$ rpki-client -vvf rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/323830343a383237303a633030303a3a2f33342d3334203d3e203631363038.roa File: 323830343a383237303a633030303a3a2f33342d3334203d3e203631363038.roa (raw, json) Hash identifier: KG3OhV4qQx3JBnzNgwBKDcyuvC79RsRsxfjSupwP/x0= Subject key identifier: 67:D6:3A:1F:E8:1B:F3:1B:06:9D:D0:34:39:7E:39:80:CC:6E:C9:9B Certificate issuer: /CN=AD72AB44A3531CFD6932D3C0A8DA40F137CAAC01 Certificate serial: 2D18991B3EA5B1D959CFDC5D6428F8F9B110A732 Authority key identifier: AD:72:AB:44:A3:53:1C:FD:69:32:D3:C0:A8:DA:40:F1:37:CA:AC:01 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AD72AB44A3531CFD6932D3C0A8DA40F137CAAC01.cer Subject info access: rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/323830343a383237303a633030303a3a2f33342d3334203d3e203631363038.roa Signing time: Thu 30 Jan 2025 18:28:27 +0000 ROA not before: Thu 30 Jan 2025 18:23:27 +0000 ROA not after: Thu 29 Jan 2026 18:28:27 +0000 asID: 61608 IP address blocks: 2804:8270:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/AD72AB44A3531CFD6932D3C0A8DA40F137CAAC01.crl rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/AD72AB44A3531CFD6932D3C0A8DA40F137CAAC01.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AD72AB44A3531CFD6932D3C0A8DA40F137CAAC01.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Feb 2025 08:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:18:99:1b:3e:a5:b1:d9:59:cf:dc:5d:64:28:f8:f9:b1:10:a7:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD72AB44A3531CFD6932D3C0A8DA40F137CAAC01 Validity Not Before: Jan 30 18:23:27 2025 GMT Not After : Jan 29 18:28:27 2026 GMT Subject: CN=67D63A1FE81BF31B069DD034397E3980CC6EC99B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:c4:69:76:68:8d:0a:f1:3e:02:32:6c:cf:d1: 6a:83:33:7e:31:63:d4:01:09:e6:23:2f:b3:d9:0e: 0d:ac:f1:3e:12:62:ad:00:a5:d8:7e:b0:b1:3f:cc: 3f:a3:ab:2b:5e:51:37:86:f5:e6:f5:bd:58:01:29: bb:cd:23:94:b2:65:c6:63:b9:b2:c1:56:74:54:f8: 1c:92:1b:6f:19:60:5f:50:7e:3e:40:11:2c:13:df: 1e:0f:7b:e0:e7:ea:7e:e2:d3:8b:6b:88:81:2f:73: 12:2d:39:d8:02:65:9f:2c:6f:c2:5e:24:f2:ec:dd: 1f:d4:27:95:10:33:c6:00:66:8f:fe:bb:8d:e3:f9: 3a:2c:2a:00:6a:b3:be:12:9e:5d:9f:0f:44:f8:a4: dd:65:75:b4:5b:f0:8d:58:6f:20:0a:3b:9f:8b:3f: 18:b7:75:b6:fd:45:17:d1:2c:b1:68:3e:b9:e1:6c: 57:9e:0b:36:93:69:b7:59:43:c8:06:79:31:f1:ff: f1:49:5a:fc:f6:08:1e:a6:18:fd:9c:ea:1f:ad:2e: 5a:d4:1a:8e:21:54:a6:d9:47:bc:db:9a:d8:23:93: 19:b6:6c:96:4d:10:d3:72:0c:2f:33:88:58:55:6d: b1:f1:10:17:8b:0c:1e:34:8a:1e:4e:1f:8d:9b:5c: f2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D6:3A:1F:E8:1B:F3:1B:06:9D:D0:34:39:7E:39:80:CC:6E:C9:9B X509v3 Authority Key Identifier: keyid:AD:72:AB:44:A3:53:1C:FD:69:32:D3:C0:A8:DA:40:F1:37:CA:AC:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/AD72AB44A3531CFD6932D3C0A8DA40F137CAAC01.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AD72AB44A3531CFD6932D3C0A8DA40F137CAAC01.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CNpBkius7r6N5WS1XXbUVMdyBxkVcja1Hz6nBjMJnGbM/0/323830343a383237303a633030303a3a2f33342d3334203d3e203631363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8270:c000::/34 Signature Algorithm: sha256WithRSAEncryption 95:f2:3a:ea:a1:0c:fd:40:35:15:36:9f:3e:00:ce:f8:05:20: 67:00:4f:be:a8:41:0b:d3:51:92:0d:6c:e2:dc:8b:cf:10:ad: c2:bf:b1:d7:ca:65:33:1d:ec:7c:5d:33:ee:11:9c:25:94:79: 83:dd:84:06:c6:10:6d:4d:a0:ac:64:ee:0e:27:43:35:93:f4: ce:a9:46:99:f2:c8:bc:0a:4f:a5:f6:e5:ca:e6:8e:e1:eb:32: d1:52:b4:0b:30:85:2f:7b:3a:64:c5:0e:6d:98:4a:9d:66:9c: f5:5d:5d:3c:e4:e3:0f:d5:98:a3:2a:79:ed:dd:87:20:68:77: 6d:4b:a5:fa:7c:fe:4f:ff:10:ec:5c:58:3c:94:c3:cc:f1:89: c9:94:37:51:05:1c:63:71:99:4e:c4:f9:cd:31:26:3f:8f:1f: e6:d6:e2:82:ae:2b:10:45:12:5d:7b:53:2a:bf:db:c5:1f:d4: a2:40:e0:20:5b:a9:04:c8:e3:85:04:b7:b6:e3:b4:d8:f4:b6: 34:71:7b:cc:4f:e2:eb:67:d0:38:8e:bf:d9:4a:17:67:00:7c: 5d:dd:e1:8b:6d:78:d2:25:8d:f3:c0:a7:71:89:9e:d0:f2:34: ee:6c:d0:da:c3:21:a4:21:f9:a9:c3:bf:97:9f:08:67:3c:59: 70:31:96:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIULRiZGz6lsdlZz9xdZCj4+bEQpzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ3MkFCNDRBMzUzMUNGRDY5MzJEM0MwQThEQTQwRjEz N0NBQUMwMTAeFw0yNTAxMzAxODIzMjdaFw0yNjAxMjkxODI4MjdaMDMxMTAvBgNV BAMTKDY3RDYzQTFGRTgxQkYzMUIwNjlERDAzNDM5N0UzOTgwQ0M2RUM5OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1xGl2aI0K8T4CMmzP0WqDM34x Y9QBCeYjL7PZDg2s8T4SYq0Apdh+sLE/zD+jqyteUTeG9eb1vVgBKbvNI5SyZcZj ubLBVnRU+BySG28ZYF9Qfj5AESwT3x4Pe+Dn6n7i04triIEvcxItOdgCZZ8sb8Je JPLs3R/UJ5UQM8YAZo/+u43j+TosKgBqs74Snl2fD0T4pN1ldbRb8I1YbyAKO5+L Pxi3dbb9RRfRLLFoPrnhbFeeCzaTabdZQ8gGeTHx//FJWvz2CB6mGP2c6h+tLlrU Go4hVKbZR7zbmtgjkxm2bJZNENNyDC8ziFhVbbHxEBeLDB40ih5OH42bXPKDAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUZ9Y6H+gb8xsGndA0OX45gMxuyZswHwYDVR0j BBgwFoAUrXKrRKNTHP1pMtPAqNpA8TfKrAEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ05wQmtpdXM3cjZONVdTMVhYYlVWTWR5QnhrVmNqYTFIejZuQmpNSm5H Yk0vMC9BRDcyQUI0NEEzNTMxQ0ZENjkzMkQzQzBBOERBNDBGMTM3Q0FBQzAxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0FENzJBQjQ0QTM1MzFDRkQ2 OTMyRDNDMEE4REE0MEYxMzdDQUFDMDEuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NOcEJraXVzN3I2TjVXUzFYWGJVVk1keUJ4a1ZjamExSHo2bkJqTUpuR2JNLzAv MzIzODMwMzQzYTM4MzIzNzMwM2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDM2MzEzNjMwMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYI KwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYoBIJwwDANBgkqhkiG9w0BAQsFAAOC AQEAlfI66qEM/UA1FTafPgDO+AUgZwBPvqhBC9NRkg1s4tyLzxCtwr+x18plMx3s fF0z7hGcJZR5g92EBsYQbU2grGTuDidDNZP0zqlGmfLIvApPpfblyuaO4esy0VK0 CzCFL3s6ZMUObZhKnWac9V1dPOTjD9WYoyp57d2HIGh3bUul+nz+T/8Q7FxYPJTD zPGJyZQ3UQUcY3GZTsT5zTEmP48f5tbigq4rEEUSXXtTKr/bxR/UokDgIFupBMjj hQS3tuO02PS2NHF7zE/i62fQOI6/2UoXZwB8Xd3hi2140iWN88CncYme0PI07mzQ 2sMhpCH5qcO/l58IZzxZcDGW1g== -----END CERTIFICATE-----Generated at Sun Feb 16 22:30:32 2025 by rpki-client