$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a643030303a3a2f33362d3336203d3e20323637393931.roa File: 323830343a353635343a643030303a3a2f33362d3336203d3e20323637393931.roa (raw, json) Hash identifier: Wc3oGsTpCtNklil7yCBwEFxQJKdmRJ38h/tD9XepH9Y= Subject key identifier: BB:F0:9E:C3:ED:CE:82:D2:25:DE:50:AB:38:E9:15:4F:6B:AC:A3:C1 Certificate issuer: /CN=CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA Certificate serial: 1DCC65D3EFC8A2F1FCB88209AACAA67FCE22DEC5 Authority key identifier: CF:24:DC:2A:16:F6:FD:D5:A1:F0:B7:B3:8B:F7:C7:70:7A:E3:BA:AA Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer Subject info access: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a643030303a3a2f33362d3336203d3e20323637393931.roa Signing time: Mon 24 Mar 2025 20:45:16 +0000 ROA not before: Mon 24 Mar 2025 20:40:16 +0000 ROA not after: Mon 23 Mar 2026 20:45:16 +0000 asID: 267991 IP address blocks: 2804:5654:d000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.crl rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 03:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:cc:65:d3:ef:c8:a2:f1:fc:b8:82:09:aa:ca:a6:7f:ce:22:de:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA Validity Not Before: Mar 24 20:40:16 2025 GMT Not After : Mar 23 20:45:16 2026 GMT Subject: CN=BBF09EC3EDCE82D225DE50AB38E9154F6BACA3C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9d:88:ab:f6:06:1b:56:e9:92:a4:7e:88:ee: 83:f6:2f:bc:59:78:2e:07:7a:c6:14:f2:e1:ca:c4: 47:ab:4c:ae:74:ff:9d:56:3a:4b:4a:2a:4a:0c:9f: 51:06:2a:09:ad:49:55:8f:81:59:86:82:46:e8:76: 6e:46:7f:ea:63:12:fb:b7:b5:ed:53:2c:77:2a:8c: 54:58:43:07:5e:32:f4:64:fc:75:8e:79:bd:95:40: 22:d8:97:8f:cc:71:55:f5:fe:48:e4:b2:7c:dc:1b: bd:c0:0a:d4:fa:c5:bc:c9:e7:7f:2c:cb:ab:97:b5: 42:af:3e:78:c8:d3:ec:8b:ee:54:5e:a9:61:29:ab: 75:22:66:cf:71:28:5f:0c:16:9e:19:2c:88:cd:0b: f1:da:31:c1:ef:e6:a6:ee:4e:29:fa:8d:3d:ce:5a: 98:61:99:e9:20:12:73:95:63:02:4c:58:5f:50:a1: ca:5d:d8:7e:a0:a6:18:12:ea:4a:65:9c:3c:68:46: 8a:e4:e9:9a:44:e2:48:a7:38:74:c6:9e:20:cf:35: 8a:d6:1c:a5:9f:0e:d7:b9:40:83:5f:cc:01:f5:cf: 50:f5:54:40:d9:c1:ed:35:4d:1f:b6:23:5e:f3:1e: 53:1c:97:0f:63:e2:91:ea:76:b3:83:c2:a3:d4:8e: c1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F0:9E:C3:ED:CE:82:D2:25:DE:50:AB:38:E9:15:4F:6B:AC:A3:C1 X509v3 Authority Key Identifier: keyid:CF:24:DC:2A:16:F6:FD:D5:A1:F0:B7:B3:8B:F7:C7:70:7A:E3:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a643030303a3a2f33362d3336203d3e20323637393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5654:d000::/36 Signature Algorithm: sha256WithRSAEncryption 45:2d:ec:10:eb:71:61:05:f1:83:4d:db:a0:23:20:70:10:4a: 9a:44:66:b0:63:63:75:fe:97:48:48:bb:2c:9b:ee:f2:ca:34: 8d:01:58:f6:03:e9:e0:0b:d6:a2:89:23:bc:39:d7:3b:31:1c: fd:4c:c5:bd:d7:d9:f1:d2:64:11:cd:0e:b1:53:98:01:bd:4a: 41:be:ec:e5:d4:b6:a3:d7:01:91:8f:80:3a:51:47:76:e8:47: 46:55:eb:fa:93:d2:91:d6:1e:d9:e6:0b:54:17:0c:ed:27:8c: 85:0c:d9:5c:ca:4f:23:c6:0c:8f:45:6c:fa:a8:ba:25:8d:4d: e7:89:7b:4f:68:6b:43:cf:b4:70:3b:62:a3:80:29:71:ce:fd: 7d:ca:2f:46:f8:68:85:bf:7d:8c:23:f2:55:16:b5:ee:6f:56: 0f:79:d5:b2:bf:29:5f:82:76:03:5d:66:bd:f5:78:82:7c:7a: 86:4d:37:bd:a4:00:33:1e:59:45:f7:cf:cb:c8:dd:65:50:44: c4:12:32:c9:fe:09:3f:20:58:d7:7e:20:09:45:84:9d:fb:38: 8c:b1:6c:5e:bf:3d:cb:95:48:96:85:f8:df:14:84:51:7b:a0: f8:a2:6c:f2:45:5a:c8:9e:ba:ef:b3:c3:7b:1e:82:a0:77:7e: b1:78:c1:69 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUHcxl0+/IovH8uIIJqsqmf84i3sUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyNERDMkExNkY2RkRENUExRjBCN0IzOEJGN0M3NzA3 QUUzQkFBQTAeFw0yNTAzMjQyMDQwMTZaFw0yNjAzMjMyMDQ1MTZaMDMxMTAvBgNV BAMTKEJCRjA5RUMzRURDRTgyRDIyNURFNTBBQjM4RTkxNTRGNkJBQ0EzQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxnYir9gYbVumSpH6I7oP2L7xZ eC4HesYU8uHKxEerTK50/51WOktKKkoMn1EGKgmtSVWPgVmGgkbodm5Gf+pjEvu3 te1TLHcqjFRYQwdeMvRk/HWOeb2VQCLYl4/McVX1/kjksnzcG73ACtT6xbzJ538s y6uXtUKvPnjI0+yL7lReqWEpq3UiZs9xKF8MFp4ZLIjNC/HaMcHv5qbuTin6jT3O WphhmekgEnOVYwJMWF9Qocpd2H6gphgS6kplnDxoRork6ZpE4kinOHTGniDPNYrW HKWfDte5QINfzAH1z1D1VEDZwe01TR+2I17zHlMclw9j4pHqdrODwqPUjsHrAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUu/Cew+3OgtIl3lCrOOkVT2uso8EwHwYDVR0j BBgwFoAUzyTcKhb2/dWh8Lezi/fHcHrjuqowDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDhUVVNjMkxUcEhnTHRhQmFvMTlZVFFSN0tFM2ZrSDRhRFlUQzJpMTF5 Mk4vMC9DRjI0REMyQTE2RjZGREQ1QTFGMEI3QjM4QkY3Qzc3MDdBRTNCQUFBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NGMjREQzJBMTZGNkZERDVB MUYwQjdCMzhCRjdDNzcwN0FFM0JBQUEuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q4VFVTYzJMVHBIZ0x0YUJhbzE5WVRRUjdLRTNma0g0YURZVEMyaTExeTJOLzAv MzIzODMwMzQzYTM1MzYzNTM0M2E2NDMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzNzM5MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEVlTQMA0GCSqGSIb3DQEBCwUA A4IBAQBFLewQ63FhBfGDTdugIyBwEEqaRGawY2N1/pdISLssm+7yyjSNAVj2A+ng C9aiiSO8Odc7MRz9TMW919nx0mQRzQ6xU5gBvUpBvuzl1Laj1wGRj4A6UUd26EdG Vev6k9KR1h7Z5gtUFwztJ4yFDNlcyk8jxgyPRWz6qLoljU3niXtPaGtDz7RwO2Kj gClxzv19yi9G+GiFv32MI/JVFrXub1YPedWyvylfgnYDXWa99XiCfHqGTTe9pAAz HllF98/LyN1lUETEEjLJ/gk/IFjXfiAJRYSd+ziMsWxevz3LlUiWhfjfFIRRe6D4 omzyRVrInrrvs8N7HoKgd36xeMFp -----END CERTIFICATE-----Generated at Mon Apr 7 10:53:18 2025 by rpki-client