$ rpki-client -vvf rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/323830343a313034633a653230303a3a2f34302d3430203d3e20323633363239.roa File: 323830343a313034633a653230303a3a2f34302d3430203d3e20323633363239.roa (raw, json) Hash identifier: QDUKcN8rjfAlU8nr1wf2bEGlAQ8EdpAJBkGkVXWEL3Q= Subject key identifier: 02:1E:A9:8B:F4:65:1A:91:65:D2:F9:5F:04:68:1A:14:13:AF:D4:B4 Certificate issuer: /CN=EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD Certificate serial: 3D9E1FF35E602843027BF45D7DBCF226A53A9993 Authority key identifier: EC:92:5A:78:F8:BF:CB:62:0C:80:CC:8F:AD:47:F5:F3:02:EF:FB:CD Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.cer Subject info access: rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/323830343a313034633a653230303a3a2f34302d3430203d3e20323633363239.roa Signing time: Mon 17 Mar 2025 17:57:22 +0000 ROA not before: Mon 17 Mar 2025 17:52:22 +0000 ROA not after: Mon 16 Mar 2026 17:57:22 +0000 asID: 263629 IP address blocks: 2804:104c:e200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.crl rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 11 Apr 2025 09:46:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:9e:1f:f3:5e:60:28:43:02:7b:f4:5d:7d:bc:f2:26:a5:3a:99:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD Validity Not Before: Mar 17 17:52:22 2025 GMT Not After : Mar 16 17:57:22 2026 GMT Subject: CN=021EA98BF4651A9165D2F95F04681A1413AFD4B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d7:a7:6c:fd:57:30:1f:1e:f1:53:2f:64:01: 57:c3:4d:a4:14:65:af:d7:81:19:62:66:3d:87:e0: a2:92:9a:e5:a7:61:c8:ac:c8:64:39:c8:1a:e3:7e: 6b:57:59:bd:86:f5:3a:b6:d4:7f:82:d8:da:66:9c: a2:75:c4:7f:10:33:62:93:7c:f3:fb:2e:a3:40:b8: 2c:d3:ef:86:de:6b:f7:ea:57:7f:53:9f:0a:f2:77: 3e:19:91:f4:0f:c4:39:ee:4a:05:8a:64:d9:2c:8d: 41:bd:90:fb:29:88:a5:dd:f0:8a:23:c7:12:63:a0: 79:a5:e3:76:78:61:b0:aa:cc:1f:7c:52:4b:0b:14: 47:f4:81:34:88:7b:2f:2a:ae:c3:c1:92:24:4c:08: 5b:68:3c:6a:1e:08:64:5d:8f:39:39:bd:b6:fc:1a: 11:22:91:a8:d4:46:a9:1e:a5:30:06:e8:d2:29:3e: 8e:3d:82:aa:18:6f:02:b0:3c:00:b4:22:73:ef:c3: 28:93:de:55:3a:24:21:05:27:4a:9d:27:b0:f6:34: a5:a5:48:49:1a:06:c7:2c:c3:d1:49:db:c7:08:62: 20:e5:57:3f:86:45:6a:56:8d:71:ce:87:1e:1e:a2: 9a:9b:5d:5c:1e:1c:e9:9f:ab:65:01:f3:a5:4d:a2: e8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:1E:A9:8B:F4:65:1A:91:65:D2:F9:5F:04:68:1A:14:13:AF:D4:B4 X509v3 Authority Key Identifier: keyid:EC:92:5A:78:F8:BF:CB:62:0C:80:CC:8F:AD:47:F5:F3:02:EF:FB:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/323830343a313034633a653230303a3a2f34302d3430203d3e20323633363239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:104c:e200::/40 Signature Algorithm: sha256WithRSAEncryption 28:75:1c:d4:a2:88:f4:3b:b8:36:b2:62:1b:73:4e:72:b6:c9: 63:5d:89:fa:8c:3b:25:2e:cd:5d:de:4b:1d:dc:fa:cf:c5:3b: fa:cb:31:74:cf:22:51:9b:a2:fb:14:10:6a:97:4f:47:3c:c3: 83:13:2b:92:b2:ff:1c:15:36:e9:fc:fd:2c:50:62:36:6e:46: 8a:98:c7:35:0d:69:56:d9:84:3a:76:ed:7f:29:21:a2:33:0e: 3b:f9:56:dc:8f:e0:90:c5:56:8f:f5:f0:94:82:d3:db:a5:da: 13:7e:af:4e:56:74:30:cb:92:2b:1b:a5:8e:51:59:6d:b0:47: df:bf:84:96:3a:6b:16:6b:e2:b2:e5:22:f2:d4:36:bd:34:18: 74:97:f2:ad:11:60:f9:9f:8e:b9:77:9e:73:9b:57:bb:51:25: c7:4b:10:25:2d:21:23:f6:10:78:30:97:f0:94:6e:09:cc:ac: 86:2e:f4:ed:a7:3c:4c:3b:f2:ba:60:ae:b5:17:fc:5b:b3:2c: 38:ec:dc:4a:b8:15:3f:2c:1e:c6:f5:58:61:e7:5c:53:bb:fc: 39:8b:4c:38:d5:a4:e4:a8:78:c4:0b:08:5f:53:2f:b5:12:26: 7d:f8:f2:db:2b:ff:4b:cd:e8:cf:02:7e:62:cd:ff:e0:dc:bb: 16:2b:79:ca -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUPZ4f815gKEMCe/RdfbzyJqU6mZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUM5MjVBNzhGOEJGQ0I2MjBDODBDQzhGQUQ0N0Y1RjMw MkVGRkJDRDAeFw0yNTAzMTcxNzUyMjJaFw0yNjAzMTYxNzU3MjJaMDMxMTAvBgNV BAMTKDAyMUVBOThCRjQ2NTFBOTE2NUQyRjk1RjA0NjgxQTE0MTNBRkQ0QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe16ds/VcwHx7xUy9kAVfDTaQU Za/XgRliZj2H4KKSmuWnYcisyGQ5yBrjfmtXWb2G9Tq21H+C2NpmnKJ1xH8QM2KT fPP7LqNAuCzT74bea/fqV39Tnwrydz4ZkfQPxDnuSgWKZNksjUG9kPspiKXd8Ioj xxJjoHml43Z4YbCqzB98UksLFEf0gTSIey8qrsPBkiRMCFtoPGoeCGRdjzk5vbb8 GhEikajURqkepTAG6NIpPo49gqoYbwKwPAC0InPvwyiT3lU6JCEFJ0qdJ7D2NKWl SEkaBscsw9FJ28cIYiDlVz+GRWpWjXHOhx4eopqbXVweHOmfq2UB86VNougRAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUAh6pi/RlGpFl0vlfBGgaFBOv1LQwHwYDVR0j BBgwFoAU7JJaePi/y2IMgMyPrUf18wLv+80wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQmhOTlpuWWNBZGROQ0JuVW1uV3JDRzRhajJvdkpaSGJKcTlNbVJndzlj WGsvMC9FQzkyNUE3OEY4QkZDQjYyMEM4MENDOEZBRDQ3RjVGMzAyRUZGQkNELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0VDOTI1QTc4RjhCRkNCNjIw QzgwQ0M4RkFENDdGNUYzMDJFRkZCQ0QuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0JoTk5ablljQWRkTkNCblVtbldyQ0c0YWoyb3ZKWkhiSnE5TW1SZ3c5Y1hrLzAv MzIzODMwMzQzYTMxMzAzNDYzM2E2NTMyMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNk M2UyMDMyMzYzMzM2MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACgEEEziMA0GCSqGSIb3DQEBCwUA A4IBAQAodRzUooj0O7g2smIbc05ytsljXYn6jDslLs1d3ksd3PrPxTv6yzF0zyJR m6L7FBBql09HPMODEyuSsv8cFTbp/P0sUGI2bkaKmMc1DWlW2YQ6du1/KSGiMw47 +Vbcj+CQxVaP9fCUgtPbpdoTfq9OVnQwy5IrG6WOUVltsEffv4SWOmsWa+Ky5SLy 1Da9NBh0l/KtEWD5n465d55zm1e7USXHSxAlLSEj9hB4MJfwlG4JzKyGLvTtpzxM O/K6YK61F/xbsyw47NxKuBU/LB7G9Vhh51xTu/w5i0w41aTkqHjECwhfUy+1EiZ9 +PLbK/9LzejPAn5izf/g3LsWK3nK -----END CERTIFICATE-----Generated at Thu Apr 10 21:38:07 2025 by rpki-client