$ rpki-client -vvf rpki-repo.registro.br/repo/Ciazpvg81Q4DGM2j81CVSFauYWRQc64YAyMwrGXvRzSU/0/323830343a313339383a336630303a3a2f34302d3430203d3e20323633353431.roa File: 323830343a313339383a336630303a3a2f34302d3430203d3e20323633353431.roa (raw, json) Hash identifier: sNZ5Jf5t0PF0xR+D+KuZDSYD/yWAVXVMHXTZRoqBY/w= Subject key identifier: 2C:1E:02:15:0D:96:7A:ED:B8:83:96:C2:03:07:72:83:28:C2:36:62 Certificate issuer: /CN=DFA5F9058A3FC234221062FC10FD9D6253F81867 Certificate serial: 235C37FF63B28D43ED4F4CDA4C6EEA15025BAEE4 Authority key identifier: DF:A5:F9:05:8A:3F:C2:34:22:10:62:FC:10:FD:9D:62:53:F8:18:67 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFA5F9058A3FC234221062FC10FD9D6253F81867.cer Subject info access: rsync://rpki-repo.registro.br/repo/Ciazpvg81Q4DGM2j81CVSFauYWRQc64YAyMwrGXvRzSU/0/323830343a313339383a336630303a3a2f34302d3430203d3e20323633353431.roa Signing time: Thu 09 Jan 2025 14:06:48 +0000 ROA not before: Thu 09 Jan 2025 14:01:48 +0000 ROA not after: Thu 08 Jan 2026 14:06:48 +0000 asID: 263541 IP address blocks: 2804:1398:3f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/Ciazpvg81Q4DGM2j81CVSFauYWRQc64YAyMwrGXvRzSU/0/DFA5F9058A3FC234221062FC10FD9D6253F81867.crl rsync://rpki-repo.registro.br/repo/Ciazpvg81Q4DGM2j81CVSFauYWRQc64YAyMwrGXvRzSU/0/DFA5F9058A3FC234221062FC10FD9D6253F81867.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFA5F9058A3FC234221062FC10FD9D6253F81867.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 11 Apr 2025 01:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:5c:37:ff:63:b2:8d:43:ed:4f:4c:da:4c:6e:ea:15:02:5b:ae:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA5F9058A3FC234221062FC10FD9D6253F81867 Validity Not Before: Jan 9 14:01:48 2025 GMT Not After : Jan 8 14:06:48 2026 GMT Subject: CN=2C1E02150D967AEDB88396C20307728328C23662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b6:e0:00:28:6d:56:46:16:38:a4:76:64:2f: a5:4e:c8:85:12:91:66:9f:59:f9:0d:d6:f1:a8:b2: dc:7c:e0:34:df:7a:5a:51:fd:4e:7f:56:81:74:b7: 37:59:9e:f9:b1:6a:e7:96:e5:9e:68:a9:c4:83:03: e2:fb:be:78:30:61:a6:f8:c1:bb:a5:a1:dc:4b:8c: 15:e7:6f:ce:ff:41:aa:42:16:a5:75:ff:81:0d:45: 8d:c0:8a:de:9f:7c:d4:c4:1a:ec:1c:b2:48:7b:b1: 82:fe:5b:5d:e2:e0:0e:c6:7f:a2:72:d2:43:e8:92: 23:a2:b7:a0:7b:27:26:0f:2b:58:7f:a9:78:ba:87: 69:47:68:46:ed:ce:f0:ab:3d:1c:d6:1c:b5:38:d9: e1:6d:75:cc:6d:18:cd:3d:c7:cc:a7:2a:ad:c1:df: 19:de:7d:ba:f7:93:2d:4c:c7:d9:46:68:7f:c2:c0: d8:b5:97:8f:0f:65:70:59:89:d5:f9:07:9a:0c:27: 97:eb:ce:a3:fd:87:13:0d:fa:0d:4e:7d:e3:ff:4b: c6:92:08:37:a2:d2:34:0a:bb:93:2b:72:03:bc:32: 35:73:83:da:19:f1:24:99:b5:9c:75:0a:02:7a:67: 01:58:ef:69:ef:c9:32:2f:39:a1:7c:0d:d7:bb:ba: 3f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1E:02:15:0D:96:7A:ED:B8:83:96:C2:03:07:72:83:28:C2:36:62 X509v3 Authority Key Identifier: keyid:DF:A5:F9:05:8A:3F:C2:34:22:10:62:FC:10:FD:9D:62:53:F8:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/Ciazpvg81Q4DGM2j81CVSFauYWRQc64YAyMwrGXvRzSU/0/DFA5F9058A3FC234221062FC10FD9D6253F81867.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFA5F9058A3FC234221062FC10FD9D6253F81867.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/Ciazpvg81Q4DGM2j81CVSFauYWRQc64YAyMwrGXvRzSU/0/323830343a313339383a336630303a3a2f34302d3430203d3e20323633353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:1398:3f00::/40 Signature Algorithm: sha256WithRSAEncryption 97:3f:96:1b:c9:d7:2f:f5:8d:e2:8c:5e:63:6f:6a:2f:fd:b4: d7:5b:86:f5:31:4b:90:98:2f:15:34:43:d3:91:62:43:a3:c4: b6:cd:9e:aa:9d:fe:f8:9d:0e:b1:42:1e:a2:13:6c:5a:0c:e2: e5:fb:d2:7c:51:59:4f:04:e5:10:a9:86:78:6a:65:2e:83:aa: ca:3d:09:60:0d:10:77:6e:a3:67:60:a3:dd:59:d6:26:b3:45: 61:b3:49:ed:48:66:84:62:f7:eb:36:ec:de:0b:c9:0b:fd:16: 00:07:0e:1f:77:21:c4:93:04:e2:80:2a:d2:0f:d7:32:bf:db: 6b:ba:0a:1a:21:df:96:07:e6:fa:26:e6:11:61:4b:a1:78:ab: 01:a9:a7:e7:09:4a:e3:ae:f3:a7:a9:aa:22:56:fd:57:51:89: e5:7a:e7:44:c8:99:ff:6a:f2:55:d4:f6:fd:1c:a9:6e:95:ba: cc:b8:0c:99:29:5e:79:8f:6a:6b:9f:2b:de:55:34:bb:d8:e9: 20:bd:78:e9:f3:0c:2a:22:6f:43:35:e4:d4:6f:eb:16:02:73: 2f:5d:a5:8d:46:d6:3b:3b:e5:a4:09:f9:f2:9b:c3:50:c9:0f: 0e:67:b9:50:c1:d5:f8:7b:59:e1:4b:c7:0a:43:5b:b6:18:3c: 44:e4:65:9e -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUI1w3/2OyjUPtT0zaTG7qFQJbruQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREZBNUY5MDU4QTNGQzIzNDIyMTA2MkZDMTBGRDlENjI1 M0Y4MTg2NzAeFw0yNTAxMDkxNDAxNDhaFw0yNjAxMDgxNDA2NDhaMDMxMTAvBgNV BAMTKDJDMUUwMjE1MEQ5NjdBRURCODgzOTZDMjAzMDc3MjgzMjhDMjM2NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHtuAAKG1WRhY4pHZkL6VOyIUS kWafWfkN1vGostx84DTfelpR/U5/VoF0tzdZnvmxaueW5Z5oqcSDA+L7vngwYab4 wbulodxLjBXnb87/QapCFqV1/4ENRY3Ait6ffNTEGuwcskh7sYL+W13i4A7Gf6Jy 0kPokiOit6B7JyYPK1h/qXi6h2lHaEbtzvCrPRzWHLU42eFtdcxtGM09x8ynKq3B 3xnefbr3ky1Mx9lGaH/CwNi1l48PZXBZidX5B5oMJ5frzqP9hxMN+g1OfeP/S8aS CDei0jQKu5MrcgO8MjVzg9oZ8SSZtZx1CgJ6ZwFY72nvyTIvOaF8Dde7uj+vAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQULB4CFQ2Weu24g5bCAwdygyjCNmIwHwYDVR0j BBgwFoAU36X5BYo/wjQiEGL8EP2dYlP4GGcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ2lhenB2ZzgxUTRER00yajgxQ1ZTRmF1WVdSUWM2NFlBeU13ckdYdlJ6 U1UvMC9ERkE1RjkwNThBM0ZDMjM0MjIxMDYyRkMxMEZEOUQ2MjUzRjgxODY3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RGQTVGOTA1OEEzRkMyMzQy MjEwNjJGQzEwRkQ5RDYyNTNGODE4NjcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NpYXpwdmc4MVE0REdNMmo4MUNWU0ZhdVlXUlFjNjRZQXlNd3JHWHZSelNVLzAv MzIzODMwMzQzYTMxMzMzOTM4M2EzMzY2MzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNk M2UyMDMyMzYzMzM1MzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACgEE5g/MA0GCSqGSIb3DQEBCwUA A4IBAQCXP5Ybydcv9Y3ijF5jb2ov/bTXW4b1MUuQmC8VNEPTkWJDo8S2zZ6qnf74 nQ6xQh6iE2xaDOLl+9J8UVlPBOUQqYZ4amUug6rKPQlgDRB3bqNnYKPdWdYms0Vh s0ntSGaEYvfrNuzeC8kL/RYABw4fdyHEkwTigCrSD9cyv9trugoaId+WB+b6JuYR YUuheKsBqafnCUrjrvOnqaoiVv1XUYnleudEyJn/avJV1Pb9HKlulbrMuAyZKV55 j2prnyveVTS72OkgvXjp8wwqIm9DNeTUb+sWAnMvXaWNRtY7O+WkCfnym8NQyQ8O Z7lQwdX4e1nhS8cKQ1u2GDxE5GWe -----END CERTIFICATE-----Generated at Thu Apr 10 15:48:56 2025 by rpki-client