$ rpki-client -vvf rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/323830343a373865633a333030303a3a2f33362d3336203d3e20323731323734.roa File: 323830343a373865633a333030303a3a2f33362d3336203d3e20323731323734.roa (raw, json) Hash identifier: itszwuEmuIFWcA7xqcmDhV3dc8Ptj1VPtF9iuMZi9H0= Subject key identifier: AF:7E:E0:2B:83:5C:4B:DF:7E:4D:37:08:B9:0C:D6:C0:0E:88:F2:6E Certificate issuer: /CN=A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478 Certificate serial: 77C1542C22C74CD0A9D0E2790F267D74D0E5A097 Authority key identifier: A1:CC:88:C7:FD:49:EE:B4:16:9B:CC:7F:C3:66:DD:AD:75:0C:14:78 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.cer Subject info access: rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/323830343a373865633a333030303a3a2f33362d3336203d3e20323731323734.roa Signing time: Thu 09 Jan 2025 12:41:22 +0000 ROA not before: Thu 09 Jan 2025 12:36:22 +0000 ROA not after: Thu 08 Jan 2026 12:41:22 +0000 asID: 271274 IP address blocks: 2804:78ec:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.crl rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 17:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:c1:54:2c:22:c7:4c:d0:a9:d0:e2:79:0f:26:7d:74:d0:e5:a0:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478 Validity Not Before: Jan 9 12:36:22 2025 GMT Not After : Jan 8 12:41:22 2026 GMT Subject: CN=AF7EE02B835C4BDF7E4D3708B90CD6C00E88F26E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:83:98:87:bf:15:da:f1:63:0b:1f:59:10:26: ff:49:ef:36:cc:59:c8:f1:70:06:24:6a:9f:e1:20: ee:42:f7:9c:c9:98:18:b1:8c:7d:c4:9d:90:b1:98: 81:42:8a:36:75:92:81:c2:36:6b:48:55:f0:01:3c: 11:fb:9f:62:53:08:6a:9b:f7:9e:0a:ee:7a:ed:80: 7f:f6:17:cf:6d:de:62:75:f8:98:b3:20:9e:ce:0c: f3:23:56:a5:ca:a5:ed:bd:78:98:c1:66:a6:0c:10: 8c:88:7e:62:73:d7:93:74:7f:30:58:d6:ef:02:aa: e8:a2:ff:30:54:cf:28:7b:e1:07:8c:18:9e:92:41: 28:d5:fd:05:23:00:20:5b:cf:3b:bc:1a:1e:bd:21: 38:4a:59:aa:ff:b2:89:c6:3f:45:7b:c8:8a:38:a5: 07:0f:80:62:32:df:20:10:79:2c:bf:61:32:45:7d: fe:d0:a5:4e:fa:53:4d:47:98:15:7a:5a:45:fe:70: 02:42:d9:66:dd:11:f2:ef:37:53:09:ec:41:2b:ff: 05:fd:54:1f:e0:9b:b2:34:d3:4a:2a:1f:14:f3:08: aa:3e:9e:c7:38:66:24:a0:d0:53:42:f8:2c:ad:96: 47:91:30:e6:cf:e5:58:97:2a:2b:c7:f4:dc:dc:17: 17:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7E:E0:2B:83:5C:4B:DF:7E:4D:37:08:B9:0C:D6:C0:0E:88:F2:6E X509v3 Authority Key Identifier: keyid:A1:CC:88:C7:FD:49:EE:B4:16:9B:CC:7F:C3:66:DD:AD:75:0C:14:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/323830343a373865633a333030303a3a2f33362d3336203d3e20323731323734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:78ec:3000::/36 Signature Algorithm: sha256WithRSAEncryption 27:6f:f1:b3:68:63:72:90:9e:6b:33:48:d6:63:97:6b:5b:88: b3:d0:13:bb:f9:f3:4b:04:7b:0e:c9:53:36:08:58:d7:ca:3f: 41:ef:7d:8f:08:8d:b7:db:97:f1:4f:3a:b6:93:43:19:08:ef: ee:6a:e3:5d:13:95:a3:f0:1d:0c:a9:09:0b:f6:c0:0c:0a:f4: 9b:36:40:fd:9c:33:c2:64:fd:4b:63:b2:13:17:ae:40:b3:8c: 22:78:e6:17:f2:cd:ed:a7:65:ec:71:5d:f6:be:71:eb:97:e4: 5c:a8:a7:20:f7:54:aa:bc:e1:ba:f1:d8:49:82:37:fe:6f:e5: a2:36:1f:65:fb:cb:08:ae:97:4b:36:cf:bf:84:e9:84:38:83: 8f:87:5c:27:ae:3d:bb:2c:20:73:f2:6d:47:bf:cc:c5:60:62: 64:49:c5:1f:d8:4e:bc:f7:b3:21:9c:5c:68:a8:67:eb:a2:7a: df:cf:7b:3c:61:b2:f0:57:53:80:5e:f2:0a:2b:8b:4d:c3:eb: ba:26:b8:d9:80:9f:59:f5:7b:cc:03:07:85:a3:14:b5:03:96: f4:d6:8d:d7:d0:df:b4:3d:3b:5e:7b:3e:71:dc:e7:61:d1:fa: 63:0c:51:f4:7f:81:39:31:87:8e:1c:58:32:8e:68:cb:5c:9c: ce:7c:1e:f3 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUd8FULCLHTNCp0OJ5DyZ9dNDloJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFDQzg4QzdGRDQ5RUVCNDE2OUJDQzdGQzM2NkREQUQ3 NTBDMTQ3ODAeFw0yNTAxMDkxMjM2MjJaFw0yNjAxMDgxMjQxMjJaMDMxMTAvBgNV BAMTKEFGN0VFMDJCODM1QzRCREY3RTREMzcwOEI5MENENkMwMEU4OEYyNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2g5iHvxXa8WMLH1kQJv9J7zbM WcjxcAYkap/hIO5C95zJmBixjH3EnZCxmIFCijZ1koHCNmtIVfABPBH7n2JTCGqb 954K7nrtgH/2F89t3mJ1+JizIJ7ODPMjVqXKpe29eJjBZqYMEIyIfmJz15N0fzBY 1u8Cquii/zBUzyh74QeMGJ6SQSjV/QUjACBbzzu8Gh69IThKWar/sonGP0V7yIo4 pQcPgGIy3yAQeSy/YTJFff7QpU76U01HmBV6WkX+cAJC2WbdEfLvN1MJ7EEr/wX9 VB/gm7I000oqHxTzCKo+nsc4ZiSg0FNC+CytlkeRMObP5ViXKivH9NzcFxeNAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUr37gK4NcS99+TTcIuQzWwA6I8m4wHwYDVR0j BBgwFoAUocyIx/1J7rQWm8x/w2bdrXUMFHgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRGZoVDdqSjJDbVk5NEdFVkt4OGd5bVNDUDg0SGRQazhUa0VTRXNaWlFh N3UvMC9BMUNDODhDN0ZENDlFRUI0MTY5QkNDN0ZDMzY2RERBRDc1MEMxNDc4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0ExQ0M4OEM3RkQ0OUVFQjQx NjlCQ0M3RkMzNjZEREFENzUwQzE0NzguY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RmaFQ3akoyQ21ZOTRHRVZLeDhneW1TQ1A4NEhkUGs4VGtFU0VzWlpRYTd1LzAv MzIzODMwMzQzYTM3Mzg2NTYzM2EzMzMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzczMTMyMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEeOwwMA0GCSqGSIb3DQEBCwUA A4IBAQAnb/GzaGNykJ5rM0jWY5drW4iz0BO7+fNLBHsOyVM2CFjXyj9B732PCI23 25fxTzq2k0MZCO/uauNdE5Wj8B0MqQkL9sAMCvSbNkD9nDPCZP1LY7ITF65As4wi eOYX8s3tp2XscV32vnHrl+RcqKcg91SqvOG68dhJgjf+b+WiNh9l+8sIrpdLNs+/ hOmEOIOPh1wnrj27LCBz8m1Hv8zFYGJkScUf2E6897MhnFxoqGfronrfz3s8YbLw V1OAXvIKK4tNw+u6JrjZgJ9Z9XvMAweFoxS1A5b01o3X0N+0PTteez5x3Odh0fpj DFH0f4E5MYeOHFgyjmjLXJzOfB7z -----END CERTIFICATE-----Generated at Mon Apr 7 11:32:52 2025 by rpki-client