3z0OUPVoFme4U9Eco07WWukSBtIVrkEJbp1wnJrLP1mG1GMbAvKjJJrAZ SXv94oTljNAxJd8VtS7BN3roblypqnU2COakc0iWxUOeqKDTa3dHLHDXs88keY8d gs5c2yq5C1CHMho0LbBqRM0DkIcOx+Fa+9HDN2H34Cf7gh2oWgIqrzD8yL+wB4II XMYHevtLhGdvsfsoSRyDVwQwtYLDbpNb4O3yXWxhIR8bbPTpL3Osy5DXseeaDrCU U4yJybnvoe2DjwzHdvAC71u2PSfFIglmPYnc9Hsz8ueZy+uIROcNxyUbMmeWlcYl 7ay/KNmFVbUcO5aVQ75WrFelEfJs -----END CERTIFICATE-----Generated at Sun Apr 6 18:04:30 2025 by rpki-client