$ rpki-client -vvf rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/323830343a373335633a633030303a3a2f33342d3334203d3e20323730393130.roa File: 323830343a373335633a633030303a3a2f33342d3334203d3e20323730393130.roa (raw, json) Hash identifier: RnSg+YKbK8pR5bia+dZ9K105SclQ1I16ep03dg/iZ7c= Subject key identifier: EB:95:3C:20:48:8C:BB:7C:95:CA:E9:EE:42:48:01:9E:F9:BF:AD:67 Certificate issuer: /CN=21B66D518F6F1EC440896EDEA1C6F9E694CC3B66 Certificate serial: 7DA390AAA522D6E0B02344027ACE55EC20F6AD10 Authority key identifier: 21:B6:6D:51:8F:6F:1E:C4:40:89:6E:DE:A1:C6:F9:E6:94:CC:3B:66 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.cer Subject info access: rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/323830343a373335633a633030303a3a2f33342d3334203d3e20323730393130.roa Signing time: Thu 06 Mar 2025 07:44:37 +0000 ROA not before: Thu 06 Mar 2025 07:39:37 +0000 ROA not after: Thu 05 Mar 2026 07:44:37 +0000 asID: 270910 IP address blocks: 2804:735c:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.crl rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 03:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a3:90:aa:a5:22:d6:e0:b0:23:44:02:7a:ce:55:ec:20:f6:ad:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21B66D518F6F1EC440896EDEA1C6F9E694CC3B66 Validity Not Before: Mar 6 07:39:37 2025 GMT Not After : Mar 5 07:44:37 2026 GMT Subject: CN=EB953C20488CBB7C95CAE9EE4248019EF9BFAD67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ac:e0:a5:60:8c:47:94:a1:ed:bd:33:40:58: e7:a1:4f:42:fe:63:7f:dc:e8:af:30:6f:57:52:57: 66:f2:a4:81:9f:c3:61:c5:aa:67:2c:f9:ef:ca:aa: df:33:84:de:25:e7:a8:75:09:30:65:b5:36:03:72: 38:80:17:cb:18:9c:02:5b:2c:26:3f:24:21:eb:31: 0a:47:3a:b8:38:02:7c:c6:48:5b:b8:0e:08:41:52: 4d:0b:62:df:f0:ab:59:41:ed:b1:68:d3:13:74:a8: 04:f8:8f:ab:0d:4b:b3:7d:87:6c:f7:68:f5:e5:bf: 00:9b:83:a1:4c:0f:a1:1a:79:6c:bb:75:9b:13:db: 2c:b8:32:0a:bc:04:c2:33:b8:cc:c2:d7:30:fb:f2: 8b:31:36:91:91:68:2a:28:3f:a9:d3:70:0b:4b:6f: 3e:73:4c:81:d2:47:48:0e:4e:db:a1:b0:3d:09:ae: ee:0e:e7:3e:2c:c1:be:74:28:4b:d0:36:59:b0:3a: bd:d2:91:57:40:f5:f4:c7:ad:26:20:a2:76:23:bb: d9:7d:f7:1c:ff:82:e0:8a:b2:e6:16:ca:6e:cf:0d: 67:1c:b4:88:32:d4:fe:44:50:a5:df:62:be:e9:d7: e0:0d:b8:1e:21:c1:a1:87:71:78:c6:8e:56:33:b0: a9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:95:3C:20:48:8C:BB:7C:95:CA:E9:EE:42:48:01:9E:F9:BF:AD:67 X509v3 Authority Key Identifier: keyid:21:B6:6D:51:8F:6F:1E:C4:40:89:6E:DE:A1:C6:F9:E6:94:CC:3B:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/323830343a373335633a633030303a3a2f33342d3334203d3e20323730393130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:735c:c000::/34 Signature Algorithm: sha256WithRSAEncryption c5:f2:23:ec:19:34:ed:ea:04:81:56:25:00:75:a4:7e:4c:99: fa:a0:01:44:4a:21:94:fc:da:94:c1:52:f3:31:56:79:6a:7a: 60:3d:0e:9c:25:cc:bb:3f:93:f3:e8:e1:fb:46:12:03:8b:5f: f5:be:97:66:77:49:4b:6a:8a:d3:20:0b:48:be:3f:08:b4:b2: 9f:f4:d0:1f:b6:4a:4a:b9:30:5a:ec:2e:9b:c1:c4:03:57:bc: e3:6a:1f:04:a7:9d:6e:41:0a:39:e4:33:a8:8b:2a:eb:ea:8c: 81:1e:65:1b:47:a6:e0:d0:47:31:f4:5b:05:9a:51:7b:03:74: 65:28:7b:c7:97:06:af:ce:5c:ad:31:95:3f:d4:9d:f8:14:bc: 74:44:2b:38:e1:fd:7a:25:9a:d5:41:64:27:1c:e1:cc:46:75: 7a:05:ec:1f:20:9c:f2:91:f9:8d:54:da:d5:58:76:cf:2e:59: 25:e5:84:85:0a:e1:03:ca:f7:04:96:47:16:d5:99:d0:ff:cd: c3:fa:46:97:c1:99:bb:1c:4d:19:9e:60:4f:6d:01:0e:37:c7: 83:10:a3:d6:f8:41:c3:30:60:70:bb:97:6a:3c:2c:36:fa:00: c3:06:69:38:02:4a:ad:d9:59:29:7e:08:b4:93:63:97:b8:71: be:ff:43:36 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUfaOQqqUi1uCwI0QCes5V7CD2rRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFCNjZENTE4RjZGMUVDNDQwODk2RURFQTFDNkY5RTY5 NENDM0I2NjAeFw0yNTAzMDYwNzM5MzdaFw0yNjAzMDUwNzQ0MzdaMDMxMTAvBgNV BAMTKEVCOTUzQzIwNDg4Q0JCN0M5NUNBRTlFRTQyNDgwMTlFRjlCRkFENjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGrOClYIxHlKHtvTNAWOehT0L+ Y3/c6K8wb1dSV2bypIGfw2HFqmcs+e/Kqt8zhN4l56h1CTBltTYDcjiAF8sYnAJb LCY/JCHrMQpHOrg4AnzGSFu4DghBUk0LYt/wq1lB7bFo0xN0qAT4j6sNS7N9h2z3 aPXlvwCbg6FMD6EaeWy7dZsT2yy4Mgq8BMIzuMzC1zD78osxNpGRaCooP6nTcAtL bz5zTIHSR0gOTtuhsD0Jru4O5z4swb50KEvQNlmwOr3SkVdA9fTHrSYgonYju9l9 9xz/guCKsuYWym7PDWcctIgy1P5EUKXfYr7p1+ANuB4hwaGHcXjGjlYzsKm1AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU65U8IEiMu3yVyunuQkgBnvm/rWcwHwYDVR0j BBgwFoAUIbZtUY9vHsRAiW7eocb55pTMO2YwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDNxRTVIc0NxOEI1SGp0Smc5MXBjeFFZRVRyUnlIUXBCa1VHUmNEaGRU Q2YvMS8yMUI2NkQ1MThGNkYxRUM0NDA4OTZFREVBMUM2RjlFNjk0Q0MzQjY2LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIxQjY2RDUxOEY2RjFFQzQ0 MDg5NkVERUExQzZGOUU2OTRDQzNCNjYuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0QzcUU1SHNDcThCNUhqdEpnOTFwY3hRWUVUclJ5SFFwQmtVR1JjRGhkVENmLzEv MzIzODMwMzQzYTM3MzMzNTYzM2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzczMDM5MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEc1zAMA0GCSqGSIb3DQEBCwUA A4IBAQDF8iPsGTTt6gSBViUAdaR+TJn6oAFESiGU/NqUwVLzMVZ5anpgPQ6cJcy7 P5Pz6OH7RhIDi1/1vpdmd0lLaorTIAtIvj8ItLKf9NAftkpKuTBa7C6bwcQDV7zj ah8Ep51uQQo55DOoiyrr6oyBHmUbR6bg0Ecx9FsFmlF7A3RlKHvHlwavzlytMZU/ 1J34FLx0RCs44f16JZrVQWQnHOHMRnV6BewfIJzykfmNVNrVWHbPLlkl5YSFCuED yvcElkcW1ZnQ/83D+kaXwZm7HE0ZnmBPbQEON8eDEKPW+EHDMGBwu5dqPCw2+gDD Bmk4Akqt2Vkpfgi0k2OXuHG+/0M2 -----END CERTIFICATE-----Generated at Mon Apr 21 20:09:17 2025 by rpki-client