$ rpki-client -vvf rpki-repo.registro.br/repo/CB7RZoa9CDV2sgTyt7cQ5zX5HN4EPpr5jjEqfaCiMdV7/0/323830343a373933303a373030303a3a2f33362d3336203d3e20323731323930.roa File: 323830343a373933303a373030303a3a2f33362d3336203d3e20323731323930.roa (raw, json) Hash identifier: h5lLx7OdT8JQDOhM7HkCsuSYDwvscSKHuN8UCGgb/eA= Subject key identifier: 14:FD:BA:D6:D9:BF:54:1B:DC:B2:78:FE:B0:29:EA:33:8F:65:0F:F8 Certificate issuer: /CN=2D88D24BF40AE9E16A0E4968448EC1E1F5C87F62 Certificate serial: 1C7AD870557F2CCD43EC3C0E52E712D1CD0A7BF0 Authority key identifier: 2D:88:D2:4B:F4:0A:E9:E1:6A:0E:49:68:44:8E:C1:E1:F5:C8:7F:62 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2D88D24BF40AE9E16A0E4968448EC1E1F5C87F62.cer Subject info access: rsync://rpki-repo.registro.br/repo/CB7RZoa9CDV2sgTyt7cQ5zX5HN4EPpr5jjEqfaCiMdV7/0/323830343a373933303a373030303a3a2f33362d3336203d3e20323731323930.roa Signing time: Thu 30 Jan 2025 21:06:17 +0000 ROA not before: Thu 30 Jan 2025 21:01:17 +0000 ROA not after: Thu 29 Jan 2026 21:06:17 +0000 asID: 271290 IP address blocks: 2804:7930:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CB7RZoa9CDV2sgTyt7cQ5zX5HN4EPpr5jjEqfaCiMdV7/0/2D88D24BF40AE9E16A0E4968448EC1E1F5C87F62.crl rsync://rpki-repo.registro.br/repo/CB7RZoa9CDV2sgTyt7cQ5zX5HN4EPpr5jjEqfaCiMdV7/0/2D88D24BF40AE9E16A0E4968448EC1E1F5C87F62.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2D88D24BF40AE9E16A0E4968448EC1E1F5C87F62.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 17 Apr 2025 17:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7a:d8:70:55:7f:2c:cd:43:ec:3c:0e:52:e7:12:d1:cd:0a:7b:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D88D24BF40AE9E16A0E4968448EC1E1F5C87F62 Validity Not Before: Jan 30 21:01:17 2025 GMT Not After : Jan 29 21:06:17 2026 GMT Subject: CN=14FDBAD6D9BF541BDCB278FEB029EA338F650FF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:90:18:a6:fb:0c:48:32:0f:3e:58:e0:f5:c5: 6d:09:c3:16:1a:d7:12:7c:d0:37:63:ca:a3:22:58: 4d:66:d1:7d:e0:d3:b7:3e:fd:5e:1a:16:ff:62:b9: 8a:51:70:2f:47:0d:3c:05:65:ee:24:03:0c:9d:c0: c3:8c:b1:13:af:36:31:bd:0c:16:b7:50:9b:ef:35: e3:d7:b4:0f:8c:83:87:38:1a:54:86:10:d6:14:68: 83:c4:da:47:74:7e:51:d0:65:28:c7:f1:0a:41:50: 61:9a:fd:a9:57:ed:e2:c6:77:02:02:e4:9d:a2:62: a7:de:a4:3f:9e:72:09:25:7d:02:4b:ec:20:7f:31: de:a4:b8:6e:19:3f:60:a5:9b:17:42:07:32:99:0a: aa:06:62:ea:cd:9c:57:39:4c:a2:6d:6e:20:ac:64: 3a:dc:24:11:2d:91:a1:2d:3c:1d:78:ff:ce:e1:bb: f8:ed:66:08:e3:9b:6a:32:0d:f9:43:51:69:6d:b0: b4:0c:99:ca:0b:f9:a6:6a:50:44:aa:2e:01:d8:c0: 9e:7e:b8:a2:1b:8c:3b:4c:45:a9:4b:65:27:94:c5: f6:ca:73:39:ed:fc:78:67:58:dd:4c:a1:63:79:9c: bf:30:d9:51:c9:10:e4:26:30:b4:6f:99:34:c6:64: 23:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:FD:BA:D6:D9:BF:54:1B:DC:B2:78:FE:B0:29:EA:33:8F:65:0F:F8 X509v3 Authority Key Identifier: keyid:2D:88:D2:4B:F4:0A:E9:E1:6A:0E:49:68:44:8E:C1:E1:F5:C8:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CB7RZoa9CDV2sgTyt7cQ5zX5HN4EPpr5jjEqfaCiMdV7/0/2D88D24BF40AE9E16A0E4968448EC1E1F5C87F62.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2D88D24BF40AE9E16A0E4968448EC1E1F5C87F62.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CB7RZoa9CDV2sgTyt7cQ5zX5HN4EPpr5jjEqfaCiMdV7/0/323830343a373933303a373030303a3a2f33362d3336203d3e20323731323930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:7930:7000::/36 Signature Algorithm: sha256WithRSAEncryption 16:8e:a1:95:2f:16:d4:f4:36:59:06:6a:0b:e1:01:fd:ec:47: c3:f8:7d:70:85:59:32:5c:e8:4b:b3:c5:3e:44:f9:cd:93:2f: f4:01:18:54:7a:23:36:a7:69:ae:92:ae:0e:f3:b6:15:f1:fb: 39:57:05:14:d3:c9:e0:19:0d:4c:aa:ed:49:40:90:e5:38:f3: 6d:5c:00:4f:4f:a3:5c:cc:43:e5:e4:d3:77:04:79:70:47:a7: 98:ea:10:3a:6c:f1:9f:b9:e7:94:cd:45:77:f8:ea:84:1e:8c: 4b:d7:e5:ee:b6:98:c2:81:34:75:c1:20:80:ba:b5:0c:0f:b1: 2a:94:01:46:40:2c:d1:95:8f:27:57:28:e2:be:86:93:2a:6a: 27:a8:76:a6:4c:54:e4:e5:e2:87:10:13:6f:ad:b5:e9:2d:6b: 0e:3c:39:bf:b9:62:9c:a2:f3:11:16:44:2d:4a:02:8e:de:51: d8:91:7d:84:be:ef:94:d7:97:92:a5:96:25:6d:5e:0f:b6:77: b8:34:df:0e:cc:22:7e:1b:fa:f4:cb:ea:9c:20:ca:e0:0a:35: a8:d9:0d:0c:00:4d:ef:e2:03:c0:e1:bb:df:7a:2c:42:a1:58: 80:b9:8f:7b:19:9c:89:00:f3:ea:fa:c9:7a:2e:a5:9e:a8:cb: 1e:35:f1:84 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUHHrYcFV/LM1D7DwOUucS0c0Ke/AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ4OEQyNEJGNDBBRTlFMTZBMEU0OTY4NDQ4RUMxRTFG NUM4N0Y2MjAeFw0yNTAxMzAyMTAxMTdaFw0yNjAxMjkyMTA2MTdaMDMxMTAvBgNV BAMTKDE0RkRCQUQ2RDlCRjU0MUJEQ0IyNzhGRUIwMjlFQTMzOEY2NTBGRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnkBim+wxIMg8+WOD1xW0JwxYa 1xJ80DdjyqMiWE1m0X3g07c+/V4aFv9iuYpRcC9HDTwFZe4kAwydwMOMsROvNjG9 DBa3UJvvNePXtA+Mg4c4GlSGENYUaIPE2kd0flHQZSjH8QpBUGGa/alX7eLGdwIC 5J2iYqfepD+ecgklfQJL7CB/Md6kuG4ZP2ClmxdCBzKZCqoGYurNnFc5TKJtbiCs ZDrcJBEtkaEtPB14/87hu/jtZgjjm2oyDflDUWltsLQMmcoL+aZqUESqLgHYwJ5+ uKIbjDtMRalLZSeUxfbKcznt/HhnWN1MoWN5nL8w2VHJEOQmMLRvmTTGZCMdAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUFP261tm/VBvcsnj+sCnqM49lD/gwHwYDVR0j BBgwFoAULYjSS/QK6eFqDkloRI7B4fXIf2IwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ0I3UlpvYTlDRFYyc2dUeXQ3Y1E1elg1SE40RVBwcjVqakVxZmFDaU1k VjcvMC8yRDg4RDI0QkY0MEFFOUUxNkEwRTQ5Njg0NDhFQzFFMUY1Qzg3RjYyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJEODhEMjRCRjQwQUU5RTE2 QTBFNDk2ODQ0OEVDMUUxRjVDODdGNjIuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NCN1Jab2E5Q0RWMnNnVHl0N2NRNXpYNUhONEVQcHI1ampFcWZhQ2lNZFY3LzAv MzIzODMwMzQzYTM3MzkzMzMwM2EzNzMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzczMTMyMzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEeTBwMA0GCSqGSIb3DQEBCwUA A4IBAQAWjqGVLxbU9DZZBmoL4QH97EfD+H1whVkyXOhLs8U+RPnNky/0ARhUeiM2 p2mukq4O87YV8fs5VwUU08ngGQ1Mqu1JQJDlOPNtXABPT6NczEPl5NN3BHlwR6eY 6hA6bPGfueeUzUV3+OqEHoxL1+XutpjCgTR1wSCAurUMD7EqlAFGQCzRlY8nVyji voaTKmonqHamTFTk5eKHEBNvrbXpLWsOPDm/uWKcovMRFkQtSgKO3lHYkX2Evu+U 15eSpZYlbV4Ptne4NN8OzCJ+G/r0y+qcIMrgCjWo2Q0MAE3v4gPA4bvfeixCoViA uY97GZyJAPPq+sl6LqWeqMseNfGE -----END CERTIFICATE-----Generated at Thu Apr 17 15:02:50 2025 by rpki-client