$ rpki-client -vvf rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/323830313a38303a323436303a3a2f34342d313238203d3e20323638343431.roa File: 323830313a38303a323436303a3a2f34342d313238203d3e20323638343431.roa (raw, json) Hash identifier: ZPSfVx1LgqAUvWD4JVlPK1AKbkJ6+EyPJ3Dbf/KroU0= Subject key identifier: 36:58:D5:5A:A2:32:54:DE:D7:46:7B:7E:A5:8B:72:6B:4F:E1:BF:DE Certificate issuer: /CN=2AA9C0C8795C1ADD1BEE9A6C17223FC7CCD4C3E3 Certificate serial: 2ED24197830826E56A962A79406D61FCB9FF6B90 Authority key identifier: 2A:A9:C0:C8:79:5C:1A:DD:1B:EE:9A:6C:17:22:3F:C7:CC:D4:C3:E3 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2AA9C0C8795C1ADD1BEE9A6C17223FC7CCD4C3E3.cer Subject info access: rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/323830313a38303a323436303a3a2f34342d313238203d3e20323638343431.roa Signing time: Tue 14 Jan 2025 10:56:42 +0000 ROA not before: Tue 14 Jan 2025 10:51:42 +0000 ROA not after: Tue 13 Jan 2026 10:56:42 +0000 asID: 268441 IP address blocks: 2801:80:2460::/44 maxlen: 128 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/2AA9C0C8795C1ADD1BEE9A6C17223FC7CCD4C3E3.crl rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/2AA9C0C8795C1ADD1BEE9A6C17223FC7CCD4C3E3.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2AA9C0C8795C1ADD1BEE9A6C17223FC7CCD4C3E3.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 13 Apr 2025 16:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:d2:41:97:83:08:26:e5:6a:96:2a:79:40:6d:61:fc:b9:ff:6b:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AA9C0C8795C1ADD1BEE9A6C17223FC7CCD4C3E3 Validity Not Before: Jan 14 10:51:42 2025 GMT Not After : Jan 13 10:56:42 2026 GMT Subject: CN=3658D55AA23254DED7467B7EA58B726B4FE1BFDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f3:6a:3e:e7:05:9b:0c:c9:08:38:f7:6e:cc: ef:ea:5e:cd:cc:3d:ee:41:90:b3:ef:37:de:60:ea: ab:8b:a8:e1:06:50:0d:5b:72:81:cc:c2:c2:dc:fe: 9e:f8:3c:60:44:6f:a9:4c:af:cd:1b:0b:d3:79:25: 63:cd:92:e8:00:2b:68:df:2e:5c:8a:7f:91:35:fb: c3:0d:d2:9d:4a:96:d8:6f:ad:a6:38:48:6e:93:fb: 11:d6:91:97:44:d5:f3:8a:cd:9e:9f:95:f4:21:c2: b7:80:d0:93:ff:24:e4:bd:a1:b1:c3:2e:2b:9e:04: 1a:19:00:d5:7f:35:27:c5:13:a2:a4:a6:c2:79:44: 73:fc:66:e3:7a:1d:22:c9:1f:df:0c:9b:c9:de:79: 73:55:8e:17:4d:fb:da:fe:76:73:ae:9d:88:26:f3: d9:3c:29:a4:66:e5:58:ed:d9:0f:8f:43:be:a3:ed: ad:5e:98:5c:0f:fb:04:9e:76:f3:c0:db:44:43:f0: 66:46:5a:66:95:e7:b7:b8:87:dc:e4:27:e6:56:63: 67:c6:22:fb:e3:5c:01:52:ed:42:55:da:5a:ca:47: 5b:89:4c:29:5c:e6:a1:30:5a:18:c9:31:dd:89:12: 69:44:be:db:88:aa:33:7c:18:c2:fb:de:1c:ae:fd: 37:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:58:D5:5A:A2:32:54:DE:D7:46:7B:7E:A5:8B:72:6B:4F:E1:BF:DE X509v3 Authority Key Identifier: keyid:2A:A9:C0:C8:79:5C:1A:DD:1B:EE:9A:6C:17:22:3F:C7:CC:D4:C3:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/2AA9C0C8795C1ADD1BEE9A6C17223FC7CCD4C3E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2AA9C0C8795C1ADD1BEE9A6C17223FC7CCD4C3E3.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/323830313a38303a323436303a3a2f34342d313238203d3e20323638343431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2801:80:2460::/44 Signature Algorithm: sha256WithRSAEncryption 9a:8c:7c:b4:3d:02:8b:f7:a8:5d:2d:76:2e:6f:37:9d:d4:f0: 8d:1e:41:e4:80:24:61:b0:fe:76:13:dd:8d:50:5b:49:62:aa: 0e:ad:90:a0:6e:04:8c:5d:8e:0b:6b:24:f9:e3:e2:63:14:43: 31:c8:21:d1:48:b4:2f:c3:8a:ed:24:3c:14:62:20:2e:0f:20: f3:db:ae:cc:8e:3d:fb:3c:00:57:4a:48:8a:0e:5d:56:d6:24: 63:c5:14:a9:d6:49:0d:81:ed:ef:9a:6c:11:8f:44:f2:a0:70: ff:64:e7:b5:92:d0:aa:b5:35:5f:06:ee:e3:db:1a:f0:e5:9b: eb:1f:4e:27:69:9b:f3:51:b2:32:ff:89:0f:57:e3:79:49:a3: 88:d4:cf:41:eb:4c:f8:63:76:b7:71:6b:22:b0:60:bf:2c:f2: 07:37:4d:34:01:c1:ea:24:13:59:d5:cb:49:69:0d:54:9b:ae: 83:30:03:87:f0:4d:7d:6f:40:1d:f6:ca:fb:ac:81:c5:73:96: a0:7f:ad:f8:9b:fc:d6:63:3d:77:17:5d:6b:ce:a4:92:57:c6: 3b:a3:fc:c0:34:99:17:61:68:94:f4:dd:05:7b:8e:cd:89:01: 9d:0e:60:02:11:9e:32:b2:0c:85:2b:ae:cd:9f:59:a9:aa:6e: e2:b7:81:eb -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIULtJBl4MIJuVqlip5QG1h/Ln/a5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBOUMwQzg3OTVDMUFERDFCRUU5QTZDMTcyMjNGQzdD Q0Q0QzNFMzAeFw0yNTAxMTQxMDUxNDJaFw0yNjAxMTMxMDU2NDJaMDMxMTAvBgNV BAMTKDM2NThENTVBQTIzMjU0REVENzQ2N0I3RUE1OEI3MjZCNEZFMUJGREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX82o+5wWbDMkIOPduzO/qXs3M Pe5BkLPvN95g6quLqOEGUA1bcoHMwsLc/p74PGBEb6lMr80bC9N5JWPNkugAK2jf LlyKf5E1+8MN0p1KlthvraY4SG6T+xHWkZdE1fOKzZ6flfQhwreA0JP/JOS9obHD LiueBBoZANV/NSfFE6KkpsJ5RHP8ZuN6HSLJH98Mm8neeXNVjhdN+9r+dnOunYgm 89k8KaRm5Vjt2Q+PQ76j7a1emFwP+wSedvPA20RD8GZGWmaV57e4h9zkJ+ZWY2fG IvvjXAFS7UJV2lrKR1uJTClc5qEwWhjJMd2JEmlEvtuIqjN8GML73hyu/TfTAgMB AAGjggJaMIICVjAdBgNVHQ4EFgQUNljVWqIyVN7XRnt+pYtya0/hv94wHwYDVR0j BBgwFoAUKqnAyHlcGt0b7ppsFyI/x8zUw+MwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vR0pDdXNtMUxUamRlN3Q3dnVSOUE1UkJRS0o0S0RkZTZtWVlVdTl6aGJ0 VWkvMC8yQUE5QzBDODc5NUMxQUREMUJFRTlBNkMxNzIyM0ZDN0NDRDRDM0UzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJBQTlDMEM4Nzk1QzFBREQx QkVFOUE2QzE3MjIzRkM3Q0NENEMzRTMuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0dKQ3VzbTFMVGpkZTd0N3Z1UjlBNVJCUUtKNEtEZGU2bVlZVXU5emhidFVpLzAv MzIzODMwMzEzYTM4MzAzYTMyMzQzNjMwM2EzYTJmMzQzNDJkMzEzMjM4MjAzZDNl MjAzMjM2MzgzNDM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYI KwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQoAQCAJGAwDQYJKoZIhvcNAQELBQAD ggEBAJqMfLQ9Aov3qF0tdi5vN53U8I0eQeSAJGGw/nYT3Y1QW0liqg6tkKBuBIxd jgtrJPnj4mMUQzHIIdFItC/Diu0kPBRiIC4PIPPbrsyOPfs8AFdKSIoOXVbWJGPF FKnWSQ2B7e+abBGPRPKgcP9k57WS0Kq1NV8G7uPbGvDlm+sfTidpm/NRsjL/iQ9X 43lJo4jUz0HrTPhjdrdxayKwYL8s8gc3TTQBweokE1nVy0lpDVSbroMwA4fwTX1v QB32yvusgcVzlqB/rfib/NZjPXcXXWvOpJJXxjuj/MA0mRdhaJT03QV7js2JAZ0O YAIRnjKyDIUrrs2fWamqbuK3ges= -----END CERTIFICATE-----Generated at Sat Apr 12 22:29:20 2025 by rpki-client