$ rpki-client -vvf rpki-repo.registro.br/repo/BHKkGzYwWdtTr7njz1B6sFccsAKJtZZ3kDKptXM3ASqx/1/323830343a323262383a3a2f3332203d3e20323634313138.roa File: 323830343a323262383a3a2f3332203d3e20323634313138.roa (raw, json) Hash identifier: QintocWeO7Yqrzqx5pzjb44wffkwsb5rkNFckuALbO8= Subject key identifier: AA:09:03:6B:EF:84:C2:78:29:58:A3:83:9D:6F:49:8B:EC:92:A1:F9 Certificate issuer: /CN=0B31CCC1E89F4389597737BE4B57373331925A2F Certificate serial: 5B3F594920834ACFF86292DBE4CC00D0DD47680F Authority key identifier: 0B:31:CC:C1:E8:9F:43:89:59:77:37:BE:4B:57:37:33:31:92:5A:2F Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0B31CCC1E89F4389597737BE4B57373331925A2F.cer Subject info access: rsync://rpki-repo.registro.br/repo/BHKkGzYwWdtTr7njz1B6sFccsAKJtZZ3kDKptXM3ASqx/1/323830343a323262383a3a2f3332203d3e20323634313138.roa Signing time: Thu 06 Mar 2025 21:46:05 +0000 ROA not before: Thu 06 Mar 2025 21:41:05 +0000 ROA not after: Thu 05 Mar 2026 21:46:05 +0000 asID: 264118 IP address blocks: 2804:22b8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BHKkGzYwWdtTr7njz1B6sFccsAKJtZZ3kDKptXM3ASqx/1/0B31CCC1E89F4389597737BE4B57373331925A2F.crl rsync://rpki-repo.registro.br/repo/BHKkGzYwWdtTr7njz1B6sFccsAKJtZZ3kDKptXM3ASqx/1/0B31CCC1E89F4389597737BE4B57373331925A2F.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0B31CCC1E89F4389597737BE4B57373331925A2F.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 14:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:3f:59:49:20:83:4a:cf:f8:62:92:db:e4:cc:00:d0:dd:47:68:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0B31CCC1E89F4389597737BE4B57373331925A2F Validity Not Before: Mar 6 21:41:05 2025 GMT Not After : Mar 5 21:46:05 2026 GMT Subject: CN=AA09036BEF84C2782958A3839D6F498BEC92A1F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c2:7c:e6:b7:23:14:02:8e:20:a9:f3:00:3b: 37:d1:c5:6f:44:36:a1:1d:e9:e0:6c:16:d8:2d:ed: f2:d4:91:68:7f:07:b4:e0:d2:69:79:40:83:dc:65: 1a:c4:77:0a:de:67:a5:71:c1:fc:26:1e:3e:9b:5e: 66:8e:92:a6:f9:a7:44:14:23:cb:6c:ea:33:e7:74: 7f:22:3d:08:f8:cd:8b:5b:9a:f3:3e:a5:e2:c1:89: 87:7a:48:72:8d:51:4f:f3:90:ac:b2:67:a4:27:95: d8:bb:b7:64:82:d6:75:a8:65:d7:f5:12:ab:84:24: 65:5e:e8:7a:10:9a:49:c3:33:ca:24:89:45:0e:08: a9:0a:2f:f7:87:1a:ba:68:5a:f7:30:20:e1:bf:2a: 48:82:08:b3:e1:d6:c0:c1:57:66:7a:3a:e4:82:55: 07:18:d7:15:76:76:d0:27:95:59:d8:57:26:7a:5b: 47:66:67:cf:eb:eb:34:ec:55:d3:da:cc:f6:4d:43: 7d:4b:2f:10:cf:91:67:c2:84:9d:b2:0f:c1:75:aa: f5:0d:81:91:1a:cc:ea:53:37:31:1d:15:3d:15:1f: 0a:f2:b1:84:f0:c5:d6:56:2d:59:a5:a1:0d:63:b1: e7:36:58:bb:4c:e8:20:07:b4:5d:28:9d:c5:e8:0f: 81:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:09:03:6B:EF:84:C2:78:29:58:A3:83:9D:6F:49:8B:EC:92:A1:F9 X509v3 Authority Key Identifier: keyid:0B:31:CC:C1:E8:9F:43:89:59:77:37:BE:4B:57:37:33:31:92:5A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BHKkGzYwWdtTr7njz1B6sFccsAKJtZZ3kDKptXM3ASqx/1/0B31CCC1E89F4389597737BE4B57373331925A2F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0B31CCC1E89F4389597737BE4B57373331925A2F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BHKkGzYwWdtTr7njz1B6sFccsAKJtZZ3kDKptXM3ASqx/1/323830343a323262383a3a2f3332203d3e20323634313138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:22b8::/32 Signature Algorithm: sha256WithRSAEncryption 71:3a:fd:9f:24:4a:04:56:38:a1:fd:e6:af:be:f9:92:b6:d9: 4d:3e:25:58:65:8e:99:34:fe:d0:5e:51:fd:9b:d9:51:04:02: 29:6f:29:bf:b3:2c:ad:26:75:07:d4:6d:ca:77:d8:a2:72:f0: eb:1a:83:31:a7:5a:67:a9:3a:1e:32:90:01:3d:c3:e9:ea:d6: e6:8e:f6:fe:0b:46:5d:52:29:37:68:30:64:65:31:a3:03:4b: 24:95:8d:c2:37:80:21:6f:c8:4c:bc:92:43:d5:f1:2f:a8:d1: 16:c7:5e:17:9f:fa:9c:26:3f:e0:4f:39:71:03:96:a7:1b:b8: e2:58:38:95:75:f6:a6:d4:b1:68:5f:97:4b:df:3b:f6:5b:9b: 9e:46:6d:6b:e1:77:71:da:d9:a9:90:44:ee:05:cd:d1:f3:cc: 34:da:5a:bd:d9:57:65:36:8d:f3:bc:59:41:42:64:9e:65:45: a9:ff:02:84:2b:96:b7:5e:6f:d3:c3:c8:5a:28:b6:ba:c1:84: 9f:ec:e4:e1:77:d2:40:f1:b1:d7:62:3b:fe:56:fe:e8:d3:a4: 22:89:94:af:64:a8:b2:d0:d2:1e:6a:86:ba:ab:90:49:27:c0: 08:9f:69:f7:79:d8:8d:94:95:3f:1e:34:51:d7:96:3d:16:d0: c6:0d:b7:51 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIUWz9ZSSCDSs/4YpLb5MwA0N1HaA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEIzMUNDQzFFODlGNDM4OTU5NzczN0JFNEI1NzM3MzMz MTkyNUEyRjAeFw0yNTAzMDYyMTQxMDVaFw0yNjAzMDUyMTQ2MDVaMDMxMTAvBgNV BAMTKEFBMDkwMzZCRUY4NEMyNzgyOTU4QTM4MzlENkY0OThCRUM5MkExRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtwnzmtyMUAo4gqfMAOzfRxW9E NqEd6eBsFtgt7fLUkWh/B7Tg0ml5QIPcZRrEdwreZ6VxwfwmHj6bXmaOkqb5p0QU I8ts6jPndH8iPQj4zYtbmvM+peLBiYd6SHKNUU/zkKyyZ6Qnldi7t2SC1nWoZdf1 EquEJGVe6HoQmknDM8okiUUOCKkKL/eHGrpoWvcwIOG/KkiCCLPh1sDBV2Z6OuSC VQcY1xV2dtAnlVnYVyZ6W0dmZ8/r6zTsVdPazPZNQ31LLxDPkWfChJ2yD8F1qvUN gZEazOpTNzEdFT0VHwrysYTwxdZWLVmloQ1jsec2WLtM6CAHtF0oncXoD4EBAgMB AAGjggJKMIICRjAdBgNVHQ4EFgQUqgkDa++EwngpWKODnW9Ji+ySofkwHwYDVR0j BBgwFoAUCzHMweifQ4lZdze+S1c3MzGSWi8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQkhLa0d6WXdXZHRUcjduanoxQjZzRmNjc0FLSnRaWjNrREtwdFhNM0FT cXgvMS8wQjMxQ0NDMUU4OUY0Mzg5NTk3NzM3QkU0QjU3MzczMzMxOTI1QTJGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzBCMzFDQ0MxRTg5RjQzODk1 OTc3MzdCRTRCNTczNzMzMzE5MjVBMkYuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCB kwYIKwYBBQUHMAuGgYZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0JIS2tHell3V2R0VHI3bmp6MUI2c0ZjY3NBS0p0Wloza0RLcHRYTTNBU3F4LzEv MzIzODMwMzQzYTMyMzI2MjM4M2EzYTJmMzMzMjIwM2QzZTIwMzIzNjM0MzEzMTM4 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAKAQiuDANBgkqhkiG9w0BAQsFAAOCAQEAcTr9nyRKBFY4of3m r775krbZTT4lWGWOmTT+0F5R/ZvZUQQCKW8pv7MsrSZ1B9RtynfYonLw6xqDMada Z6k6HjKQAT3D6erW5o72/gtGXVIpN2gwZGUxowNLJJWNwjeAIW/ITLySQ9XxL6jR FsdeF5/6nCY/4E85cQOWpxu44lg4lXX2ptSxaF+XS9879lubnkZta+F3cdrZqZBE 7gXN0fPMNNpavdlXZTaN87xZQUJknmVFqf8ChCuWt15v08PIWii2usGEn+zk4XfS QPGx12I7/lb+6NOkIomUr2SostDSHmqGuquQSSfACJ9p93nYjZSVPx40UdeWPRbQ xg23UQ== -----END CERTIFICATE-----Generated at Tue Apr 22 00:20:24 2025 by rpki-client