$ rpki-client -vvf rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/323830343a316365303a3a2f33322d3332203d3e203631363830.roa File: 323830343a316365303a3a2f33322d3332203d3e203631363830.roa (raw, json) Hash identifier: njEjuCn7gfStK/08e5HH6fc8+h3zhVuDjrnD2YAx6GY= Subject key identifier: 6E:1A:C4:46:AA:72:13:F0:15:F9:21:71:74:11:53:DC:11:0E:62:95 Certificate issuer: /CN=9D1976629022211514D82A46F1AF3344D2E667F3 Certificate serial: 785EE586A0A2D02C33D50D8715A1177C5C2C70AA Authority key identifier: 9D:19:76:62:90:22:21:15:14:D8:2A:46:F1:AF:33:44:D2:E6:67:F3 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9D1976629022211514D82A46F1AF3344D2E667F3.cer Subject info access: rsync://rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/323830343a316365303a3a2f33322d3332203d3e203631363830.roa Signing time: Sat 23 Nov 2024 21:22:23 +0000 ROA not before: Sat 23 Nov 2024 21:17:23 +0000 ROA not after: Sat 22 Nov 2025 21:22:23 +0000 asID: 61680 IP address blocks: 2804:1ce0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/9D1976629022211514D82A46F1AF3344D2E667F3.crl rsync://rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/9D1976629022211514D82A46F1AF3344D2E667F3.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9D1976629022211514D82A46F1AF3344D2E667F3.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 30 Nov 2024 16:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:5e:e5:86:a0:a2:d0:2c:33:d5:0d:87:15:a1:17:7c:5c:2c:70:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D1976629022211514D82A46F1AF3344D2E667F3 Validity Not Before: Nov 23 21:17:23 2024 GMT Not After : Nov 22 21:22:23 2025 GMT Subject: CN=6E1AC446AA7213F015F92171741153DC110E6295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4e:e5:74:37:6f:81:db:5e:ad:ea:c2:73:da: 1d:10:49:1d:8a:31:a2:f6:5e:cf:08:94:e9:f7:39: c0:97:29:cd:ae:ce:ec:f0:cc:8a:fa:1b:68:47:af: 98:98:35:b0:20:e5:b6:2b:9b:29:b9:fe:40:d3:f2: 33:e9:73:66:61:82:c6:5d:b5:76:44:e0:ec:ec:57: 7e:d3:d4:ad:ea:a3:76:6a:5a:c7:0b:5f:07:01:80: b3:2d:8c:49:c0:a4:d2:0e:ea:bb:4f:64:53:c6:44: 4c:55:1f:19:dc:87:43:1c:54:bd:24:39:df:5b:d0: af:9f:6f:c9:a0:cb:2a:af:6a:06:e2:dd:7c:05:44: c2:53:1d:66:e5:81:5e:e0:c1:f8:11:fb:19:78:a2: a7:82:68:ae:56:2f:b8:09:d7:64:bf:3f:e2:39:26: 3f:89:5c:18:ad:f3:3e:85:6b:a3:51:91:4d:c1:23: 32:00:5d:8f:02:f8:6e:62:0d:46:60:5a:a6:9e:64: 2a:62:0f:ad:2b:22:c9:d0:57:fc:d0:0f:37:b6:f0: 3d:44:31:08:1f:c2:ca:a3:7a:9d:e1:fa:de:32:a0: a3:9d:79:cd:39:36:df:b5:c2:93:06:ee:d2:0a:f5: 80:64:7a:ce:5d:d6:5e:a8:6a:c4:81:a6:64:f6:98: d3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1A:C4:46:AA:72:13:F0:15:F9:21:71:74:11:53:DC:11:0E:62:95 X509v3 Authority Key Identifier: keyid:9D:19:76:62:90:22:21:15:14:D8:2A:46:F1:AF:33:44:D2:E6:67:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/9D1976629022211514D82A46F1AF3344D2E667F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9D1976629022211514D82A46F1AF3344D2E667F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/323830343a316365303a3a2f33322d3332203d3e203631363830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:1ce0::/32 Signature Algorithm: sha256WithRSAEncryption 85:af:77:4c:73:c3:55:61:19:12:b4:06:76:34:69:1e:fe:a3: 0a:10:fc:1e:76:f8:4b:a9:4f:db:35:bb:68:b8:da:fa:c5:e8: 08:ae:51:1a:59:84:12:54:73:5d:8c:9c:45:1f:89:93:00:da: a9:68:70:70:3f:71:2d:d3:96:af:50:bc:01:20:f1:5e:5f:d0: 08:6d:55:85:25:1b:a1:06:25:88:b0:2e:7b:61:7d:d5:d4:34: c6:54:d5:24:23:28:8d:b2:13:9c:e6:9c:b7:df:d2:44:ff:d6: da:9a:4d:30:4b:87:91:b7:25:96:e7:53:0b:c8:42:03:09:5f: e2:b3:71:8c:a3:05:2e:d8:48:70:3b:40:cd:80:7e:22:02:69: 62:31:f6:63:31:3a:18:71:27:90:a2:5c:30:cd:6c:d3:1a:a4: 46:a7:75:3f:20:38:55:15:d8:69:c8:5c:34:ef:3d:7d:6f:d1: 7e:42:68:62:44:5c:97:31:c5:13:e4:fc:5d:4a:39:34:fe:f5: 50:ef:8f:03:5c:65:74:46:f2:b2:6d:bc:a6:22:6e:ed:41:ae: bb:c4:7a:46:57:c5:a7:35:77:73:f5:70:23:57:29:bf:23:db: d2:5b:b4:0a:b0:ec:86:de:42:ca:d0:6a:21:4d:26:bd:03:c9: 80:45:fc:0b -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUeF7lhqCi0Cwz1Q2HFaEXfFwscKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQxOTc2NjI5MDIyMjExNTE0RDgyQTQ2RjFBRjMzNDRE MkU2NjdGMzAeFw0yNDExMjMyMTE3MjNaFw0yNTExMjIyMTIyMjNaMDMxMTAvBgNV BAMTKDZFMUFDNDQ2QUE3MjEzRjAxNUY5MjE3MTc0MTE1M0RDMTEwRTYyOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYTuV0N2+B216t6sJz2h0QSR2K MaL2Xs8IlOn3OcCXKc2uzuzwzIr6G2hHr5iYNbAg5bYrmym5/kDT8jPpc2ZhgsZd tXZE4OzsV37T1K3qo3ZqWscLXwcBgLMtjEnApNIO6rtPZFPGRExVHxnch0McVL0k Od9b0K+fb8mgyyqvagbi3XwFRMJTHWblgV7gwfgR+xl4oqeCaK5WL7gJ12S/P+I5 Jj+JXBit8z6Fa6NRkU3BIzIAXY8C+G5iDUZgWqaeZCpiD60rIsnQV/zQDze28D1E MQgfwsqjep3h+t4yoKOdec05Nt+1wpMG7tIK9YBkes5d1l6oasSBpmT2mNMnAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUbhrERqpyE/AV+SFxdBFT3BEOYpUwHwYDVR0j BBgwFoAUnRl2YpAiIRUU2CpG8a8zRNLmZ/MwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRm9Xc3RDWXZLYlB4UTdtQ3BEaFh4U0RjWTVXWk1wQnVRaVdhUTNvZFZq eHIvMC85RDE5NzY2MjkwMjIyMTE1MTREODJBNDZGMUFGMzM0NEQyRTY2N0YzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzlEMTk3NjYyOTAyMjIxMTUx NEQ4MkE0NkYxQUYzMzQ0RDJFNjY3RjMuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZvV3N0Q1l2S2JQeFE3bUNwRGhYeFNEY1k1V1pNcEJ1UWlXYVEzb2RWanhyLzAv MzIzODMwMzQzYTMxNjM2NTMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzYzMTM2 MzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACgEHOAwDQYJKoZIhvcNAQELBQADggEBAIWvd0xzw1Vh GRK0BnY0aR7+owoQ/B52+EupT9s1u2i42vrF6AiuURpZhBJUc12MnEUfiZMA2qlo cHA/cS3Tlq9QvAEg8V5f0AhtVYUlG6EGJYiwLnthfdXUNMZU1SQjKI2yE5zmnLff 0kT/1tqaTTBLh5G3JZbnUwvIQgMJX+KzcYyjBS7YSHA7QM2AfiICaWIx9mMxOhhx J5CiXDDNbNMapEandT8gOFUV2GnIXDTvPX1v0X5CaGJEXJcxxRPk/F1KOTT+9VDv jwNcZXRG8rJtvKYibu1BrrvEekZXxac1d3P1cCNXKb8j29JbtAqw7IbeQsrQaiFN Jr0DyYBF/As= -----END CERTIFICATE-----