$ rpki-client -vvf rpki-repo.registro.br/repo/HLXXHEh6R4BWABwZ6JtcRPiuKDQiNZfs7GY9WdeggZJJ/0/323830343a6465633a3a2f33332d313238203d3e203532353237.roa File: 323830343a6465633a3a2f33332d313238203d3e203532353237.roa (raw, json) Hash identifier: Z7We70YVHV8Q0k5aF1YazksbKotjSlOKEHnDvdbV9Uw= Subject key identifier: 53:13:28:49:E8:C1:9A:4C:42:DC:03:72:84:45:24:DD:04:20:42:5B Certificate issuer: /CN=7AEB959150456EC1674E91E084F2C4EF5B1A7EB4 Certificate serial: 2FB994B35A398372DF0F70DCAD501AD7BEB0EE53 Authority key identifier: 7A:EB:95:91:50:45:6E:C1:67:4E:91:E0:84:F2:C4:EF:5B:1A:7E:B4 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7AEB959150456EC1674E91E084F2C4EF5B1A7EB4.cer Subject info access: rsync://rpki-repo.registro.br/repo/HLXXHEh6R4BWABwZ6JtcRPiuKDQiNZfs7GY9WdeggZJJ/0/323830343a6465633a3a2f33332d313238203d3e203532353237.roa Signing time: Fri 07 Feb 2025 16:57:22 +0000 ROA not before: Fri 07 Feb 2025 16:52:22 +0000 ROA not after: Fri 06 Feb 2026 16:57:22 +0000 asID: 52527 IP address blocks: 2804:dec::/33 maxlen: 128 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HLXXHEh6R4BWABwZ6JtcRPiuKDQiNZfs7GY9WdeggZJJ/0/7AEB959150456EC1674E91E084F2C4EF5B1A7EB4.crl rsync://rpki-repo.registro.br/repo/HLXXHEh6R4BWABwZ6JtcRPiuKDQiNZfs7GY9WdeggZJJ/0/7AEB959150456EC1674E91E084F2C4EF5B1A7EB4.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7AEB959150456EC1674E91E084F2C4EF5B1A7EB4.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 21 Apr 2025 23:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:b9:94:b3:5a:39:83:72:df:0f:70:dc:ad:50:1a:d7:be:b0:ee:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7AEB959150456EC1674E91E084F2C4EF5B1A7EB4 Validity Not Before: Feb 7 16:52:22 2025 GMT Not After : Feb 6 16:57:22 2026 GMT Subject: CN=53132849E8C19A4C42DC0372844524DD0420425B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9a:b2:b6:0c:4d:5e:dd:dc:87:40:0a:d5:b8: df:36:54:46:89:d9:9a:24:83:b7:e0:65:17:1a:86: 97:a2:af:a2:01:d7:f7:92:32:e2:a3:82:47:59:86: f7:df:e2:00:b6:c6:f7:e2:d8:ec:ad:ee:7c:b2:ec: fd:90:52:4d:6e:e7:4b:24:fe:be:d2:35:da:3f:8d: 5c:15:fe:85:1c:19:44:90:09:6e:24:09:9e:f4:4a: 36:8d:4f:8d:76:b5:31:25:59:91:d1:6e:92:2f:9a: bb:10:b4:36:36:c6:94:5b:09:b8:12:56:47:d5:1c: 9f:1a:f0:72:a4:11:66:09:06:77:95:e7:af:8c:aa: a4:6e:a0:ee:b5:27:f2:62:71:33:69:f9:c8:0b:d6: 7e:f5:6b:9a:40:4a:67:ff:28:ac:d3:3b:57:10:b3: 85:f9:bb:03:6f:37:65:27:7c:0c:1a:88:19:09:06: 8a:89:2d:7f:6a:3f:5a:b8:37:4a:20:ae:87:9e:98: e5:13:4d:4f:bb:99:c4:5f:35:13:b2:87:0d:8a:01: 64:cd:0b:2e:de:06:27:c8:0b:a4:d8:ec:90:30:42: 3a:4d:f7:b7:26:6d:0b:17:b9:e5:6c:6a:f1:f4:77: 84:6d:79:32:69:09:1e:6d:1f:0d:cb:c5:58:74:55: 4c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:13:28:49:E8:C1:9A:4C:42:DC:03:72:84:45:24:DD:04:20:42:5B X509v3 Authority Key Identifier: keyid:7A:EB:95:91:50:45:6E:C1:67:4E:91:E0:84:F2:C4:EF:5B:1A:7E:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HLXXHEh6R4BWABwZ6JtcRPiuKDQiNZfs7GY9WdeggZJJ/0/7AEB959150456EC1674E91E084F2C4EF5B1A7EB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7AEB959150456EC1674E91E084F2C4EF5B1A7EB4.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HLXXHEh6R4BWABwZ6JtcRPiuKDQiNZfs7GY9WdeggZJJ/0/323830343a6465633a3a2f33332d313238203d3e203532353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:dec::/33 Signature Algorithm: sha256WithRSAEncryption 33:7b:a2:20:17:f2:5e:e8:bf:36:37:a8:06:31:06:7e:74:5b: 7d:8d:a1:62:2e:c4:89:f2:71:91:28:19:5d:c9:3a:0b:81:c4: 59:a5:c4:7d:b7:43:54:07:6d:2a:9a:f3:c3:49:b8:4b:d3:7c: fa:01:f9:91:d9:26:76:52:53:a5:a7:93:1a:e1:eb:34:27:d9: 22:1d:80:72:aa:4a:1d:7b:eb:3e:72:1f:38:d4:8b:64:1b:9a: d9:62:df:8a:d6:17:af:78:d9:76:97:5a:76:50:d1:bf:06:3a: 3a:7f:59:16:db:6e:23:25:eb:43:99:21:d5:3e:ab:c0:e8:b1: 9d:01:da:d9:b8:90:eb:5e:c6:51:3b:ff:23:ef:5a:be:77:6d: bf:b8:35:2b:8d:58:dd:6d:89:b6:77:b0:87:b0:f0:3f:5d:c8: 88:79:c5:6d:ab:1a:6c:f0:13:5a:d4:a9:6d:88:88:f3:60:79: 7a:79:f2:87:0e:9d:66:88:f9:37:f0:97:28:8a:5b:da:63:42: a2:bf:0c:69:aa:a0:63:6a:81:99:f2:2f:4e:40:ea:79:42:98: 1e:31:f4:33:d4:68:3e:04:90:0b:10:e6:d4:4f:d9:7a:9b:98: 0c:8b:3f:d8:ee:04:ca:94:e9:76:ff:be:e6:f4:96:c8:a0:ae: a3:c9:3f:0d -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUL7mUs1o5g3LfD3DcrVAa176w7lMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0FFQjk1OTE1MDQ1NkVDMTY3NEU5MUUwODRGMkM0RUY1 QjFBN0VCNDAeFw0yNTAyMDcxNjUyMjJaFw0yNjAyMDYxNjU3MjJaMDMxMTAvBgNV BAMTKDUzMTMyODQ5RThDMTlBNEM0MkRDMDM3Mjg0NDUyNEREMDQyMDQyNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxmrK2DE1e3dyHQArVuN82VEaJ 2Zokg7fgZRcahpeir6IB1/eSMuKjgkdZhvff4gC2xvfi2Oyt7nyy7P2QUk1u50sk /r7SNdo/jVwV/oUcGUSQCW4kCZ70SjaNT412tTElWZHRbpIvmrsQtDY2xpRbCbgS VkfVHJ8a8HKkEWYJBneV56+MqqRuoO61J/JicTNp+cgL1n71a5pASmf/KKzTO1cQ s4X5uwNvN2UnfAwaiBkJBoqJLX9qP1q4N0ogroeemOUTTU+7mcRfNROyhw2KAWTN Cy7eBifIC6TY7JAwQjpN97cmbQsXueVsavH0d4RteTJpCR5tHw3LxVh0VUw9AgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUUxMoSejBmkxC3ANyhEUk3QQgQlswHwYDVR0j BBgwFoAUeuuVkVBFbsFnTpHghPLE71safrQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSExYWEhFaDZSNEJXQUJ3WjZKdGNSUGl1S0RRaU5aZnM3R1k5V2RlZ2da SkovMC83QUVCOTU5MTUwNDU2RUMxNjc0RTkxRTA4NEYyQzRFRjVCMUE3RUI0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzdBRUI5NTkxNTA0NTZFQzE2 NzRFOTFFMDg0RjJDNEVGNUIxQTdFQjQuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hMWFhIRWg2UjRCV0FCd1o2SnRjUlBpdUtEUWlOWmZzN0dZOVdkZWdnWkpKLzAv MzIzODMwMzQzYTY0NjU2MzNhM2EyZjMzMzMyZDMxMzIzODIwM2QzZTIwMzUzMjM1 MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB /wQSMBAwDgQCAAIwCAMGBygEDewAMA0GCSqGSIb3DQEBCwUAA4IBAQAze6IgF/Je 6L82N6gGMQZ+dFt9jaFiLsSJ8nGRKBldyToLgcRZpcR9t0NUB20qmvPDSbhL03z6 AfmR2SZ2UlOlp5Ma4es0J9kiHYByqkode+s+ch841ItkG5rZYt+K1heveNl2l1p2 UNG/Bjo6f1kW224jJetDmSHVPqvA6LGdAdrZuJDrXsZRO/8j71q+d22/uDUrjVjd bYm2d7CHsPA/XciIecVtqxps8BNa1KltiIjzYHl6efKHDp1miPk38JcoilvaY0Ki vwxpqqBjaoGZ8i9OQOp5QpgeMfQz1Gg+BJALEObUT9l6m5gMiz/Y7gTKlOl2/77m 9JbIoK6jyT8N -----END CERTIFICATE-----Generated at Mon Apr 21 07:53:34 2025 by rpki-client