$ rpki-client -vvf rpki-repo.registro.br/repo/9agnSTwt74qCS5prJFwwKVkU4oDpbHGgawnjXpYpoXGG/0/323830343a6461633a3a2f33322d3438203d3e203238313831.roa File: 323830343a6461633a3a2f33322d3438203d3e203238313831.roa (raw, json) Hash identifier: JvwegUUzqtOYrCDplzNKYzOOoU16ChE9rMTQfVBPQa0= Subject key identifier: 6C:F4:D1:F8:F8:E1:D7:F1:24:2C:24:FD:7C:9C:0D:B5:1F:5B:5D:C2 Certificate issuer: /CN=CA20EFC0B99A8A86B4B4CFA107B001D508B7290D Certificate serial: 165DB9ABF29670678AA916775B199BB46BF50E83 Authority key identifier: CA:20:EF:C0:B9:9A:8A:86:B4:B4:CF:A1:07:B0:01:D5:08:B7:29:0D Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA20EFC0B99A8A86B4B4CFA107B001D508B7290D.cer Subject info access: rsync://rpki-repo.registro.br/repo/9agnSTwt74qCS5prJFwwKVkU4oDpbHGgawnjXpYpoXGG/0/323830343a6461633a3a2f33322d3438203d3e203238313831.roa Signing time: Fri 28 Mar 2025 00:29:25 +0000 ROA not before: Fri 28 Mar 2025 00:24:25 +0000 ROA not after: Fri 27 Mar 2026 00:29:25 +0000 asID: 28181 IP address blocks: 2804:dac::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9agnSTwt74qCS5prJFwwKVkU4oDpbHGgawnjXpYpoXGG/0/CA20EFC0B99A8A86B4B4CFA107B001D508B7290D.crl rsync://rpki-repo.registro.br/repo/9agnSTwt74qCS5prJFwwKVkU4oDpbHGgawnjXpYpoXGG/0/CA20EFC0B99A8A86B4B4CFA107B001D508B7290D.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA20EFC0B99A8A86B4B4CFA107B001D508B7290D.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 18:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:5d:b9:ab:f2:96:70:67:8a:a9:16:77:5b:19:9b:b4:6b:f5:0e:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA20EFC0B99A8A86B4B4CFA107B001D508B7290D Validity Not Before: Mar 28 00:24:25 2025 GMT Not After : Mar 27 00:29:25 2026 GMT Subject: CN=6CF4D1F8F8E1D7F1242C24FD7C9C0DB51F5B5DC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e9:00:e3:79:bf:b9:9c:90:1c:14:85:03:d2: 0e:2d:a1:63:ea:40:fe:10:e0:b1:61:4e:c6:d9:75: fb:47:0a:80:4f:bf:ee:42:77:b1:a2:90:cc:de:37: 1f:0f:28:f5:0a:ef:98:79:e2:84:de:8a:bf:b3:bc: d6:22:49:a0:03:20:7c:92:dd:7b:79:3f:01:46:ed: 83:5f:2e:98:a2:92:ba:fd:ce:b5:ce:5f:2c:bd:c2: 75:fc:88:20:a3:b7:e7:d0:ef:d4:a4:df:7e:8c:04: 16:74:62:66:62:fc:bb:5e:a5:34:22:f7:c6:20:82: de:b6:05:ab:06:bc:ae:f4:1b:e6:9c:0f:1e:aa:52: 73:b7:01:81:b4:3c:c3:f9:76:af:2b:cf:d2:8c:85: cf:30:32:23:88:68:c2:a0:71:ca:2d:da:11:f4:18: 59:95:f3:3d:46:cf:7c:46:0b:70:83:19:a5:a8:75: ab:04:38:f8:28:55:11:01:39:f5:80:4a:3a:ab:b8: 52:3c:fe:4e:91:27:4f:40:9a:94:6b:f1:d6:d3:c1: 90:dc:b5:f5:8e:b2:df:60:98:80:1a:52:25:2f:5b: 08:37:4f:e2:83:fd:62:61:eb:c5:8b:a5:d9:1f:4d: b6:1d:e9:1c:98:c5:96:35:26:ea:79:f7:68:38:d3: 3d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F4:D1:F8:F8:E1:D7:F1:24:2C:24:FD:7C:9C:0D:B5:1F:5B:5D:C2 X509v3 Authority Key Identifier: keyid:CA:20:EF:C0:B9:9A:8A:86:B4:B4:CF:A1:07:B0:01:D5:08:B7:29:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9agnSTwt74qCS5prJFwwKVkU4oDpbHGgawnjXpYpoXGG/0/CA20EFC0B99A8A86B4B4CFA107B001D508B7290D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA20EFC0B99A8A86B4B4CFA107B001D508B7290D.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9agnSTwt74qCS5prJFwwKVkU4oDpbHGgawnjXpYpoXGG/0/323830343a6461633a3a2f33322d3438203d3e203238313831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:dac::/32 Signature Algorithm: sha256WithRSAEncryption 89:35:0d:e3:06:f0:64:c0:6d:15:1a:4e:2c:17:9c:70:47:c9: 88:8d:13:7f:a2:16:2e:e8:1b:21:67:ce:a7:d5:50:09:e4:e6: a7:ca:38:52:64:ed:bc:2c:5c:22:dd:26:6a:86:a5:ff:2f:a3: f4:49:c9:41:e2:f7:f6:5f:e4:28:0c:d5:5c:ad:70:6a:be:a1: c1:0d:24:11:21:fd:d0:ac:12:70:c4:e8:b7:86:f4:29:94:17: 31:32:d9:31:88:9b:f2:e3:d8:e9:43:fb:21:89:2c:f3:84:94: 32:d2:6a:df:8b:fb:19:1f:8b:0a:61:b2:6c:04:f5:57:3e:87: 4a:d9:5b:7b:e1:d6:ac:6e:b9:99:f3:c7:6b:56:9b:78:fc:9a: 61:25:db:95:14:0a:d3:13:f8:3c:b9:34:5c:c6:32:68:e3:3d: 3e:61:14:bf:8d:13:e5:4f:17:33:5c:ca:f7:92:43:f0:e7:30: c8:73:8f:de:dd:1d:51:e2:03:c5:41:7f:17:e8:15:0b:0d:4c: 21:da:cd:a6:af:c2:2a:36:04:d5:a9:c5:aa:f4:cb:4d:f3:3c: 7b:a6:42:39:85:9e:a9:2a:a5:0a:99:33:e9:28:f0:68:5f:36: 93:f7:92:8a:ac:71:4e:31:5a:b8:a4:4d:49:c8:34:c0:ca:b9: 61:39:05:a5 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUFl25q/KWcGeKqRZ3WxmbtGv1DoMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EyMEVGQzBCOTlBOEE4NkI0QjRDRkExMDdCMDAxRDUw OEI3MjkwRDAeFw0yNTAzMjgwMDI0MjVaFw0yNjAzMjcwMDI5MjVaMDMxMTAvBgNV BAMTKDZDRjREMUY4RjhFMUQ3RjEyNDJDMjRGRDdDOUMwREI1MUY1QjVEQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr6QDjeb+5nJAcFIUD0g4toWPq QP4Q4LFhTsbZdftHCoBPv+5Cd7GikMzeNx8PKPUK75h54oTeir+zvNYiSaADIHyS 3Xt5PwFG7YNfLpiikrr9zrXOXyy9wnX8iCCjt+fQ79Sk336MBBZ0YmZi/LtepTQi 98Yggt62BasGvK70G+acDx6qUnO3AYG0PMP5dq8rz9KMhc8wMiOIaMKgccot2hH0 GFmV8z1Gz3xGC3CDGaWodasEOPgoVREBOfWASjqruFI8/k6RJ09AmpRr8dbTwZDc tfWOst9gmIAaUiUvWwg3T+KD/WJh68WLpdkfTbYd6RyYxZY1Jup592g40z3VAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUbPTR+Pjh1/EkLCT9fJwNtR9bXcIwHwYDVR0j BBgwFoAUyiDvwLmaioa0tM+hB7AB1Qi3KQ0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOWFnblNUd3Q3NHFDUzVwckpGd3dLVmtVNG9EcGJIR2dhd25qWHBZcG9Y R0cvMC9DQTIwRUZDMEI5OUE4QTg2QjRCNENGQTEwN0IwMDFENTA4QjcyOTBELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NBMjBFRkMwQjk5QThBODZC NEI0Q0ZBMTA3QjAwMUQ1MDhCNzI5MEQuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlhZ25TVHd0NzRxQ1M1cHJKRnd3S1ZrVTRvRHBiSEdnYXdualhwWXBvWEdHLzAv MzIzODMwMzQzYTY0NjE2MzNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzgzMTM4 MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoBA2sMA0GCSqGSIb3DQEBCwUAA4IBAQCJNQ3jBvBkwG0V Gk4sF5xwR8mIjRN/ohYu6BshZ86n1VAJ5OanyjhSZO28LFwi3SZqhqX/L6P0SclB 4vf2X+QoDNVcrXBqvqHBDSQRIf3QrBJwxOi3hvQplBcxMtkxiJvy49jpQ/shiSzz hJQy0mrfi/sZH4sKYbJsBPVXPodK2Vt74dasbrmZ88drVpt4/JphJduVFArTE/g8 uTRcxjJo4z0+YRS/jRPlTxczXMr3kkPw5zDIc4/e3R1R4gPFQX8X6BULDUwh2s2m r8IqNgTVqcWq9MtN8zx7pkI5hZ6pKqUKmTPpKPBoXzaT95KKrHFOMVq4pE1JyDTA yrlhOQWl -----END CERTIFICATE-----Generated at Mon Apr 21 22:58:03 2025 by rpki-client