$ rpki-client -vvf rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/323830343a356163303a633030303a3a2f33352d3335203d3e20323638373933.roa File: 323830343a356163303a633030303a3a2f33352d3335203d3e20323638373933.roa (raw, json) Hash identifier: 2VFJ9VVafBssPh0tahGYlNlN7GNvkZyYYOKv9eLplcw= Subject key identifier: BB:F9:AE:48:75:A7:E7:AC:78:77:9B:97:7B:D8:B3:31:61:2E:3E:48 Certificate issuer: /CN=62542D04D7B086689C6E3FE7D77F27061824D478 Certificate serial: 09722C61B63FF555195D62EBDECF07ED64ECDBB2 Authority key identifier: 62:54:2D:04:D7:B0:86:68:9C:6E:3F:E7:D7:7F:27:06:18:24:D4:78 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/62542D04D7B086689C6E3FE7D77F27061824D478.cer Subject info access: rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/323830343a356163303a633030303a3a2f33352d3335203d3e20323638373933.roa Signing time: Mon 13 Jan 2025 18:14:46 +0000 ROA not before: Mon 13 Jan 2025 18:09:46 +0000 ROA not after: Mon 12 Jan 2026 18:14:46 +0000 asID: 268793 IP address blocks: 2804:5ac0:c000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/62542D04D7B086689C6E3FE7D77F27061824D478.crl rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/62542D04D7B086689C6E3FE7D77F27061824D478.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/62542D04D7B086689C6E3FE7D77F27061824D478.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 22 Feb 2025 02:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:72:2c:61:b6:3f:f5:55:19:5d:62:eb:de:cf:07:ed:64:ec:db:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62542D04D7B086689C6E3FE7D77F27061824D478 Validity Not Before: Jan 13 18:09:46 2025 GMT Not After : Jan 12 18:14:46 2026 GMT Subject: CN=BBF9AE4875A7E7AC78779B977BD8B331612E3E48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b3:a4:31:16:40:43:c9:e4:dc:1b:fe:a5:4d: 30:2c:e0:bb:8f:a0:49:18:48:79:87:ef:83:d8:69: fc:1d:25:5b:9f:95:4e:63:58:8b:d0:4b:fc:2f:20: ac:0c:0d:c4:86:57:5a:3f:83:3e:eb:4a:fe:92:48: c7:d4:21:99:99:c2:19:58:44:76:74:6f:a5:4e:5d: c0:5f:aa:5d:c7:58:1c:a5:b2:d6:33:32:6f:55:af: 37:34:5e:7f:ca:fe:a3:d6:b8:ad:db:b0:5a:0d:67: c6:93:01:0f:9f:9d:91:e1:7b:e5:4b:16:41:d3:8a: b2:e5:28:b2:42:83:ce:69:70:f6:46:8b:33:f5:a3: 12:08:9a:67:3f:a3:af:83:37:a9:ec:a8:20:df:3c: b9:d2:96:28:7e:96:4e:74:4c:b8:68:d7:88:1f:6f: c1:63:af:de:bc:0d:aa:10:29:cd:cb:4a:bc:94:0f: 5e:f8:b9:3c:d5:72:4e:3d:25:06:98:8f:0d:b7:83: 6f:be:d1:e7:91:8c:77:f2:f9:5a:4f:7c:45:7e:a6: dd:c6:71:78:1b:3a:83:da:88:16:52:b6:2c:1f:96: ba:ab:f8:b9:0a:73:c2:b8:ac:e6:28:12:8e:57:4a: 2d:50:44:ad:e5:bb:0e:0d:21:ee:be:1b:ed:dc:10: 5c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F9:AE:48:75:A7:E7:AC:78:77:9B:97:7B:D8:B3:31:61:2E:3E:48 X509v3 Authority Key Identifier: keyid:62:54:2D:04:D7:B0:86:68:9C:6E:3F:E7:D7:7F:27:06:18:24:D4:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/62542D04D7B086689C6E3FE7D77F27061824D478.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/62542D04D7B086689C6E3FE7D77F27061824D478.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BzKqiLxu2PqmWqxUZuoBB1kqxr2ufBqMRaHBvshdht9c/1/323830343a356163303a633030303a3a2f33352d3335203d3e20323638373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5ac0:c000::/35 Signature Algorithm: sha256WithRSAEncryption 24:af:81:d7:8c:c1:98:18:50:0a:ff:40:b2:7b:5b:a3:e5:65: 86:06:7d:65:c7:61:6a:c3:04:3f:d8:81:4d:71:1f:11:ca:4f: 4a:83:41:88:67:33:94:0f:4a:72:c7:5d:11:d1:f1:78:55:dc: 9b:69:13:b9:45:a8:20:19:1a:2f:b3:cc:68:51:49:f7:ff:69: 79:fa:46:34:f1:65:91:af:f3:74:59:5a:d1:66:74:ed:8f:57: 44:3e:9e:21:4c:e8:c2:4f:9a:26:38:48:6e:b6:b2:28:ab:66: 45:bb:d3:e3:7a:10:fd:cc:9d:d0:46:88:13:09:f2:de:f0:1f: b5:b6:a5:17:81:c5:d3:f9:03:cf:65:8c:f1:e0:21:e5:b1:19: 31:68:73:be:4e:ef:31:3e:9a:55:91:72:21:b3:7d:ad:94:07: 4a:c3:64:17:b3:16:de:e1:66:8b:63:d1:b6:4c:5b:5c:d4:74: 44:36:d9:b3:e0:5a:30:70:47:29:6d:ea:fa:1f:30:80:89:14: 1b:a8:e8:4d:a8:5d:65:5b:65:ef:47:ad:28:3a:c5:6c:db:0d: fc:20:ad:db:ba:43:37:82:77:fb:c1:74:57:66:52:a6:e5:19: 2c:45:1e:2e:26:d7:c7:5f:f1:e0:93:da:96:e2:44:a3:ce:9a: ff:1a:06:0d -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUCXIsYbY/9VUZXWLr3s8H7WTs27IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI1NDJEMDREN0IwODY2ODlDNkUzRkU3RDc3RjI3MDYx ODI0RDQ3ODAeFw0yNTAxMTMxODA5NDZaFw0yNjAxMTIxODE0NDZaMDMxMTAvBgNV BAMTKEJCRjlBRTQ4NzVBN0U3QUM3ODc3OUI5NzdCRDhCMzMxNjEyRTNFNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMs6QxFkBDyeTcG/6lTTAs4LuP oEkYSHmH74PYafwdJVuflU5jWIvQS/wvIKwMDcSGV1o/gz7rSv6SSMfUIZmZwhlY RHZ0b6VOXcBfql3HWBylstYzMm9Vrzc0Xn/K/qPWuK3bsFoNZ8aTAQ+fnZHhe+VL FkHTirLlKLJCg85pcPZGizP1oxIImmc/o6+DN6nsqCDfPLnSlih+lk50TLho14gf b8Fjr968DaoQKc3LSryUD174uTzVck49JQaYjw23g2++0eeRjHfy+VpPfEV+pt3G cXgbOoPaiBZStiwflrqr+LkKc8K4rOYoEo5XSi1QRK3luw4NIe6+G+3cEFyDAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUu/muSHWn56x4d5uXe9izMWEuPkgwHwYDVR0j BBgwFoAUYlQtBNewhmicbj/n138nBhgk1HgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQnpLcWlMeHUyUHFtV3F4VVp1b0JCMWtxeHIydWZCcU1SYUhCdnNoZGh0 OWMvMS82MjU0MkQwNEQ3QjA4NjY4OUM2RTNGRTdENzdGMjcwNjE4MjRENDc4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzYyNTQyRDA0RDdCMDg2Njg5 QzZFM0ZFN0Q3N0YyNzA2MTgyNEQ0NzguY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0J6S3FpTHh1MlBxbVdxeFVadW9CQjFrcXhyMnVmQnFNUmFIQnZzaGRodDljLzEv MzIzODMwMzQzYTM1NjE2MzMwM2E2MzMwMzAzMDNhM2EyZjMzMzUyZDMzMzUyMDNk M2UyMDMyMzYzODM3MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSgEWsDAMA0GCSqGSIb3DQEBCwUA A4IBAQAkr4HXjMGYGFAK/0Cye1uj5WWGBn1lx2FqwwQ/2IFNcR8Ryk9Kg0GIZzOU D0pyx10R0fF4VdybaRO5RaggGRovs8xoUUn3/2l5+kY08WWRr/N0WVrRZnTtj1dE Pp4hTOjCT5omOEhutrIoq2ZFu9PjehD9zJ3QRogTCfLe8B+1tqUXgcXT+QPPZYzx 4CHlsRkxaHO+Tu8xPppVkXIhs32tlAdKw2QXsxbe4WaLY9G2TFtc1HRENtmz4Fow cEcpber6HzCAiRQbqOhNqF1lW2XvR60oOsVs2w38IK3bukM3gnf7wXRXZlKm5Rks RR4uJtfHX/Hgk9qW4kSjzpr/GgYN -----END CERTIFICATE-----Generated at Fri Feb 21 12:22:40 2025 by rpki-client