$ rpki-client -vvf rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/323830343a356163303a383030303a3a2f33342d3334203d3e20323638373933.roa File: 323830343a356163303a383030303a3a2f33342d3334203d3e20323638373933.roa (raw, json) Hash identifier: Y0bxeqfHhNXwnSY+37JXvMQwpXIGTTEFbKAGUueQLEM= Subject key identifier: DB:57:14:00:30:30:89:57:F2:20:E1:7F:6A:DF:B8:F3:C2:E2:DA:B4 Certificate issuer: /CN=62542D04D7B086689C6E3FE7D77F27061824D478 Certificate serial: 2AB9CA1858B68E61867BC0535ACEB008F2CB0AD4 Authority key identifier: 62:54:2D:04:D7:B0:86:68:9C:6E:3F:E7:D7:7F:27:06:18:24:D4:78 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/62542D04D7B086689C6E3FE7D77F27061824D478.cer Subject info access: rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/323830343a356163303a383030303a3a2f33342d3334203d3e20323638373933.roa Signing time: Mon 13 Jan 2025 18:14:55 +0000 ROA not before: Mon 13 Jan 2025 18:09:55 +0000 ROA not after: Mon 12 Jan 2026 18:14:55 +0000 asID: 268793 IP address blocks: 2804:5ac0:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/62542D04D7B086689C6E3FE7D77F27061824D478.crl rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/62542D04D7B086689C6E3FE7D77F27061824D478.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/62542D04D7B086689C6E3FE7D77F27061824D478.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 22 Feb 2025 02:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b9:ca:18:58:b6:8e:61:86:7b:c0:53:5a:ce:b0:08:f2:cb:0a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62542D04D7B086689C6E3FE7D77F27061824D478 Validity Not Before: Jan 13 18:09:55 2025 GMT Not After : Jan 12 18:14:55 2026 GMT Subject: CN=DB57140030308957F220E17F6ADFB8F3C2E2DAB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:80:9b:dc:4d:b4:5e:3f:e2:f6:d9:36:c4:19: c2:3c:67:f8:62:fa:9f:1b:90:6d:e2:c7:49:c1:71: 42:05:5b:2c:d0:ab:7f:cd:5a:e1:ac:6e:62:0e:54: 32:d5:4d:70:0d:01:fb:b7:4f:ad:b0:4f:7f:e5:b8: cd:64:60:87:b9:75:bb:37:ef:ab:99:c5:87:6d:b1: 58:b9:f5:3f:51:8b:b6:a7:d2:6e:e3:44:05:5c:c3: 79:eb:d5:b3:fe:03:d4:bd:6e:07:60:da:e1:b2:5f: 19:c2:b0:0f:4c:a9:c0:ae:b6:a0:4f:0a:4c:ef:1a: 48:39:82:a0:3f:06:23:0a:31:3a:ba:b5:5b:ce:a2: e1:0d:25:24:0d:ca:5a:ff:a5:7b:f9:47:14:98:12: a1:1b:3e:be:b2:0a:71:28:ba:82:c2:2a:07:a8:6e: f9:20:5c:03:38:1a:91:43:53:9c:c7:b8:a7:ae:3c: a4:9a:f5:3b:be:dd:27:b3:ee:86:24:67:8a:bd:f4: 6e:98:ba:dd:de:38:46:00:bd:ad:37:3e:f8:11:c9: dd:48:23:47:7d:cd:3b:01:79:a7:9b:ff:29:93:ef: 2d:64:1c:bf:77:39:b7:a7:cc:25:6b:db:06:24:ef: 2a:19:dc:5f:f8:42:44:b1:20:dc:e9:ae:f4:94:f6: 77:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:57:14:00:30:30:89:57:F2:20:E1:7F:6A:DF:B8:F3:C2:E2:DA:B4 X509v3 Authority Key Identifier: keyid:62:54:2D:04:D7:B0:86:68:9C:6E:3F:E7:D7:7F:27:06:18:24:D4:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/62542D04D7B086689C6E3FE7D77F27061824D478.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/62542D04D7B086689C6E3FE7D77F27061824D478.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/323830343a356163303a383030303a3a2f33342d3334203d3e20323638373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5ac0:8000::/34 Signature Algorithm: sha256WithRSAEncryption 54:ec:15:0c:10:a8:b4:c9:3b:1c:d2:79:e2:23:f8:c9:7d:2a: c2:23:bd:41:a0:30:8e:7a:1d:12:c2:cc:c4:90:ca:77:46:bf: 2e:14:5d:0b:77:3e:a5:5b:a0:33:9d:6a:c6:92:04:38:34:97: 6b:80:8d:e3:13:32:41:2b:7f:e9:ac:71:1a:f9:ba:ea:0f:96: c4:b5:0e:59:ca:f4:26:a9:f1:30:a3:c5:d3:95:0e:b0:92:90: d8:a0:45:5f:cf:5d:a3:7f:70:82:d8:2d:e1:8b:cc:c8:e6:ca: ea:ba:29:3b:1c:40:f1:0e:23:d2:13:e8:b3:84:f9:0b:10:b9: 8a:af:52:c6:7b:a4:12:1b:fe:aa:71:8c:04:50:05:60:85:ad: 9f:05:67:04:ac:5a:40:27:9a:f3:9c:9f:23:34:29:ba:1f:6d: 5d:45:6a:4c:15:67:a6:69:b0:34:63:be:93:48:eb:1f:ea:90: 73:7d:90:ee:53:49:41:30:0e:c4:65:70:e5:ee:e3:e4:74:1f: 20:2e:83:83:46:90:72:68:93:e4:2b:9d:69:d1:f2:90:7a:c7: 58:bd:cc:c3:5c:32:f0:03:45:77:4c:be:15:05:25:5a:43:22: 8f:36:29:20:6c:f3:bc:23:f3:71:62:b4:9d:14:a7:8b:30:4c: 05:93:56:26 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUKrnKGFi2jmGGe8BTWs6wCPLLCtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI1NDJEMDREN0IwODY2ODlDNkUzRkU3RDc3RjI3MDYx ODI0RDQ3ODAeFw0yNTAxMTMxODA5NTVaFw0yNjAxMTIxODE0NTVaMDMxMTAvBgNV BAMTKERCNTcxNDAwMzAzMDg5NTdGMjIwRTE3RjZBREZCOEYzQzJFMkRBQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkgJvcTbReP+L22TbEGcI8Z/hi +p8bkG3ix0nBcUIFWyzQq3/NWuGsbmIOVDLVTXANAfu3T62wT3/luM1kYIe5dbs3 76uZxYdtsVi59T9Ri7an0m7jRAVcw3nr1bP+A9S9bgdg2uGyXxnCsA9MqcCutqBP CkzvGkg5gqA/BiMKMTq6tVvOouENJSQNylr/pXv5RxSYEqEbPr6yCnEouoLCKgeo bvkgXAM4GpFDU5zHuKeuPKSa9Tu+3Sez7oYkZ4q99G6Yut3eOEYAva03PvgRyd1I I0d9zTsBeaeb/ymT7y1kHL93ObenzCVr2wYk7yoZ3F/4QkSxINzprvSU9ne3AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU21cUADAwiVfyIOF/at+488Li2rQwHwYDVR0j BBgwFoAUYlQtBNewhmicbj/n138nBhgk1HgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQnpLcWlMeHUyUHFtV3F4VVp1b0JCMWtxeHIydWZCcU1SYUhCdnNoZGh0 OWMvMS82MjU0MkQwNEQ3QjA4NjY4OUM2RTNGRTdENzdGMjcwNjE4MjRENDc4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzYyNTQyRDA0RDdCMDg2Njg5 QzZFM0ZFN0Q3N0YyNzA2MTgyNEQ0NzguY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0J6S3FpTHh1MlBxbVdxeFVadW9CQjFrcXhyMnVmQnFNUmFIQnZzaGRodDljLzEv MzIzODMwMzQzYTM1NjE2MzMwM2EzODMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzODM3MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEWsCAMA0GCSqGSIb3DQEBCwUA A4IBAQBU7BUMEKi0yTsc0nniI/jJfSrCI71BoDCOeh0SwszEkMp3Rr8uFF0Ldz6l W6AznWrGkgQ4NJdrgI3jEzJBK3/prHEa+brqD5bEtQ5ZyvQmqfEwo8XTlQ6wkpDY oEVfz12jf3CC2C3hi8zI5srquik7HEDxDiPSE+izhPkLELmKr1LGe6QSG/6qcYwE UAVgha2fBWcErFpAJ5rznJ8jNCm6H21dRWpMFWemabA0Y76TSOsf6pBzfZDuU0lB MA7EZXDl7uPkdB8gLoODRpByaJPkK51p0fKQesdYvczDXDLwA0V3TL4VBSVaQyKP NikgbPO8I/NxYrSdFKeLMEwFk1Ym -----END CERTIFICATE-----Generated at Fri Feb 21 12:24:43 2025 by rpki-client