$ rpki-client -vvf rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/323830343a316530633a343030303a3a2f33362d3336203d3e20323634313431.roa File: 323830343a316530633a343030303a3a2f33362d3336203d3e20323634313431.roa (raw, json) Hash identifier: DOH8gEpTl3fIDw/nxFrWV3LOSgizjy2yuhOrS2RB9lU= Subject key identifier: 8B:D1:E6:63:F5:C5:44:9E:85:A1:EE:35:46:73:7F:18:7B:DC:F0:D5 Certificate issuer: /CN=A2B96F8B53B06EE448A51709B8D230AE49DBF30D Certificate serial: 65C3B63B9E5383A510A321CED51086023A1DEE2C Authority key identifier: A2:B9:6F:8B:53:B0:6E:E4:48:A5:17:09:B8:D2:30:AE:49:DB:F3:0D Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.cer Subject info access: rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/323830343a316530633a343030303a3a2f33362d3336203d3e20323634313431.roa Signing time: Thu 02 Jan 2025 20:01:09 +0000 ROA not before: Thu 02 Jan 2025 19:56:09 +0000 ROA not after: Thu 01 Jan 2026 20:01:09 +0000 asID: 264141 IP address blocks: 2804:1e0c:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.crl rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 12 Apr 2025 13:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:c3:b6:3b:9e:53:83:a5:10:a3:21:ce:d5:10:86:02:3a:1d:ee:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2B96F8B53B06EE448A51709B8D230AE49DBF30D Validity Not Before: Jan 2 19:56:09 2025 GMT Not After : Jan 1 20:01:09 2026 GMT Subject: CN=8BD1E663F5C5449E85A1EE3546737F187BDCF0D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4b:78:e2:1b:f3:e3:a4:43:6b:73:1d:85:b7: fc:9f:55:57:a9:66:4d:8d:44:5f:f1:84:b8:67:27: b8:17:91:ab:d0:48:e3:42:21:7c:8d:15:35:ef:c5: a1:98:3a:3d:ef:ad:4c:88:5c:bc:c4:d8:ad:5a:50: 4c:77:54:1d:00:90:c2:5f:b9:27:32:59:7f:45:2f: a2:19:75:6e:a5:7b:f8:68:85:e2:c1:8e:36:5c:f8: 83:b1:75:d5:63:b9:70:d7:3c:c7:58:c4:ae:34:a1: 56:7d:08:52:0b:f7:91:bc:11:c8:d1:9f:dc:a1:88: af:b7:75:27:2d:08:66:b0:b1:6e:9e:47:78:4d:07: a3:fb:6b:79:97:f2:78:b7:fa:45:b8:c2:50:47:f7: d1:c2:61:ba:4f:3a:43:10:d8:6b:3e:78:6e:1d:f7: 51:63:1c:19:fd:4e:b4:ad:c5:cc:6d:ff:85:10:9d: 45:d1:75:61:c4:53:bf:35:34:ad:94:f5:d3:d6:bc: aa:65:26:b2:e4:60:13:ef:0c:61:71:d1:52:94:a6: ce:9d:fb:82:e0:f0:50:fe:ea:a1:0a:75:0f:93:dd: 50:99:dc:4e:a2:a4:15:c4:a3:2d:a8:74:fb:fa:ed: 57:48:60:a5:b8:4c:64:79:21:32:b4:44:0e:5e:5f: 04:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D1:E6:63:F5:C5:44:9E:85:A1:EE:35:46:73:7F:18:7B:DC:F0:D5 X509v3 Authority Key Identifier: keyid:A2:B9:6F:8B:53:B0:6E:E4:48:A5:17:09:B8:D2:30:AE:49:DB:F3:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/323830343a316530633a343030303a3a2f33362d3336203d3e20323634313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:1e0c:4000::/36 Signature Algorithm: sha256WithRSAEncryption 49:63:dc:3f:f7:8a:01:39:84:9d:52:1a:23:b4:0b:6a:bb:a1: a3:ff:a0:67:15:e6:c7:95:87:90:8e:74:a0:9b:9d:f0:3d:af: 88:2b:78:d2:9c:98:54:06:de:71:cf:c5:d1:66:b4:13:1a:81: af:17:49:9a:e9:e5:27:5f:a8:dc:39:61:75:9b:51:b6:83:c4: 15:16:52:dc:25:d1:1f:d8:ee:a4:c7:1d:6f:c0:cd:0b:55:11: 6e:fd:b2:0a:dc:27:69:8a:6e:cd:69:ac:40:4f:05:85:df:ce: ef:87:8d:38:16:d2:79:03:c3:87:ba:9c:86:96:49:bb:d2:70: 29:a7:41:f7:0e:51:47:b7:f2:92:a6:87:f5:ea:a3:be:9a:40: d1:5c:d8:58:8f:0a:d3:e4:63:08:95:3c:45:97:84:41:6a:d2: 63:ee:55:b0:8b:0a:23:67:d8:0e:38:b8:a4:92:b9:f0:b3:fb: 10:c2:b0:53:18:0b:cf:94:27:13:4a:fd:29:50:8c:ae:71:60: 41:e8:71:b9:68:66:bb:d2:fa:0e:77:11:b8:02:3c:d5:a0:d4: 81:7f:e4:bf:89:9a:d5:b5:38:2b:04:ab:a8:a1:de:03:dd:70: e2:b9:48:78:1a:b7:75:95:10:15:a7:76:94:d6:58:6c:6b:07: 7d:05:36:e8 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUZcO2O55Tg6UQoyHO1RCGAjod7iwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJCOTZGOEI1M0IwNkVFNDQ4QTUxNzA5QjhEMjMwQUU0 OURCRjMwRDAeFw0yNTAxMDIxOTU2MDlaFw0yNjAxMDEyMDAxMDlaMDMxMTAvBgNV BAMTKDhCRDFFNjYzRjVDNTQ0OUU4NUExRUUzNTQ2NzM3RjE4N0JEQ0YwRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiS3jiG/PjpENrcx2Ft/yfVVep Zk2NRF/xhLhnJ7gXkavQSONCIXyNFTXvxaGYOj3vrUyIXLzE2K1aUEx3VB0AkMJf uScyWX9FL6IZdW6le/hoheLBjjZc+IOxddVjuXDXPMdYxK40oVZ9CFIL95G8EcjR n9yhiK+3dSctCGawsW6eR3hNB6P7a3mX8ni3+kW4wlBH99HCYbpPOkMQ2Gs+eG4d 91FjHBn9TrStxcxt/4UQnUXRdWHEU781NK2U9dPWvKplJrLkYBPvDGFx0VKUps6d +4Lg8FD+6qEKdQ+T3VCZ3E6ipBXEoy2odPv67VdIYKW4TGR5ITK0RA5eXwSfAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUi9HmY/XFRJ6Foe41RnN/GHvc8NUwHwYDVR0j BBgwFoAUorlvi1OwbuRIpRcJuNIwrknb8w0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQjVrQVVZanBwS2ppOWNWY01kTlR4d052ZGtZbzEzejJqRnV5Wm81OHVY ZmkvMC9BMkI5NkY4QjUzQjA2RUU0NDhBNTE3MDlCOEQyMzBBRTQ5REJGMzBELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0EyQjk2RjhCNTNCMDZFRTQ0 OEE1MTcwOUI4RDIzMEFFNDlEQkYzMEQuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0I1a0FVWWpwcEtqaTljVmNNZE5UeHdOdmRrWW8xM3oyakZ1eVpvNTh1WGZpLzAv MzIzODMwMzQzYTMxNjUzMDYzM2EzNDMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzNDMxMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEHgxAMA0GCSqGSIb3DQEBCwUA A4IBAQBJY9w/94oBOYSdUhojtAtqu6Gj/6BnFebHlYeQjnSgm53wPa+IK3jSnJhU Bt5xz8XRZrQTGoGvF0ma6eUnX6jcOWF1m1G2g8QVFlLcJdEf2O6kxx1vwM0LVRFu /bIK3Cdpim7NaaxATwWF387vh404FtJ5A8OHupyGlkm70nApp0H3DlFHt/KSpof1 6qO+mkDRXNhYjwrT5GMIlTxFl4RBatJj7lWwiwojZ9gOOLikkrnws/sQwrBTGAvP lCcTSv0pUIyucWBB6HG5aGa70voOdxG4AjzVoNSBf+S/iZrVtTgrBKuood4D3XDi uUh4Grd1lRAVp3aU1lhsawd9BTbo -----END CERTIFICATE-----Generated at Fri Apr 11 15:53:48 2025 by rpki-client