$ rpki-client -vvf rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/323830343a326330303a3234303a3a2f34332d3433203d3e20323635313837.roa File: 323830343a326330303a3234303a3a2f34332d3433203d3e20323635313837.roa (raw, json) Hash identifier: LmS+pQAdfryxbkS7FHx7Dk7WSKI1br5i6M7hQ+17TJo= Subject key identifier: E9:58:AE:1A:D2:7B:97:DE:A5:79:C4:D3:B8:8C:89:E1:B8:0D:B1:F2 Certificate issuer: /CN=F455D0BE5138AE552B4857270EED2A7CE5B5C6F2 Certificate serial: 63B8953992681F692A30AE65B54AC31E144B3169 Authority key identifier: F4:55:D0:BE:51:38:AE:55:2B:48:57:27:0E:ED:2A:7C:E5:B5:C6:F2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/323830343a326330303a3234303a3a2f34332d3433203d3e20323635313837.roa Signing time: Sat 01 Feb 2025 20:30:59 +0000 ROA not before: Sat 01 Feb 2025 20:25:59 +0000 ROA not after: Sat 31 Jan 2026 20:30:59 +0000 asID: 265187 IP address blocks: 2804:2c00:240::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.crl rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 23 Apr 2025 09:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:b8:95:39:92:68:1f:69:2a:30:ae:65:b5:4a:c3:1e:14:4b:31:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F455D0BE5138AE552B4857270EED2A7CE5B5C6F2 Validity Not Before: Feb 1 20:25:59 2025 GMT Not After : Jan 31 20:30:59 2026 GMT Subject: CN=E958AE1AD27B97DEA579C4D3B88C89E1B80DB1F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:40:47:9a:f8:f2:f6:5e:46:5f:c2:b4:ca:67: 65:6b:22:a9:27:44:0b:fd:09:5b:78:4d:1c:2e:f9: 74:42:2a:ca:fb:6f:f3:2b:c1:b8:dc:d0:b0:47:4d: 6f:27:b8:32:cb:4f:4f:54:48:46:87:37:b8:a9:d5: 2e:77:0d:31:ce:20:41:83:a4:2a:d1:43:fe:57:ac: 32:5f:5a:00:ad:54:5b:c5:8a:1d:d2:c5:86:94:65: 3e:f9:0e:0a:bd:b3:5d:c8:e2:48:bb:4f:dd:61:c1: 1a:3c:a3:57:82:b5:fa:b4:ef:8a:2b:70:7e:00:64: 9b:1e:d8:d0:ba:b1:18:d8:cb:03:53:08:4d:d0:cd: ac:5a:9b:fe:ef:b4:c6:b7:36:6f:ea:b7:6f:a8:cc: 36:a3:e1:a4:f0:e7:59:e5:d7:47:c1:3e:db:66:a3: 1d:a8:73:d4:86:e1:8d:0a:14:ce:f1:8e:45:f0:84: 10:a7:70:0d:e8:19:3d:d5:8c:97:a1:59:72:c1:1e: c7:5a:7b:8b:db:57:7d:46:26:0a:6c:35:ed:2c:c0: 15:8b:70:34:33:03:06:57:11:ec:e0:d3:39:b9:50: 1f:7d:f0:92:22:85:1d:fa:2b:74:fd:f0:c9:15:33: 53:a2:80:48:fb:bb:6d:12:69:7a:90:70:0a:e3:bf: 84:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:58:AE:1A:D2:7B:97:DE:A5:79:C4:D3:B8:8C:89:E1:B8:0D:B1:F2 X509v3 Authority Key Identifier: keyid:F4:55:D0:BE:51:38:AE:55:2B:48:57:27:0E:ED:2A:7C:E5:B5:C6:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/323830343a326330303a3234303a3a2f34332d3433203d3e20323635313837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:2c00:240::/43 Signature Algorithm: sha256WithRSAEncryption 25:3e:c8:ae:93:3f:39:19:37:cb:d9:c3:00:f5:f1:70:9b:ec: ba:c8:87:07:5b:fd:06:6f:be:41:07:ce:d5:ce:0d:c0:3b:b5: 63:52:91:8e:b9:98:78:66:f2:e4:7b:68:14:03:1d:ab:e2:8c: 34:68:39:9b:e1:16:66:27:8d:f3:8a:f6:b7:86:a0:e4:75:d1: d5:21:18:01:0d:3d:5b:d5:1d:1f:3e:45:ba:d4:d9:39:2c:4d: 5e:87:94:07:f7:ca:1e:fb:ec:63:cc:83:4d:5b:32:28:b1:a1: ab:b5:17:dc:58:28:ac:80:0c:fb:27:b2:62:a7:09:89:98:4c: 89:ca:43:41:e8:2c:f8:4f:bb:35:f5:70:66:fd:9b:75:1a:5e: cc:f3:51:e5:af:c0:d9:4d:28:f7:90:fe:7e:be:42:88:3b:b3: bf:e1:3e:17:f2:55:54:ae:50:dc:c0:40:8c:f1:19:17:87:78: a5:6e:7e:c9:37:a8:91:47:73:fd:03:ee:cf:54:f5:2c:42:af: b2:f5:19:dd:b5:84:64:d2:e3:7b:14:a3:a1:ee:30:09:3d:dc: 51:30:a2:c1:1c:31:15:e7:c2:5a:6b:e9:81:a9:98:e2:f1:2b: d4:8b:6d:de:55:f2:01:5c:c9:12:65:3d:d0:63:fd:a1:01:82: 6e:be:d0:cd -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIUY7iVOZJoH2kqMK5ltUrDHhRLMWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQ1NUQwQkU1MTM4QUU1NTJCNDg1NzI3MEVFRDJBN0NF NUI1QzZGMjAeFw0yNTAyMDEyMDI1NTlaFw0yNjAxMzEyMDMwNTlaMDMxMTAvBgNV BAMTKEU5NThBRTFBRDI3Qjk3REVBNTc5QzREM0I4OEM4OUUxQjgwREIxRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfQEea+PL2XkZfwrTKZ2VrIqkn RAv9CVt4TRwu+XRCKsr7b/Mrwbjc0LBHTW8nuDLLT09USEaHN7ip1S53DTHOIEGD pCrRQ/5XrDJfWgCtVFvFih3SxYaUZT75Dgq9s13I4ki7T91hwRo8o1eCtfq074or cH4AZJse2NC6sRjYywNTCE3Qzaxam/7vtMa3Nm/qt2+ozDaj4aTw51nl10fBPttm ox2oc9SG4Y0KFM7xjkXwhBCncA3oGT3VjJehWXLBHsdae4vbV31GJgpsNe0swBWL cDQzAwZXEezg0zm5UB998JIihR36K3T98MkVM1OigEj7u20SaXqQcArjv4S9AgMB AAGjggJaMIICVjAdBgNVHQ4EFgQU6ViuGtJ7l96lecTTuIyJ4bgNsfIwHwYDVR0j BBgwFoAU9FXQvlE4rlUrSFcnDu0qfOW1xvIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDdGSFE3YlkzN1Z4VkpvM2RFVmpwUGFweHBiekhrTUxnUUtUem5HYlFh eGIvMC9GNDU1RDBCRTUxMzhBRTU1MkI0ODU3MjcwRUVEMkE3Q0U1QjVDNkYyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Y0NTVEMEJFNTEzOEFFNTUy QjQ4NTcyNzBFRUQyQTdDRTVCNUM2RjIuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q3RkhRN2JZMzdWeFZKbzNkRVZqcFBhcHhwYnpIa01MZ1FLVHpuR2JRYXhiLzAv MzIzODMwMzQzYTMyNjMzMDMwM2EzMjM0MzAzYTNhMmYzNDMzMmQzNDMzMjAzZDNl MjAzMjM2MzUzMTM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYI KwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwUoBCwAAkAwDQYJKoZIhvcNAQELBQAD ggEBACU+yK6TPzkZN8vZwwD18XCb7LrIhwdb/QZvvkEHztXODcA7tWNSkY65mHhm 8uR7aBQDHavijDRoOZvhFmYnjfOK9reGoOR10dUhGAENPVvVHR8+RbrU2TksTV6H lAf3yh777GPMg01bMiixoau1F9xYKKyADPsnsmKnCYmYTInKQ0HoLPhPuzX1cGb9 m3UaXszzUeWvwNlNKPeQ/n6+Qog7s7/hPhfyVVSuUNzAQIzxGReHeKVufsk3qJFH c/0D7s9U9SxCr7L1Gd21hGTS43sUo6HuMAk93FEwosEcMRXnwlpr6YGpmOLxK9SL bd5V8gFcyRJlPdBj/aEBgm6+0M0= -----END CERTIFICATE-----Generated at Wed Apr 23 01:56:56 2025 by rpki-client