$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa File: 323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa (raw, json) Hash identifier: wtJGN3C9EXOjt+yfoalH+wdIkkfAnYTGJqwoBdydYTI= Subject key identifier: A2:4D:44:FF:F6:94:E3:0C:E4:B2:84:94:86:B2:C3:40:AF:CB:18:D5 Certificate issuer: /CN=CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA Certificate serial: 277E2A1E23F7A395D3475ABAB504FAC1C353BC96 Authority key identifier: CF:24:DC:2A:16:F6:FD:D5:A1:F0:B7:B3:8B:F7:C7:70:7A:E3:BA:AA Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer Subject info access: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa Signing time: Mon 24 Mar 2025 20:45:19 +0000 ROA not before: Mon 24 Mar 2025 20:40:19 +0000 ROA not after: Mon 23 Mar 2026 20:45:19 +0000 asID: 267991 IP address blocks: 2804:5654:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.crl rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 03:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:7e:2a:1e:23:f7:a3:95:d3:47:5a:ba:b5:04:fa:c1:c3:53:bc:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA Validity Not Before: Mar 24 20:40:19 2025 GMT Not After : Mar 23 20:45:19 2026 GMT Subject: CN=A24D44FFF694E30CE4B2849486B2C340AFCB18D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:04:08:69:ff:22:e6:d8:99:de:5b:73:52:71: a7:4f:e7:6d:92:a6:70:a7:d8:42:35:dd:12:94:4b: 10:28:c0:e2:3f:b5:b6:39:d7:c4:3b:b1:b3:84:2e: a1:54:f7:35:d1:87:ca:e0:85:b3:ba:dc:59:64:d1: be:a6:83:f0:f5:af:ef:20:07:bf:8c:09:de:c6:4c: b8:e6:d7:cd:9d:fd:17:a8:99:87:21:3d:8e:18:be: 14:4d:d9:09:37:c6:5f:89:b7:bf:5d:c2:e9:89:40: 0e:eb:4b:d3:71:b7:a8:2d:49:ae:ec:26:ef:0d:b5: bd:95:bb:94:ee:0b:f8:f3:70:fe:07:69:3f:44:d4: 17:32:1d:ca:98:b2:c3:6f:c1:11:9e:2a:82:03:6e: 15:dd:0b:7a:4f:54:4e:34:6c:f8:8f:65:8e:c0:a4: 52:67:0e:75:01:91:e9:32:bd:81:90:6f:cb:a4:e6: bf:78:5a:7d:10:9b:6d:d3:44:df:d0:c4:12:68:0d: 68:a7:84:78:0e:83:14:ad:3c:cd:d5:f0:bd:19:94: cd:0d:c5:1e:ad:44:42:06:29:11:8b:ba:bd:80:13: be:d3:2a:5e:65:78:f1:f2:35:d2:e8:89:d6:89:39: 5b:55:44:b1:1e:78:c3:7e:d2:aa:af:aa:52:9b:b8: 71:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4D:44:FF:F6:94:E3:0C:E4:B2:84:94:86:B2:C3:40:AF:CB:18:D5 X509v3 Authority Key Identifier: keyid:CF:24:DC:2A:16:F6:FD:D5:A1:F0:B7:B3:8B:F7:C7:70:7A:E3:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5654:e000::/36 Signature Algorithm: sha256WithRSAEncryption 4d:4a:09:7b:a0:e2:6d:90:ef:fa:29:c4:b3:49:50:c0:5e:37: 1c:f6:b8:c0:23:d3:72:e5:5e:3e:31:9c:da:4c:2a:38:d6:9f: fd:0f:ec:61:6f:4d:f6:dd:80:55:57:51:62:8b:5c:2d:c3:f9: 8f:f1:1a:e5:cb:ae:ff:a0:33:69:01:95:d8:04:43:8f:38:b5: 4f:c8:1e:ef:a9:77:ff:e7:76:82:79:c6:5b:82:62:32:38:eb: b8:1b:da:02:af:e1:6e:bb:a4:70:e2:fa:08:7a:68:86:31:ad: 40:d3:67:d0:37:a5:12:bc:7f:d3:a1:a7:47:ae:c7:06:22:47: 6f:a9:55:1d:60:cd:6c:ac:51:10:54:f1:17:5f:7a:ed:10:12: 5c:5c:dd:c6:21:59:a4:e3:4d:bc:86:72:4f:21:0e:04:48:27: 59:ee:df:73:3a:aa:63:8e:66:24:a3:89:54:33:57:98:94:68: ed:65:9f:dd:31:1f:3e:aa:43:be:5b:c7:49:c7:4d:87:e7:2d: 9c:8e:17:87:35:57:43:d8:a5:25:f1:90:4c:25:f5:0f:c7:13: e9:8a:ba:8a:e5:b2:0f:0b:ec:e5:a9:46:93:15:25:e0:ac:e1: 2f:8b:fd:ac:cb:d7:43:12:02:bd:46:a3:7a:a4:f8:f6:29:2e: 91:a3:a4:d5 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUJ34qHiP3o5XTR1q6tQT6wcNTvJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyNERDMkExNkY2RkRENUExRjBCN0IzOEJGN0M3NzA3 QUUzQkFBQTAeFw0yNTAzMjQyMDQwMTlaFw0yNjAzMjMyMDQ1MTlaMDMxMTAvBgNV BAMTKEEyNEQ0NEZGRjY5NEUzMENFNEIyODQ5NDg2QjJDMzQwQUZDQjE4RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpBAhp/yLm2JneW3NScadP522S pnCn2EI13RKUSxAowOI/tbY518Q7sbOELqFU9zXRh8rghbO63Flk0b6mg/D1r+8g B7+MCd7GTLjm182d/ReomYchPY4YvhRN2Qk3xl+Jt79dwumJQA7rS9Nxt6gtSa7s Ju8Ntb2Vu5TuC/jzcP4HaT9E1BcyHcqYssNvwRGeKoIDbhXdC3pPVE40bPiPZY7A pFJnDnUBkekyvYGQb8uk5r94Wn0Qm23TRN/QxBJoDWinhHgOgxStPM3V8L0ZlM0N xR6tREIGKRGLur2AE77TKl5lePHyNdLoidaJOVtVRLEeeMN+0qqvqlKbuHHJAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUok1E//aU4wzksoSUhrLDQK/LGNUwHwYDVR0j BBgwFoAUzyTcKhb2/dWh8Lezi/fHcHrjuqowDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDhUVVNjMkxUcEhnTHRhQmFvMTlZVFFSN0tFM2ZrSDRhRFlUQzJpMTF5 Mk4vMC9DRjI0REMyQTE2RjZGREQ1QTFGMEI3QjM4QkY3Qzc3MDdBRTNCQUFBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NGMjREQzJBMTZGNkZERDVB MUYwQjdCMzhCRjdDNzcwN0FFM0JBQUEuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q4VFVTYzJMVHBIZ0x0YUJhbzE5WVRRUjdLRTNma0g0YURZVEMyaTExeTJOLzAv MzIzODMwMzQzYTM1MzYzNTM0M2E2NTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzNzM5MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEVlTgMA0GCSqGSIb3DQEBCwUA A4IBAQBNSgl7oOJtkO/6KcSzSVDAXjcc9rjAI9Ny5V4+MZzaTCo41p/9D+xhb032 3YBVV1Fii1wtw/mP8Rrly67/oDNpAZXYBEOPOLVPyB7vqXf/53aCecZbgmIyOOu4 G9oCr+Fuu6Rw4voIemiGMa1A02fQN6USvH/ToadHrscGIkdvqVUdYM1srFEQVPEX X3rtEBJcXN3GIVmk4028hnJPIQ4ESCdZ7t9zOqpjjmYko4lUM1eYlGjtZZ/dMR8+ qkO+W8dJx02H5y2cjheHNVdD2KUl8ZBMJfUPxxPpirqK5bIPC+zlqUaTFSXgrOEv i/2sy9dDEgK9RqN6pPj2KS6Ro6TV -----END CERTIFICATE-----Generated at Mon Apr 7 10:55:41 2025 by rpki-client