$ rpki-client -vvf rpki-repo.registro.br/repo/AAuqnPYcuikzDsFJV1Sz6cJWfXnzCUgdx1dddf84YcqK/0/323830343a333161343a666630303a3a2f34302d3430203d3e20323635303238.roa File: 323830343a333161343a666630303a3a2f34302d3430203d3e20323635303238.roa (raw, json) Hash identifier: nzO+0ploCt9HSlaFMUFaTaFw0gyzZgDizjz+rhZ+IWQ= Subject key identifier: A7:54:89:C8:01:8B:2E:60:32:47:7E:4B:A5:58:6D:23:F5:4F:7B:20 Certificate issuer: /CN=D6BCFE43F9EBD9B9EFF3815D3B56D13D826C91F8 Certificate serial: 42E59AEE45535D6F6ABE4C0EBAFFA8819DDBE92C Authority key identifier: D6:BC:FE:43:F9:EB:D9:B9:EF:F3:81:5D:3B:56:D1:3D:82:6C:91:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D6BCFE43F9EBD9B9EFF3815D3B56D13D826C91F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/AAuqnPYcuikzDsFJV1Sz6cJWfXnzCUgdx1dddf84YcqK/0/323830343a333161343a666630303a3a2f34302d3430203d3e20323635303238.roa Signing time: Wed 09 Apr 2025 13:41:14 +0000 ROA not before: Wed 09 Apr 2025 13:36:14 +0000 ROA not after: Wed 08 Apr 2026 13:41:14 +0000 asID: 265028 IP address blocks: 2804:31a4:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/AAuqnPYcuikzDsFJV1Sz6cJWfXnzCUgdx1dddf84YcqK/0/D6BCFE43F9EBD9B9EFF3815D3B56D13D826C91F8.crl rsync://rpki-repo.registro.br/repo/AAuqnPYcuikzDsFJV1Sz6cJWfXnzCUgdx1dddf84YcqK/0/D6BCFE43F9EBD9B9EFF3815D3B56D13D826C91F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D6BCFE43F9EBD9B9EFF3815D3B56D13D826C91F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 21 Apr 2025 18:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e5:9a:ee:45:53:5d:6f:6a:be:4c:0e:ba:ff:a8:81:9d:db:e9:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6BCFE43F9EBD9B9EFF3815D3B56D13D826C91F8 Validity Not Before: Apr 9 13:36:14 2025 GMT Not After : Apr 8 13:41:14 2026 GMT Subject: CN=A75489C8018B2E6032477E4BA5586D23F54F7B20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3a:dc:ad:55:34:a3:70:d2:70:3e:fa:71:c8: e7:b8:9d:ae:88:6a:72:ae:cd:7b:d0:38:5d:cf:8a: 4d:c4:32:a6:57:ac:89:f5:21:e4:b5:06:68:e7:d2: 75:cb:2a:fa:06:23:13:bf:a1:3b:25:c9:53:7b:a3: c4:cf:be:3b:87:3a:b9:b3:16:b8:42:65:25:f1:10: 65:dd:cd:7c:64:24:04:c0:53:ed:29:38:9c:52:c0: 40:49:24:c2:7c:5a:51:1f:e6:15:13:5a:75:7b:c3: 41:41:d4:b8:51:c2:a0:da:7d:c8:e3:b2:16:4a:48: 91:63:1e:25:a6:7b:51:c4:45:4b:45:12:cf:91:13: e8:fe:21:f9:d3:0f:2f:70:c3:d1:a7:0b:aa:e2:12: de:43:35:07:53:7a:43:d4:ad:fe:3e:fb:4f:90:21: 46:a8:c1:5f:c8:44:ca:6c:55:99:de:96:6c:b9:21: e4:a3:40:02:9c:37:fd:4b:86:05:74:0f:dd:25:2b: 10:cd:14:60:08:62:64:36:91:80:78:0f:a2:40:c4: df:86:fa:6b:c6:26:21:0b:9b:48:62:99:86:4b:10: f2:bb:00:41:a2:be:8a:16:e3:76:58:92:e6:37:0d: 8f:ca:54:6f:ac:51:1b:b3:87:49:c8:25:c3:de:d7: d3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:54:89:C8:01:8B:2E:60:32:47:7E:4B:A5:58:6D:23:F5:4F:7B:20 X509v3 Authority Key Identifier: keyid:D6:BC:FE:43:F9:EB:D9:B9:EF:F3:81:5D:3B:56:D1:3D:82:6C:91:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/AAuqnPYcuikzDsFJV1Sz6cJWfXnzCUgdx1dddf84YcqK/0/D6BCFE43F9EBD9B9EFF3815D3B56D13D826C91F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D6BCFE43F9EBD9B9EFF3815D3B56D13D826C91F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/AAuqnPYcuikzDsFJV1Sz6cJWfXnzCUgdx1dddf84YcqK/0/323830343a333161343a666630303a3a2f34302d3430203d3e20323635303238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:31a4:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 21:b2:04:c4:20:08:b0:21:29:34:8c:d9:00:96:a7:b4:eb:72: 82:d0:1e:ad:cb:a8:75:80:e4:0d:c9:77:07:cf:00:b0:72:00: d6:a1:2a:b5:6c:51:de:5d:8b:5c:f8:c3:02:53:99:e1:71:c7: 29:09:90:35:ef:88:07:a6:bf:e7:2f:ae:3a:bf:f5:7c:43:3a: a8:9e:66:49:99:3e:52:db:73:32:68:73:49:00:68:70:a7:c6: e7:1a:90:cd:a2:c3:9e:03:b8:e9:be:c2:72:6c:5a:57:85:1f: c1:ea:d2:27:a9:18:c1:54:e0:b8:a4:ce:79:e3:6f:76:71:c9: a3:2c:b3:fe:cc:7e:66:9a:5f:6e:41:29:01:80:14:3d:71:00: 2a:07:08:33:60:9a:a6:0e:02:cb:64:1d:df:2f:e9:5c:9e:88: 1a:c6:83:1b:a4:57:94:3d:4c:85:dd:17:bf:10:27:cb:13:46: 80:e4:a5:7f:d2:13:10:57:48:2c:7c:6b:7c:6c:b8:bc:1d:51: 87:d4:34:e6:2c:06:db:7f:57:a7:d3:64:10:16:a5:eb:b9:4d: 4e:3c:61:f4:2b:04:c5:63:ee:9e:ab:2d:ad:05:51:cc:a7:b7: e0:c6:c8:12:ef:ac:94:52:82:56:8b:ea:88:e4:c6:7f:6e:b7: fb:18:dc:48 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUQuWa7kVTXW9qvkwOuv+ogZ3b6SwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDZCQ0ZFNDNGOUVCRDlCOUVGRjM4MTVEM0I1NkQxM0Q4 MjZDOTFGODAeFw0yNTA0MDkxMzM2MTRaFw0yNjA0MDgxMzQxMTRaMDMxMTAvBgNV BAMTKEE3NTQ4OUM4MDE4QjJFNjAzMjQ3N0U0QkE1NTg2RDIzRjU0RjdCMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJOtytVTSjcNJwPvpxyOe4na6I anKuzXvQOF3Pik3EMqZXrIn1IeS1Bmjn0nXLKvoGIxO/oTslyVN7o8TPvjuHOrmz FrhCZSXxEGXdzXxkJATAU+0pOJxSwEBJJMJ8WlEf5hUTWnV7w0FB1LhRwqDafcjj shZKSJFjHiWme1HERUtFEs+RE+j+IfnTDy9ww9GnC6riEt5DNQdTekPUrf4++0+Q IUaowV/IRMpsVZnelmy5IeSjQAKcN/1LhgV0D90lKxDNFGAIYmQ2kYB4D6JAxN+G +mvGJiELm0himYZLEPK7AEGivooW43ZYkuY3DY/KVG+sURuzh0nIJcPe19P9AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUp1SJyAGLLmAyR35LpVhtI/VPeyAwHwYDVR0j BBgwFoAU1rz+Q/nr2bnv84FdO1bRPYJskfgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQUF1cW5QWWN1aWt6RHNGSlYxU3o2Y0pXZlhuekNVZ2R4MWRkZGY4NFlj cUsvMC9ENkJDRkU0M0Y5RUJEOUI5RUZGMzgxNUQzQjU2RDEzRDgyNkM5MUY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q2QkNGRTQzRjlFQkQ5QjlF RkYzODE1RDNCNTZEMTNEODI2QzkxRjguY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0FBdXFuUFljdWlrekRzRkpWMVN6NmNKV2ZYbnpDVWdkeDFkZGRmODRZY3FLLzAv MzIzODMwMzQzYTMzMzE2MTM0M2E2NjY2MzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNk M2UyMDMyMzYzNTMwMzIzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACgEMaT/MA0GCSqGSIb3DQEBCwUA A4IBAQAhsgTEIAiwISk0jNkAlqe063KC0B6ty6h1gOQNyXcHzwCwcgDWoSq1bFHe XYtc+MMCU5nhcccpCZA174gHpr/nL646v/V8QzqonmZJmT5S23MyaHNJAGhwp8bn GpDNosOeA7jpvsJybFpXhR/B6tInqRjBVOC4pM554292ccmjLLP+zH5mml9uQSkB gBQ9cQAqBwgzYJqmDgLLZB3fL+lcnogaxoMbpFeUPUyF3Re/ECfLE0aA5KV/0hMQ V0gsfGt8bLi8HVGH1DTmLAbbf1en02QQFqXruU1OPGH0KwTFY+6eqy2tBVHMp7fg xsgS76yUUoJWi+qI5MZ/brf7GNxI -----END CERTIFICATE-----Generated at Mon Apr 21 11:34:19 2025 by rpki-client