$ rpki-client -vvf rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/323830343a316635343a666630303a3a2f34302d3430203d3e20323732323230.roa File: 323830343a316635343a666630303a3a2f34302d3430203d3e20323732323230.roa (raw, json) Hash identifier: 4i7bGHdxVTMkuS5qYVQ3ZZqO6DS7azDaJ1e2cCNQZQM= Subject key identifier: 4A:CE:00:42:F7:8B:AA:85:26:F6:66:A2:5C:E2:11:60:FA:F0:5C:A5 Certificate issuer: /CN=2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8 Certificate serial: 53291ABDB6E634C6AFF08058F743F9B834DCDB15 Authority key identifier: 2A:37:8F:3F:C3:AC:5A:FF:D2:AE:F5:89:39:89:56:7E:2D:C4:0D:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8.cer Subject info access: rsync://rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/323830343a316635343a666630303a3a2f34302d3430203d3e20323732323230.roa Signing time: Wed 05 Mar 2025 19:00:00 +0000 ROA not before: Wed 05 Mar 2025 18:55:00 +0000 ROA not after: Wed 04 Mar 2026 19:00:00 +0000 asID: 272220 IP address blocks: 2804:1f54:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8.crl rsync://rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 01:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:29:1a:bd:b6:e6:34:c6:af:f0:80:58:f7:43:f9:b8:34:dc:db:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8 Validity Not Before: Mar 5 18:55:00 2025 GMT Not After : Mar 4 19:00:00 2026 GMT Subject: CN=4ACE0042F78BAA8526F666A25CE21160FAF05CA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e5:5e:28:84:b1:13:e7:0f:59:8c:f2:f5:b8: 47:7b:a6:d3:c1:43:9b:9b:12:cf:d5:70:de:96:20: b1:94:7b:2b:89:5e:ed:63:21:24:04:3a:2d:92:4f: f8:6e:39:6b:37:63:58:bf:0c:ae:21:fd:8d:ab:06: 52:36:f1:29:0a:20:9e:41:4a:ef:97:52:98:f1:92: f5:45:7f:1f:59:35:0c:d5:e4:c8:18:c7:35:57:07: d0:bd:3b:7d:68:06:f9:e6:1d:e0:a9:66:0b:58:2f: b4:1a:85:04:54:dd:28:a9:c4:84:51:db:6c:f2:1b: 99:bc:65:86:e1:78:84:f0:66:27:b3:2e:66:67:2a: 4f:91:a3:8a:d1:5e:16:ab:f2:94:74:c7:4d:a2:ea: 9e:da:91:21:31:6c:40:68:e8:0a:43:57:f2:28:7b: 6a:b1:fe:b0:8b:51:3a:4b:e4:e8:be:ae:84:a1:08: 62:cf:60:37:c2:2d:a0:e5:8f:25:61:42:9f:30:7d: 8e:b4:03:75:4e:97:7d:26:0f:58:44:01:5b:bb:fb: 71:a2:41:36:08:2a:f6:c9:c9:4e:ad:67:64:fe:51: 95:74:b9:64:e6:ce:7e:81:d2:bd:9a:21:5f:25:e0: ec:b1:48:ae:1c:9b:30:b9:53:a8:f0:a8:a8:6c:e9: 90:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:CE:00:42:F7:8B:AA:85:26:F6:66:A2:5C:E2:11:60:FA:F0:5C:A5 X509v3 Authority Key Identifier: keyid:2A:37:8F:3F:C3:AC:5A:FF:D2:AE:F5:89:39:89:56:7E:2D:C4:0D:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/323830343a316635343a666630303a3a2f34302d3430203d3e20323732323230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:1f54:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 62:4b:6c:e6:ea:0c:b8:22:97:05:5d:e0:59:3d:09:0c:86:71: a1:53:8d:9f:19:18:b3:0d:51:c3:b2:44:14:15:c8:59:6f:5a: 23:e3:48:c0:69:68:f3:00:31:c1:1d:22:33:5d:90:71:41:ca: 5d:60:1b:d2:ed:c6:c0:bd:f7:f2:23:f9:9e:01:cb:3e:ee:86: 90:47:d7:6a:11:7f:b5:6e:ae:95:a1:6f:68:fd:f1:e5:ad:45: f5:d3:83:2d:30:d6:ff:ea:fd:7b:ec:0c:00:88:2e:e4:55:56: 41:0a:3d:42:00:69:a1:10:30:b1:8d:ee:34:19:5b:82:9c:94: 98:04:01:fa:7b:2d:9f:cd:28:c2:42:40:19:83:80:a3:c4:9b: 16:e6:14:88:8d:9c:ec:74:a5:a6:9e:82:98:4e:c1:aa:0b:2b: 0e:11:8f:85:22:5c:c0:d5:9e:c0:55:cb:62:07:ec:f1:16:45: 51:16:ae:6b:63:8b:5d:4e:5e:1d:d9:ad:16:c4:26:4a:a9:ab: ac:6e:c3:64:9e:e3:00:76:d0:be:27:15:90:f3:99:f8:69:0a: 2d:44:6d:13:39:2d:ac:93:a4:5f:d6:53:ed:50:4e:77:38:54: 9e:22:92:17:51:b3:7d:75:69:91:63:64:32:c7:7b:29:1d:63: 9e:55:4b:29 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUUykavbbmNMav8IBY90P5uDTc2xUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEzNzhGM0ZDM0FDNUFGRkQyQUVGNTg5Mzk4OTU2N0Uy REM0MERCODAeFw0yNTAzMDUxODU1MDBaFw0yNjAzMDQxOTAwMDBaMDMxMTAvBgNV BAMTKDRBQ0UwMDQyRjc4QkFBODUyNkY2NjZBMjVDRTIxMTYwRkFGMDVDQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA5V4ohLET5w9ZjPL1uEd7ptPB Q5ubEs/VcN6WILGUeyuJXu1jISQEOi2ST/huOWs3Y1i/DK4h/Y2rBlI28SkKIJ5B Su+XUpjxkvVFfx9ZNQzV5MgYxzVXB9C9O31oBvnmHeCpZgtYL7QahQRU3SipxIRR 22zyG5m8ZYbheITwZiezLmZnKk+Ro4rRXhar8pR0x02i6p7akSExbEBo6ApDV/Io e2qx/rCLUTpL5Oi+roShCGLPYDfCLaDljyVhQp8wfY60A3VOl30mD1hEAVu7+3Gi QTYIKvbJyU6tZ2T+UZV0uWTmzn6B0r2aIV8l4OyxSK4cmzC5U6jwqKhs6ZB9AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUSs4AQveLqoUm9maiXOIRYPrwXKUwHwYDVR0j BBgwFoAUKjePP8OsWv/SrvWJOYlWfi3EDbgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQmFkRDRXMkF5b25wRDRGTVZveENFQ2Z2c2VnN3hESGlrYUFqc2R0WEFj RXUvMS8yQTM3OEYzRkMzQUM1QUZGRDJBRUY1ODkzOTg5NTY3RTJEQzQwREI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJBMzc4RjNGQzNBQzVBRkZE MkFFRjU4OTM5ODk1NjdFMkRDNDBEQjguY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0JhZEQ0VzJBeW9ucEQ0Rk1Wb3hDRUNmdnNlZzd4REhpa2FBanNkdFhBY0V1LzEv MzIzODMwMzQzYTMxNjYzNTM0M2E2NjY2MzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNk M2UyMDMyMzczMjMyMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACgEH1T/MA0GCSqGSIb3DQEBCwUA A4IBAQBiS2zm6gy4IpcFXeBZPQkMhnGhU42fGRizDVHDskQUFchZb1oj40jAaWjz ADHBHSIzXZBxQcpdYBvS7cbAvffyI/meAcs+7oaQR9dqEX+1bq6VoW9o/fHlrUX1 04MtMNb/6v177AwAiC7kVVZBCj1CAGmhEDCxje40GVuCnJSYBAH6ey2fzSjCQkAZ g4CjxJsW5hSIjZzsdKWmnoKYTsGqCysOEY+FIlzA1Z7AVctiB+zxFkVRFq5rY4td Tl4d2a0WxCZKqausbsNknuMAdtC+JxWQ85n4aQotRG0TOS2sk6Rf1lPtUE53OFSe IpIXUbN9dWmRY2Qyx3spHWOeVUsp -----END CERTIFICATE-----Generated at Mon Apr 7 13:11:52 2025 by rpki-client