$ rpki-client -vvf rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/323830343a356234303a383030303a3a2f33342d3334203d3e20323638383239.roa File: 323830343a356234303a383030303a3a2f33342d3334203d3e20323638383239.roa (raw, json) Hash identifier: bfHXTfbc87jJz6e+fZocCYgtqTquZLKecVJORLkJUdg= Subject key identifier: 31:CC:C0:E0:43:23:66:50:EC:45:76:AE:2D:17:84:96:D2:E2:5D:7A Certificate issuer: /CN=2E8650E1A7B09F7749A5126450B8242131048354 Certificate serial: 28F2E0E7E93BE814EEA0CC72BA22FF0955D67610 Authority key identifier: 2E:86:50:E1:A7:B0:9F:77:49:A5:12:64:50:B8:24:21:31:04:83:54 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2E8650E1A7B09F7749A5126450B8242131048354.cer Subject info access: rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/323830343a356234303a383030303a3a2f33342d3334203d3e20323638383239.roa Signing time: Tue 18 Feb 2025 14:13:17 +0000 ROA not before: Tue 18 Feb 2025 14:08:17 +0000 ROA not after: Tue 17 Feb 2026 14:13:17 +0000 asID: 268829 IP address blocks: 2804:5b40:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/2E8650E1A7B09F7749A5126450B8242131048354.crl rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/2E8650E1A7B09F7749A5126450B8242131048354.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2E8650E1A7B09F7749A5126450B8242131048354.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 21 Feb 2025 23:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:f2:e0:e7:e9:3b:e8:14:ee:a0:cc:72:ba:22:ff:09:55:d6:76:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E8650E1A7B09F7749A5126450B8242131048354 Validity Not Before: Feb 18 14:08:17 2025 GMT Not After : Feb 17 14:13:17 2026 GMT Subject: CN=31CCC0E043236650EC4576AE2D178496D2E25D7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:66:28:29:3d:a9:b4:b4:b1:46:4a:bd:f9:b7: 11:10:5f:41:80:b9:ed:7c:4c:86:25:47:dd:c8:10: 86:c0:b3:46:15:31:9b:67:fb:f4:3a:19:eb:44:e2: 42:ce:9d:c2:ee:e0:bc:61:58:91:20:22:76:86:e0: 4d:58:8f:97:a9:8d:21:c4:53:65:62:87:1e:59:18: f8:ac:12:73:3e:81:19:e2:5d:c8:a2:96:83:ad:63: 93:44:be:15:3c:75:f7:ef:e8:29:cc:67:e8:a9:84: c5:71:94:00:11:90:37:e9:e7:2d:1e:1b:bf:fb:51: f9:6f:da:8e:20:32:f1:46:98:81:77:36:c5:f2:9b: c6:b3:15:8a:89:d4:5a:9d:07:bd:f1:f8:35:fe:ec: a4:66:fa:d0:47:5c:e0:3f:d5:14:91:b0:32:28:04: 36:90:9e:52:d6:d9:40:ce:43:83:a5:e3:ba:86:38: 3b:ff:c8:72:3f:9d:1c:b9:65:5a:aa:05:4a:92:11: b7:ea:6a:c6:20:7e:60:83:b1:46:78:38:a1:50:74: f3:25:03:52:7d:60:6a:3f:88:84:30:8c:0b:76:a8: c0:24:cd:ed:b2:57:de:1b:81:6a:d5:7e:6e:d9:1a: 78:80:67:69:5c:ad:3a:09:b3:21:7a:b7:45:6d:bd: c5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CC:C0:E0:43:23:66:50:EC:45:76:AE:2D:17:84:96:D2:E2:5D:7A X509v3 Authority Key Identifier: keyid:2E:86:50:E1:A7:B0:9F:77:49:A5:12:64:50:B8:24:21:31:04:83:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/2E8650E1A7B09F7749A5126450B8242131048354.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2E8650E1A7B09F7749A5126450B8242131048354.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/323830343a356234303a383030303a3a2f33342d3334203d3e20323638383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5b40:8000::/34 Signature Algorithm: sha256WithRSAEncryption 93:89:8b:aa:61:0c:b3:d7:2b:9a:f5:38:64:57:87:01:56:57: ef:d4:52:76:a1:de:57:0b:2f:e6:89:19:62:b3:3d:20:be:50: e6:67:ab:9d:b5:25:c6:83:50:4f:d5:5f:73:76:cc:c7:1b:80: 11:e8:48:1c:42:06:df:5a:ee:f9:1b:a3:7e:a7:85:02:e2:d4: f2:80:f4:e6:85:f4:49:ec:84:06:73:a4:37:6e:82:9f:b6:65: dc:84:09:b8:be:0d:ee:aa:4c:e7:f3:ac:c5:ba:89:a1:7b:d2: 20:5c:d7:7b:a0:c0:54:64:f6:4a:cc:5c:d8:dd:03:e7:9b:d9: 5b:00:78:eb:e5:05:98:0e:9f:a5:be:eb:a6:95:25:0e:34:96: 31:e6:f4:12:da:49:95:b7:ae:2c:5d:11:61:0f:f2:fb:02:56: 41:86:2c:7c:fa:17:f9:ac:6c:69:84:b9:88:59:c7:41:62:05: c3:18:b7:23:7d:f1:07:ec:21:53:94:f5:e6:b9:ba:71:23:28: dc:53:50:17:09:09:ac:f3:76:6e:21:04:b8:26:01:c4:aa:c5: ac:12:48:23:6a:04:22:99:90:b7:4f:77:07:05:44:60:b1:8f: 67:90:a3:6f:f6:87:ad:77:40:26:94:58:9b:d7:56:22:92:6d: f2:0c:4d:1e -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUKPLg5+k76BTuoMxyuiL/CVXWdhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU4NjUwRTFBN0IwOUY3NzQ5QTUxMjY0NTBCODI0MjEz MTA0ODM1NDAeFw0yNTAyMTgxNDA4MTdaFw0yNjAyMTcxNDEzMTdaMDMxMTAvBgNV BAMTKDMxQ0NDMEUwNDMyMzY2NTBFQzQ1NzZBRTJEMTc4NDk2RDJFMjVEN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3ZigpPam0tLFGSr35txEQX0GA ue18TIYlR93IEIbAs0YVMZtn+/Q6GetE4kLOncLu4LxhWJEgInaG4E1Yj5epjSHE U2Vihx5ZGPisEnM+gRniXciiloOtY5NEvhU8dffv6CnMZ+iphMVxlAARkDfp5y0e G7/7Uflv2o4gMvFGmIF3NsXym8azFYqJ1FqdB73x+DX+7KRm+tBHXOA/1RSRsDIo BDaQnlLW2UDOQ4Ol47qGODv/yHI/nRy5ZVqqBUqSEbfqasYgfmCDsUZ4OKFQdPMl A1J9YGo/iIQwjAt2qMAkze2yV94bgWrVfm7ZGniAZ2lcrToJsyF6t0VtvcXrAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUMczA4EMjZlDsRXauLReEltLiXXowHwYDVR0j BBgwFoAULoZQ4aewn3dJpRJkULgkITEEg1QwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRkNEaHhlSHlCazRRUHZ1SmdhYmY1Uks5VXdVdnJyU0ptZEtDSFBKQTVZ WnEvMC8yRTg2NTBFMUE3QjA5Rjc3NDlBNTEyNjQ1MEI4MjQyMTMxMDQ4MzU0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJFODY1MEUxQTdCMDlGNzc0 OUE1MTI2NDUwQjgyNDIxMzEwNDgzNTQuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZDRGh4ZUh5Qms0UVB2dUpnYWJmNVJLOVV3VXZyclNKbWRLQ0hQSkE1WVpxLzAv MzIzODMwMzQzYTM1NjIzNDMwM2EzODMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzODM4MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEW0CAMA0GCSqGSIb3DQEBCwUA A4IBAQCTiYuqYQyz1yua9ThkV4cBVlfv1FJ2od5XCy/miRlisz0gvlDmZ6udtSXG g1BP1V9zdszHG4AR6EgcQgbfWu75G6N+p4UC4tTygPTmhfRJ7IQGc6Q3boKftmXc hAm4vg3uqkzn86zFuomhe9IgXNd7oMBUZPZKzFzY3QPnm9lbAHjr5QWYDp+lvuum lSUONJYx5vQS2kmVt64sXRFhD/L7AlZBhix8+hf5rGxphLmIWcdBYgXDGLcjffEH 7CFTlPXmubpxIyjcU1AXCQms83ZuIQS4JgHEqsWsEkgjagQimZC3T3cHBURgsY9n kKNv9oetd0AmlFib11Yikm3yDE0e -----END CERTIFICATE-----Generated at Fri Feb 21 11:16:38 2025 by rpki-client