$ rpki-client -vvf rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/323830343a316136383a3230303a3a2f34302d3430203d3e20323637343834.roa File: 323830343a316136383a3230303a3a2f34302d3430203d3e20323637343834.roa (raw, json) Hash identifier: wMmBVbvkH2qh1ljF27oFn5TGZfQHhHR6lY0MgbHXp9c= Subject key identifier: 7C:35:29:83:A1:6F:FA:F9:57:18:90:78:82:DE:DA:1A:CA:40:3E:55 Certificate issuer: /CN=A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2 Certificate serial: 4F74A8EA4FFCD4E2AF36DEF915A67EEF7CAFA86B Authority key identifier: A5:1F:A8:C0:E8:04:B4:CF:C8:DD:1E:05:3C:24:54:81:ED:0F:66:C2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.cer Subject info access: rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/323830343a316136383a3230303a3a2f34302d3430203d3e20323637343834.roa Signing time: Mon 10 Feb 2025 14:42:08 +0000 ROA not before: Mon 10 Feb 2025 14:37:08 +0000 ROA not after: Mon 09 Feb 2026 14:42:08 +0000 asID: 267484 IP address blocks: 2804:1a68:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.crl rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 16 Apr 2025 19:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:74:a8:ea:4f:fc:d4:e2:af:36:de:f9:15:a6:7e:ef:7c:af:a8:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2 Validity Not Before: Feb 10 14:37:08 2025 GMT Not After : Feb 9 14:42:08 2026 GMT Subject: CN=7C352983A16FFAF95718907882DEDA1ACA403E55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cf:f7:a3:c5:6a:62:e7:50:2c:13:ea:cf:3b: 10:b3:b0:3a:05:27:de:b9:da:9d:e3:5e:71:05:12: b8:dd:f7:28:66:83:51:99:49:2b:e2:e5:d4:40:de: 34:22:21:b8:e9:b7:6a:60:5d:c6:b5:b0:69:e2:7f: cf:78:59:fa:5d:b6:8d:9a:63:f4:f3:58:0f:5a:46: 3b:28:0f:ae:ff:89:6a:28:70:2c:43:eb:50:97:c5: 27:1a:b4:c0:5a:19:29:41:51:61:39:91:36:31:ba: 96:24:13:4a:11:15:fd:cb:e0:1d:83:1f:22:9c:eb: 4e:76:67:f9:43:a4:31:41:65:73:9e:d9:75:0f:0c: cc:ad:f1:4c:67:68:f9:2e:7d:d5:b9:61:43:db:30: 33:59:3b:e4:5d:e0:66:e2:bf:16:6a:47:e6:61:d7: c0:4e:68:d1:af:64:e2:aa:74:bb:fd:1b:9c:e6:8f: 3b:5a:8c:4a:7f:81:21:7b:f1:14:d6:46:98:cc:da: 58:72:5e:9c:38:5e:b6:09:0c:f0:03:a7:27:20:0e: 24:6c:3d:8f:7e:e8:18:cd:81:b9:6c:af:37:bf:37: 13:16:3a:d6:4b:8e:4c:fd:46:1d:bd:1f:50:3e:fa: 97:e5:e3:32:51:89:3b:eb:9e:ba:65:cd:d7:f6:56: 7e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:35:29:83:A1:6F:FA:F9:57:18:90:78:82:DE:DA:1A:CA:40:3E:55 X509v3 Authority Key Identifier: keyid:A5:1F:A8:C0:E8:04:B4:CF:C8:DD:1E:05:3C:24:54:81:ED:0F:66:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/323830343a316136383a3230303a3a2f34302d3430203d3e20323637343834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:1a68:200::/40 Signature Algorithm: sha256WithRSAEncryption 64:76:ee:c0:9c:94:ee:7a:52:1f:f0:cd:ef:95:6c:0e:5a:a4: 8d:98:00:f8:ed:80:96:b1:b2:9d:06:23:c9:0b:d9:4d:fe:a4: 32:09:b4:ea:ba:b5:8c:27:b6:69:cc:3f:bf:5f:86:d8:22:1f: 80:eb:0d:f7:df:4d:07:91:4f:df:df:53:40:6f:44:dc:98:7c: b2:c7:be:b9:00:1b:2f:47:3d:7d:3f:32:03:b9:4b:9b:7c:47: 25:26:2a:0b:dc:a0:1f:a8:b7:89:c0:6a:35:53:5e:fb:9c:f2: fb:07:39:62:21:05:df:5e:a0:bc:4b:2b:4e:6c:df:44:9a:ab: 2a:20:c1:e4:dc:cf:3b:01:f3:bf:26:67:67:9f:ae:0b:cb:32: e5:fd:34:6c:03:be:9c:00:8c:e7:ab:58:dc:16:1c:b7:e6:5b: 3f:fd:52:4a:6f:4e:54:26:47:35:1f:73:c3:4a:2a:36:bd:1d: 38:ff:5d:98:34:f0:4b:af:a7:b7:f4:1b:4c:d4:41:28:d0:b9: 8a:b0:50:5e:da:c5:e6:89:de:2e:63:99:74:11:23:06:df:07: 50:88:1c:77:1c:d5:f5:63:42:ec:f8:74:b4:f8:99:8e:c4:77: 2f:9d:7b:e7:98:42:14:fc:32:51:2f:2b:24:88:7c:e0:33:f4: 88:1b:a1:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUT3So6k/81OKvNt75FaZ+73yvqGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRkE4QzBFODA0QjRDRkM4REQxRTA1M0MyNDU0ODFF RDBGNjZDMjAeFw0yNTAyMTAxNDM3MDhaFw0yNjAyMDkxNDQyMDhaMDMxMTAvBgNV BAMTKDdDMzUyOTgzQTE2RkZBRjk1NzE4OTA3ODgyREVEQTFBQ0E0MDNFNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIz/ejxWpi51AsE+rPOxCzsDoF J9652p3jXnEFErjd9yhmg1GZSSvi5dRA3jQiIbjpt2pgXca1sGnif894Wfpdto2a Y/TzWA9aRjsoD67/iWoocCxD61CXxScatMBaGSlBUWE5kTYxupYkE0oRFf3L4B2D HyKc6052Z/lDpDFBZXOe2XUPDMyt8UxnaPkufdW5YUPbMDNZO+Rd4GbivxZqR+Zh 18BOaNGvZOKqdLv9G5zmjztajEp/gSF78RTWRpjM2lhyXpw4XrYJDPADpycgDiRs PY9+6BjNgblsrze/NxMWOtZLjkz9Rh29H1A++pfl4zJRiTvrnrplzdf2Vn4hAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUfDUpg6Fv+vlXGJB4gt7aGspAPlUwHwYDVR0j BBgwFoAUpR+owOgEtM/I3R4FPCRUge0PZsIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQWk1dVl4UzY3MTdONTdWZUZ4aFk3V0hSd1M1TmhmTDZMTDh0eTRNVFpw NUovMC9BNTFGQThDMEU4MDRCNENGQzhERDFFMDUzQzI0NTQ4MUVEMEY2NkMyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E1MUZBOEMwRTgwNEI0Q0ZD OEREMUUwNTNDMjQ1NDgxRUQwRjY2QzIuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0FpNXVZeFM2NzE3TjU3VmVGeGhZN1dIUndTNU5oZkw2TEw4dHk0TVRacDVKLzAv MzIzODMwMzQzYTMxNjEzNjM4M2EzMjMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNl MjAzMjM2MzczNDM4MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYI KwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAoBBpoAjANBgkqhkiG9w0BAQsFAAOC AQEAZHbuwJyU7npSH/DN75VsDlqkjZgA+O2AlrGynQYjyQvZTf6kMgm06rq1jCe2 acw/v1+G2CIfgOsN999NB5FP399TQG9E3Jh8sse+uQAbL0c9fT8yA7lLm3xHJSYq C9ygH6i3icBqNVNe+5zy+wc5YiEF316gvEsrTmzfRJqrKiDB5NzPOwHzvyZnZ5+u C8sy5f00bAO+nACM56tY3BYct+ZbP/1SSm9OVCZHNR9zw0oqNr0dOP9dmDTwS6+n t/QbTNRBKNC5irBQXtrF5oneLmOZdBEjBt8HUIgcdxzV9WNC7Ph0tPiZjsR3L517 55hCFPwyUS8rJIh84DP0iBuh6A== -----END CERTIFICATE-----Generated at Wed Apr 16 11:36:16 2025 by rpki-client