$ rpki-client -vvf rpki-repo.registro.br/repo/HdwhVQgcDP6yL6LvqtWJ1va1s9RKRK2YXMMxgTUFzx2N/0/323830343a356562633a383030303a3a2f33332d3333203d3e20323639303533.roa File: 323830343a356562633a383030303a3a2f33332d3333203d3e20323639303533.roa (raw, json) Hash identifier: NyhFyeCKsyzw9N/AuH1BDhS76oUWXd9+od5LyOG1qmk= Subject key identifier: 1D:84:62:1A:9F:A4:DD:4E:7B:26:53:D6:9E:4B:74:1F:53:49:03:84 Certificate issuer: /CN=633BDD3475475D9C8D6232CB1FD90FD52CD8CFD0 Certificate serial: 153801367A069E7DCBC50FE7676191F0B460FD5D Authority key identifier: 63:3B:DD:34:75:47:5D:9C:8D:62:32:CB:1F:D9:0F:D5:2C:D8:CF:D0 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/633BDD3475475D9C8D6232CB1FD90FD52CD8CFD0.cer Subject info access: rsync://rpki-repo.registro.br/repo/HdwhVQgcDP6yL6LvqtWJ1va1s9RKRK2YXMMxgTUFzx2N/0/323830343a356562633a383030303a3a2f33332d3333203d3e20323639303533.roa Signing time: Sun 05 Jan 2025 10:48:33 +0000 ROA not before: Sun 05 Jan 2025 10:43:33 +0000 ROA not after: Sun 04 Jan 2026 10:48:33 +0000 asID: 269053 IP address blocks: 2804:5ebc:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HdwhVQgcDP6yL6LvqtWJ1va1s9RKRK2YXMMxgTUFzx2N/0/633BDD3475475D9C8D6232CB1FD90FD52CD8CFD0.crl rsync://rpki-repo.registro.br/repo/HdwhVQgcDP6yL6LvqtWJ1va1s9RKRK2YXMMxgTUFzx2N/0/633BDD3475475D9C8D6232CB1FD90FD52CD8CFD0.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/633BDD3475475D9C8D6232CB1FD90FD52CD8CFD0.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 23 Apr 2025 13:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:38:01:36:7a:06:9e:7d:cb:c5:0f:e7:67:61:91:f0:b4:60:fd:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=633BDD3475475D9C8D6232CB1FD90FD52CD8CFD0 Validity Not Before: Jan 5 10:43:33 2025 GMT Not After : Jan 4 10:48:33 2026 GMT Subject: CN=1D84621A9FA4DD4E7B2653D69E4B741F53490384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:54:9a:a0:0f:f3:a1:27:96:3d:49:ff:a5:14: 80:07:d8:38:ca:b0:44:ea:68:c6:65:a0:f3:dc:89: 2d:8e:e3:0b:0a:74:61:31:46:3a:44:75:42:e8:7a: 7b:6f:c2:ba:b7:32:57:b2:00:68:ee:41:a5:06:31: ab:a5:e6:09:23:7a:13:b2:bd:37:a8:11:c6:6b:d6: 94:3c:7a:54:db:e2:73:41:a4:d7:12:47:36:cf:20: 93:46:54:ee:8b:eb:8f:a3:0b:ee:1e:1a:fd:79:e0: 60:97:2c:2f:fe:84:aa:e9:da:9b:b8:75:47:ef:85: e6:54:00:01:9e:d8:32:9d:b9:ac:4b:b9:d8:e0:e0: 49:17:fa:ee:6b:a6:30:40:aa:46:1a:3e:ce:82:d7: 27:ff:99:89:78:a7:92:2e:bd:dc:b1:0c:9e:c6:6e: 1e:aa:e8:f7:4d:41:48:2b:2b:45:cf:12:0b:7e:62: 3e:a1:e4:7c:f4:65:5e:8e:37:80:bf:e6:e5:63:9d: a4:7c:ff:3f:3b:e6:24:8e:24:0f:50:de:73:65:00: d5:d5:e4:14:07:e7:a0:9c:74:00:15:8b:2f:79:ce: 26:6a:5a:5c:41:d9:b9:ec:f1:da:25:b5:d1:6f:e6: f0:08:77:ec:33:6c:6b:10:f2:9b:62:33:4d:cc:f1: 50:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:84:62:1A:9F:A4:DD:4E:7B:26:53:D6:9E:4B:74:1F:53:49:03:84 X509v3 Authority Key Identifier: keyid:63:3B:DD:34:75:47:5D:9C:8D:62:32:CB:1F:D9:0F:D5:2C:D8:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HdwhVQgcDP6yL6LvqtWJ1va1s9RKRK2YXMMxgTUFzx2N/0/633BDD3475475D9C8D6232CB1FD90FD52CD8CFD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/633BDD3475475D9C8D6232CB1FD90FD52CD8CFD0.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HdwhVQgcDP6yL6LvqtWJ1va1s9RKRK2YXMMxgTUFzx2N/0/323830343a356562633a383030303a3a2f33332d3333203d3e20323639303533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5ebc:8000::/33 Signature Algorithm: sha256WithRSAEncryption 98:48:85:89:2e:ba:55:6d:78:71:9d:9d:4e:e4:4d:bb:20:c1: fb:bf:78:92:7d:d8:f8:41:72:ec:7d:66:c2:2d:5d:24:8f:db: 19:f1:37:c2:5c:f3:01:9e:fb:14:22:43:89:21:3a:dd:b8:43: 73:8a:e3:53:19:4c:48:3f:b7:ad:5c:20:c6:dd:2b:59:39:36: 0d:fb:86:12:89:28:37:28:8c:37:8d:9b:e2:75:10:3d:7e:0f: 51:26:ca:bb:01:77:5c:79:a0:c8:ad:c8:97:7a:16:1e:4e:af: 6a:36:55:0b:a6:3d:de:a5:ed:8d:bb:d3:a9:f6:8f:1d:c2:9a: f1:16:6b:e2:19:55:fc:42:f7:8b:16:bd:7e:f4:c0:87:5f:d4: 1f:c4:99:87:26:ef:c1:91:54:63:36:a0:63:c6:b7:54:28:87: cf:60:00:fa:d9:a5:f9:4d:fe:2b:72:ed:c3:a8:e6:a1:5a:ea: 73:c5:4f:e6:07:c1:d2:a8:a5:8b:08:ef:5e:e1:6b:78:ff:67: b6:62:a0:5b:5f:3b:5c:c0:db:c9:70:2e:c1:4b:38:84:90:28: 07:2f:6f:77:e9:10:cb:05:c4:67:1c:bd:6e:3b:5b:4f:31:0d: 65:c0:85:bc:18:a5:bb:fe:29:bd:59:b9:15:9b:e3:4d:1a:6f: 3e:86:f9:87 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUFTgBNnoGnn3LxQ/nZ2GR8LRg/V0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMzQkREMzQ3NTQ3NUQ5QzhENjIzMkNCMUZEOTBGRDUy Q0Q4Q0ZEMDAeFw0yNTAxMDUxMDQzMzNaFw0yNjAxMDQxMDQ4MzNaMDMxMTAvBgNV BAMTKDFEODQ2MjFBOUZBNERENEU3QjI2NTNENjlFNEI3NDFGNTM0OTAzODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUVJqgD/OhJ5Y9Sf+lFIAH2DjK sETqaMZloPPciS2O4wsKdGExRjpEdULoentvwrq3MleyAGjuQaUGMaul5gkjehOy vTeoEcZr1pQ8elTb4nNBpNcSRzbPIJNGVO6L64+jC+4eGv154GCXLC/+hKrp2pu4 dUfvheZUAAGe2DKduaxLudjg4EkX+u5rpjBAqkYaPs6C1yf/mYl4p5IuvdyxDJ7G bh6q6PdNQUgrK0XPEgt+Yj6h5Hz0ZV6ON4C/5uVjnaR8/z875iSOJA9Q3nNlANXV 5BQH56CcdAAViy95ziZqWlxB2bns8doltdFv5vAId+wzbGsQ8ptiM03M8VAtAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUHYRiGp+k3U57JlPWnkt0H1NJA4QwHwYDVR0j BBgwFoAUYzvdNHVHXZyNYjLLH9kP1SzYz9AwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSGR3aFZRZ2NEUDZ5TDZMdnF0V0oxdmExczlSS1JLMllYTU14Z1RVRnp4 Mk4vMC82MzNCREQzNDc1NDc1RDlDOEQ2MjMyQ0IxRkQ5MEZENTJDRDhDRkQwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzYzM0JERDM0NzU0NzVEOUM4 RDYyMzJDQjFGRDkwRkQ1MkNEOENGRDAuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hkd2hWUWdjRFA2eUw2THZxdFdKMXZhMXM5UktSSzJZWE1NeGdUVUZ6eDJOLzAv MzIzODMwMzQzYTM1NjU2MjYzM2EzODMwMzAzMDNhM2EyZjMzMzMyZDMzMzMyMDNk M2UyMDMyMzYzOTMwMzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBygEXryAMA0GCSqGSIb3DQEBCwUA A4IBAQCYSIWJLrpVbXhxnZ1O5E27IMH7v3iSfdj4QXLsfWbCLV0kj9sZ8TfCXPMB nvsUIkOJITrduENziuNTGUxIP7etXCDG3StZOTYN+4YSiSg3KIw3jZvidRA9fg9R Jsq7AXdceaDIrciXehYeTq9qNlULpj3epe2Nu9Op9o8dwprxFmviGVX8QveLFr1+ 9MCHX9QfxJmHJu/BkVRjNqBjxrdUKIfPYAD62aX5Tf4rcu3DqOahWupzxU/mB8HS qKWLCO9e4Wt4/2e2YqBbXztcwNvJcC7BSziEkCgHL2936RDLBcRnHL1uO1tPMQ1l wIW8GKW7/im9WbkVm+NNGm8+hvmH -----END CERTIFICATE-----Generated at Tue Apr 22 22:36:23 2025 by rpki-client