$ rpki-client -vvf rpki-repo.registro.br/repo/ArT8vrDjqy4bWaMCtFP24CFU5hMzWhHRkjvgxZyQBQkp/0/323830343a326663383a383030303a3a2f33332d3333203d3e20323632363131.roa File: 323830343a326663383a383030303a3a2f33332d3333203d3e20323632363131.roa (raw, json) Hash identifier: GdUaEiBngjq+oJHhJ8IXhKT0zQKp8bv/GjqsnvnOiFE= Subject key identifier: C8:9E:7C:CC:5C:E1:92:E2:D9:15:B9:38:CF:4B:94:3C:2E:58:F5:85 Certificate issuer: /CN=D2B24673AF94F6E8A7171887B60BF4EBE9D15E73 Certificate serial: 34DD8AB1A9466F6CE9D15F3D4208258BCFC7E9BF Authority key identifier: D2:B2:46:73:AF:94:F6:E8:A7:17:18:87:B6:0B:F4:EB:E9:D1:5E:73 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D2B24673AF94F6E8A7171887B60BF4EBE9D15E73.cer Subject info access: rsync://rpki-repo.registro.br/repo/ArT8vrDjqy4bWaMCtFP24CFU5hMzWhHRkjvgxZyQBQkp/0/323830343a326663383a383030303a3a2f33332d3333203d3e20323632363131.roa Signing time: Wed 19 Mar 2025 14:30:13 +0000 ROA not before: Wed 19 Mar 2025 14:25:13 +0000 ROA not after: Wed 18 Mar 2026 14:30:13 +0000 asID: 262611 IP address blocks: 2804:2fc8:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/ArT8vrDjqy4bWaMCtFP24CFU5hMzWhHRkjvgxZyQBQkp/0/D2B24673AF94F6E8A7171887B60BF4EBE9D15E73.crl rsync://rpki-repo.registro.br/repo/ArT8vrDjqy4bWaMCtFP24CFU5hMzWhHRkjvgxZyQBQkp/0/D2B24673AF94F6E8A7171887B60BF4EBE9D15E73.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D2B24673AF94F6E8A7171887B60BF4EBE9D15E73.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 23 Apr 2025 03:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:dd:8a:b1:a9:46:6f:6c:e9:d1:5f:3d:42:08:25:8b:cf:c7:e9:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2B24673AF94F6E8A7171887B60BF4EBE9D15E73 Validity Not Before: Mar 19 14:25:13 2025 GMT Not After : Mar 18 14:30:13 2026 GMT Subject: CN=C89E7CCC5CE192E2D915B938CF4B943C2E58F585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:ed:9f:5f:e0:8f:de:e8:ab:aa:da:3d:68: 1d:07:26:23:82:17:fa:00:f3:2b:e6:69:59:f5:12: aa:9f:88:f1:a5:3e:d9:bb:a3:d2:bd:04:38:55:10: 78:9d:3b:7c:c2:a5:e7:22:8c:55:b8:c5:22:52:0e: 46:14:e9:fd:14:ac:fe:2c:27:24:62:c7:38:b4:b8: cf:2a:ec:3e:bf:d7:22:0f:8c:91:53:97:9b:a6:71: 63:e7:cd:78:5e:8a:d4:2d:04:c6:a4:4d:55:84:ca: 4f:32:a1:c0:c5:f5:07:45:65:ff:0e:a4:7d:8b:95: b2:83:34:3c:e0:69:11:f7:8f:e9:c8:50:2c:87:32: 41:3d:11:ef:c4:12:e5:97:e9:38:bf:39:11:20:2b: 8c:1c:31:96:a1:35:3f:a6:79:a4:83:31:af:94:57: bf:5b:a6:4d:4c:b8:37:83:80:9c:36:39:8e:3c:be: a3:7d:01:9b:f6:67:5c:58:c4:35:65:e4:38:9f:d6: 7b:6c:52:bb:a5:7d:c4:81:0e:18:b6:c0:6f:c4:53: 83:7c:0f:7f:5f:15:38:58:92:f0:ca:aa:d0:cf:a9: 13:12:aa:7e:eb:4c:68:8b:28:68:e9:92:d1:aa:ca: 9c:f0:87:25:2f:2f:5f:b1:19:0d:e4:d1:dc:ae:87: 8f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:9E:7C:CC:5C:E1:92:E2:D9:15:B9:38:CF:4B:94:3C:2E:58:F5:85 X509v3 Authority Key Identifier: keyid:D2:B2:46:73:AF:94:F6:E8:A7:17:18:87:B6:0B:F4:EB:E9:D1:5E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/ArT8vrDjqy4bWaMCtFP24CFU5hMzWhHRkjvgxZyQBQkp/0/D2B24673AF94F6E8A7171887B60BF4EBE9D15E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D2B24673AF94F6E8A7171887B60BF4EBE9D15E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/ArT8vrDjqy4bWaMCtFP24CFU5hMzWhHRkjvgxZyQBQkp/0/323830343a326663383a383030303a3a2f33332d3333203d3e20323632363131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:2fc8:8000::/33 Signature Algorithm: sha256WithRSAEncryption 4b:c4:eb:3e:c6:62:16:e3:b4:09:c7:05:c1:cf:8f:61:43:35: 31:3e:a1:7c:bf:cf:91:29:3d:0d:22:8f:74:72:c7:b4:a3:04: 50:8c:6c:81:96:8a:6f:2e:db:3f:1a:fb:49:53:ae:9a:3b:00: ee:a0:02:a2:23:44:a3:bf:5f:09:d3:e3:22:a4:4c:60:c7:33: 10:ec:3b:08:b3:31:bc:3a:34:3e:b6:7a:af:5b:a0:fa:be:fb: 92:0d:ee:03:85:ca:ce:4c:49:47:22:42:56:1f:66:8e:f8:bd: dc:6d:32:74:75:6d:35:bd:3d:1c:67:81:39:92:c9:40:97:63: e8:8a:c7:a3:20:26:c3:85:92:7a:ca:23:46:5c:f1:5e:77:b2: 11:ad:dd:46:1b:3c:4a:5a:5d:c2:6a:e6:97:0f:ce:ed:48:23: 31:f7:03:08:d3:55:55:58:d3:54:8b:7d:b9:1e:6d:a6:40:98: fc:c4:a4:3f:82:8d:3f:bc:98:b3:ff:0d:3f:d2:d9:94:c6:38: 01:8c:b2:fe:b3:bc:d2:a9:f4:19:62:38:b6:3f:95:75:61:79: 54:71:d2:37:a1:6b:91:e1:c8:84:e4:b2:15:9f:5b:86:ef:51: 49:87:b5:8d:de:23:a5:ea:4f:59:47:62:61:b7:04:a7:62:49: fb:89:21:4a -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUNN2KsalGb2zp0V89Qggli8/H6b8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJCMjQ2NzNBRjk0RjZFOEE3MTcxODg3QjYwQkY0RUJF OUQxNUU3MzAeFw0yNTAzMTkxNDI1MTNaFw0yNjAzMTgxNDMwMTNaMDMxMTAvBgNV BAMTKEM4OUU3Q0NDNUNFMTkyRTJEOTE1QjkzOENGNEI5NDNDMkU1OEY1ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDAu2fX+CP3uirqto9aB0HJiOC F/oA8yvmaVn1EqqfiPGlPtm7o9K9BDhVEHidO3zCpecijFW4xSJSDkYU6f0UrP4s JyRixzi0uM8q7D6/1yIPjJFTl5umcWPnzXheitQtBMakTVWEyk8yocDF9QdFZf8O pH2LlbKDNDzgaRH3j+nIUCyHMkE9Ee/EEuWX6Ti/OREgK4wcMZahNT+meaSDMa+U V79bpk1MuDeDgJw2OY48vqN9AZv2Z1xYxDVl5Dif1ntsUrulfcSBDhi2wG/EU4N8 D39fFThYkvDKqtDPqRMSqn7rTGiLKGjpktGqypzwhyUvL1+xGQ3k0dyuh4/LAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUyJ58zFzhkuLZFbk4z0uUPC5Y9YUwHwYDVR0j BBgwFoAU0rJGc6+U9uinFxiHtgv06+nRXnMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQXJUOHZyRGpxeTRiV2FNQ3RGUDI0Q0ZVNWhNeldoSFJranZneFp5UUJR a3AvMC9EMkIyNDY3M0FGOTRGNkU4QTcxNzE4ODdCNjBCRjRFQkU5RDE1RTczLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QyQjI0NjczQUY5NEY2RThB NzE3MTg4N0I2MEJGNEVCRTlEMTVFNzMuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0FyVDh2ckRqcXk0YldhTUN0RlAyNENGVTVoTXpXaEhSa2p2Z3haeVFCUWtwLzAv MzIzODMwMzQzYTMyNjY2MzM4M2EzODMwMzAzMDNhM2EyZjMzMzMyZDMzMzMyMDNk M2UyMDMyMzYzMjM2MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBygEL8iAMA0GCSqGSIb3DQEBCwUA A4IBAQBLxOs+xmIW47QJxwXBz49hQzUxPqF8v8+RKT0NIo90cse0owRQjGyBlopv Lts/GvtJU66aOwDuoAKiI0Sjv18J0+MipExgxzMQ7DsIszG8OjQ+tnqvW6D6vvuS De4DhcrOTElHIkJWH2aO+L3cbTJ0dW01vT0cZ4E5kslAl2PoisejICbDhZJ6yiNG XPFed7IRrd1GGzxKWl3CauaXD87tSCMx9wMI01VVWNNUi325Hm2mQJj8xKQ/go0/ vJiz/w0/0tmUxjgBjLL+s7zSqfQZYji2P5V1YXlUcdI3oWuR4ciE5LIVn1uG71FJ h7WN3iOl6k9ZR2JhtwSnYkn7iSFK -----END CERTIFICATE-----Generated at Tue Apr 22 11:52:46 2025 by rpki-client