$ rpki-client -vvf rpki-repo.registro.br/repo/As6mTcYF2tKJB7CatcHzjLKa77oMmeDLT1PPTsWFkTS6/1/323830343a3835343a3a2f33322d3332203d3e203238333638.roa File: 323830343a3835343a3a2f33322d3332203d3e203238333638.roa (raw, json) Hash identifier: GycQfd7vgADEgo1EHLx9rrzcz4mkcoWAvi/9jpc9OWk= Subject key identifier: 86:37:A4:86:1C:2D:B7:51:73:D2:67:FD:DB:E0:61:0A:7F:CF:23:15 Certificate issuer: /CN=AC900D8B6183D3194381784B68CA9C9D75CCAF76 Certificate serial: 428490705F8B6A83616FA8C41D3D56E28EB4793F Authority key identifier: AC:90:0D:8B:61:83:D3:19:43:81:78:4B:68:CA:9C:9D:75:CC:AF:76 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC900D8B6183D3194381784B68CA9C9D75CCAF76.cer Subject info access: rsync://rpki-repo.registro.br/repo/As6mTcYF2tKJB7CatcHzjLKa77oMmeDLT1PPTsWFkTS6/1/323830343a3835343a3a2f33322d3332203d3e203238333638.roa Signing time: Thu 06 Mar 2025 02:42:02 +0000 ROA not before: Thu 06 Mar 2025 02:37:02 +0000 ROA not after: Thu 05 Mar 2026 02:42:02 +0000 asID: 28368 IP address blocks: 2804:854::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/As6mTcYF2tKJB7CatcHzjLKa77oMmeDLT1PPTsWFkTS6/1/AC900D8B6183D3194381784B68CA9C9D75CCAF76.crl rsync://rpki-repo.registro.br/repo/As6mTcYF2tKJB7CatcHzjLKa77oMmeDLT1PPTsWFkTS6/1/AC900D8B6183D3194381784B68CA9C9D75CCAF76.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC900D8B6183D3194381784B68CA9C9D75CCAF76.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 21 Apr 2025 05:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:84:90:70:5f:8b:6a:83:61:6f:a8:c4:1d:3d:56:e2:8e:b4:79:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC900D8B6183D3194381784B68CA9C9D75CCAF76 Validity Not Before: Mar 6 02:37:02 2025 GMT Not After : Mar 5 02:42:02 2026 GMT Subject: CN=8637A4861C2DB75173D267FDDBE0610A7FCF2315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:21:18:ec:86:f0:bc:e6:95:91:0d:db:87:66: 6b:ae:97:24:b7:80:86:a6:0a:2b:7b:d2:b0:47:8e: 25:8f:05:97:07:78:e1:4c:52:09:25:55:2f:ef:5c: 31:b9:87:60:e1:e0:a3:7d:ee:b6:0d:d2:a1:15:99: f7:7c:df:ab:23:8a:6e:8e:78:dd:76:73:82:0c:22: e1:a0:4e:11:93:fc:12:d7:ab:1f:9e:41:1a:0d:8f: f9:cc:77:f4:19:b2:db:db:c8:d7:4d:e2:c0:b9:51: 8f:f6:57:4c:f8:e9:cf:ed:fa:3e:8a:08:28:f1:d9: c4:20:5e:3d:c6:d8:30:73:65:8d:62:62:38:c7:34: d9:59:49:f5:e1:17:db:df:0b:aa:03:a2:ee:0c:17: 91:47:3f:6c:3d:5b:f8:f3:00:51:4c:e8:37:66:3c: 23:ae:f7:ee:a3:7d:c9:ec:78:51:b3:5e:59:e1:55: 8c:48:24:98:2b:cc:a9:d5:2f:ce:5a:ae:d5:4f:0f: f4:2d:a8:c7:19:64:20:c5:cf:a9:e0:22:a3:1e:51: 13:67:eb:9f:e0:59:1a:f4:d4:00:04:bb:c2:c4:90: 92:0c:2e:9f:a8:9e:1a:59:6b:4b:14:ad:53:47:c0: 63:c2:e4:1c:c8:d2:ab:1a:e4:34:fe:44:de:79:10: de:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:37:A4:86:1C:2D:B7:51:73:D2:67:FD:DB:E0:61:0A:7F:CF:23:15 X509v3 Authority Key Identifier: keyid:AC:90:0D:8B:61:83:D3:19:43:81:78:4B:68:CA:9C:9D:75:CC:AF:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/As6mTcYF2tKJB7CatcHzjLKa77oMmeDLT1PPTsWFkTS6/1/AC900D8B6183D3194381784B68CA9C9D75CCAF76.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC900D8B6183D3194381784B68CA9C9D75CCAF76.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/As6mTcYF2tKJB7CatcHzjLKa77oMmeDLT1PPTsWFkTS6/1/323830343a3835343a3a2f33322d3332203d3e203238333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:854::/32 Signature Algorithm: sha256WithRSAEncryption be:1f:02:14:4e:1c:cc:4e:bf:d9:d4:81:78:b6:60:55:de:e8: 25:e3:8e:7c:a7:73:0c:d4:bf:57:62:f8:03:5b:3d:34:d6:9a: 27:56:19:bd:f4:d1:94:ec:68:00:9a:03:c3:72:d1:6c:c8:56: ec:e7:1b:03:48:eb:e4:48:6b:e0:fe:86:60:23:c2:ce:f2:cf: ac:e1:2f:7e:e1:06:7c:ba:6b:81:93:9d:bf:07:4b:f8:a7:1e: a9:46:6b:b2:bc:23:64:0e:dd:48:9d:1d:28:9f:8a:f6:2b:72: 5c:a3:44:01:5e:5b:d3:be:19:10:d7:9f:57:f6:da:90:a2:7a: 57:e3:30:8c:42:80:58:3a:cf:3b:9f:22:54:16:c1:db:59:5e: 88:13:5b:a0:db:05:9b:37:5c:0d:87:c9:c1:94:70:65:fc:af: 41:bf:2c:78:6b:4e:83:1a:09:ae:1a:40:34:cf:1b:f4:62:33: a3:39:12:76:0f:eb:12:47:a9:57:1f:77:04:0d:71:de:5d:d4: 48:04:0e:c0:dd:73:43:45:95:46:4a:65:01:11:6a:6f:7d:1d: 66:14:28:e8:25:b0:59:64:17:20:5e:ee:d9:07:cc:41:dd:c7: ec:5a:d5:85:07:f9:0e:d3:6d:15:aa:97:c3:48:36:9b:f6:ec: 10:8a:51:b4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUQoSQcF+LaoNhb6jEHT1W4o60eT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUM5MDBEOEI2MTgzRDMxOTQzODE3ODRCNjhDQTlDOUQ3 NUNDQUY3NjAeFw0yNTAzMDYwMjM3MDJaFw0yNjAzMDUwMjQyMDJaMDMxMTAvBgNV BAMTKDg2MzdBNDg2MUMyREI3NTE3M0QyNjdGRERCRTA2MTBBN0ZDRjIzMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyIRjshvC85pWRDduHZmuulyS3 gIamCit70rBHjiWPBZcHeOFMUgklVS/vXDG5h2Dh4KN97rYN0qEVmfd836sjim6O eN12c4IMIuGgThGT/BLXqx+eQRoNj/nMd/QZstvbyNdN4sC5UY/2V0z46c/t+j6K CCjx2cQgXj3G2DBzZY1iYjjHNNlZSfXhF9vfC6oDou4MF5FHP2w9W/jzAFFM6Ddm PCOu9+6jfcnseFGzXlnhVYxIJJgrzKnVL85artVPD/QtqMcZZCDFz6ngIqMeURNn 65/gWRr01AAEu8LEkJIMLp+onhpZa0sUrVNHwGPC5BzI0qsa5DT+RN55EN5ZAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUhjekhhwtt1Fz0mf92+BhCn/PIxUwHwYDVR0j BBgwFoAUrJANi2GD0xlDgXhLaMqcnXXMr3YwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQXM2bVRjWUYydEtKQjdDYXRjSHpqTEthNzdvTW1lRExUMVBQVHNXRmtU UzYvMS9BQzkwMEQ4QjYxODNEMzE5NDM4MTc4NEI2OENBOUM5RDc1Q0NBRjc2LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0FDOTAwRDhCNjE4M0QzMTk0 MzgxNzg0QjY4Q0E5QzlENzVDQ0FGNzYuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0FzNm1UY1lGMnRLSkI3Q2F0Y0h6akxLYTc3b01tZURMVDFQUFRzV0ZrVFM2LzEv MzIzODMwMzQzYTM4MzUzNDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzgzMzM2 Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoBAhUMA0GCSqGSIb3DQEBCwUAA4IBAQC+HwIUThzMTr/Z 1IF4tmBV3ugl4458p3MM1L9XYvgDWz001ponVhm99NGU7GgAmgPDctFsyFbs5xsD SOvkSGvg/oZgI8LO8s+s4S9+4QZ8umuBk52/B0v4px6pRmuyvCNkDt1InR0on4r2 K3Jco0QBXlvTvhkQ159X9tqQonpX4zCMQoBYOs87nyJUFsHbWV6IE1ug2wWbN1wN h8nBlHBl/K9Bvyx4a06DGgmuGkA0zxv0YjOjORJ2D+sSR6lXH3cEDXHeXdRIBA7A 3XNDRZVGSmUBEWpvfR1mFCjoJbBZZBcgXu7ZB8xB3cfsWtWFB/kO020VqpfDSDab 9uwQilG0 -----END CERTIFICATE-----Generated at Sun Apr 20 22:37:29 2025 by rpki-client