$ rpki-client -vvf rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/323830343a336130383a343030303a3a2f33342d3334203d3e20323636303636.roa File: 323830343a336130383a343030303a3a2f33342d3334203d3e20323636303636.roa (raw, json) Hash identifier: Tx4p38mebpYkQcFM7AKbY0qRg461016wZrPuwcOb5S0= Subject key identifier: 51:C4:63:82:EE:B3:94:87:B0:02:A2:03:8E:60:B0:D1:18:59:C9:A7 Certificate issuer: /CN=7F2FB0D3B7927571948A2C39EF13D9F9C3C323F0 Certificate serial: 3942E05D3BE75BFFE8973B6DB4CB3CDFF57BDE4C Authority key identifier: 7F:2F:B0:D3:B7:92:75:71:94:8A:2C:39:EF:13:D9:F9:C3:C3:23:F0 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7F2FB0D3B7927571948A2C39EF13D9F9C3C323F0.cer Subject info access: rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/323830343a336130383a343030303a3a2f33342d3334203d3e20323636303636.roa Signing time: Mon 03 Mar 2025 22:13:37 +0000 ROA not before: Mon 03 Mar 2025 22:08:37 +0000 ROA not after: Mon 02 Mar 2026 22:13:37 +0000 asID: 266066 IP address blocks: 2804:3a08:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/7F2FB0D3B7927571948A2C39EF13D9F9C3C323F0.crl rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/7F2FB0D3B7927571948A2C39EF13D9F9C3C323F0.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7F2FB0D3B7927571948A2C39EF13D9F9C3C323F0.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 06 Apr 2025 09:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:42:e0:5d:3b:e7:5b:ff:e8:97:3b:6d:b4:cb:3c:df:f5:7b:de:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F2FB0D3B7927571948A2C39EF13D9F9C3C323F0 Validity Not Before: Mar 3 22:08:37 2025 GMT Not After : Mar 2 22:13:37 2026 GMT Subject: CN=51C46382EEB39487B002A2038E60B0D11859C9A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ec:fd:e9:04:7b:77:c9:ce:4a:57:7d:0e:8a: 52:87:cb:32:8d:c0:fd:8b:f5:b6:4e:f0:3b:eb:d1: 0a:73:01:30:67:42:11:b3:e8:e2:26:e5:16:86:ca: ee:19:03:81:72:52:32:ed:7d:0d:2d:56:a3:2c:3f: 55:5a:79:29:3d:b2:a5:d9:d1:7a:60:7d:4d:01:c3: 61:b5:fd:cc:1b:ca:61:00:49:e2:e6:e4:e6:8c:2e: d1:d1:8b:88:c8:ab:e1:b9:d4:f4:14:7b:91:fd:35: b2:8b:d3:8f:23:31:74:8f:4e:7c:c9:9c:60:a2:55: bf:19:ee:d5:36:94:d9:8b:1f:49:4a:93:63:b1:09: e2:c8:16:cf:9f:11:a1:54:4a:38:cf:6d:a2:f5:d5: 93:b8:4a:2f:5e:75:da:28:2b:ce:91:01:dd:71:9b: 7b:bd:42:f9:be:94:98:b4:61:92:7c:bb:67:c7:ad: 09:43:09:dd:ab:bd:b5:2c:e3:c2:4e:9d:60:fd:bb: 80:b7:c1:af:8a:6c:b8:df:26:19:9b:48:9a:7a:a7: 3f:02:87:ab:c2:a1:60:e9:d0:e5:c8:3f:28:8f:9e: da:88:c8:8d:90:34:9b:0e:39:e1:05:1c:bf:af:1d: d6:38:de:bf:66:c9:af:41:49:75:04:24:40:2a:6b: 8a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C4:63:82:EE:B3:94:87:B0:02:A2:03:8E:60:B0:D1:18:59:C9:A7 X509v3 Authority Key Identifier: keyid:7F:2F:B0:D3:B7:92:75:71:94:8A:2C:39:EF:13:D9:F9:C3:C3:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/7F2FB0D3B7927571948A2C39EF13D9F9C3C323F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7F2FB0D3B7927571948A2C39EF13D9F9C3C323F0.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/323830343a336130383a343030303a3a2f33342d3334203d3e20323636303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:3a08:4000::/34 Signature Algorithm: sha256WithRSAEncryption 4d:36:87:1a:5b:88:6f:9f:24:88:14:d4:94:e9:ef:5c:c0:c5: e8:d0:b2:b3:82:d7:66:33:79:04:e7:6b:28:d1:c2:55:6b:d3: 25:ac:d7:5d:3e:c7:2c:02:ec:32:4c:c0:c9:ee:7d:af:9b:71: fa:a9:ca:06:81:19:f7:fc:10:eb:4f:a6:62:84:13:20:13:25: f7:64:c3:bd:44:8a:c8:a9:a0:f3:4f:71:f7:2a:6a:af:2a:50: ca:b0:11:9e:a0:92:a0:04:09:34:08:e1:11:9b:80:28:66:7e: c4:d6:1b:cc:53:f1:19:37:0b:9c:e2:4c:3c:59:df:40:d8:51: bc:38:77:9c:a8:c0:80:72:4a:59:92:41:cb:08:a1:82:19:07: 41:97:0a:ae:33:dd:a6:25:f1:cd:be:16:2a:ba:13:76:59:0c: d0:5b:94:64:8f:d9:ba:3c:69:9b:39:2c:bd:15:34:83:09:49: 9d:34:6e:e7:12:41:38:7d:77:93:dd:48:04:8f:fe:2e:dd:5d: d2:02:f3:27:04:e3:2c:41:84:dd:e5:70:4e:70:81:c8:1c:7f: 4f:b3:fb:41:9f:0a:e6:3d:f0:e1:b2:17:a0:00:b2:54:74:d4: fa:b1:81:f6:ab:67:d9:82:2d:7a:e0:4b:f3:b7:15:91:35:54: 83:f3:2d:d2 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUOULgXTvnW//olztttMs83/V73kwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0YyRkIwRDNCNzkyNzU3MTk0OEEyQzM5RUYxM0Q5RjlD M0MzMjNGMDAeFw0yNTAzMDMyMjA4MzdaFw0yNjAzMDIyMjEzMzdaMDMxMTAvBgNV BAMTKDUxQzQ2MzgyRUVCMzk0ODdCMDAyQTIwMzhFNjBCMEQxMTg1OUM5QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB7P3pBHt3yc5KV30OilKHyzKN wP2L9bZO8Dvr0QpzATBnQhGz6OIm5RaGyu4ZA4FyUjLtfQ0tVqMsP1VaeSk9sqXZ 0XpgfU0Bw2G1/cwbymEASeLm5OaMLtHRi4jIq+G51PQUe5H9NbKL048jMXSPTnzJ nGCiVb8Z7tU2lNmLH0lKk2OxCeLIFs+fEaFUSjjPbaL11ZO4Si9eddooK86RAd1x m3u9Qvm+lJi0YZJ8u2fHrQlDCd2rvbUs48JOnWD9u4C3wa+KbLjfJhmbSJp6pz8C h6vCoWDp0OXIPyiPntqIyI2QNJsOOeEFHL+vHdY43r9mya9BSXUEJEAqa4oJAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUUcRjgu6zlIewAqIDjmCw0RhZyacwHwYDVR0j BBgwFoAUfy+w07eSdXGUiiw57xPZ+cPDI/AwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQk1DV1hQdXhDd0FjRUxidHo4WHdNek5IaWloM2NHd2VQU21IWGdBekI5 NncvMC83RjJGQjBEM0I3OTI3NTcxOTQ4QTJDMzlFRjEzRDlGOUMzQzMyM0YwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzdGMkZCMEQzQjc5Mjc1NzE5 NDhBMkMzOUVGMTNEOUY5QzNDMzIzRjAuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0JNQ1dYUHV4Q3dBY0VMYnR6OFh3TXpOSGlpaDNjR3dlUFNtSFhnQXpCOTZ3LzAv MzIzODMwMzQzYTMzNjEzMDM4M2EzNDMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzNjMwMzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEOghAMA0GCSqGSIb3DQEBCwUA A4IBAQBNNocaW4hvnySIFNSU6e9cwMXo0LKzgtdmM3kE52so0cJVa9MlrNddPscs AuwyTMDJ7n2vm3H6qcoGgRn3/BDrT6ZihBMgEyX3ZMO9RIrIqaDzT3H3KmqvKlDK sBGeoJKgBAk0COERm4AoZn7E1hvMU/EZNwuc4kw8Wd9A2FG8OHecqMCAckpZkkHL CKGCGQdBlwquM92mJfHNvhYquhN2WQzQW5Rkj9m6PGmbOSy9FTSDCUmdNG7nEkE4 fXeT3UgEj/4u3V3SAvMnBOMsQYTd5XBOcIHIHH9Ps/tBnwrmPfDhshegALJUdNT6 sYH2q2fZgi164EvztxWRNVSD8y3S -----END CERTIFICATE-----Generated at Sat Apr 5 12:33:14 2025 by rpki-client