$ rpki-client -vvf rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/1/323830343a323033633a383032303a3a2f34342d3434203d3e20323634343739.roa File: 323830343a323033633a383032303a3a2f34342d3434203d3e20323634343739.roa (raw, json) Hash identifier: 4eK3huaxcpw6kwZap4oY8JIkHSEPvqy36wc0BU+u33M= Subject key identifier: 42:8A:B0:34:22:58:74:CD:66:AD:FE:22:A4:A9:E7:D4:88:E2:84:D9 Certificate issuer: /CN=16BC000CB0A478A70E4FBA552217F242CDF07AE9 Certificate serial: 0A88BD3B601B053A0F63AB28051B444F49CF25FE Authority key identifier: 16:BC:00:0C:B0:A4:78:A7:0E:4F:BA:55:22:17:F2:42:CD:F0:7A:E9 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/16BC000CB0A478A70E4FBA552217F242CDF07AE9.cer Subject info access: rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/1/323830343a323033633a383032303a3a2f34342d3434203d3e20323634343739.roa Signing time: Sun 26 Jan 2025 07:34:20 +0000 ROA not before: Sun 26 Jan 2025 07:29:20 +0000 ROA not after: Sun 25 Jan 2026 07:34:20 +0000 asID: 264479 IP address blocks: 2804:203c:8020::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/1/16BC000CB0A478A70E4FBA552217F242CDF07AE9.crl rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/1/16BC000CB0A478A70E4FBA552217F242CDF07AE9.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/16BC000CB0A478A70E4FBA552217F242CDF07AE9.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 02:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:88:bd:3b:60:1b:05:3a:0f:63:ab:28:05:1b:44:4f:49:cf:25:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16BC000CB0A478A70E4FBA552217F242CDF07AE9 Validity Not Before: Jan 26 07:29:20 2025 GMT Not After : Jan 25 07:34:20 2026 GMT Subject: CN=428AB034225874CD66ADFE22A4A9E7D488E284D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:c9:45:97:d3:9d:e0:6a:86:1e:55:44:10:be: f7:79:29:80:b9:74:9e:51:9c:55:95:0a:39:a7:3f: b4:11:9c:d1:bb:2f:5a:77:82:97:52:5b:d3:c5:0b: 71:ae:dc:d2:e8:c4:93:c1:45:28:47:bb:13:8d:8c: 04:cd:6d:36:9f:86:e6:aa:c9:9d:ab:21:9b:2f:34: d5:cd:ef:7a:ee:ab:eb:cc:4f:54:0d:3e:f3:cd:a0: 58:4f:ac:10:9a:04:71:4c:9c:aa:d5:a8:01:a3:c9: ac:2f:9e:93:c0:47:7d:1c:49:52:4a:07:22:77:47: fc:d9:e2:87:06:cd:d7:0b:7c:0d:6c:59:8f:5e:3b: 89:a3:1a:81:85:00:6b:eb:8e:dd:8a:85:d2:77:ad: 75:6b:06:a8:eb:c2:80:6d:03:91:b5:66:e5:bd:5d: 0f:5f:f0:3f:6e:46:77:63:8a:aa:c1:2a:9e:f0:c5: 66:9b:64:1f:9e:a2:6e:e9:e9:dc:21:ff:c2:87:08: 99:c8:c4:00:86:4a:f6:5b:a7:fa:55:fe:94:36:49: 4c:57:25:cb:c8:2d:c1:bf:92:35:4b:9d:46:82:7b: 73:60:84:bd:51:91:67:48:29:2c:f5:a3:f5:61:4a: b6:83:14:10:b0:a3:84:09:30:71:72:a8:15:29:ff: 67:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8A:B0:34:22:58:74:CD:66:AD:FE:22:A4:A9:E7:D4:88:E2:84:D9 X509v3 Authority Key Identifier: keyid:16:BC:00:0C:B0:A4:78:A7:0E:4F:BA:55:22:17:F2:42:CD:F0:7A:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/1/16BC000CB0A478A70E4FBA552217F242CDF07AE9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/16BC000CB0A478A70E4FBA552217F242CDF07AE9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/1/323830343a323033633a383032303a3a2f34342d3434203d3e20323634343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:203c:8020::/44 Signature Algorithm: sha256WithRSAEncryption 54:f6:f6:77:48:c1:2b:ef:ff:63:33:8b:15:03:ef:3e:36:4b: 11:87:11:ab:70:02:55:cf:a8:33:ee:be:39:19:d8:d7:71:ab: f3:93:99:5f:e7:1f:80:ca:97:33:91:0d:05:15:08:22:8d:9a: 7d:33:04:31:9b:01:8a:c0:9c:5d:1f:21:cc:42:bc:9c:8a:97: 0b:7f:56:5c:d8:05:37:12:76:65:26:2f:0c:77:26:65:a1:c8: 4a:14:9e:01:6a:36:ca:d7:f8:9a:ae:94:5c:70:e9:94:b1:8c: f9:88:dc:70:77:78:cb:0b:b6:20:e4:32:00:f2:f5:2d:85:b5: a4:43:bd:94:d2:77:a6:4c:64:b9:cb:f6:05:3b:5f:26:6b:28: 5c:f2:b9:94:98:9d:df:0d:85:aa:ce:7b:dc:89:73:ce:03:f6: 8d:7e:5b:3c:dd:b9:ee:89:ca:c7:c0:a1:b9:7e:89:19:b4:12: b6:03:21:48:ed:6d:a0:e6:ec:23:07:98:2f:c5:e9:61:58:e2: a3:b4:1d:38:55:bf:4d:73:35:f3:6a:b7:e8:99:ca:4e:bf:6e: 38:57:ce:6d:5f:bb:95:f9:1b:e1:30:05:4e:2b:4e:40:15:f3: 6c:04:f4:fb:66:97:ee:d1:22:a5:80:52:22:f6:1e:ac:a4:8e: c5:91:b0:8e -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIUCoi9O2AbBToPY6soBRtET0nPJf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCQzAwMENCMEE0NzhBNzBFNEZCQTU1MjIxN0YyNDJD REYwN0FFOTAeFw0yNTAxMjYwNzI5MjBaFw0yNjAxMjUwNzM0MjBaMDMxMTAvBgNV BAMTKDQyOEFCMDM0MjI1ODc0Q0Q2NkFERkUyMkE0QTlFN0Q0ODhFMjg0RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJyUWX053gaoYeVUQQvvd5KYC5 dJ5RnFWVCjmnP7QRnNG7L1p3gpdSW9PFC3Gu3NLoxJPBRShHuxONjATNbTafhuaq yZ2rIZsvNNXN73ruq+vMT1QNPvPNoFhPrBCaBHFMnKrVqAGjyawvnpPAR30cSVJK ByJ3R/zZ4ocGzdcLfA1sWY9eO4mjGoGFAGvrjt2KhdJ3rXVrBqjrwoBtA5G1ZuW9 XQ9f8D9uRndjiqrBKp7wxWabZB+eom7p6dwh/8KHCJnIxACGSvZbp/pV/pQ2SUxX JcvILcG/kjVLnUaCe3NghL1RkWdIKSz1o/VhSraDFBCwo4QJMHFyqBUp/2eLAgMB AAGjggJcMIICWDAdBgNVHQ4EFgQUQoqwNCJYdM1mrf4ipKnn1IjihNkwHwYDVR0j BBgwFoAUFrwADLCkeKcOT7pVIhfyQs3weukwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSEVBall0ZHhKM29RdzZqNnZVRE1UWHg4WHhacVZNS1BucnludFhCaXFu dmQvMS8xNkJDMDAwQ0IwQTQ3OEE3MEU0RkJBNTUyMjE3RjI0MkNERjA3QUU5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE2QkMwMDBDQjBBNDc4QTcw RTRGQkE1NTIyMTdGMjQyQ0RGMDdBRTkuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hFQWpZdGR4SjNvUXc2ajZ2VURNVFh4OFh4WnFWTUtQbnJ5bnRYQmlxbnZkLzEv MzIzODMwMzQzYTMyMzAzMzYzM2EzODMwMzIzMDNhM2EyZjM0MzQyZDM0MzQyMDNk M2UyMDMyMzYzNDM0MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCgEIDyAIDANBgkqhkiG9w0BAQsF AAOCAQEAVPb2d0jBK+//YzOLFQPvPjZLEYcRq3ACVc+oM+6+ORnY13Gr85OZX+cf gMqXM5ENBRUIIo2afTMEMZsBisCcXR8hzEK8nIqXC39WXNgFNxJ2ZSYvDHcmZaHI ShSeAWo2ytf4mq6UXHDplLGM+YjccHd4ywu2IOQyAPL1LYW1pEO9lNJ3pkxkucv2 BTtfJmsoXPK5lJid3w2Fqs573IlzzgP2jX5bPN257onKx8ChuX6JGbQStgMhSO1t oObsIweYL8XpYVjio7QdOFW/TXM182q36JnKTr9uOFfObV+7lfkb4TAFTitOQBXz bAT0+2aX7tEipYBSIvYerKSOxZGwjg== -----END CERTIFICATE-----Generated at Tue Apr 8 17:39:15 2025 by rpki-client