$ rpki-client -vvf rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/323830343a326330303a3334303a3a2f34332d3433203d3e20323635313837.roa File: 323830343a326330303a3334303a3a2f34332d3433203d3e20323635313837.roa (raw, json) Hash identifier: +Lgk2L4dCXM+cD/oIqW22RdHB9guXl9LY0tJvXKphR0= Subject key identifier: D5:A5:16:5F:8F:14:94:7A:19:8D:7A:56:03:56:2D:F8:95:BE:29:90 Certificate issuer: /CN=F455D0BE5138AE552B4857270EED2A7CE5B5C6F2 Certificate serial: 62CBF79D66596A4F63E62FA4BB815212E1AEA6BA Authority key identifier: F4:55:D0:BE:51:38:AE:55:2B:48:57:27:0E:ED:2A:7C:E5:B5:C6:F2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/323830343a326330303a3334303a3a2f34332d3433203d3e20323635313837.roa Signing time: Sat 01 Feb 2025 20:31:08 +0000 ROA not before: Sat 01 Feb 2025 20:26:08 +0000 ROA not after: Sat 31 Jan 2026 20:31:08 +0000 asID: 265187 IP address blocks: 2804:2c00:340::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.crl rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 23 Apr 2025 09:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:cb:f7:9d:66:59:6a:4f:63:e6:2f:a4:bb:81:52:12:e1:ae:a6:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F455D0BE5138AE552B4857270EED2A7CE5B5C6F2 Validity Not Before: Feb 1 20:26:08 2025 GMT Not After : Jan 31 20:31:08 2026 GMT Subject: CN=D5A5165F8F14947A198D7A5603562DF895BE2990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:00:27:03:e0:b1:35:4d:b1:c1:be:3a:6b:73: 12:98:df:5e:23:82:60:2b:04:41:fb:f9:5f:28:a3: c7:b9:fe:5d:8e:73:08:40:8c:71:dc:fe:80:4e:a0: 79:1e:14:3f:7c:ac:f3:f3:3a:fd:a6:ae:31:3e:bb: ab:ce:17:f3:c7:e0:b0:d8:12:01:95:af:36:d2:b9: 55:40:d7:da:0f:20:5d:4e:14:74:a8:1f:cf:71:1e: 92:bf:c7:2d:fc:b9:7d:d9:cc:96:e8:af:e8:dd:9c: 61:6f:9d:25:b5:54:b9:27:b7:1b:8c:de:67:6c:15: ff:79:dd:77:f7:9a:45:55:98:1c:ba:62:56:4b:32: 16:8c:3b:14:b9:97:33:6f:27:41:07:e8:db:7e:e2: 0d:07:a7:98:5b:16:ae:d8:da:b2:56:9f:b4:b2:a5: 46:49:06:07:28:2a:7b:5a:b9:08:9e:a2:14:ff:87: 73:79:13:b5:f7:bd:bf:7d:e1:71:59:88:53:05:de: 8b:9b:2f:ac:1e:76:ca:37:02:ec:81:de:2f:9a:57: 89:42:30:6f:e2:71:87:d9:c8:3b:78:cd:d4:6e:ca: fe:3d:7e:24:c0:18:1a:88:2b:e1:3a:53:d9:08:0f: 7b:72:3f:a1:68:eb:f5:59:40:38:32:39:6f:af:5a: 55:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A5:16:5F:8F:14:94:7A:19:8D:7A:56:03:56:2D:F8:95:BE:29:90 X509v3 Authority Key Identifier: keyid:F4:55:D0:BE:51:38:AE:55:2B:48:57:27:0E:ED:2A:7C:E5:B5:C6:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F455D0BE5138AE552B4857270EED2A7CE5B5C6F2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D7FHQ7bY37VxVJo3dEVjpPapxpbzHkMLgQKTznGbQaxb/0/323830343a326330303a3334303a3a2f34332d3433203d3e20323635313837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:2c00:340::/43 Signature Algorithm: sha256WithRSAEncryption 0f:ea:ed:a8:c1:ab:38:f4:d7:32:8a:3b:05:ce:fc:11:56:11: aa:89:75:d9:61:cb:c8:6a:a7:48:a1:8f:fc:fd:17:38:3c:ec: bc:34:fb:ba:6c:74:90:d9:40:10:0e:65:62:38:fa:c6:1d:c3: 67:aa:05:31:22:c9:d0:f2:10:6a:a3:07:b0:99:12:13:10:67: 0a:cf:d7:90:9e:5f:b0:f7:4e:c9:76:97:61:6d:ae:44:15:5c: 02:c6:2e:19:d8:e9:f5:86:0b:ab:2b:63:9e:47:aa:68:aa:75: e4:2c:99:f5:07:3c:38:be:a6:54:7f:fa:e5:b1:35:4f:5e:78: 81:d8:c7:8f:cf:ac:ac:6c:04:f8:07:c3:b8:83:50:bd:2c:e3: 45:f3:e1:a3:62:93:16:fe:4c:6e:38:5d:98:a7:01:61:1b:d5: a0:d9:b4:59:b6:b3:90:0e:61:df:bb:fe:0d:ca:04:73:5d:44: 82:99:18:5e:b9:2d:0b:bd:26:b6:42:37:98:7b:e6:5e:40:bd: 23:a8:96:a5:14:90:04:f4:3b:e1:c6:6c:7a:d5:b6:ed:1a:2d: 16:2d:58:e9:9b:74:42:2b:da:8d:43:94:39:b0:a8:e1:f9:7a: 24:45:c3:87:4f:95:66:42:3d:0b:4d:d1:a4:2d:f5:b6:8d:1b: 1b:e5:0b:d8 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIUYsv3nWZZak9j5i+ku4FSEuGuprowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQ1NUQwQkU1MTM4QUU1NTJCNDg1NzI3MEVFRDJBN0NF NUI1QzZGMjAeFw0yNTAyMDEyMDI2MDhaFw0yNjAxMzEyMDMxMDhaMDMxMTAvBgNV BAMTKEQ1QTUxNjVGOEYxNDk0N0ExOThEN0E1NjAzNTYyREY4OTVCRTI5OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdACcD4LE1TbHBvjprcxKY314j gmArBEH7+V8oo8e5/l2OcwhAjHHc/oBOoHkeFD98rPPzOv2mrjE+u6vOF/PH4LDY EgGVrzbSuVVA19oPIF1OFHSoH89xHpK/xy38uX3ZzJbor+jdnGFvnSW1VLkntxuM 3mdsFf953Xf3mkVVmBy6YlZLMhaMOxS5lzNvJ0EH6Nt+4g0Hp5hbFq7Y2rJWn7Sy pUZJBgcoKntauQieohT/h3N5E7X3vb994XFZiFMF3oubL6wedso3AuyB3i+aV4lC MG/icYfZyDt4zdRuyv49fiTAGBqIK+E6U9kID3tyP6Fo6/VZQDgyOW+vWlUvAgMB AAGjggJaMIICVjAdBgNVHQ4EFgQU1aUWX48UlHoZjXpWA1Yt+JW+KZAwHwYDVR0j BBgwFoAU9FXQvlE4rlUrSFcnDu0qfOW1xvIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDdGSFE3YlkzN1Z4VkpvM2RFVmpwUGFweHBiekhrTUxnUUtUem5HYlFh eGIvMC9GNDU1RDBCRTUxMzhBRTU1MkI0ODU3MjcwRUVEMkE3Q0U1QjVDNkYyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Y0NTVEMEJFNTEzOEFFNTUy QjQ4NTcyNzBFRUQyQTdDRTVCNUM2RjIuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q3RkhRN2JZMzdWeFZKbzNkRVZqcFBhcHhwYnpIa01MZ1FLVHpuR2JRYXhiLzAv MzIzODMwMzQzYTMyNjMzMDMwM2EzMzM0MzAzYTNhMmYzNDMzMmQzNDMzMjAzZDNl MjAzMjM2MzUzMTM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYI KwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwUoBCwAA0AwDQYJKoZIhvcNAQELBQAD ggEBAA/q7ajBqzj01zKKOwXO/BFWEaqJddlhy8hqp0ihj/z9Fzg87Lw0+7psdJDZ QBAOZWI4+sYdw2eqBTEiydDyEGqjB7CZEhMQZwrP15CeX7D3Tsl2l2FtrkQVXALG LhnY6fWGC6srY55HqmiqdeQsmfUHPDi+plR/+uWxNU9eeIHYx4/PrKxsBPgHw7iD UL0s40Xz4aNikxb+TG44XZinAWEb1aDZtFm2s5AOYd+7/g3KBHNdRIKZGF65LQu9 JrZCN5h75l5AvSOolqUUkAT0O+HGbHrVtu0aLRYtWOmbdEIr2o1DlDmwqOH5eiRF w4dPlWZCPQtN0aQt9baNGxvlC9g= -----END CERTIFICATE-----Generated at Tue Apr 22 16:05:26 2025 by rpki-client