$ rpki-client -vvf rpki-repo.registro.br/repo/BRZdpT1jqUkqVnPvWuWfeYuQxgSS63vCRF2Ef86of8nw/1/323830343a353831383a383030303a3a2f33332d3334203d3e20323638313036.roa File: 323830343a353831383a383030303a3a2f33332d3334203d3e20323638313036.roa (raw, json) Hash identifier: vNjuQwwKUL+izxlCLRsfIJ/mNXJFuAJrwBuffk2Ue3g= Subject key identifier: F3:6F:BA:3C:A0:BA:1E:28:97:7A:39:31:86:99:25:1A:A0:9D:2F:79 Certificate issuer: /CN=1771F2F1D3DC9A42A40D80A53EABBA062A2A1077 Certificate serial: 68D17A4DDA50D5AC53BDEFB6B6305C6DF9743050 Authority key identifier: 17:71:F2:F1:D3:DC:9A:42:A4:0D:80:A5:3E:AB:BA:06:2A:2A:10:77 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1771F2F1D3DC9A42A40D80A53EABBA062A2A1077.cer Subject info access: rsync://rpki-repo.registro.br/repo/BRZdpT1jqUkqVnPvWuWfeYuQxgSS63vCRF2Ef86of8nw/1/323830343a353831383a383030303a3a2f33332d3334203d3e20323638313036.roa Signing time: Wed 05 Mar 2025 22:33:05 +0000 ROA not before: Wed 05 Mar 2025 22:28:05 +0000 ROA not after: Wed 04 Mar 2026 22:33:05 +0000 asID: 268106 IP address blocks: 2804:5818:8000::/33 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BRZdpT1jqUkqVnPvWuWfeYuQxgSS63vCRF2Ef86of8nw/1/1771F2F1D3DC9A42A40D80A53EABBA062A2A1077.crl rsync://rpki-repo.registro.br/repo/BRZdpT1jqUkqVnPvWuWfeYuQxgSS63vCRF2Ef86of8nw/1/1771F2F1D3DC9A42A40D80A53EABBA062A2A1077.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1771F2F1D3DC9A42A40D80A53EABBA062A2A1077.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 19 Apr 2025 01:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d1:7a:4d:da:50:d5:ac:53:bd:ef:b6:b6:30:5c:6d:f9:74:30:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1771F2F1D3DC9A42A40D80A53EABBA062A2A1077 Validity Not Before: Mar 5 22:28:05 2025 GMT Not After : Mar 4 22:33:05 2026 GMT Subject: CN=F36FBA3CA0BA1E28977A39318699251AA09D2F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:48:09:27:ca:65:3a:75:00:43:2a:c7:78:9e: 68:69:d2:fa:64:d3:13:b9:7d:6f:c8:17:08:c6:4f: da:bd:10:02:7e:60:4d:62:ef:5f:84:c1:c1:b8:f2: 93:9d:0b:33:2c:25:a0:81:a5:7c:36:b5:b8:e3:8c: ce:8e:25:d5:72:24:1d:76:43:10:3b:70:dc:dc:3c: 8e:44:ab:39:6c:c1:aa:08:1a:5a:86:f8:94:cc:bd: f1:ec:0e:44:b6:f5:eb:12:b1:f1:a3:51:f4:32:63: 9d:b7:3d:23:ed:d8:0a:60:02:c6:df:eb:9e:21:17: b4:f3:eb:f0:ce:8e:52:e4:4b:bb:ca:77:9f:b9:41: f2:4b:85:e5:59:8e:cd:59:c3:34:bd:8c:f1:06:3d: 6a:3e:ad:e9:6f:cf:5e:26:a4:d4:46:42:be:f6:39: 68:f9:28:9f:44:e1:76:67:b9:51:60:16:98:7b:4e: 75:24:eb:ef:3c:66:e6:73:3b:44:ca:7c:30:79:66: 5b:65:54:b1:97:7f:aa:4c:0b:30:07:9e:28:1c:74: 19:12:dd:4b:c6:1c:b9:49:9c:b4:ba:7b:32:13:a9: e7:55:f3:7a:72:6e:c6:f4:c1:fa:d4:27:94:40:3d: 7b:16:c6:6a:a7:e5:a4:29:b2:52:b1:4e:8c:39:dc: 94:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:6F:BA:3C:A0:BA:1E:28:97:7A:39:31:86:99:25:1A:A0:9D:2F:79 X509v3 Authority Key Identifier: keyid:17:71:F2:F1:D3:DC:9A:42:A4:0D:80:A5:3E:AB:BA:06:2A:2A:10:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BRZdpT1jqUkqVnPvWuWfeYuQxgSS63vCRF2Ef86of8nw/1/1771F2F1D3DC9A42A40D80A53EABBA062A2A1077.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1771F2F1D3DC9A42A40D80A53EABBA062A2A1077.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BRZdpT1jqUkqVnPvWuWfeYuQxgSS63vCRF2Ef86of8nw/1/323830343a353831383a383030303a3a2f33332d3334203d3e20323638313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5818:8000::/33 Signature Algorithm: sha256WithRSAEncryption a2:41:d0:33:6b:03:98:a9:9f:13:80:ab:fe:77:20:7a:2e:16: 65:f7:97:c2:59:3e:7f:5c:b6:2b:29:b8:75:2a:3a:93:64:d1: 7c:53:6c:16:b1:a7:03:70:a0:91:0d:49:9d:8d:f9:5a:58:5d: 35:00:d3:58:30:9c:eb:d9:0a:c6:e0:0e:82:15:00:e9:49:b8: e8:ee:6c:77:88:2e:dd:21:df:8e:65:1f:11:eb:1f:1c:84:8d: d3:dd:25:3f:63:4e:ba:5b:64:77:ed:4b:ac:f6:3f:79:da:ee: 44:c1:59:b0:d3:b9:2f:b6:cd:b2:8b:f2:fb:c4:18:79:a4:9a: 01:6f:53:ba:2c:44:b2:04:93:cd:93:4a:e4:64:01:b4:d1:e0: 4d:7d:e0:24:97:f0:e8:f6:8d:16:47:f5:c0:db:46:94:a3:84: db:03:7f:de:b2:7a:bc:00:68:61:e7:ff:a5:aa:4b:11:d0:bc: 82:57:fc:34:f8:ab:30:2c:04:dc:2f:c1:ba:b5:ad:36:f5:e0: c2:a3:06:9f:16:15:27:69:69:78:56:f8:36:d8:07:6e:b4:8e: 0b:72:14:78:01:32:b3:51:35:28:ed:6f:c3:be:49:05:24:44: 71:5b:46:f1:17:be:8d:00:51:77:d1:73:7f:67:ef:99:c4:fd: dd:d2:38:46 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUaNF6TdpQ1axTve+2tjBcbfl0MFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTc3MUYyRjFEM0RDOUE0MkE0MEQ4MEE1M0VBQkJBMDYy QTJBMTA3NzAeFw0yNTAzMDUyMjI4MDVaFw0yNjAzMDQyMjMzMDVaMDMxMTAvBgNV BAMTKEYzNkZCQTNDQTBCQTFFMjg5NzdBMzkzMTg2OTkyNTFBQTA5RDJGNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrSAknymU6dQBDKsd4nmhp0vpk 0xO5fW/IFwjGT9q9EAJ+YE1i71+EwcG48pOdCzMsJaCBpXw2tbjjjM6OJdVyJB12 QxA7cNzcPI5EqzlswaoIGlqG+JTMvfHsDkS29esSsfGjUfQyY523PSPt2ApgAsbf 654hF7Tz6/DOjlLkS7vKd5+5QfJLheVZjs1ZwzS9jPEGPWo+relvz14mpNRGQr72 OWj5KJ9E4XZnuVFgFph7TnUk6+88ZuZzO0TKfDB5ZltlVLGXf6pMCzAHnigcdBkS 3UvGHLlJnLS6ezITqedV83pybsb0wfrUJ5RAPXsWxmqn5aQpslKxTow53JSrAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU82+6PKC6HiiXejkxhpklGqCdL3kwHwYDVR0j BBgwFoAUF3Hy8dPcmkKkDYClPqu6BioqEHcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQlJaZHBUMWpxVWtxVm5Qdld1V2ZlWXVReGdTUzYzdkNSRjJFZjg2b2Y4 bncvMS8xNzcxRjJGMUQzREM5QTQyQTQwRDgwQTUzRUFCQkEwNjJBMkExMDc3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE3NzFGMkYxRDNEQzlBNDJB NDBEODBBNTNFQUJCQTA2MkEyQTEwNzcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0JSWmRwVDFqcVVrcVZuUHZXdVdmZVl1UXhnU1M2M3ZDUkYyRWY4Nm9mOG53LzEv MzIzODMwMzQzYTM1MzgzMTM4M2EzODMwMzAzMDNhM2EyZjMzMzMyZDMzMzQyMDNk M2UyMDMyMzYzODMxMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBygEWBiAMA0GCSqGSIb3DQEBCwUA A4IBAQCiQdAzawOYqZ8TgKv+dyB6LhZl95fCWT5/XLYrKbh1KjqTZNF8U2wWsacD cKCRDUmdjflaWF01ANNYMJzr2QrG4A6CFQDpSbjo7mx3iC7dId+OZR8R6x8chI3T 3SU/Y066W2R37Uus9j952u5EwVmw07kvts2yi/L7xBh5pJoBb1O6LESyBJPNk0rk ZAG00eBNfeAkl/Do9o0WR/XA20aUo4TbA3/esnq8AGhh5/+lqksR0LyCV/w0+Ksw LATcL8G6ta029eDCowafFhUnaWl4Vvg22AdutI4LchR4ATKzUTUo7W/DvkkFJERx W0bxF76NAFF30XN/Z++ZxP3d0jhG -----END CERTIFICATE-----Generated at Fri Apr 18 10:17:25 2025 by rpki-client