$ rpki-client -vvf rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/323830343a333332343a633030303a3a2f33342d3334203d3e20323635333737.roa File: 323830343a333332343a633030303a3a2f33342d3334203d3e20323635333737.roa (raw, json) Hash identifier: 9h3U3poxStX4ANY2dbqtLdnWScOo9qYI6dfeVV9hSPc= Subject key identifier: 6E:87:E1:BC:3B:44:BF:0C:42:D7:67:3D:A7:1B:BF:02:5A:1A:7C:F3 Certificate issuer: /CN=A4C9B133126401D92DA5457C573EA0078BF42BA8 Certificate serial: 1BC933AFC2C7EDB07424658C9810187D8D0D0716 Authority key identifier: A4:C9:B1:33:12:64:01:D9:2D:A5:45:7C:57:3E:A0:07:8B:F4:2B:A8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.cer Subject info access: rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/323830343a333332343a633030303a3a2f33342d3334203d3e20323635333737.roa Signing time: Thu 06 Mar 2025 22:52:52 +0000 ROA not before: Thu 06 Mar 2025 22:47:52 +0000 ROA not after: Thu 05 Mar 2026 22:52:52 +0000 asID: 265377 IP address blocks: 2804:3324:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.crl rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 12 Apr 2025 03:50:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c9:33:af:c2:c7:ed:b0:74:24:65:8c:98:10:18:7d:8d:0d:07:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4C9B133126401D92DA5457C573EA0078BF42BA8 Validity Not Before: Mar 6 22:47:52 2025 GMT Not After : Mar 5 22:52:52 2026 GMT Subject: CN=6E87E1BC3B44BF0C42D7673DA71BBF025A1A7CF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:db:44:2b:1e:23:ae:32:eb:f3:7f:a6:5c:ad: d4:ae:c6:af:a8:ff:63:d2:9b:58:5b:0b:54:5c:24: 87:89:d4:cb:ba:fd:73:d4:a4:b4:7c:67:c3:51:40: c5:fb:0f:ce:27:30:36:81:cc:48:ca:22:bb:d6:d2: 8d:05:be:4d:f2:4e:17:e1:13:bd:ad:40:a8:a0:3f: 11:b9:f5:01:27:93:cb:2b:ca:79:ee:ff:22:ec:5b: 91:d9:4b:a6:f9:35:00:27:d9:9a:5a:c0:08:2c:ab: 72:3c:6e:1a:34:3d:73:01:fc:ab:bb:43:cb:fc:bc: 8b:7e:df:b3:18:5c:9a:56:69:02:47:8b:ce:5a:71: e0:0a:39:59:3b:82:d4:1b:6b:fe:2f:a1:28:bc:1a: 72:eb:0b:cf:2a:d2:5c:8f:f4:23:e8:37:9c:7b:d2: 90:62:a1:d2:1a:a3:5b:2f:1a:f1:f4:b1:29:93:a5: 04:49:ab:4f:35:46:55:00:86:3d:ad:27:94:58:d8: 53:79:e3:c1:46:ba:54:46:b9:9b:45:89:57:7d:45: 50:83:ff:0b:c6:14:f6:7a:9b:17:a4:f4:d9:30:d8: 76:05:dc:7a:72:0a:eb:d5:93:81:4b:bf:f1:38:73: 35:8d:37:81:45:6c:37:99:2b:39:65:17:5b:02:80: 1b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:87:E1:BC:3B:44:BF:0C:42:D7:67:3D:A7:1B:BF:02:5A:1A:7C:F3 X509v3 Authority Key Identifier: keyid:A4:C9:B1:33:12:64:01:D9:2D:A5:45:7C:57:3E:A0:07:8B:F4:2B:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/323830343a333332343a633030303a3a2f33342d3334203d3e20323635333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:3324:c000::/34 Signature Algorithm: sha256WithRSAEncryption c8:b0:ef:e5:88:3d:74:86:e1:0d:7b:07:d3:f3:c0:fb:1d:fa: 2e:1e:5e:b3:6c:18:08:83:92:3b:7b:df:e2:a1:cf:2a:52:41: 04:b9:c6:25:31:7b:0d:1b:5a:82:c6:06:9b:6d:67:77:97:a7: 34:db:dc:13:60:bf:f6:31:b1:99:81:ca:d5:c1:b4:84:5a:53: e6:c8:02:87:20:2c:61:2a:4b:2a:07:eb:70:47:81:1f:a2:d5: 13:b3:c3:dc:81:97:24:66:ee:0a:92:39:e4:c4:84:17:42:1f: 95:4f:bf:8a:82:12:6a:d8:6d:7f:f6:fb:ef:42:81:0c:54:39: b8:b2:33:a9:f3:2b:fa:b5:bf:f6:2c:2e:e1:63:71:12:3d:81: 48:9f:d6:d4:4e:3a:db:7f:10:2e:31:6f:34:83:c1:95:c3:7b: b8:95:20:21:3a:f3:cd:32:bd:07:25:9c:37:1d:97:4e:56:12: 6a:af:8a:45:08:8f:2c:35:58:eb:a9:ae:ca:fb:44:0d:91:59: 5a:8b:09:da:7c:59:6d:f7:3f:0b:a6:da:a3:0b:98:96:79:15: e5:98:c3:da:c6:b1:93:db:af:06:0d:e9:9b:91:ba:89:5e:06: be:ca:e4:34:dd:47:fd:69:c0:aa:c7:cb:73:21:82:d1:c4:7e: 0d:c0:f8:be -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUG8kzr8LH7bB0JGWMmBAYfY0NBxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTRDOUIxMzMxMjY0MDFEOTJEQTU0NTdDNTczRUEwMDc4 QkY0MkJBODAeFw0yNTAzMDYyMjQ3NTJaFw0yNjAzMDUyMjUyNTJaMDMxMTAvBgNV BAMTKDZFODdFMUJDM0I0NEJGMEM0MkQ3NjczREE3MUJCRjAyNUExQTdDRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl20QrHiOuMuvzf6ZcrdSuxq+o /2PSm1hbC1RcJIeJ1Mu6/XPUpLR8Z8NRQMX7D84nMDaBzEjKIrvW0o0Fvk3yThfh E72tQKigPxG59QEnk8srynnu/yLsW5HZS6b5NQAn2ZpawAgsq3I8bho0PXMB/Ku7 Q8v8vIt+37MYXJpWaQJHi85aceAKOVk7gtQba/4voSi8GnLrC88q0lyP9CPoN5x7 0pBiodIao1svGvH0sSmTpQRJq081RlUAhj2tJ5RY2FN548FGulRGuZtFiVd9RVCD /wvGFPZ6mxek9Nkw2HYF3HpyCuvVk4FLv/E4czWNN4FFbDeZKzllF1sCgBtjAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUbofhvDtEvwxC12c9pxu/AloafPMwHwYDVR0j BBgwFoAUpMmxMxJkAdktpUV8Vz6gB4v0K6gwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSGU3YlBacWVhcjhVa0VxM29kZjlTRVpTWXZiUTl1UDQ0NHFoczVxWmJK R1EvMS9BNEM5QjEzMzEyNjQwMUQ5MkRBNTQ1N0M1NzNFQTAwNzhCRjQyQkE4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E0QzlCMTMzMTI2NDAxRDky REE1NDU3QzU3M0VBMDA3OEJGNDJCQTguY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hlN2JQWnFlYXI4VWtFcTNvZGY5U0VaU1l2YlE5dVA0NDRxaHM1cVpiSkdRLzEv MzIzODMwMzQzYTMzMzMzMjM0M2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzNTMzMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEMyTAMA0GCSqGSIb3DQEBCwUA A4IBAQDIsO/liD10huENewfT88D7HfouHl6zbBgIg5I7e9/ioc8qUkEEucYlMXsN G1qCxgabbWd3l6c029wTYL/2MbGZgcrVwbSEWlPmyAKHICxhKksqB+twR4EfotUT s8PcgZckZu4KkjnkxIQXQh+VT7+KghJq2G1/9vvvQoEMVDm4sjOp8yv6tb/2LC7h Y3ESPYFIn9bUTjrbfxAuMW80g8GVw3u4lSAhOvPNMr0HJZw3HZdOVhJqr4pFCI8s NVjrqa7K+0QNkVlaiwnafFlt9z8LptqjC5iWeRXlmMPaxrGT268GDembkbqJXga+ yuQ03Uf9acCqx8tzIYLRxH4NwPi+ -----END CERTIFICATE-----Generated at Fri Apr 11 03:29:04 2025 by rpki-client