$ rpki-client -vvf rpki-repo.registro.br/repo/9YU3uLQgUXu5EbRk7uWMaZdfLCKBgjQmX9Fg2tCw5LDU/0/323830343a326634383a343030303a3a2f33352d3335203d3e203533303532.roa File: 323830343a326634383a343030303a3a2f33352d3335203d3e203533303532.roa (raw, json) Hash identifier: UkVsx1BvVdbnRgzXKxH7/B+2x83O9oE7YBalr6ORDsA= Subject key identifier: 89:E0:6A:53:A0:C4:3A:B0:D0:E0:FF:22:97:13:62:4B:CD:D0:81:A3 Certificate issuer: /CN=CAA6514D2DD1AF46E797D91C334C78A449B7403D Certificate serial: 41933AC88C89547495DE8B3FD18CE021A95FC42F Authority key identifier: CA:A6:51:4D:2D:D1:AF:46:E7:97:D9:1C:33:4C:78:A4:49:B7:40:3D Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CAA6514D2DD1AF46E797D91C334C78A449B7403D.cer Subject info access: rsync://rpki-repo.registro.br/repo/9YU3uLQgUXu5EbRk7uWMaZdfLCKBgjQmX9Fg2tCw5LDU/0/323830343a326634383a343030303a3a2f33352d3335203d3e203533303532.roa Signing time: Mon 30 Sep 2024 18:00:11 +0000 ROA not before: Mon 30 Sep 2024 17:55:11 +0000 ROA not after: Mon 29 Sep 2025 18:00:11 +0000 asID: 53052 IP address blocks: 2804:2f48:4000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9YU3uLQgUXu5EbRk7uWMaZdfLCKBgjQmX9Fg2tCw5LDU/0/CAA6514D2DD1AF46E797D91C334C78A449B7403D.crl rsync://rpki-repo.registro.br/repo/9YU3uLQgUXu5EbRk7uWMaZdfLCKBgjQmX9Fg2tCw5LDU/0/CAA6514D2DD1AF46E797D91C334C78A449B7403D.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CAA6514D2DD1AF46E797D91C334C78A449B7403D.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 09:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:93:3a:c8:8c:89:54:74:95:de:8b:3f:d1:8c:e0:21:a9:5f:c4:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAA6514D2DD1AF46E797D91C334C78A449B7403D Validity Not Before: Sep 30 17:55:11 2024 GMT Not After : Sep 29 18:00:11 2025 GMT Subject: CN=89E06A53A0C43AB0D0E0FF229713624BCDD081A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:41:55:8a:15:02:7a:3d:87:50:80:b0:66:91: 07:c4:69:86:b4:79:a8:d2:69:2e:74:a3:2c:24:fe: 16:87:37:b4:40:c6:d0:27:6c:f8:23:ed:d2:40:4f: a3:6f:bb:6f:c6:b2:c1:5f:f5:e4:b7:70:f9:04:93: 46:d1:f2:dc:1d:2a:42:1b:00:b6:cf:8f:85:e3:41: 1c:44:80:6e:d1:df:da:73:c1:0b:44:a1:ba:6e:29: a3:82:91:3c:c8:97:09:47:d9:c2:a9:b7:28:9c:ca: 4d:46:27:56:9f:31:86:5b:13:5a:6a:7c:49:e6:7b: dd:af:1d:43:87:4f:0d:64:38:f3:b3:95:15:24:2c: f2:35:a7:b4:06:86:c7:1b:17:22:90:38:38:66:4b: 88:a8:17:5a:b7:98:52:d3:8a:41:a7:d5:ce:20:64: 7b:e5:a5:f0:c9:e6:ee:2e:c2:22:fc:1b:07:48:01: 31:be:ff:08:e8:bd:87:9b:01:1e:98:10:51:8a:11: bf:92:3b:99:4b:4d:94:f8:c3:c9:c8:33:9f:bf:1c: bf:2b:de:d9:d1:24:11:a8:9e:b9:ae:2b:79:bf:2c: d9:b2:4f:28:39:4a:ff:4f:ef:43:1b:c9:87:54:e0: 51:8e:7f:e2:00:35:42:7b:34:a2:b4:47:25:e0:2f: 08:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:E0:6A:53:A0:C4:3A:B0:D0:E0:FF:22:97:13:62:4B:CD:D0:81:A3 X509v3 Authority Key Identifier: keyid:CA:A6:51:4D:2D:D1:AF:46:E7:97:D9:1C:33:4C:78:A4:49:B7:40:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9YU3uLQgUXu5EbRk7uWMaZdfLCKBgjQmX9Fg2tCw5LDU/0/CAA6514D2DD1AF46E797D91C334C78A449B7403D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CAA6514D2DD1AF46E797D91C334C78A449B7403D.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9YU3uLQgUXu5EbRk7uWMaZdfLCKBgjQmX9Fg2tCw5LDU/0/323830343a326634383a343030303a3a2f33352d3335203d3e203533303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:2f48:4000::/35 Signature Algorithm: sha256WithRSAEncryption 8b:f0:0a:6c:1c:b7:c5:f3:e6:a7:3f:b1:40:91:e4:01:d5:77: a3:74:5e:da:c0:39:ad:1f:9d:62:91:1c:30:f4:41:a9:3c:f8: 22:dc:6f:70:34:09:c2:47:56:e4:84:1e:d0:e9:9c:93:49:77: 24:82:06:e6:79:c1:40:6a:2e:cf:94:d4:3a:e6:79:19:68:7d: ad:a1:3f:17:57:00:eb:2d:29:59:94:5e:c3:d2:48:41:d1:40: 5c:fb:37:21:71:55:95:21:16:76:46:ed:c3:ec:cc:52:35:b8: 89:b9:a1:5a:52:b2:02:35:3f:15:6d:04:35:a2:cb:89:2c:69: fe:8c:40:b2:18:ad:91:8e:61:58:41:a6:55:7b:ff:40:ff:aa: 9c:48:77:e8:37:3b:30:6d:98:3b:0d:e1:cd:8b:55:bc:75:1c: 4b:fb:ee:51:ba:68:8e:98:70:c1:17:d1:49:2f:35:de:a5:c9: 9a:12:88:5e:62:4f:5e:a5:92:d8:00:6e:0c:8d:25:20:af:2e: 69:98:96:8f:04:ca:3d:96:51:e6:f5:37:ab:86:2c:b5:4f:d3: 64:0f:30:f8:9b:a6:d0:a4:b0:c2:e7:30:84:1f:a2:ef:06:37: 7a:30:40:a2:1d:28:69:1f:7b:4a:84:cf:55:4b:90:81:1f:06: e6:d7:d1:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUQZM6yIyJVHSV3os/0YzgIalfxC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FBNjUxNEQyREQxQUY0NkU3OTdEOTFDMzM0Qzc4QTQ0 OUI3NDAzRDAeFw0yNDA5MzAxNzU1MTFaFw0yNTA5MjkxODAwMTFaMDMxMTAvBgNV BAMTKDg5RTA2QTUzQTBDNDNBQjBEMEUwRkYyMjk3MTM2MjRCQ0REMDgxQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGQVWKFQJ6PYdQgLBmkQfEaYa0 eajSaS50oywk/haHN7RAxtAnbPgj7dJAT6Nvu2/GssFf9eS3cPkEk0bR8twdKkIb ALbPj4XjQRxEgG7R39pzwQtEobpuKaOCkTzIlwlH2cKptyicyk1GJ1afMYZbE1pq fEnme92vHUOHTw1kOPOzlRUkLPI1p7QGhscbFyKQODhmS4ioF1q3mFLTikGn1c4g ZHvlpfDJ5u4uwiL8GwdIATG+/wjovYebAR6YEFGKEb+SO5lLTZT4w8nIM5+/HL8r 3tnRJBGonrmuK3m/LNmyTyg5Sv9P70MbyYdU4FGOf+IANUJ7NKK0RyXgLwgJAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUieBqU6DEOrDQ4P8ilxNiS83QgaMwHwYDVR0j BBgwFoAUyqZRTS3Rr0bnl9kcM0x4pEm3QD0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOVlVM3VMUWdVWHU1RWJSazd1V01hWmRmTENLQmdqUW1YOUZnMnRDdzVM RFUvMC9DQUE2NTE0RDJERDFBRjQ2RTc5N0Q5MUMzMzRDNzhBNDQ5Qjc0MDNELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NBQTY1MTREMkREMUFGNDZF Nzk3RDkxQzMzNEM3OEE0NDlCNzQwM0QuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlZVTN1TFFnVVh1NUViUms3dVdNYVpkZkxDS0JnalFtWDlGZzJ0Q3c1TERVLzAv MzIzODMwMzQzYTMyNjYzNDM4M2EzNDMwMzAzMDNhM2EyZjMzMzUyZDMzMzUyMDNk M2UyMDM1MzMzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYI KwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUoBC9IQDANBgkqhkiG9w0BAQsFAAOC AQEAi/AKbBy3xfPmpz+xQJHkAdV3o3Re2sA5rR+dYpEcMPRBqTz4ItxvcDQJwkdW 5IQe0Omck0l3JIIG5nnBQGouz5TUOuZ5GWh9raE/F1cA6y0pWZRew9JIQdFAXPs3 IXFVlSEWdkbtw+zMUjW4ibmhWlKyAjU/FW0ENaLLiSxp/oxAshitkY5hWEGmVXv/ QP+qnEh36Dc7MG2YOw3hzYtVvHUcS/vuUbpojphwwRfRSS813qXJmhKIXmJPXqWS 2ABuDI0lIK8uaZiWjwTKPZZR5vU3q4YstU/TZA8w+Jum0KSwwucwhB+i7wY3ejBA oh0oaR97SoTPVUuQgR8G5tfR0Q== -----END CERTIFICATE-----Generated at Mon Apr 7 02:37:22 2025 by rpki-client