$ rpki-client -vvf rpki-repo.registro.br/repo/DhRSLStPpUAxjrQB7TdHhSUf9uSu1KCUA2MLimGrHTvf/0/323830343a383332343a383030303a3a2f33332d3333203d3e20323732313739.roa File: 323830343a383332343a383030303a3a2f33332d3333203d3e20323732313739.roa (raw, json) Hash identifier: 4XLSk1H8Zs3/2iEP/S1r7T3cG8H3qUHWpWL596XBV1Y= Subject key identifier: EA:9E:39:C7:FF:D9:C7:90:71:26:7E:69:E3:C4:F5:B1:2A:DA:6F:59 Certificate issuer: /CN=64F34AAEF7C614E665668431B50EB7B1981EDD37 Certificate serial: 7A929E3044241FF5E8342CF67931689B8889519F Authority key identifier: 64:F3:4A:AE:F7:C6:14:E6:65:66:84:31:B5:0E:B7:B1:98:1E:DD:37 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/64F34AAEF7C614E665668431B50EB7B1981EDD37.cer Subject info access: rsync://rpki-repo.registro.br/repo/DhRSLStPpUAxjrQB7TdHhSUf9uSu1KCUA2MLimGrHTvf/0/323830343a383332343a383030303a3a2f33332d3333203d3e20323732313739.roa Signing time: Fri 10 Jan 2025 12:13:01 +0000 ROA not before: Fri 10 Jan 2025 12:08:01 +0000 ROA not after: Fri 09 Jan 2026 12:13:01 +0000 asID: 272179 IP address blocks: 2804:8324:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DhRSLStPpUAxjrQB7TdHhSUf9uSu1KCUA2MLimGrHTvf/0/64F34AAEF7C614E665668431B50EB7B1981EDD37.crl rsync://rpki-repo.registro.br/repo/DhRSLStPpUAxjrQB7TdHhSUf9uSu1KCUA2MLimGrHTvf/0/64F34AAEF7C614E665668431B50EB7B1981EDD37.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/64F34AAEF7C614E665668431B50EB7B1981EDD37.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 06 Apr 2025 07:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:92:9e:30:44:24:1f:f5:e8:34:2c:f6:79:31:68:9b:88:89:51:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64F34AAEF7C614E665668431B50EB7B1981EDD37 Validity Not Before: Jan 10 12:08:01 2025 GMT Not After : Jan 9 12:13:01 2026 GMT Subject: CN=EA9E39C7FFD9C79071267E69E3C4F5B12ADA6F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f3:6c:c4:41:96:b9:ac:83:a3:f7:62:ab:b0: d6:86:5d:6c:52:64:e1:49:23:0c:9d:76:7c:a5:32: 6d:58:b0:f8:35:7b:ab:d6:01:85:b3:56:77:7d:7a: 50:5b:ba:94:a3:26:75:4e:14:63:25:9c:46:9b:73: 69:58:8e:6c:aa:ee:7d:95:48:de:7d:f8:ef:06:5f: 63:28:e9:c8:f3:7f:aa:a3:9d:42:49:44:7d:bd:f0: 7a:58:8a:23:ee:98:00:27:7e:a1:e8:88:d0:9b:42: e1:7d:d5:05:1b:1f:0a:6d:88:ca:db:97:8d:92:bb: 0b:e7:4d:9a:d9:ad:14:5c:69:d8:d5:f0:26:b8:0a: 59:4f:21:e7:67:74:e5:f4:bc:a4:3c:b5:fd:b7:03: 0e:b5:05:e0:27:34:46:22:c8:b8:a1:46:da:a8:25: a5:d4:f3:0c:80:f6:c7:fc:cc:80:d6:b9:3e:3a:d3: ef:06:0e:20:4f:61:79:41:d4:51:ea:74:7f:3c:5e: 3f:5c:e5:a0:6e:80:35:25:d3:19:7c:32:68:c7:85: ca:38:a6:01:39:eb:2d:45:0c:1e:d0:f3:5e:04:48: c7:30:43:c6:c2:7c:ce:b0:99:4f:7f:6c:84:80:fb: c4:cf:f0:fd:91:b9:41:8b:bd:b7:6a:91:39:d3:83: 4c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:9E:39:C7:FF:D9:C7:90:71:26:7E:69:E3:C4:F5:B1:2A:DA:6F:59 X509v3 Authority Key Identifier: keyid:64:F3:4A:AE:F7:C6:14:E6:65:66:84:31:B5:0E:B7:B1:98:1E:DD:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DhRSLStPpUAxjrQB7TdHhSUf9uSu1KCUA2MLimGrHTvf/0/64F34AAEF7C614E665668431B50EB7B1981EDD37.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/64F34AAEF7C614E665668431B50EB7B1981EDD37.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DhRSLStPpUAxjrQB7TdHhSUf9uSu1KCUA2MLimGrHTvf/0/323830343a383332343a383030303a3a2f33332d3333203d3e20323732313739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8324:8000::/33 Signature Algorithm: sha256WithRSAEncryption 38:25:0b:0e:9f:2d:cf:1b:f1:f2:a7:94:a1:eb:bd:ee:da:e5: 75:ad:13:20:5b:dd:0b:92:bf:9b:37:4b:35:0d:08:e9:a3:94: c0:b7:7d:8c:b7:03:85:02:9a:bf:32:c6:dc:38:c5:12:db:39: 9c:a3:c3:97:9f:37:ea:cc:16:93:c0:e5:c2:63:fb:1f:85:d3: e1:ba:89:92:fb:9d:bf:85:de:c4:44:17:dd:ad:3a:eb:39:74: d5:8a:81:45:97:82:54:00:07:3e:e0:f4:76:90:28:a7:d9:36: b6:62:7e:41:09:8c:e7:e1:7a:14:13:95:2a:cc:19:67:05:d1: 36:b8:62:44:57:5a:17:f5:3f:3d:31:14:f2:ff:2d:04:7b:30: c7:af:82:21:4b:0d:10:d5:5f:b2:15:c9:43:ff:d0:16:f7:24: 85:bc:d7:fd:99:1b:54:4b:ca:a4:30:d3:7e:f6:18:b9:52:d0: 79:64:02:24:44:4e:a2:50:74:4c:ba:cf:e9:78:d1:ab:52:c2: 72:32:62:72:f7:4a:69:f0:69:1c:f9:0c:44:ac:11:b8:9d:73: ad:77:81:77:a3:55:a4:45:de:18:fd:d1:af:5d:3b:da:57:a7: 63:b2:71:9c:8b:e4:7b:46:73:c7:7e:d8:ab:31:44:0e:1d:db: 11:f4:79:67 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUepKeMEQkH/XoNCz2eTFom4iJUZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRGMzRBQUVGN0M2MTRFNjY1NjY4NDMxQjUwRUI3QjE5 ODFFREQzNzAeFw0yNTAxMTAxMjA4MDFaFw0yNjAxMDkxMjEzMDFaMDMxMTAvBgNV BAMTKEVBOUUzOUM3RkZEOUM3OTA3MTI2N0U2OUUzQzRGNUIxMkFEQTZGNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN82zEQZa5rIOj92KrsNaGXWxS ZOFJIwyddnylMm1YsPg1e6vWAYWzVnd9elBbupSjJnVOFGMlnEabc2lYjmyq7n2V SN59+O8GX2Mo6cjzf6qjnUJJRH298HpYiiPumAAnfqHoiNCbQuF91QUbHwptiMrb l42SuwvnTZrZrRRcadjV8Ca4CllPIedndOX0vKQ8tf23Aw61BeAnNEYiyLihRtqo JaXU8wyA9sf8zIDWuT460+8GDiBPYXlB1FHqdH88Xj9c5aBugDUl0xl8MmjHhco4 pgE56y1FDB7Q814ESMcwQ8bCfM6wmU9/bISA+8TP8P2RuUGLvbdqkTnTg0zrAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU6p45x//Zx5BxJn5p48T1sSrab1kwHwYDVR0j BBgwFoAUZPNKrvfGFOZlZoQxtQ63sZge3TcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRGhSU0xTdFBwVUF4anJRQjdUZEhoU1VmOXVTdTFLQ1VBMk1MaW1HckhU dmYvMC82NEYzNEFBRUY3QzYxNEU2NjU2Njg0MzFCNTBFQjdCMTk4MUVERDM3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY0RjM0QUFFRjdDNjE0RTY2 NTY2ODQzMUI1MEVCN0IxOTgxRUREMzcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RoUlNMU3RQcFVBeGpyUUI3VGRIaFNVZjl1U3UxS0NVQTJNTGltR3JIVHZmLzAv MzIzODMwMzQzYTM4MzMzMjM0M2EzODMwMzAzMDNhM2EyZjMzMzMyZDMzMzMyMDNk M2UyMDMyMzczMjMxMzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBygEgySAMA0GCSqGSIb3DQEBCwUA A4IBAQA4JQsOny3PG/Hyp5Sh673u2uV1rRMgW90Lkr+bN0s1DQjpo5TAt32MtwOF Apq/MsbcOMUS2zmco8OXnzfqzBaTwOXCY/sfhdPhuomS+52/hd7ERBfdrTrrOXTV ioFFl4JUAAc+4PR2kCin2Ta2Yn5BCYzn4XoUE5UqzBlnBdE2uGJEV1oX9T89MRTy /y0EezDHr4IhSw0Q1V+yFclD/9AW9ySFvNf9mRtUS8qkMNN+9hi5UtB5ZAIkRE6i UHRMus/peNGrUsJyMmJy90pp8Gkc+QxErBG4nXOtd4F3o1WkRd4Y/dGvXTvaV6dj snGci+R7RnPHftirMUQOHdsR9Hln -----END CERTIFICATE-----Generated at Sat Apr 5 13:24:47 2025 by rpki-client