$ rpki-client -vvf rpki-repo.registro.br/repo/CYpPsBtEta9JL8S2SgoTnz9v2y4C56FH89bWgVBFTNPS/0/323830343a3233633a3a2f33322d3336203d3e20323632373937.roa File: 323830343a3233633a3a2f33322d3336203d3e20323632373937.roa (raw, json) Hash identifier: qjglQFp7zSpXcoW/WyM/nLmHxoiUZSWGVDS8OkOJ198= Subject key identifier: CA:00:ED:8C:6F:C1:5C:C7:F0:E4:79:9C:46:04:6F:D4:E5:B0:D8:B7 Certificate issuer: /CN=A48C5704DA7C590E4B5966889452F8EDAEBAB1A8 Certificate serial: 3559BFD8AEDB4996609509D861662F3F44E09545 Authority key identifier: A4:8C:57:04:DA:7C:59:0E:4B:59:66:88:94:52:F8:ED:AE:BA:B1:A8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A48C5704DA7C590E4B5966889452F8EDAEBAB1A8.cer Subject info access: rsync://rpki-repo.registro.br/repo/CYpPsBtEta9JL8S2SgoTnz9v2y4C56FH89bWgVBFTNPS/0/323830343a3233633a3a2f33322d3336203d3e20323632373937.roa Signing time: Mon 13 Jan 2025 14:08:03 +0000 ROA not before: Mon 13 Jan 2025 14:03:03 +0000 ROA not after: Mon 12 Jan 2026 14:08:03 +0000 asID: 262797 IP address blocks: 2804:23c::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CYpPsBtEta9JL8S2SgoTnz9v2y4C56FH89bWgVBFTNPS/0/A48C5704DA7C590E4B5966889452F8EDAEBAB1A8.crl rsync://rpki-repo.registro.br/repo/CYpPsBtEta9JL8S2SgoTnz9v2y4C56FH89bWgVBFTNPS/0/A48C5704DA7C590E4B5966889452F8EDAEBAB1A8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A48C5704DA7C590E4B5966889452F8EDAEBAB1A8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Feb 2025 16:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:59:bf:d8:ae:db:49:96:60:95:09:d8:61:66:2f:3f:44:e0:95:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A48C5704DA7C590E4B5966889452F8EDAEBAB1A8 Validity Not Before: Jan 13 14:03:03 2025 GMT Not After : Jan 12 14:08:03 2026 GMT Subject: CN=CA00ED8C6FC15CC7F0E4799C46046FD4E5B0D8B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:80:4a:97:3d:27:6e:46:91:2b:12:9c:cf:e3: d3:82:ed:41:e9:30:b6:35:3c:fc:6f:d7:31:da:22: 65:8b:a0:55:a0:ac:44:5c:d8:b9:ae:60:e0:24:58: 0a:49:45:46:d4:ff:fb:e6:2e:a7:6a:3e:47:7a:8e: 47:04:df:45:82:fd:c1:9b:9b:be:7f:e5:f2:41:83: 24:9a:68:90:5e:04:b5:96:d6:0b:f0:23:62:a5:64: ff:dd:c5:ae:9c:85:bd:c5:93:5c:b8:f5:b6:57:13: 48:69:61:4c:96:43:09:13:dd:8c:10:b2:b5:1a:66: e9:a8:d5:f5:c8:7e:47:cf:de:16:45:9a:33:92:be: 9a:da:2f:bc:94:08:0f:f5:53:66:c6:cb:61:17:bf: a4:1b:65:59:f1:95:36:45:57:4b:7b:b7:1f:63:fb: 0b:cb:ff:ed:9c:91:f4:1f:b4:59:9a:b5:3b:27:89: dd:ba:13:ba:57:81:07:34:2a:4b:de:7d:d7:c1:35: 80:2c:a8:d8:be:0d:81:76:a6:f9:87:51:75:fd:af: a2:dd:7f:3c:9e:49:cf:36:bc:b3:45:a8:a4:25:a2: 50:84:c4:6e:1a:38:b7:dd:f9:af:74:49:ae:f5:1c: f9:49:8e:57:d6:12:cb:2c:17:12:0a:32:24:0c:c0: 47:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:00:ED:8C:6F:C1:5C:C7:F0:E4:79:9C:46:04:6F:D4:E5:B0:D8:B7 X509v3 Authority Key Identifier: keyid:A4:8C:57:04:DA:7C:59:0E:4B:59:66:88:94:52:F8:ED:AE:BA:B1:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CYpPsBtEta9JL8S2SgoTnz9v2y4C56FH89bWgVBFTNPS/0/A48C5704DA7C590E4B5966889452F8EDAEBAB1A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A48C5704DA7C590E4B5966889452F8EDAEBAB1A8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CYpPsBtEta9JL8S2SgoTnz9v2y4C56FH89bWgVBFTNPS/0/323830343a3233633a3a2f33322d3336203d3e20323632373937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:23c::/32 Signature Algorithm: sha256WithRSAEncryption 46:1e:ff:f2:aa:67:69:9d:46:3e:c6:07:38:26:d6:f1:f4:91: de:a6:12:61:d8:60:8d:6e:73:19:99:09:c0:51:17:e0:52:53: bd:28:0c:20:3c:05:09:02:df:36:70:d3:98:88:8b:b7:86:00: 00:f1:b4:30:49:5f:62:f5:db:19:a5:35:82:b2:9f:a3:66:67: 50:97:3e:64:4d:01:82:c1:31:5e:96:85:e2:fe:f5:f8:de:d5: e3:f5:3e:a3:f7:47:8a:ea:87:33:dd:25:ac:85:14:8e:ab:51: 92:58:ba:15:1f:c4:7b:48:ff:6b:2f:eb:07:de:c5:41:24:43: e7:e2:70:f9:d3:ab:50:28:cf:06:68:1e:54:7d:fc:2c:c6:24: a7:c3:2f:5e:31:1f:c1:47:e7:65:bb:1b:6b:ba:fb:8b:b3:b8: 1c:c3:04:d1:80:de:89:75:7b:06:dc:f8:0d:88:5d:48:b4:ea: b6:98:f0:1a:3c:33:ba:27:dd:d7:a5:48:11:fd:9a:7e:31:77: 3b:2e:1e:11:43:da:bf:d5:3e:aa:01:90:cc:1c:af:ae:8b:d2: 61:f6:96:be:1d:32:e5:3e:56:24:a0:d9:1d:e3:dc:c3:2a:58: 0a:d5:0d:40:a8:d1:5a:9a:f2:98:86:15:87:23:a3:d8:36:af: e8:71:63:af -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUNVm/2K7bSZZglQnYYWYvP0TglUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTQ4QzU3MDREQTdDNTkwRTRCNTk2Njg4OTQ1MkY4RURB RUJBQjFBODAeFw0yNTAxMTMxNDAzMDNaFw0yNjAxMTIxNDA4MDNaMDMxMTAvBgNV BAMTKENBMDBFRDhDNkZDMTVDQzdGMEU0Nzk5QzQ2MDQ2RkQ0RTVCMEQ4QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6gEqXPSduRpErEpzP49OC7UHp MLY1PPxv1zHaImWLoFWgrERc2LmuYOAkWApJRUbU//vmLqdqPkd6jkcE30WC/cGb m75/5fJBgySaaJBeBLWW1gvwI2KlZP/dxa6chb3Fk1y49bZXE0hpYUyWQwkT3YwQ srUaZumo1fXIfkfP3hZFmjOSvpraL7yUCA/1U2bGy2EXv6QbZVnxlTZFV0t7tx9j +wvL/+2ckfQftFmatTsnid26E7pXgQc0KkvefdfBNYAsqNi+DYF2pvmHUXX9r6Ld fzyeSc82vLNFqKQlolCExG4aOLfd+a90Sa71HPlJjlfWEsssFxIKMiQMwEcrAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUygDtjG/BXMfw5HmcRgRv1OWw2LcwHwYDVR0j BBgwFoAUpIxXBNp8WQ5LWWaIlFL47a66sagwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ1lwUHNCdEV0YTlKTDhTMlNnb1Ruejl2Mnk0QzU2Rkg4OWJXZ1ZCRlRO UFMvMC9BNDhDNTcwNERBN0M1OTBFNEI1OTY2ODg5NDUyRjhFREFFQkFCMUE4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E0OEM1NzA0REE3QzU5MEU0 QjU5NjY4ODk0NTJGOEVEQUVCQUIxQTguY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NZcFBzQnRFdGE5Skw4UzJTZ29Ubno5djJ5NEM1NkZIODliV2dWQkZUTlBTLzAv MzIzODMwMzQzYTMyMzM2MzNhM2EyZjMzMzIyZDMzMzYyMDNkM2UyMDMyMzYzMjM3 MzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACgEAjwwDQYJKoZIhvcNAQELBQADggEBAEYe//KqZ2md Rj7GBzgm1vH0kd6mEmHYYI1ucxmZCcBRF+BSU70oDCA8BQkC3zZw05iIi7eGAADx tDBJX2L12xmlNYKyn6NmZ1CXPmRNAYLBMV6WheL+9fje1eP1PqP3R4rqhzPdJayF FI6rUZJYuhUfxHtI/2sv6wfexUEkQ+ficPnTq1AozwZoHlR9/CzGJKfDL14xH8FH 52W7G2u6+4uzuBzDBNGA3ol1ewbc+A2IXUi06raY8Bo8M7on3delSBH9mn4xdzsu HhFD2r/VPqoBkMwcr66L0mH2lr4dMuU+ViSg2R3j3MMqWArVDUCo0Vqa8piGFYcj o9g2r+hxY68= -----END CERTIFICATE-----Generated at Sun Feb 16 22:06:37 2025 by rpki-client