$ rpki-client -vvf rpki-repo.registro.br/repo/C9HKKQTo1gccVVkWm4kYH7BcfGBRybLag1HBjws3oJb1/0/323830343a353239633a3a2f33342d3334203d3e20323638353239.roa File: 323830343a353239633a3a2f33342d3334203d3e20323638353239.roa (raw, json) Hash identifier: eLNdQKNqUxe5OC+LE3YFrnHUwoCml1g2XcwL/gxoMGU= Subject key identifier: C8:E8:56:C6:ED:9A:8E:99:4C:F0:38:5C:8A:72:B1:85:8F:74:3D:04 Certificate issuer: /CN=B41D6A9C5FD81F51C4F5E73E594F0CF0C999B843 Certificate serial: 76234FA2BB8C5B31A734EF976BA8BEB54D9B6FEE Authority key identifier: B4:1D:6A:9C:5F:D8:1F:51:C4:F5:E7:3E:59:4F:0C:F0:C9:99:B8:43 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B41D6A9C5FD81F51C4F5E73E594F0CF0C999B843.cer Subject info access: rsync://rpki-repo.registro.br/repo/C9HKKQTo1gccVVkWm4kYH7BcfGBRybLag1HBjws3oJb1/0/323830343a353239633a3a2f33342d3334203d3e20323638353239.roa Signing time: Tue 04 Feb 2025 13:39:16 +0000 ROA not before: Tue 04 Feb 2025 13:34:16 +0000 ROA not after: Tue 03 Feb 2026 13:39:16 +0000 asID: 268529 IP address blocks: 2804:529c::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/C9HKKQTo1gccVVkWm4kYH7BcfGBRybLag1HBjws3oJb1/0/B41D6A9C5FD81F51C4F5E73E594F0CF0C999B843.crl rsync://rpki-repo.registro.br/repo/C9HKKQTo1gccVVkWm4kYH7BcfGBRybLag1HBjws3oJb1/0/B41D6A9C5FD81F51C4F5E73E594F0CF0C999B843.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B41D6A9C5FD81F51C4F5E73E594F0CF0C999B843.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 13 Apr 2025 12:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:23:4f:a2:bb:8c:5b:31:a7:34:ef:97:6b:a8:be:b5:4d:9b:6f:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B41D6A9C5FD81F51C4F5E73E594F0CF0C999B843 Validity Not Before: Feb 4 13:34:16 2025 GMT Not After : Feb 3 13:39:16 2026 GMT Subject: CN=C8E856C6ED9A8E994CF0385C8A72B1858F743D04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:03:f2:84:70:01:ca:93:bb:6d:92:6e:80:81: a2:fa:d1:b8:f2:d9:b9:3a:a6:b4:e1:b3:f3:84:7b: d4:9d:55:32:7c:92:ee:11:56:05:fa:72:28:39:58: 82:8e:82:11:90:a1:19:34:31:9e:4b:22:76:14:ef: 05:d2:d1:b2:c1:12:0c:96:18:3b:63:97:20:b0:fd: 05:60:46:cc:61:23:47:11:d3:74:a9:93:27:60:7a: d4:43:1a:4a:c2:2f:d3:1e:60:57:45:5d:3b:11:07: 4d:4b:7d:ff:fd:66:fe:23:d5:fd:e3:c7:59:00:41: c5:38:38:82:91:46:9b:89:f9:14:67:2d:bb:d8:4d: 41:5e:63:06:fa:d4:0c:a5:bd:69:b7:e5:a5:4d:2c: 38:ff:0f:ac:d4:5f:63:4e:40:a1:ed:54:be:e7:1e: 17:fa:f9:da:4e:25:d2:72:31:80:13:2f:d1:88:28: 05:0a:b2:d3:7b:6d:ec:2b:5e:6a:aa:07:c6:f7:2a: 8a:0b:27:16:e3:c1:2f:fd:85:81:c6:d9:7e:73:a2: 30:cd:fe:30:48:33:dd:3c:cd:ae:76:fd:c7:85:fa: c8:37:25:d2:f6:4c:7f:6c:27:2e:a8:31:35:9f:12: 1c:ef:65:45:95:72:b7:8c:71:4c:ef:4e:69:0f:7f: e4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E8:56:C6:ED:9A:8E:99:4C:F0:38:5C:8A:72:B1:85:8F:74:3D:04 X509v3 Authority Key Identifier: keyid:B4:1D:6A:9C:5F:D8:1F:51:C4:F5:E7:3E:59:4F:0C:F0:C9:99:B8:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/C9HKKQTo1gccVVkWm4kYH7BcfGBRybLag1HBjws3oJb1/0/B41D6A9C5FD81F51C4F5E73E594F0CF0C999B843.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B41D6A9C5FD81F51C4F5E73E594F0CF0C999B843.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/C9HKKQTo1gccVVkWm4kYH7BcfGBRybLag1HBjws3oJb1/0/323830343a353239633a3a2f33342d3334203d3e20323638353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:529c::/34 Signature Algorithm: sha256WithRSAEncryption 67:34:40:25:5f:81:c2:ef:52:85:1f:d8:58:13:d5:68:27:6c: 03:e5:8f:25:66:84:b3:d9:e4:d2:12:37:68:b8:27:60:40:6c: 2c:e5:91:98:f3:f9:10:92:6f:08:87:a9:13:fe:3c:6d:b2:c9: f6:f5:38:44:72:d2:e2:52:21:38:f1:87:f6:a7:24:d7:ef:b8: 20:4b:f8:c0:e0:7d:86:b1:2e:d0:42:3f:95:34:34:aa:62:ec: 04:c1:23:1c:08:18:de:6f:15:84:ad:97:d0:11:fc:cf:d3:30: 01:36:00:0b:e0:ca:91:b6:82:66:a0:9b:0b:e6:4c:90:00:69: b0:d7:ab:38:ff:75:c4:19:77:f9:75:21:08:5c:8f:23:59:61: 63:b4:9b:a2:30:df:b6:9d:c3:18:a5:ca:98:be:7f:a6:8a:24: f5:d7:9a:10:f9:d0:7d:23:b8:0a:f7:9c:f3:22:d7:a5:d5:3f: a0:2f:66:4b:56:5e:84:f1:5e:17:17:74:4c:8c:ef:1d:cb:e6: b7:a8:a1:3d:87:f2:6f:80:d3:6f:f7:d0:90:8a:5f:f1:13:8b: 36:50:9c:55:92:87:37:61:8f:a4:52:f1:54:96:f1:89:5c:94: 3e:be:b9:69:a0:62:94:05:72:24:f1:a8:ef:5e:9d:74:42:4b: 2b:d5:bf:c4 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUdiNPoruMWzGnNO+Xa6i+tU2bb+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQxRDZBOUM1RkQ4MUY1MUM0RjVFNzNFNTk0RjBDRjBD OTk5Qjg0MzAeFw0yNTAyMDQxMzM0MTZaFw0yNjAyMDMxMzM5MTZaMDMxMTAvBgNV BAMTKEM4RTg1NkM2RUQ5QThFOTk0Q0YwMzg1QzhBNzJCMTg1OEY3NDNEMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtA/KEcAHKk7ttkm6AgaL60bjy 2bk6prThs/OEe9SdVTJ8ku4RVgX6cig5WIKOghGQoRk0MZ5LInYU7wXS0bLBEgyW GDtjlyCw/QVgRsxhI0cR03SpkydgetRDGkrCL9MeYFdFXTsRB01Lff/9Zv4j1f3j x1kAQcU4OIKRRpuJ+RRnLbvYTUFeYwb61AylvWm35aVNLDj/D6zUX2NOQKHtVL7n Hhf6+dpOJdJyMYATL9GIKAUKstN7bewrXmqqB8b3KooLJxbjwS/9hYHG2X5zojDN /jBIM908za52/ceF+sg3JdL2TH9sJy6oMTWfEhzvZUWVcreMcUzvTmkPf+ThAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUyOhWxu2ajplM8DhcinKxhY90PQQwHwYDVR0j BBgwFoAUtB1qnF/YH1HE9ec+WU8M8MmZuEMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQzlIS0tRVG8xZ2NjVlZrV200a1lIN0JjZkdCUnliTGFnMUhCandzM29K YjEvMC9CNDFENkE5QzVGRDgxRjUxQzRGNUU3M0U1OTRGMENGMEM5OTlCODQzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I0MUQ2QTlDNUZEODFGNTFD NEY1RTczRTU5NEYwQ0YwQzk5OUI4NDMuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0M5SEtLUVRvMWdjY1ZWa1dtNGtZSDdCY2ZHQlJ5YkxhZzFIQmp3czNvSmIxLzAv MzIzODMwMzQzYTM1MzIzOTYzM2EzYTJmMzMzNDJkMzMzNDIwM2QzZTIwMzIzNjM4 MzUzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEH AQH/BBIwEDAOBAIAAjAIAwYGKARSnAAwDQYJKoZIhvcNAQELBQADggEBAGc0QCVf gcLvUoUf2FgT1WgnbAPljyVmhLPZ5NISN2i4J2BAbCzlkZjz+RCSbwiHqRP+PG2y yfb1OERy0uJSITjxh/anJNfvuCBL+MDgfYaxLtBCP5U0NKpi7ATBIxwIGN5vFYSt l9AR/M/TMAE2AAvgypG2gmagmwvmTJAAabDXqzj/dcQZd/l1IQhcjyNZYWO0m6Iw 37adwxilypi+f6aKJPXXmhD50H0juAr3nPMi16XVP6AvZktWXoTxXhcXdEyM7x3L 5reooT2H8m+A02/30JCKX/ETizZQnFWShzdhj6RS8VSW8YlclD6+uWmgYpQFciTx qO9enXRCSyvVv8Q= -----END CERTIFICATE-----Generated at Sat Apr 12 20:39:46 2025 by rpki-client