$ rpki-client -vvf rpki-repo.registro.br/repo/FzzYFYVWz1P1u8BY27AVB31byypKTiUqkmj5ibnYp7Tn/0/323830343a363663633a3a2f33322d3438203d3e20323639353833.roa File: 323830343a363663633a3a2f33322d3438203d3e20323639353833.roa (raw, json) Hash identifier: hCk2mW7x8M8XOpYPPvJccBruAtwJmVklEmJbPXpmEUQ= Subject key identifier: 59:8B:0A:BB:AF:EF:C1:83:FF:F7:2A:42:55:BA:67:9C:4C:62:84:1B Certificate issuer: /CN=407FE8F64D6C43891C2392984607FD3486512D91 Certificate serial: 12A36B3DD9AF94A57BB30C58F492865000A19320 Authority key identifier: 40:7F:E8:F6:4D:6C:43:89:1C:23:92:98:46:07:FD:34:86:51:2D:91 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/407FE8F64D6C43891C2392984607FD3486512D91.cer Subject info access: rsync://rpki-repo.registro.br/repo/FzzYFYVWz1P1u8BY27AVB31byypKTiUqkmj5ibnYp7Tn/0/323830343a363663633a3a2f33322d3438203d3e20323639353833.roa Signing time: Wed 12 Feb 2025 00:00:59 +0000 ROA not before: Tue 11 Feb 2025 23:55:59 +0000 ROA not after: Wed 11 Feb 2026 00:00:59 +0000 asID: 269583 IP address blocks: 2804:66cc::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FzzYFYVWz1P1u8BY27AVB31byypKTiUqkmj5ibnYp7Tn/0/407FE8F64D6C43891C2392984607FD3486512D91.crl rsync://rpki-repo.registro.br/repo/FzzYFYVWz1P1u8BY27AVB31byypKTiUqkmj5ibnYp7Tn/0/407FE8F64D6C43891C2392984607FD3486512D91.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/407FE8F64D6C43891C2392984607FD3486512D91.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 10:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a3:6b:3d:d9:af:94:a5:7b:b3:0c:58:f4:92:86:50:00:a1:93:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=407FE8F64D6C43891C2392984607FD3486512D91 Validity Not Before: Feb 11 23:55:59 2025 GMT Not After : Feb 11 00:00:59 2026 GMT Subject: CN=598B0ABBAFEFC183FFF72A4255BA679C4C62841B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e0:e4:1b:5f:47:88:d1:80:3e:22:07:34:9f: f1:d4:32:2c:f2:1f:67:6f:a4:33:3a:f0:0b:49:28: ba:68:1e:e8:64:8d:af:1f:9b:a7:7c:b9:fb:d3:37: 47:9b:b1:f6:ef:97:c6:27:78:fe:28:95:b4:dd:f5: 20:5a:90:7a:60:dd:bc:7d:4e:0e:b1:e3:b6:bd:02: c8:0f:77:44:c4:8a:b2:cb:b7:9f:7a:d6:fd:c0:20: b8:fc:ac:48:9c:bc:26:d8:26:1d:0a:3b:72:89:56: 75:6d:b4:bf:bb:b5:d1:9e:b4:b4:08:a4:e3:f0:a3: d7:df:28:3a:8d:cb:14:51:33:39:6e:96:45:2d:65: 69:91:e5:11:32:ab:37:9c:17:07:ce:58:57:f7:cc: ec:87:5e:bc:b6:5a:8f:2b:b0:ce:44:b3:29:5c:2c: 9a:22:b7:c8:c4:dc:9d:13:30:fb:3f:e6:36:ac:12: 7c:83:d9:3b:73:a9:9b:79:8f:9a:5b:f2:60:ce:3d: 18:9c:6c:90:97:48:30:cf:40:94:96:dd:f3:f1:0c: c1:e8:7e:27:ab:5a:66:4d:87:56:cf:db:f6:04:81: 37:db:8e:a9:f6:14:06:04:ec:7b:b6:e7:ad:3d:43: 0e:bf:e6:20:ee:cc:a6:99:ea:a6:bd:53:7c:f2:e4: a0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:8B:0A:BB:AF:EF:C1:83:FF:F7:2A:42:55:BA:67:9C:4C:62:84:1B X509v3 Authority Key Identifier: keyid:40:7F:E8:F6:4D:6C:43:89:1C:23:92:98:46:07:FD:34:86:51:2D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FzzYFYVWz1P1u8BY27AVB31byypKTiUqkmj5ibnYp7Tn/0/407FE8F64D6C43891C2392984607FD3486512D91.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/407FE8F64D6C43891C2392984607FD3486512D91.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FzzYFYVWz1P1u8BY27AVB31byypKTiUqkmj5ibnYp7Tn/0/323830343a363663633a3a2f33322d3438203d3e20323639353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:66cc::/32 Signature Algorithm: sha256WithRSAEncryption 99:7d:b3:d2:99:36:70:cb:58:2c:84:83:73:df:52:85:53:b1: 7e:8f:8a:f7:77:18:80:9c:ad:95:c1:88:bf:43:4a:e2:1b:3d: b5:78:ea:33:90:29:35:5b:ce:f3:e4:6b:b6:38:17:61:d4:0e: 91:a9:4f:6f:ab:29:cc:b6:be:a7:75:93:4e:64:02:ea:73:9c: dd:d5:46:b8:1f:eb:96:46:62:09:c0:78:bb:e9:00:c1:be:f4: 07:27:79:a5:5b:69:49:7c:16:29:d1:ba:97:ef:13:de:ac:7c: 95:93:42:0c:84:7a:5d:dd:72:7e:80:45:30:cd:36:e7:6d:de: 5e:4b:1a:54:cc:da:8a:8a:45:a2:71:59:3b:de:7d:59:a3:ea: da:91:98:76:27:95:84:bd:89:4a:a8:04:36:43:0e:22:8e:19: fc:dc:47:49:a4:3d:87:be:dd:f8:95:aa:c3:4e:33:9d:fc:b0: 4a:db:8e:ce:98:6b:ee:1f:c3:44:b2:0b:85:0f:b0:dd:8b:ff: a3:06:a0:91:84:d2:96:79:4c:d5:8b:ed:53:73:ae:5a:ca:e6: 8b:fc:9d:86:5e:92:74:72:74:69:15:b6:2f:eb:1f:bc:df:3c: 8c:c9:9d:45:54:96:b6:e8:e2:fa:41:f5:5d:08:21:11:dc:a3: c8:72:d0:a9 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIUEqNrPdmvlKV7swxY9JKGUAChkyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3RkU4RjY0RDZDNDM4OTFDMjM5Mjk4NDYwN0ZEMzQ4 NjUxMkQ5MTAeFw0yNTAyMTEyMzU1NTlaFw0yNjAyMTEwMDAwNTlaMDMxMTAvBgNV BAMTKDU5OEIwQUJCQUZFRkMxODNGRkY3MkE0MjU1QkE2NzlDNEM2Mjg0MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi4OQbX0eI0YA+Igc0n/HUMizy H2dvpDM68AtJKLpoHuhkja8fm6d8ufvTN0ebsfbvl8YneP4olbTd9SBakHpg3bx9 Tg6x47a9AsgPd0TEirLLt5961v3AILj8rEicvCbYJh0KO3KJVnVttL+7tdGetLQI pOPwo9ffKDqNyxRRMzlulkUtZWmR5REyqzecFwfOWFf3zOyHXry2Wo8rsM5Esylc LJoit8jE3J0TMPs/5jasEnyD2TtzqZt5j5pb8mDOPRicbJCXSDDPQJSW3fPxDMHo fierWmZNh1bP2/YEgTfbjqn2FAYE7Hu25609Qw6/5iDuzKaZ6qa9U3zy5KC/AgMB AAGjggJQMIICTDAdBgNVHQ4EFgQUWYsKu6/vwYP/9ypCVbpnnExihBswHwYDVR0j BBgwFoAUQH/o9k1sQ4kcI5KYRgf9NIZRLZEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRnp6WUZZVld6MVAxdThCWTI3QVZCMzFieXlwS1RpVXFrbWo1aWJuWXA3 VG4vMC80MDdGRThGNjRENkM0Mzg5MUMyMzkyOTg0NjA3RkQzNDg2NTEyRDkxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQwN0ZFOEY2NEQ2QzQzODkx QzIzOTI5ODQ2MDdGRDM0ODY1MTJEOTEuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Z6ellGWVZXejFQMXU4QlkyN0FWQjMxYnl5cEtUaVVxa21qNWlibllwN1RuLzAv MzIzODMwMzQzYTM2MzY2MzYzM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzNjM5 MzUzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH AQH/BBEwDzANBAIAAjAHAwUAKARmzDANBgkqhkiG9w0BAQsFAAOCAQEAmX2z0pk2 cMtYLISDc99ShVOxfo+K93cYgJytlcGIv0NK4hs9tXjqM5ApNVvO8+RrtjgXYdQO kalPb6spzLa+p3WTTmQC6nOc3dVGuB/rlkZiCcB4u+kAwb70Byd5pVtpSXwWKdG6 l+8T3qx8lZNCDIR6Xd1yfoBFMM02523eXksaVMzaiopFonFZO959WaPq2pGYdieV hL2JSqgENkMOIo4Z/NxHSaQ9h77d+JWqw04znfywStuOzphr7h/DRLILhQ+w3Yv/ owagkYTSlnlM1YvtU3OuWsrmi/ydhl6SdHJ0aRW2L+sfvN88jMmdRVSWtuji+kH1 XQghEdyjyHLQqQ== -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:33 2025 by rpki-client