$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a353030303a3a2f33362d3336203d3e20323637393931.roa File: 323830343a353635343a353030303a3a2f33362d3336203d3e20323637393931.roa (raw, json) Hash identifier: IHILiUV65MVkuKsQWiuL1uFKvFhqslgSlFnQD3mvp8Q= Subject key identifier: 95:CA:FD:98:2C:24:6C:9B:3C:F2:47:4D:A1:83:FF:51:D4:54:58:0C Certificate issuer: /CN=CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA Certificate serial: 39AC1644F74598691D35C7A9EBAAAA330E56CE27 Authority key identifier: CF:24:DC:2A:16:F6:FD:D5:A1:F0:B7:B3:8B:F7:C7:70:7A:E3:BA:AA Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer Subject info access: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a353030303a3a2f33362d3336203d3e20323637393931.roa Signing time: Mon 24 Mar 2025 20:45:04 +0000 ROA not before: Mon 24 Mar 2025 20:40:04 +0000 ROA not after: Mon 23 Mar 2026 20:45:04 +0000 asID: 267991 IP address blocks: 2804:5654:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.crl rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 03:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:ac:16:44:f7:45:98:69:1d:35:c7:a9:eb:aa:aa:33:0e:56:ce:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA Validity Not Before: Mar 24 20:40:04 2025 GMT Not After : Mar 23 20:45:04 2026 GMT Subject: CN=95CAFD982C246C9B3CF2474DA183FF51D454580C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:27:a5:7f:cd:7e:6b:df:32:2c:ee:6e:e9:cf: e2:99:86:50:45:92:84:b8:33:b0:24:a5:5e:87:14: ae:a6:c7:a2:58:38:af:1b:02:e5:6a:f0:c0:25:22: e2:16:f8:06:35:08:5c:7f:9c:22:fe:b1:17:10:a5: d2:2c:0a:fe:03:6d:47:b7:16:fb:41:5c:6f:0a:7c: ca:5d:64:33:69:19:d4:a6:2a:c8:ec:88:ab:cd:73: 0b:3f:aa:ee:f3:d7:db:37:5e:99:14:ad:5b:39:ae: 39:ae:29:88:52:bb:b2:9e:e5:a4:80:ed:f3:4f:90: 2c:56:a1:2b:9a:93:73:5d:70:c9:4e:84:98:a3:d6: 4f:57:52:98:36:6f:3e:06:d7:22:a0:11:fb:6e:a6: 70:72:e1:c5:90:ed:69:8f:02:d6:5f:bf:6c:e6:e5: 13:09:50:be:b0:11:29:b3:43:19:21:cb:83:a2:35: ec:1a:13:18:53:91:8c:59:30:61:3f:71:22:44:d6: b3:56:88:a8:81:74:87:bc:28:51:23:c8:b6:29:42: a3:da:e6:04:7d:2c:bb:ce:d6:5b:c9:6b:b8:a3:22: 08:d8:cf:8c:8b:9d:b7:30:cd:4f:8a:c6:0d:e3:8c: e9:d3:55:51:cc:ac:1d:cd:ae:71:6e:53:f6:09:92: 9b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:CA:FD:98:2C:24:6C:9B:3C:F2:47:4D:A1:83:FF:51:D4:54:58:0C X509v3 Authority Key Identifier: keyid:CF:24:DC:2A:16:F6:FD:D5:A1:F0:B7:B3:8B:F7:C7:70:7A:E3:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a353030303a3a2f33362d3336203d3e20323637393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5654:5000::/36 Signature Algorithm: sha256WithRSAEncryption 2e:a6:23:78:42:df:20:8a:15:cf:53:41:0d:01:36:be:74:c0: e0:a4:a7:db:10:43:69:81:31:b2:c5:3d:ff:ff:df:fa:d5:bf: 6a:f3:33:7e:f0:c9:96:05:4b:1f:8f:68:3b:e7:4d:fd:d9:26: 3f:ec:ed:84:2e:0b:86:85:2b:f1:3d:b4:63:22:50:84:18:e7: 86:1c:7b:25:55:f5:95:9a:4c:b7:9e:d3:48:57:90:11:a7:74: d4:3d:f5:73:67:32:7a:6d:44:54:12:45:bc:76:1d:55:77:8e: fc:b7:7e:bd:70:2a:d9:ca:5d:d7:17:62:77:cf:5a:46:1c:81: 00:78:8c:2d:13:af:fd:2b:77:a3:78:50:94:30:1b:62:2c:b5: dc:f4:fe:11:a8:69:af:0f:c2:19:92:fb:8a:cc:5d:65:4b:ee: 90:38:f7:d8:d7:a4:ab:c7:fd:16:f2:83:34:11:82:c0:85:0f: 4c:97:57:37:7b:19:a3:56:71:7c:0d:47:3b:58:8b:2c:d0:08: d7:4a:0c:90:c8:d0:28:1b:82:71:7b:c3:bc:51:49:4b:be:d5: fc:81:08:52:12:f8:81:a5:a4:3a:18:c1:f3:e7:3c:c9:41:01: 47:82:cd:27:55:8f:cd:48:a7:7f:0d:d0:03:80:19:82:80:dc: 03:35:85:9f -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUOawWRPdFmGkdNcep66qqMw5WzicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyNERDMkExNkY2RkRENUExRjBCN0IzOEJGN0M3NzA3 QUUzQkFBQTAeFw0yNTAzMjQyMDQwMDRaFw0yNjAzMjMyMDQ1MDRaMDMxMTAvBgNV BAMTKDk1Q0FGRDk4MkMyNDZDOUIzQ0YyNDc0REExODNGRjUxRDQ1NDU4MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9J6V/zX5r3zIs7m7pz+KZhlBF koS4M7AkpV6HFK6mx6JYOK8bAuVq8MAlIuIW+AY1CFx/nCL+sRcQpdIsCv4DbUe3 FvtBXG8KfMpdZDNpGdSmKsjsiKvNcws/qu7z19s3XpkUrVs5rjmuKYhSu7Ke5aSA 7fNPkCxWoSuak3NdcMlOhJij1k9XUpg2bz4G1yKgEftupnBy4cWQ7WmPAtZfv2zm 5RMJUL6wESmzQxkhy4OiNewaExhTkYxZMGE/cSJE1rNWiKiBdIe8KFEjyLYpQqPa 5gR9LLvO1lvJa7ijIgjYz4yLnbcwzU+Kxg3jjOnTVVHMrB3NrnFuU/YJkptVAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUlcr9mCwkbJs88kdNoYP/UdRUWAwwHwYDVR0j BBgwFoAUzyTcKhb2/dWh8Lezi/fHcHrjuqowDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDhUVVNjMkxUcEhnTHRhQmFvMTlZVFFSN0tFM2ZrSDRhRFlUQzJpMTF5 Mk4vMC9DRjI0REMyQTE2RjZGREQ1QTFGMEI3QjM4QkY3Qzc3MDdBRTNCQUFBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NGMjREQzJBMTZGNkZERDVB MUYwQjdCMzhCRjdDNzcwN0FFM0JBQUEuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q4VFVTYzJMVHBIZ0x0YUJhbzE5WVRRUjdLRTNma0g0YURZVEMyaTExeTJOLzAv MzIzODMwMzQzYTM1MzYzNTM0M2EzNTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzNzM5MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEVlRQMA0GCSqGSIb3DQEBCwUA A4IBAQAupiN4Qt8gihXPU0ENATa+dMDgpKfbEENpgTGyxT3//9/61b9q8zN+8MmW BUsfj2g750392SY/7O2ELguGhSvxPbRjIlCEGOeGHHslVfWVmky3ntNIV5ARp3TU PfVzZzJ6bURUEkW8dh1Vd478t369cCrZyl3XF2J3z1pGHIEAeIwtE6/9K3ejeFCU MBtiLLXc9P4RqGmvD8IZkvuKzF1lS+6QOPfY16Srx/0W8oM0EYLAhQ9Ml1c3exmj VnF8DUc7WIss0AjXSgyQyNAoG4Jxe8O8UUlLvtX8gQhSEviBpaQ6GMHz5zzJQQFH gs0nVY/NSKd/DdADgBmCgNwDNYWf -----END CERTIFICATE-----Generated at Mon Apr 7 10:55:43 2025 by rpki-client