$ rpki-client -vvf rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/323830343a323931303a383030303a3a2f34342d3434203d3e20323633393935.roa File: 323830343a323931303a383030303a3a2f34342d3434203d3e20323633393935.roa (raw, json) Hash identifier: 7GQpIb7eN0gEhjMCm8bJJo8/053mAvBMK769o/t1ImA= Subject key identifier: F7:7B:0C:A8:D6:CE:F0:06:E6:DD:A8:8B:21:06:FB:AA:DC:77:71:46 Certificate issuer: /CN=D3CB0519647F9D3C145E31E81E779EA9C3D2C274 Certificate serial: 3A41FAF8D59D8D50E75C5920755C8A367651FE70 Authority key identifier: D3:CB:05:19:64:7F:9D:3C:14:5E:31:E8:1E:77:9E:A9:C3:D2:C2:74 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D3CB0519647F9D3C145E31E81E779EA9C3D2C274.cer Subject info access: rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/323830343a323931303a383030303a3a2f34342d3434203d3e20323633393935.roa Signing time: Tue 25 Mar 2025 19:55:15 +0000 ROA not before: Tue 25 Mar 2025 19:50:15 +0000 ROA not after: Tue 24 Mar 2026 19:55:15 +0000 asID: 263995 IP address blocks: 2804:2910:8000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/D3CB0519647F9D3C145E31E81E779EA9C3D2C274.crl rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/D3CB0519647F9D3C145E31E81E779EA9C3D2C274.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D3CB0519647F9D3C145E31E81E779EA9C3D2C274.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 17 Apr 2025 21:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:41:fa:f8:d5:9d:8d:50:e7:5c:59:20:75:5c:8a:36:76:51:fe:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3CB0519647F9D3C145E31E81E779EA9C3D2C274 Validity Not Before: Mar 25 19:50:15 2025 GMT Not After : Mar 24 19:55:15 2026 GMT Subject: CN=F77B0CA8D6CEF006E6DDA88B2106FBAADC777146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:da:89:53:22:a3:ff:b8:70:b9:f0:db:7a:52: 23:3d:53:fd:cf:3e:d9:71:da:3a:51:f3:34:2d:8f: 70:01:a3:d3:a1:4c:05:51:eb:22:54:ff:f3:c2:03: e3:65:94:97:79:0f:da:34:b3:92:a2:df:1b:a2:25: 03:65:ea:79:8c:36:b2:48:08:de:41:ae:95:67:3c: 1f:9a:52:b0:92:38:6c:d1:d4:aa:94:e3:4f:dd:bd: 89:7b:e8:7a:86:96:ac:ac:cc:49:d9:56:6e:14:fd: 88:7a:8f:40:4a:c2:1a:46:84:a5:a8:2c:ea:f1:56: 5d:1e:9b:2d:f1:2d:59:fb:f4:57:f9:7a:90:2d:85: 7d:74:d0:05:6c:55:1e:d5:3f:f2:74:44:96:67:6d: 7b:1c:c0:a7:ae:5c:98:a8:42:b0:d9:b6:fe:87:65: 04:05:78:97:21:92:71:22:bc:d0:60:70:7a:6c:4c: 65:d1:3c:c8:61:af:d1:d7:2c:d5:e2:6b:96:6f:b9: dd:e6:38:62:ca:76:fe:5e:99:5f:15:cf:10:9b:c8: d0:04:64:82:30:e7:fb:f5:04:76:6e:d5:6a:eb:b3: 8e:7a:b7:af:62:3b:56:73:b8:72:52:90:01:4e:1b: 2f:1c:b8:9b:57:8f:31:9e:2d:f6:36:1e:9f:2b:97: 9a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7B:0C:A8:D6:CE:F0:06:E6:DD:A8:8B:21:06:FB:AA:DC:77:71:46 X509v3 Authority Key Identifier: keyid:D3:CB:05:19:64:7F:9D:3C:14:5E:31:E8:1E:77:9E:A9:C3:D2:C2:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/D3CB0519647F9D3C145E31E81E779EA9C3D2C274.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D3CB0519647F9D3C145E31E81E779EA9C3D2C274.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/323830343a323931303a383030303a3a2f34342d3434203d3e20323633393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:2910:8000::/44 Signature Algorithm: sha256WithRSAEncryption 2f:d8:f9:20:c5:8a:ba:a8:26:17:81:7c:02:f1:8d:13:90:69: 94:17:3f:c1:61:dc:f2:a8:1b:1a:b7:7f:13:df:4d:1c:7a:c2: 1f:d8:e0:1a:32:4b:f7:8d:a8:0c:b2:07:f6:14:e8:29:43:65: b9:b6:ff:75:cc:ff:73:93:fc:98:ce:a4:08:d1:da:34:ba:48: f0:13:71:75:e0:77:5d:d0:23:32:35:09:f0:44:66:29:a5:99: 85:e4:3b:ea:05:ff:5a:2d:e5:2e:e3:b2:ec:35:df:9e:9a:7f: ac:d2:e0:9d:df:a5:7f:6f:aa:21:8f:87:1d:1e:cc:38:6b:1a: 8c:81:0a:71:fc:99:f8:5c:18:a6:3d:73:23:cd:46:99:33:f1: d5:76:86:5a:09:46:af:29:9d:fb:4e:3a:69:a7:fb:80:1d:f6: 5d:ae:9d:b1:23:9d:2a:2c:3b:4f:cf:7a:81:26:8c:84:87:77: 4f:ae:b9:5d:aa:9d:77:c9:ae:71:df:05:55:18:2e:cf:af:40: d2:2c:85:88:3c:f3:56:c0:45:75:39:13:97:12:c7:7f:ba:41: 02:80:42:dc:d8:96:67:82:3a:ec:4e:d7:51:64:0b:48:4f:cf: 0e:f2:c6:c2:e9:3b:15:06:2a:8a:04:52:5d:57:40:63:30:60: b9:2d:7d:ae -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIUOkH6+NWdjVDnXFkgdVyKNnZR/nAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNDQjA1MTk2NDdGOUQzQzE0NUUzMUU4MUU3NzlFQTlD M0QyQzI3NDAeFw0yNTAzMjUxOTUwMTVaFw0yNjAzMjQxOTU1MTVaMDMxMTAvBgNV BAMTKEY3N0IwQ0E4RDZDRUYwMDZFNkREQTg4QjIxMDZGQkFBREM3NzcxNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC32olTIqP/uHC58Nt6UiM9U/3P Ptlx2jpR8zQtj3ABo9OhTAVR6yJU//PCA+NllJd5D9o0s5Ki3xuiJQNl6nmMNrJI CN5BrpVnPB+aUrCSOGzR1KqU40/dvYl76HqGlqyszEnZVm4U/Yh6j0BKwhpGhKWo LOrxVl0emy3xLVn79Ff5epAthX100AVsVR7VP/J0RJZnbXscwKeuXJioQrDZtv6H ZQQFeJchknEivNBgcHpsTGXRPMhhr9HXLNXia5Zvud3mOGLKdv5emV8VzxCbyNAE ZIIw5/v1BHZu1Wrrs456t69iO1ZzuHJSkAFOGy8cuJtXjzGeLfY2Hp8rl5qdAgMB AAGjggJcMIICWDAdBgNVHQ4EFgQU93sMqNbO8Abm3aiLIQb7qtx3cUYwHwYDVR0j BBgwFoAU08sFGWR/nTwUXjHoHneeqcPSwnQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQUZoVHBHQnBvV0FMZHBGeUpWcXRTTW91a0VBOXRxOUhZaVd3SFBFakNV SFMvMC9EM0NCMDUxOTY0N0Y5RDNDMTQ1RTMxRTgxRTc3OUVBOUMzRDJDMjc0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QzQ0IwNTE5NjQ3RjlEM0Mx NDVFMzFFODFFNzc5RUE5QzNEMkMyNzQuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0FGaFRwR0Jwb1dBTGRwRnlKVnF0U01vdWtFQTl0cTlIWWlXd0hQRWpDVUhTLzAv MzIzODMwMzQzYTMyMzkzMTMwM2EzODMwMzAzMDNhM2EyZjM0MzQyZDM0MzQyMDNk M2UyMDMyMzYzMzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCgEKRCAADANBgkqhkiG9w0BAQsF AAOCAQEAL9j5IMWKuqgmF4F8AvGNE5BplBc/wWHc8qgbGrd/E99NHHrCH9jgGjJL 942oDLIH9hToKUNlubb/dcz/c5P8mM6kCNHaNLpI8BNxdeB3XdAjMjUJ8ERmKaWZ heQ76gX/Wi3lLuOy7DXfnpp/rNLgnd+lf2+qIY+HHR7MOGsajIEKcfyZ+FwYpj1z I81GmTPx1XaGWglGrymd+046aaf7gB32Xa6dsSOdKiw7T896gSaMhId3T665Xaqd d8mucd8FVRguz69A0iyFiDzzVsBFdTkTlxLHf7pBAoBC3NiWZ4I67E7XUWQLSE/P DvLGwuk7FQYqigRSXVdAYzBguS19rg== -----END CERTIFICATE-----Generated at Thu Apr 17 10:45:48 2025 by rpki-client