$ rpki-client -vvf rpki-repo.registro.br/repo/FSfoj4MNKpnaBu855MxMj3MjYhu3ovmS22Xpx4LD6SPQ/0/323830343a3634343a3a2f33322d313238203d3e203533323235.roa File: 323830343a3634343a3a2f33322d313238203d3e203533323235.roa (raw, json) Hash identifier: QXm+o9iX46wQiOvuyKVaDajStKO/CBl+JdlIUj6ChlY= Subject key identifier: 65:BA:C5:34:EC:5E:1E:4C:E6:C0:33:14:51:AD:47:47:E6:7C:52:48 Certificate issuer: /CN=72D21565C0A508FC2BDEA7768D0F4AEFD6CD19F1 Certificate serial: 22D2F8D0C5B9E1C67A4E302484976946A87255E3 Authority key identifier: 72:D2:15:65:C0:A5:08:FC:2B:DE:A7:76:8D:0F:4A:EF:D6:CD:19:F1 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/72D21565C0A508FC2BDEA7768D0F4AEFD6CD19F1.cer Subject info access: rsync://rpki-repo.registro.br/repo/FSfoj4MNKpnaBu855MxMj3MjYhu3ovmS22Xpx4LD6SPQ/0/323830343a3634343a3a2f33322d313238203d3e203533323235.roa Signing time: Wed 23 Apr 2025 18:30:11 +0000 ROA not before: Wed 23 Apr 2025 18:25:11 +0000 ROA not after: Wed 22 Apr 2026 18:30:11 +0000 asID: 53225 IP address blocks: 2804:644::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FSfoj4MNKpnaBu855MxMj3MjYhu3ovmS22Xpx4LD6SPQ/0/72D21565C0A508FC2BDEA7768D0F4AEFD6CD19F1.crl rsync://rpki-repo.registro.br/repo/FSfoj4MNKpnaBu855MxMj3MjYhu3ovmS22Xpx4LD6SPQ/0/72D21565C0A508FC2BDEA7768D0F4AEFD6CD19F1.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/72D21565C0A508FC2BDEA7768D0F4AEFD6CD19F1.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 12 Jun 2025 08:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:d2:f8:d0:c5:b9:e1:c6:7a:4e:30:24:84:97:69:46:a8:72:55:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D21565C0A508FC2BDEA7768D0F4AEFD6CD19F1 Validity Not Before: Apr 23 18:25:11 2025 GMT Not After : Apr 22 18:30:11 2026 GMT Subject: CN=65BAC534EC5E1E4CE6C0331451AD4747E67C5248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:1b:6f:63:11:fe:8d:52:d5:6d:09:88:6a:f8: 6e:5e:24:93:16:9f:8b:96:09:5f:50:79:8b:11:f3: 2d:d8:f1:af:2b:cb:d6:60:c9:33:5b:5d:45:4f:b4: 79:15:7d:d2:c0:2c:75:8a:20:00:c7:f0:0c:4d:52: 16:f5:34:2e:f1:59:ff:54:d5:04:f6:21:df:b2:13: ad:a1:46:ed:19:d9:52:9b:e5:cc:8d:04:7c:d5:84: f5:60:62:bc:bc:18:03:47:b6:e6:12:11:af:95:37: cc:07:81:67:f4:55:14:09:52:66:2c:48:f0:57:80: 61:7a:b7:de:fe:79:01:e8:35:2b:b0:32:c0:ae:22: f3:41:c1:e9:a8:e7:17:0e:28:a8:7a:76:df:62:35: a4:1e:2c:e4:f1:1e:26:4b:d1:46:de:a2:32:45:7b: ad:f6:96:00:12:ff:9a:a9:9a:eb:4e:73:4c:27:96: 79:7c:f4:88:85:62:16:26:4e:4e:f3:2e:7b:81:6c: 3b:87:6c:33:ca:0a:da:46:9d:fd:5d:da:8b:05:d4: b0:74:d6:2b:06:3f:b2:2e:ba:77:51:b9:ec:99:27: ac:d0:0b:9c:3d:f0:c3:60:5c:4e:7e:ef:1e:aa:fd: 84:a1:09:08:e1:de:38:45:a5:41:2d:8f:81:96:dd: 98:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BA:C5:34:EC:5E:1E:4C:E6:C0:33:14:51:AD:47:47:E6:7C:52:48 X509v3 Authority Key Identifier: keyid:72:D2:15:65:C0:A5:08:FC:2B:DE:A7:76:8D:0F:4A:EF:D6:CD:19:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FSfoj4MNKpnaBu855MxMj3MjYhu3ovmS22Xpx4LD6SPQ/0/72D21565C0A508FC2BDEA7768D0F4AEFD6CD19F1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/72D21565C0A508FC2BDEA7768D0F4AEFD6CD19F1.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FSfoj4MNKpnaBu855MxMj3MjYhu3ovmS22Xpx4LD6SPQ/0/323830343a3634343a3a2f33322d313238203d3e203533323235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:644::/32 Signature Algorithm: sha256WithRSAEncryption 5e:4a:d6:3e:43:50:4e:bd:e7:cb:bc:29:ee:64:a6:c6:05:c7: 2d:12:ce:be:db:2b:f7:15:74:8f:3f:6f:81:e7:eb:ae:e6:f6: cf:c1:73:12:8d:39:d0:40:6c:a1:90:1f:fa:32:97:0c:22:3a: d8:ce:ef:98:92:5e:09:19:62:66:ff:03:c8:1c:fe:c6:c3:c3: 64:c1:0e:e7:18:39:e6:8d:72:84:74:45:43:e7:49:5e:19:79: 2d:1b:17:fd:cf:b6:fd:7d:73:2e:a1:d1:9e:5b:0a:78:bc:83: ec:83:93:3c:00:d4:90:bf:53:ff:de:f4:2b:46:d6:36:a5:7f: 04:ae:b5:35:91:1c:ac:e9:1f:18:47:d1:38:d3:83:34:72:9f: 3d:e7:05:14:5e:4f:ad:04:06:e2:a7:43:b5:54:4f:57:3a:65: 83:16:3d:62:1a:8c:9d:00:cf:cb:46:ee:96:65:72:61:5c:b5: 41:df:8a:17:9d:1b:2c:3b:1c:fd:c3:e1:e1:22:4f:ae:bb:d8: a5:3d:08:52:a1:b5:4b:85:e5:de:12:2b:1a:e1:e0:b8:38:c7: 2c:5d:9b:43:02:c5:52:dc:84:8f:58:26:e0:57:08:ce:8b:fc: e6:4d:b6:74:83:72:1c:f3:bf:ac:11:00:7b:16:58:95:4b:d1: 8f:4c:13:86 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUItL40MW54cZ6TjAkhJdpRqhyVeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEMjE1NjVDMEE1MDhGQzJCREVBNzc2OEQwRjRBRUZE NkNEMTlGMTAeFw0yNTA0MjMxODI1MTFaFw0yNjA0MjIxODMwMTFaMDMxMTAvBgNV BAMTKDY1QkFDNTM0RUM1RTFFNENFNkMwMzMxNDUxQUQ0NzQ3RTY3QzUyNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKG29jEf6NUtVtCYhq+G5eJJMW n4uWCV9QeYsR8y3Y8a8ry9ZgyTNbXUVPtHkVfdLALHWKIADH8AxNUhb1NC7xWf9U 1QT2Id+yE62hRu0Z2VKb5cyNBHzVhPVgYry8GANHtuYSEa+VN8wHgWf0VRQJUmYs SPBXgGF6t97+eQHoNSuwMsCuIvNBwemo5xcOKKh6dt9iNaQeLOTxHiZL0UbeojJF e632lgAS/5qpmutOc0wnlnl89IiFYhYmTk7zLnuBbDuHbDPKCtpGnf1d2osF1LB0 1isGP7IuundRueyZJ6zQC5w98MNgXE5+7x6q/YShCQjh3jhFpUEtj4GW3ZizAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUZbrFNOxeHkzmwDMUUa1HR+Z8UkgwHwYDVR0j BBgwFoAUctIVZcClCPwr3qd2jQ9K79bNGfEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRlNmb2o0TU5LcG5hQnU4NTVNeE1qM01qWWh1M292bVMyMlhweDRMRDZT UFEvMC83MkQyMTU2NUMwQTUwOEZDMkJERUE3NzY4RDBGNEFFRkQ2Q0QxOUYxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcyRDIxNTY1QzBBNTA4RkMy QkRFQTc3NjhEMEY0QUVGRDZDRDE5RjEuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZTZm9qNE1OS3BuYUJ1ODU1TXhNajNNallodTNvdm1TMjJYcHg0TEQ2U1BRLzAv MzIzODMwMzQzYTM2MzQzNDNhM2EyZjMzMzIyZDMxMzIzODIwM2QzZTIwMzUzMzMy MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACgEBkQwDQYJKoZIhvcNAQELBQADggEBAF5K1j5DUE69 58u8Ke5kpsYFxy0Szr7bK/cVdI8/b4Hn667m9s/BcxKNOdBAbKGQH/oylwwiOtjO 75iSXgkZYmb/A8gc/sbDw2TBDucYOeaNcoR0RUPnSV4ZeS0bF/3Ptv19cy6h0Z5b Cni8g+yDkzwA1JC/U//e9CtG1jalfwSutTWRHKzpHxhH0TjTgzRynz3nBRReT60E BuKnQ7VUT1c6ZYMWPWIajJ0Az8tG7pZlcmFctUHfihedGyw7HP3D4eEiT6672KU9 CFKhtUuF5d4SKxrh4Lg4xyxdm0MCxVLchI9YJuBXCM6L/OZNtnSDchzzv6wRAHsW WJVL0Y9ME4Y= -----END CERTIFICATE-----Generated at Wed Jun 11 14:38:08 2025 by rpki-client