$ rpki-client -vvf rpki-repo.registro.br/repo/9izPWQxdQiyTvaf7yJqhz5fXFSpURSwiuBTB1wskHZ4B/0/323830343a383637383a3a2f33322d313238203d3e20323732363435.roa File: 323830343a383637383a3a2f33322d313238203d3e20323732363435.roa (raw, json) Hash identifier: EKtwusb+Bln8DERhzhTCh0l0frHgFdvC1OAvnBuZuMg= Subject key identifier: 7A:EC:34:4F:61:43:73:57:9B:8A:E2:33:F9:B1:08:88:71:82:6C:98 Certificate issuer: /CN=1E71509DDAF040F68CB7D75B73108CE2284487D7 Certificate serial: 62C1606F0F9C2426309BA73F5FBF1607B856FADB Authority key identifier: 1E:71:50:9D:DA:F0:40:F6:8C:B7:D7:5B:73:10:8C:E2:28:44:87:D7 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1E71509DDAF040F68CB7D75B73108CE2284487D7.cer Subject info access: rsync://rpki-repo.registro.br/repo/9izPWQxdQiyTvaf7yJqhz5fXFSpURSwiuBTB1wskHZ4B/0/323830343a383637383a3a2f33322d313238203d3e20323732363435.roa Signing time: Sun 02 Mar 2025 14:15:04 +0000 ROA not before: Sun 02 Mar 2025 14:10:04 +0000 ROA not after: Sun 01 Mar 2026 14:15:04 +0000 asID: 272645 IP address blocks: 2804:8678::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9izPWQxdQiyTvaf7yJqhz5fXFSpURSwiuBTB1wskHZ4B/0/1E71509DDAF040F68CB7D75B73108CE2284487D7.crl rsync://rpki-repo.registro.br/repo/9izPWQxdQiyTvaf7yJqhz5fXFSpURSwiuBTB1wskHZ4B/0/1E71509DDAF040F68CB7D75B73108CE2284487D7.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1E71509DDAF040F68CB7D75B73108CE2284487D7.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 15:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:c1:60:6f:0f:9c:24:26:30:9b:a7:3f:5f:bf:16:07:b8:56:fa:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E71509DDAF040F68CB7D75B73108CE2284487D7 Validity Not Before: Mar 2 14:10:04 2025 GMT Not After : Mar 1 14:15:04 2026 GMT Subject: CN=7AEC344F614373579B8AE233F9B1088871826C98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fd:fd:f4:b7:e7:99:33:db:29:59:59:7c:8e: e9:6a:c7:57:c9:5e:1f:48:eb:32:af:df:72:ae:e4: 38:ae:1e:94:3b:8d:da:39:89:f5:7c:01:db:37:9d: 5d:31:ee:9d:56:4f:24:82:d8:69:ae:c4:62:9a:19: 48:fb:0f:2f:0a:5a:42:4a:4c:a1:b1:3b:72:27:32: 13:cf:38:a8:73:ff:65:c2:89:a0:d6:07:77:6b:6a: fe:b4:97:8d:03:43:2e:2e:32:6b:98:07:0f:06:52: c5:cd:27:07:b9:28:1f:24:39:0c:e9:fe:a2:cd:c9: 57:94:17:d1:50:02:3f:f2:6d:55:fc:84:ba:d7:c5: 08:92:4a:9b:e3:c4:df:29:0c:67:7d:7e:6a:0d:9a: 39:49:d9:8d:95:bd:12:f0:77:b1:03:3a:95:bb:81: 7d:8a:7c:dc:73:f0:03:64:5f:4c:ba:ee:c5:cd:1c: 5e:b3:b3:82:6d:28:30:c2:00:73:7c:34:0d:86:83: e9:e1:a6:ad:82:f7:ac:c5:4c:67:f5:51:5b:6e:9e: 27:05:bf:cc:d6:00:17:07:83:ca:10:d5:a5:b9:f8: 86:6d:71:6d:62:9e:9f:b1:41:36:e2:52:54:1d:d9: 4a:67:55:83:a6:03:e3:65:4c:3c:4b:ab:8a:21:b2: 25:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:EC:34:4F:61:43:73:57:9B:8A:E2:33:F9:B1:08:88:71:82:6C:98 X509v3 Authority Key Identifier: keyid:1E:71:50:9D:DA:F0:40:F6:8C:B7:D7:5B:73:10:8C:E2:28:44:87:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9izPWQxdQiyTvaf7yJqhz5fXFSpURSwiuBTB1wskHZ4B/0/1E71509DDAF040F68CB7D75B73108CE2284487D7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1E71509DDAF040F68CB7D75B73108CE2284487D7.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9izPWQxdQiyTvaf7yJqhz5fXFSpURSwiuBTB1wskHZ4B/0/323830343a383637383a3a2f33322d313238203d3e20323732363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8678::/32 Signature Algorithm: sha256WithRSAEncryption 96:6c:e7:11:cb:f2:dc:c2:f8:d9:7f:41:7c:a9:6f:45:c3:b3: 10:c6:08:c9:8f:03:b1:5f:92:1d:7a:6f:2c:0e:56:57:6a:c3: 70:b6:cb:ae:f4:91:98:4b:c9:70:16:2f:d9:bb:c6:84:70:6a: 6e:50:e7:3f:89:c7:07:73:b9:ac:82:07:3f:cb:15:71:f2:56: 47:16:d2:57:8a:e7:e3:38:61:5b:32:8d:fd:df:40:1f:4a:bc: da:c3:7f:43:0e:e1:c5:00:09:5c:94:68:53:24:67:2f:79:00: cd:e8:38:de:e3:1b:5f:9c:30:28:3f:ff:eb:aa:02:10:45:29: aa:f4:5d:96:20:12:bb:f9:d7:b0:34:17:67:01:8d:ee:d6:9a: f9:7a:cc:9b:d6:e6:db:38:d6:09:30:c1:31:a0:b9:97:dd:1c: e4:ca:65:46:4b:42:28:3e:02:e6:9f:77:bb:9b:b8:eb:c2:56: 9a:59:88:f7:12:85:fe:ff:62:64:b9:43:94:03:c0:ad:86:22: d4:fe:2b:c8:31:02:d1:fc:3b:e6:d5:c3:cf:c5:b7:f3:be:73: 17:1a:9f:da:ee:58:3a:80:08:af:76:c9:96:63:7f:74:4b:9a: 61:bc:33:e7:c6:41:b3:e5:d6:88:60:c4:9f:6b:a6:f1:d5:63: 5b:57:83:90 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgIUYsFgbw+cJCYwm6c/X78WB7hW+tswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUU3MTUwOUREQUYwNDBGNjhDQjdENzVCNzMxMDhDRTIy ODQ0ODdENzAeFw0yNTAzMDIxNDEwMDRaFw0yNjAzMDExNDE1MDRaMDMxMTAvBgNV BAMTKDdBRUMzNDRGNjE0MzczNTc5QjhBRTIzM0Y5QjEwODg4NzE4MjZDOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc/f30t+eZM9spWVl8julqx1fJ Xh9I6zKv33Ku5DiuHpQ7jdo5ifV8Ads3nV0x7p1WTySC2GmuxGKaGUj7Dy8KWkJK TKGxO3InMhPPOKhz/2XCiaDWB3drav60l40DQy4uMmuYBw8GUsXNJwe5KB8kOQzp /qLNyVeUF9FQAj/ybVX8hLrXxQiSSpvjxN8pDGd9fmoNmjlJ2Y2VvRLwd7EDOpW7 gX2KfNxz8ANkX0y67sXNHF6zs4JtKDDCAHN8NA2Gg+nhpq2C96zFTGf1UVtunicF v8zWABcHg8oQ1aW5+IZtcW1inp+xQTbiUlQd2UpnVYOmA+NlTDxLq4ohsiVFAgMB AAGjggJSMIICTjAdBgNVHQ4EFgQUeuw0T2FDc1ebiuIz+bEIiHGCbJgwHwYDVR0j BBgwFoAUHnFQndrwQPaMt9dbcxCM4ihEh9cwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOWl6UFdReGRRaXlUdmFmN3lKcWh6NWZYRlNwVVJTd2l1QlRCMXdza0ha NEIvMC8xRTcxNTA5RERBRjA0MEY2OENCN0Q3NUI3MzEwOENFMjI4NDQ4N0Q3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzFFNzE1MDlEREFGMDQwRjY4 Q0I3RDc1QjczMTA4Q0UyMjg0NDg3RDcuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlpelBXUXhkUWl5VHZhZjd5SnFoejVmWEZTcFVSU3dpdUJUQjF3c2tIWjRCLzAv MzIzODMwMzQzYTM4MzYzNzM4M2EzYTJmMzMzMjJkMzEzMjM4MjAzZDNlMjAzMjM3 MzIzNjM0MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUH AQcBAf8EETAPMA0EAgACMAcDBQAoBIZ4MA0GCSqGSIb3DQEBCwUAA4IBAQCWbOcR y/LcwvjZf0F8qW9Fw7MQxgjJjwOxX5Idem8sDlZXasNwtsuu9JGYS8lwFi/Zu8aE cGpuUOc/iccHc7msggc/yxVx8lZHFtJXiufjOGFbMo3930AfSrzaw39DDuHFAAlc lGhTJGcveQDN6Dje4xtfnDAoP//rqgIQRSmq9F2WIBK7+dewNBdnAY3u1pr5esyb 1ubbONYJMMExoLmX3RzkymVGS0IoPgLmn3e7m7jrwlaaWYj3EoX+/2JkuUOUA8Ct hiLU/ivIMQLR/Dvm1cPPxbfzvnMXGp/a7lg6gAivdsmWY390S5phvDPnxkGz5daI YMSfa6bx1WNbV4OQ -----END CERTIFICATE-----Generated at Mon Apr 7 00:44:46 2025 by rpki-client