$ rpki-client -vvf rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/323830343a346631383a363030303a3a2f33362d3336203d3e20323638333033.roa File: 323830343a346631383a363030303a3a2f33362d3336203d3e20323638333033.roa (raw, json) Hash identifier: 5JxikWkKQzGEtd+y6k49NnILCV+Z0hen0n+MtZ8zJXQ= Subject key identifier: D5:88:BB:3A:5E:EB:F4:A0:28:D2:D6:C7:77:B0:28:F3:1D:39:2B:25 Certificate issuer: /CN=7E09C85B0E5ACF758DAA966E4C1E2328D0322164 Certificate serial: 271892D88FF07AAAF2EADEC1F53FE29B9B8F4F04 Authority key identifier: 7E:09:C8:5B:0E:5A:CF:75:8D:AA:96:6E:4C:1E:23:28:D0:32:21:64 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.cer Subject info access: rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/323830343a346631383a363030303a3a2f33362d3336203d3e20323638333033.roa Signing time: Fri 31 Jan 2025 20:09:24 +0000 ROA not before: Fri 31 Jan 2025 20:04:24 +0000 ROA not after: Fri 30 Jan 2026 20:09:24 +0000 asID: 268303 IP address blocks: 2804:4f18:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.crl rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 20 Feb 2025 10:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:18:92:d8:8f:f0:7a:aa:f2:ea:de:c1:f5:3f:e2:9b:9b:8f:4f:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E09C85B0E5ACF758DAA966E4C1E2328D0322164 Validity Not Before: Jan 31 20:04:24 2025 GMT Not After : Jan 30 20:09:24 2026 GMT Subject: CN=D588BB3A5EEBF4A028D2D6C777B028F31D392B25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a8:14:75:bb:f4:aa:e5:1b:9c:11:80:64:7a: 91:fc:7a:90:58:ed:47:80:8c:86:94:2e:f0:1e:98: 37:ce:23:89:46:a7:61:49:49:61:94:40:46:b5:1d: 1e:50:7e:92:bf:06:b6:82:8b:26:0c:cc:39:b4:e9: 72:0b:91:15:f6:df:bf:d2:43:23:a4:7b:cb:b6:03: 1a:98:9a:45:0c:ea:88:da:79:74:59:76:76:d0:8a: ba:d3:b4:fc:89:dd:93:ec:c4:b9:4a:9c:fe:12:21: f9:1e:7e:64:74:9e:b5:aa:47:66:78:06:8d:a5:12: 11:7d:20:f6:0a:ca:cd:f9:32:be:16:5b:90:77:3d: b5:da:35:10:02:2e:34:4f:9a:85:ee:90:d6:b7:82: 40:6d:0a:64:5f:45:87:be:2b:e7:07:cb:ea:2f:e2: 01:af:2b:14:50:91:53:49:31:61:cb:4a:13:8f:39: fb:ee:20:2b:da:79:c7:ad:5f:4f:37:00:ee:2f:0e: ae:a9:eb:e6:d7:dc:94:e9:d7:58:ac:93:41:5a:fa: 82:10:41:22:a3:f0:00:37:0c:66:18:fc:41:8b:40: 80:47:7c:cc:7f:a9:22:2f:60:49:15:91:43:84:c8: e9:9c:a1:78:e7:fd:75:56:b9:e5:d8:10:2a:db:58: 72:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:88:BB:3A:5E:EB:F4:A0:28:D2:D6:C7:77:B0:28:F3:1D:39:2B:25 X509v3 Authority Key Identifier: keyid:7E:09:C8:5B:0E:5A:CF:75:8D:AA:96:6E:4C:1E:23:28:D0:32:21:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/323830343a346631383a363030303a3a2f33362d3336203d3e20323638333033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:4f18:6000::/36 Signature Algorithm: sha256WithRSAEncryption 5b:67:a6:5c:b0:d4:f8:ed:38:7a:2d:60:db:12:d9:1f:8f:32: ab:8b:80:7f:a3:7a:85:24:f8:94:14:a5:d6:4e:6d:a9:bb:3a: 29:ef:67:ec:5f:ed:61:e8:4d:17:14:48:0d:d9:6b:36:20:bb: 1d:19:f8:ce:59:63:fd:58:9e:a1:28:a1:f5:ab:6f:96:40:ca: 7c:25:53:ac:c7:aa:0c:a8:74:37:71:d6:69:e4:4a:13:c4:5c: 03:82:73:3e:01:00:83:b3:41:1e:ba:fc:5d:d3:de:97:e2:24: 8a:9d:f6:78:1d:df:d2:b0:bd:9c:5a:cc:3c:18:1d:4d:97:c3: a7:76:d4:2f:14:0c:30:92:1b:89:b9:94:7e:8f:4b:93:7d:a2: 49:7a:fb:bf:48:2a:a1:67:87:c7:cc:52:0c:11:d0:74:a9:cb: 58:fc:53:60:5c:9a:49:07:17:11:69:2f:f6:d5:29:9e:03:a1: 6a:cc:b2:16:ae:26:da:c0:36:a5:a6:3e:e6:06:cd:89:a7:36: 49:c1:96:96:1f:cc:1f:00:fe:9d:4d:e9:4d:f5:1d:fb:54:62: c5:76:7e:1d:93:42:04:4c:4b:80:7a:ce:82:a0:74:0f:cf:c8: 2b:0c:83:be:c4:e1:a3:c2:15:13:5f:7c:be:1b:cb:42:e9:f1: ee:de:99:5b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUJxiS2I/weqry6t7B9T/im5uPTwQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UwOUM4NUIwRTVBQ0Y3NThEQUE5NjZFNEMxRTIzMjhE MDMyMjE2NDAeFw0yNTAxMzEyMDA0MjRaFw0yNjAxMzAyMDA5MjRaMDMxMTAvBgNV BAMTKEQ1ODhCQjNBNUVFQkY0QTAyOEQyRDZDNzc3QjAyOEYzMUQzOTJCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKqBR1u/Sq5RucEYBkepH8epBY 7UeAjIaULvAemDfOI4lGp2FJSWGUQEa1HR5QfpK/BraCiyYMzDm06XILkRX237/S QyOke8u2AxqYmkUM6ojaeXRZdnbQirrTtPyJ3ZPsxLlKnP4SIfkefmR0nrWqR2Z4 Bo2lEhF9IPYKys35Mr4WW5B3PbXaNRACLjRPmoXukNa3gkBtCmRfRYe+K+cHy+ov 4gGvKxRQkVNJMWHLShOPOfvuICvaecetX083AO4vDq6p6+bX3JTp11isk0Fa+oIQ QSKj8AA3DGYY/EGLQIBHfMx/qSIvYEkVkUOEyOmcoXjn/XVWueXYECrbWHK/AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU1Yi7Ol7r9KAo0tbHd7Ao8x05KyUwHwYDVR0j BBgwFoAUfgnIWw5az3WNqpZuTB4jKNAyIWQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOUhHNU5laFNBV1F5a1NDc2Z0THpqaEdlY24xbXdrMUJqa3VFSnJqWmdQ a2IvMC83RTA5Qzg1QjBFNUFDRjc1OERBQTk2NkU0QzFFMjMyOEQwMzIyMTY0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzdFMDlDODVCMEU1QUNGNzU4 REFBOTY2RTRDMUUyMzI4RDAzMjIxNjQuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlIRzVOZWhTQVdReWtTQ3NmdEx6amhHZWNuMW13azFCamt1RUpyalpnUGtiLzAv MzIzODMwMzQzYTM0NjYzMTM4M2EzNjMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzODMzMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgETxhgMA0GCSqGSIb3DQEBCwUA A4IBAQBbZ6ZcsNT47Th6LWDbEtkfjzKri4B/o3qFJPiUFKXWTm2puzop72fsX+1h 6E0XFEgN2Ws2ILsdGfjOWWP9WJ6hKKH1q2+WQMp8JVOsx6oMqHQ3cdZp5EoTxFwD gnM+AQCDs0Eeuvxd096X4iSKnfZ4Hd/SsL2cWsw8GB1Nl8OndtQvFAwwkhuJuZR+ j0uTfaJJevu/SCqhZ4fHzFIMEdB0qctY/FNgXJpJBxcRaS/21SmeA6FqzLIWriba wDalpj7mBs2JpzZJwZaWH8wfAP6dTelN9R37VGLFdn4dk0IETEuAes6CoHQPz8gr DIO+xOGjwhUTX3y+G8tC6fHu3plb -----END CERTIFICATE-----Generated at Wed Feb 19 22:15:27 2025 by rpki-client