$ rpki-client -vvf rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/323830343a6438343a3a2f33322d3438203d3e203238313731.roa File: 323830343a6438343a3a2f33322d3438203d3e203238313731.roa (raw, json) Hash identifier: BU5S2CsjRrcuUY4GbMW8CTFH+iT54YG17Du2G3TBhwA= Subject key identifier: 47:D8:9E:D9:A2:97:4C:4F:81:84:6B:E0:E0:32:65:07:DE:29:4B:8F Certificate issuer: /CN=8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0 Certificate serial: 7AD86B74DFF4C6108A2944A4718C5C8228095A48 Authority key identifier: 8B:A6:99:C4:70:16:69:EC:E8:E7:D3:F4:A8:60:C4:F6:D5:C7:64:D0 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0.cer Subject info access: rsync://rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/323830343a6438343a3a2f33322d3438203d3e203238313731.roa Signing time: Wed 03 Apr 2024 19:00:00 +0000 ROA not before: Wed 03 Apr 2024 18:55:00 +0000 ROA not after: Thu 03 Apr 2025 19:00:00 +0000 asID: 28171 IP address blocks: 2804:d84::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0.crl rsync://rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 28 Sep 2024 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d8:6b:74:df:f4:c6:10:8a:29:44:a4:71:8c:5c:82:28:09:5a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0 Validity Not Before: Apr 3 18:55:00 2024 GMT Not After : Apr 3 19:00:00 2025 GMT Subject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ubject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c4:e2:ec:22:b5:f9:ea:60:71:ce:a0:b9:fb: b5:ab:54:6e:55:9f:15:74:75:ed:11:ea:6e:97:fd: b7:cf:67:2d:3f:f4:55:a1:e1:42:38:d0:9b:1e:e0: 3b:f6:16:ac:13:da:79:d7:a0:cf:57:d0:51:61:e9: 60:41:ba:a6:7b:df:49:bf:dd:ae:c5:56:e1:89:0d: 67:54:79:f9:da:82:74:a9:cd:4c:f7:b8:fb:86:3b: 0a:dd:0b:c4:2d:3e:f8:cb:a1:a5:06:c8:71:5e:34: 54:ed:ff:bd:12:d3:a8:3b:f5:8c:d4:a0:1f:37:b4: a4:e2:3c:22:d8:12:84:27:82:fd:6f:46:ac:3b:42: 10:1b:43:e8:dd:1c:f3:93:41:9e:7e:d2:d8:5b:9a: 6a:16:92:10:69:26:85:fb:5d:a8:38:ab:83:77:69: d8:35:f1:de:fd:7b:59:09:ce:70:9f:83:55:c7:5e: 64:87:47:0f:ea:dd:e0:62:64:7a:e5:9c:0f:29:b1: 25:68:74:5b:e6:31:fb:4d:bb:8c:5d:f1:80:61:0d: 1f:01:7e:4b:20:68:f8:5c:bc:48:f3:ad:1e:64:7b: bc:e1:11:ef:f4:81:51:d6:fb:14:e4:33:85:bc:b6: d5:54:d1:30:8a:d5:cf:63:46:b9:6b:f7:5e:d1:79: ad:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D8:9E:D9:A2:97:4C:4F:81:84:6B:E0:E0:32:65:07:DE:29:4B:8F X509v3 Authority Key Identifier: keyid:8B:A6:99:C4:70:16:69:EC:E8:E7:D3:F4:A8:60:C4:F6:D5:C7:64:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/323830343a6438343a3a2f33322d3438203d3e203238313731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:d84::/32 Signature Algorithm: sha256WithRSAEncryption 4e:34:54:a5:ba:df:33:7c:43:b2:53:45:d4:ba:28:13:cc:64: 3d:50:27:e1:b6:37:b0:18:89:25:16:af:07:b2:3e:a1:f3:4f: f9:ac:06:3d:91:1a:ff:4a:4d:66:a1:f3:cd:7c:65:86:54:10: 85:db:84:f6:91:ea:13:5b:41:eb:f5:6e:66:75:e7:d7:97:af: 1d:ab:24:21:17:3c:94:67:01:65:38:94:f5:cf:db:e6:ec:78: f5:a8:13:54:f6:c7:d9:6e:85:e0:04:8a:f7:09:5f:0d:02:c5: c5:a4:76:d0:5f:5e:dc:a8:1f:b0:1e:9e:7e:8c:68:d3:06:27: ea:1c:05:86:5a:40:81:92:95:68:95:4e:d6:f8:b2:c2:09:8e: ba:20:24:63:74:27:e6:26:95:e0:1c:cc:10:cb:03:9a:05:70: a3:a1:88:22:b4:c0:6c:54:0f:e5:e3:be:95:21:94:df:69:1e: 9c:30:53:25:a0:af:4a:29:9f:c9:d7:e5:7e:c0:da:1d:f0:40: 67:37:19:82:96:98:de:83:86:f0:82:96:01:1e:6a:b0:7b:5f: f6:e7:5b:1b:1d:b5:30:04:bf:e0:38:da:32:35:90:ec:80:70: f7:ad:2c:bd:78:e2:3e:6a:8f:c0:d3:2d:e6:3e:c3:9f:95:65: 3a:54:c6:6c -----BEGIN CERTIFICATE----- MIIHPjCCBiagAwIBAgIUethrdN/0xhCKKUSkcYxcgigJWkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBNjk5QzQ3MDE2NjlFQ0U4RTdEM0Y0QTg2MEM0RjZE NUM3NjREMDAeFw0yNDA0MDMxODU1MDBaFw0yNTA0MDMxOTAwMDBaMIICLTGCAikw ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQ0VDNEUyRUMyMkI1RjlFQTYw NzFDRUEwQjlGQkI1QUI1NDZFNTU5RjE1NzQ3NUVEMTFFQTZFOTdGREI3Q0Y2NzJE M0ZGNDU1QTFFMTQyMzhEMDlCMUVFMDNCRjYxNkFDMTNEQTc5RDdBMENGNTdEMDUx NjFFOTYwNDFCQUE2N0JERjQ5QkZEREFFQzU1NkUxODkwRDY3NTQ3OUY5REE4Mjc0 QTlDRDRDRjdCOEZCODYzQjBBREQwQkM0MkQzRUY4Q0JBMUE1MDZDODcxNUUzNDU0 RURGRkJEMTJEM0E4M0JGNThDRDRBMDFGMzdCNEE0RTIzQzIyRDgxMjg0Mjc4MkZE NkY0NkFDM0I0MjEwMUI0M0U4REQxQ0YzOTM0MTlFN0VEMkQ4NUI5QTZBMTY5MjEw NjkyNjg1RkI1REE4MzhBQjgzNzc2OUQ4MzVGMURFRkQ3QjU5MDlDRTcwOUY4MzU1 Qzc1RTY0ODc0NzBGRUFEREUwNjI2NDdBRTU5QzBGMjlCMTI1Njg3NDVCRTYzMUZC NERCQjhDNURGMTgwNjEwRDFGMDE3RTRCMjA2OEY4NUNCQzQ4RjNBRDFFNjQ3QkJD RTExMUVGRjQ4MTUxRDZGQjE0RTQzMzg1QkNCNkQ1NTREMTMwOEFENUNGNjM0NkI5 NkJGNzVFRDE3OUFERjkwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAzsTi7CK1+epgcc6gufu1q1RuVZ8VdHXtEepul/23z2ctP/RVoeFC ONCbHuA79hasE9p516DPV9BRYelgQbqme99Jv92uxVbhiQ1nVHn52oJ0qc1M97j7 hjsK3QvELT74y6GlBshxXjRU7f+9EtOoO/WM1KAfN7Sk4jwi2BKEJ4L9b0asO0IQ G0Po3Rzzk0GeftLYW5pqFpIQaSaF+12oOKuDd2nYNfHe/XtZCc5wn4NVx15kh0cP 6t3gYmR65ZwPKbElaHRb5jH7TbuMXfGAYQ0fAX5LIGj4XLxI860eZHu84RHv9IFR 1vsU5DOFvLbVVNEwitXPY0a5a/de0Xmt+QIDAQABo4ICTDCCAkgwHQYDVR0OBBYE FEfYntmil0xPgYRr4OAyZQfeKUuPMB8GA1UdIwQYMBaAFIummcRwFmns6OfT9Khg xPbVx2TQMA4GA1UdDwEB/wQEAwIHgDCBlAYDVR0fBIGMMIGJMIGGoIGDoIGAhn5y c3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvL0NKaEc2WDlqZFBHQXRk UFJ6NjZ5dHMyY2hFYmhaQWhiZ3BUWUZDZU1CdVlqLzEvOEJBNjk5QzQ3MDE2NjlF Q0U4RTdEM0Y0QTg2MEM0RjZENUM3NjREMC5jcmwweAYIKwYBBQUHAQEEbDBqMGgG CCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvL25p Y2JyX3JlcG8vMS84QkE2OTlDNDcwMTY2OUVDRThFN0QzRjRBODYwQzRGNkQ1Qzc2 NEQwLmNlcjCBqAYIKwYBBQUHAQsEgZswgZgwgZUGCCsGAQUFBzALhoGIcnN5bmM6 Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9DSmhHNlg5amRQR0F0ZFBSejY2 eXRzMmNoRWJoWkFoYmdwVFlGQ2VNQnVZai8xLzMyMzgzMDM0M2E2NDM4MzQzYTNh MmYzMzMyMmQzNDM4MjAzZDNlMjAzMjM4MzEzNzMxLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKAQNhDAN BgkqhkiG9w0BAQsFAAOCAQEATjRUpbrfM3xDslNF1LooE8xkPVAn4bY3sBiJJRav B7I+ofNP+awGPZEa/0pNZqHzzXxlhlQQhduE9pHqE1tB6/VuZnXn15evHaskIRc8 lGcBZTiU9c/b5ux49agTVPbH2W6F4ASK9wlfDQLFxaR20F9e3KgfsB6efoxo0wYn 6hwFhlpAgZKVaJVO1viywgmOuiAkY3Qn5iaV4BzMEMsDmgVwo6GIIrTAbFQP5eO+ lSGU32kenDBTJaCvSimfydflfsDaHfBAZzcZgpaY3oOG8IKWAR5qsHtf9udbGx21 MAS/4DjaMjWQ7IBw960svXjiPmqPwNMt5j7Dn5VlOlTGbA== -----END CERTIFICATE-----Generated at Fri Sep 27 18:43:43 2024 by rpki-client on console-fra.rpki-client.org