$ rpki-client -vvf rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/323830343a383237303a383030303a3a2f33342d3334203d3e203631363038.roa File: 323830343a383237303a383030303a3a2f33342d3334203d3e203631363038.roa (raw, json) Hash identifier: JcWJLpbpMgx/WCcUDdztbuxKF/71Ozn0M8Z1sNNX/k4= Subject key identifier: 87:F8:4A:35:70:F5:9F:99:8A:78:7E:43:CE:B6:05:27:9E:C0:89:F8 Certificate issuer: /CN=B04ECA621E6FCB90F1469DB6E89AD4D2DED79CC3 Certificate serial: 2BE29D0C56A13D3A405077FAD47A75C2D49CC4A7 Authority key identifier: B0:4E:CA:62:1E:6F:CB:90:F1:46:9D:B6:E8:9A:D4:D2:DE:D7:9C:C3 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B04ECA621E6FCB90F1469DB6E89AD4D2DED79CC3.cer Subject info access: rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/323830343a383237303a383030303a3a2f33342d3334203d3e203631363038.roa Signing time: Wed 19 Mar 2025 20:09:08 +0000 ROA not before: Wed 19 Mar 2025 20:04:08 +0000 ROA not after: Wed 18 Mar 2026 20:09:08 +0000 asID: 61608 IP address blocks: 2804:8270:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/B04ECA621E6FCB90F1469DB6E89AD4D2DED79CC3.crl rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/B04ECA621E6FCB90F1469DB6E89AD4D2DED79CC3.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B04ECA621E6FCB90F1469DB6E89AD4D2DED79CC3.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 15 Apr 2025 14:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:e2:9d:0c:56:a1:3d:3a:40:50:77:fa:d4:7a:75:c2:d4:9c:c4:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B04ECA621E6FCB90F1469DB6E89AD4D2DED79CC3 Validity Not Before: Mar 19 20:04:08 2025 GMT Not After : Mar 18 20:09:08 2026 GMT Subject: CN=87F84A3570F59F998A787E43CEB605279EC089F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2e:c1:be:f1:b6:e1:46:11:d2:05:f9:bd:20: 24:b3:09:18:50:ae:ee:c2:87:31:dd:3f:37:4f:45: 7b:bc:78:58:f3:82:12:10:f5:46:4d:c4:05:7e:4b: ac:e4:69:de:75:98:f1:1e:18:38:6f:cd:3c:99:3f: 27:96:89:d6:a0:7c:9a:f1:78:b5:c5:f0:5b:33:41: 58:db:fa:52:ab:91:8f:79:72:19:a1:46:eb:db:1c: 77:a0:5e:d2:25:5a:45:fa:5d:95:5e:c8:8c:1a:3e: 44:78:3f:54:38:d5:98:48:39:5a:ce:dd:6c:93:b0: b6:b1:86:98:42:57:8f:ad:90:e2:ca:51:ea:49:3d: 78:2b:7d:16:e2:49:db:f4:50:3f:5e:e3:c8:a3:6f: 6d:6f:55:a6:c1:71:66:5b:68:03:dd:a4:fe:4a:a5: 69:9c:26:1c:ff:ab:76:fd:4d:ce:a5:1d:6c:c0:66: bb:f8:65:f1:9e:6b:c5:7a:26:26:65:7d:e7:f6:39: 99:82:14:46:24:a4:72:30:66:04:97:9c:ee:02:fe: 7f:bb:30:25:81:c3:59:f3:58:72:af:1d:1a:81:d4: 07:f1:de:f5:1a:a9:e5:88:e3:ab:34:6a:5a:a2:38: d4:1e:45:c2:fd:09:b0:46:2e:40:fc:e8:20:70:d6: c4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F8:4A:35:70:F5:9F:99:8A:78:7E:43:CE:B6:05:27:9E:C0:89:F8 X509v3 Authority Key Identifier: keyid:B0:4E:CA:62:1E:6F:CB:90:F1:46:9D:B6:E8:9A:D4:D2:DE:D7:9C:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/B04ECA621E6FCB90F1469DB6E89AD4D2DED79CC3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B04ECA621E6FCB90F1469DB6E89AD4D2DED79CC3.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/323830343a383237303a383030303a3a2f33342d3334203d3e203631363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8270:8000::/34 Signature Algorithm: sha256WithRSAEncryption 95:9a:54:ac:ee:0d:15:1e:69:39:da:47:7c:01:c4:fc:73:e8: 35:12:77:1f:cb:d6:db:c7:13:18:b8:7e:54:a0:ee:b9:29:0e: 54:27:68:e8:41:af:60:00:7b:c9:57:ae:e5:fe:df:c6:96:9c: 8f:29:2b:d2:0d:5e:c0:2e:4d:1d:6b:19:d9:96:ff:6e:05:b9: 0b:91:14:d7:25:ea:f8:45:a7:9b:02:9d:fa:04:30:9b:67:67: 5e:80:6f:57:51:25:63:9e:81:93:e4:19:99:eb:87:49:96:36: 5f:6d:c9:95:50:e0:cb:75:f5:81:97:1b:e0:53:b4:0b:ae:0a: fc:ac:b3:02:14:e4:e1:88:a3:39:1d:80:81:2f:2d:d8:fb:07: 5e:dc:0e:8c:d9:78:d4:92:a0:57:30:ad:c1:6f:b4:58:85:b8: 2d:ea:4d:7e:50:b5:13:99:df:96:18:08:3d:cf:82:71:b4:51: 65:f7:72:9c:d9:f3:9f:f0:96:13:2a:6a:b0:f4:5b:8c:3f:7c: 11:27:2f:57:2d:79:a4:4c:b7:3f:60:2a:e0:d3:ff:80:3f:f6: d1:4a:0f:40:17:72:b9:da:b6:22:82:0c:a9:50:49:14:84:eb: 14:f4:04:19:7b:fc:f7:54:7e:6b:d3:2b:a9:98:1b:e2:cd:dc: 76:bc:b6:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUK+KdDFahPTpAUHf61Hp1wtScxKcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA0RUNBNjIxRTZGQ0I5MEYxNDY5REI2RTg5QUQ0RDJE RUQ3OUNDMzAeFw0yNTAzMTkyMDA0MDhaFw0yNjAzMTgyMDA5MDhaMDMxMTAvBgNV BAMTKDg3Rjg0QTM1NzBGNTlGOTk4QTc4N0U0M0NFQjYwNTI3OUVDMDg5RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXLsG+8bbhRhHSBfm9ICSzCRhQ ru7ChzHdPzdPRXu8eFjzghIQ9UZNxAV+S6zkad51mPEeGDhvzTyZPyeWidagfJrx eLXF8FszQVjb+lKrkY95chmhRuvbHHegXtIlWkX6XZVeyIwaPkR4P1Q41ZhIOVrO 3WyTsLaxhphCV4+tkOLKUepJPXgrfRbiSdv0UD9e48ijb21vVabBcWZbaAPdpP5K pWmcJhz/q3b9Tc6lHWzAZrv4ZfGea8V6JiZlfef2OZmCFEYkpHIwZgSXnO4C/n+7 MCWBw1nzWHKvHRqB1Afx3vUaqeWI46s0alqiONQeRcL9CbBGLkD86CBw1sSRAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUh/hKNXD1n5mKeH5DzrYFJ57AifgwHwYDVR0j BBgwFoAUsE7KYh5vy5DxRp226JrU0t7XnMMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ05wQmtpdXM3cjZONVdTMVhYYlVWTWR5QnhrVmNqYTFIejZuQmpNSm5H Yk0vMC9CMDRFQ0E2MjFFNkZDQjkwRjE0NjlEQjZFODlBRDREMkRFRDc5Q0MzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0IwNEVDQTYyMUU2RkNCOTBG MTQ2OURCNkU4OUFENEQyREVENzlDQzMuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NOcEJraXVzN3I2TjVXUzFYWGJVVk1keUJ4a1ZjamExSHo2bkJqTUpuR2JNLzAv MzIzODMwMzQzYTM4MzIzNzMwM2EzODMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDM2MzEzNjMwMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYI KwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYoBIJwgDANBgkqhkiG9w0BAQsFAAOC AQEAlZpUrO4NFR5pOdpHfAHE/HPoNRJ3H8vW28cTGLh+VKDuuSkOVCdo6EGvYAB7 yVeu5f7fxpacjykr0g1ewC5NHWsZ2Zb/bgW5C5EU1yXq+EWnmwKd+gQwm2dnXoBv V1ElY56Bk+QZmeuHSZY2X23JlVDgy3X1gZcb4FO0C64K/KyzAhTk4YijOR2AgS8t 2PsHXtwOjNl41JKgVzCtwW+0WIW4LepNflC1E5nflhgIPc+CcbRRZfdynNnzn/CW EypqsPRbjD98EScvVy15pEy3P2Aq4NP/gD/20UoPQBdyudq2IoIMqVBJFITrFPQE GXv891R+a9MrqZgb4s3cdry2FA== -----END CERTIFICATE-----Generated at Tue Apr 15 07:28:02 2025 by rpki-client