$ rpki-client -vvf rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/323830343a356136343a393030303a3a2f33362d3336203d3e20323638373730.roa File: 323830343a356136343a393030303a3a2f33362d3336203d3e20323638373730.roa (raw, json) Hash identifier: RmKeoucKPHzq0ht/elTt+2SQXvEkYqeOSII+4uih6Yk= Subject key identifier: 40:63:65:E6:7C:49:79:72:11:19:D5:7A:39:CB:39:7F:39:01:C7:12 Certificate issuer: /CN=7FA00725B865657CC24A17AD7A99947906B51243 Certificate serial: 2DC971DE86395C2854CEBC5FB5E94B47029B37AD Authority key identifier: 7F:A0:07:25:B8:65:65:7C:C2:4A:17:AD:7A:99:94:79:06:B5:12:43 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7FA00725B865657CC24A17AD7A99947906B51243.cer Subject info access: rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/323830343a356136343a393030303a3a2f33362d3336203d3e20323638373730.roa Signing time: Thu 20 Mar 2025 19:37:25 +0000 ROA not before: Thu 20 Mar 2025 19:32:25 +0000 ROA not after: Thu 19 Mar 2026 19:37:25 +0000 asID: 268770 IP address blocks: 2804:5a64:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/7FA00725B865657CC24A17AD7A99947906B51243.crl rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/7FA00725B865657CC24A17AD7A99947906B51243.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7FA00725B865657CC24A17AD7A99947906B51243.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 13 Apr 2025 19:13:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:c9:71:de:86:39:5c:28:54:ce:bc:5f:b5:e9:4b:47:02:9b:37:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FA00725B865657CC24A17AD7A99947906B51243 Validity Not Before: Mar 20 19:32:25 2025 GMT Not After : Mar 19 19:37:25 2026 GMT Subject: CN=406365E67C4979721119D57A39CB397F3901C712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c7:2d:0d:65:bc:b9:12:0d:97:f8:3b:02:f8: 9d:c6:a8:aa:71:4e:76:f5:7d:4a:e8:da:e5:89:f8: 38:80:66:de:e7:0d:8d:3d:05:73:c1:b2:c8:b7:f0: 96:d4:cf:b9:d2:ae:68:db:61:0d:1d:0f:76:bb:c8: fe:00:e5:8a:06:ce:d5:32:e4:6b:69:37:77:20:1d: df:42:2a:dd:0d:57:4a:a8:0b:7c:75:83:38:76:db: 74:1e:3f:66:38:3d:3a:99:8d:0e:ba:f0:e4:64:b2: 58:80:31:8a:8a:3c:0a:6b:da:5b:8b:69:db:a3:00: d7:6a:71:42:58:a7:01:f3:10:17:3d:c7:07:88:4d: 98:6d:0a:e0:de:f1:af:2e:d3:f0:f2:ed:bc:90:e9: a0:26:a4:fd:eb:ab:51:e1:29:62:f4:0b:78:60:43: 4b:b8:b2:45:9e:01:15:e6:2f:a5:ad:47:9b:78:d2: ba:4d:7d:bf:3c:71:8e:81:1d:c8:4f:32:16:5d:49: d6:ed:57:27:6b:d7:d3:fa:ed:e7:26:fe:8b:fa:c6: a1:91:64:3c:f9:09:1e:14:1a:13:e1:40:48:86:9b: 00:3d:a2:15:fe:fc:79:48:74:6e:e9:bb:2e:5f:1b: b3:a4:a5:8b:53:f1:6c:92:23:26:b5:dc:98:ec:b3: 76:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:63:65:E6:7C:49:79:72:11:19:D5:7A:39:CB:39:7F:39:01:C7:12 X509v3 Authority Key Identifier: keyid:7F:A0:07:25:B8:65:65:7C:C2:4A:17:AD:7A:99:94:79:06:B5:12:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/7FA00725B865657CC24A17AD7A99947906B51243.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7FA00725B865657CC24A17AD7A99947906B51243.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/323830343a356136343a393030303a3a2f33362d3336203d3e20323638373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5a64:9000::/36 Signature Algorithm: sha256WithRSAEncryption 32:43:bc:62:8c:30:31:8e:77:13:c4:c0:48:2f:7c:31:4a:be: bf:42:97:59:83:d8:22:3b:0e:d7:1a:25:1d:da:0b:ce:3b:8c: 24:5e:a7:40:5d:71:c5:cc:b8:20:7c:1b:9e:31:ab:72:62:80: 6a:bf:da:ce:f7:5c:a8:f7:c0:de:09:14:60:73:f3:a6:29:af: 86:1c:c9:9c:76:97:5f:72:7b:b6:02:67:f8:1c:72:b3:42:cd: 26:74:51:56:ac:0e:b7:a6:b0:78:1a:29:0b:97:86:75:a6:23: 85:19:e5:5f:4a:fe:4d:8c:8a:95:1a:1c:c6:66:03:26:e3:76: 2c:70:a7:e4:a4:9f:be:c0:a4:4e:b8:58:c8:3e:74:55:65:df: 88:af:94:23:9c:5f:6f:e2:a8:5f:10:22:29:3f:be:81:93:56: b9:88:58:00:26:d6:bb:27:66:2c:e0:33:f1:c6:24:e6:ba:04: d8:a7:98:ec:29:d1:41:79:0f:b2:7d:fd:e5:ff:e1:12:a1:38: f7:3c:50:0d:f4:8b:8e:30:74:53:14:ea:69:0a:33:81:fe:87: 43:0b:58:21:95:1d:3f:a5:6d:a3:8d:eb:52:d7:70:e7:e2:35: 01:f7:4b:9a:f8:f3:69:74:04:63:39:b5:1c:78:ff:d5:b6:58: bb:0b:20:af -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIULclx3oY5XChUzrxftelLRwKbN60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZBMDA3MjVCODY1NjU3Q0MyNEExN0FEN0E5OTk0Nzkw NkI1MTI0MzAeFw0yNTAzMjAxOTMyMjVaFw0yNjAzMTkxOTM3MjVaMDMxMTAvBgNV BAMTKDQwNjM2NUU2N0M0OTc5NzIxMTE5RDU3QTM5Q0IzOTdGMzkwMUM3MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3xy0NZby5Eg2X+DsC+J3GqKpx Tnb1fUro2uWJ+DiAZt7nDY09BXPBssi38JbUz7nSrmjbYQ0dD3a7yP4A5YoGztUy 5GtpN3cgHd9CKt0NV0qoC3x1gzh223QeP2Y4PTqZjQ668ORksliAMYqKPApr2luL adujANdqcUJYpwHzEBc9xweITZhtCuDe8a8u0/Dy7byQ6aAmpP3rq1HhKWL0C3hg Q0u4skWeARXmL6WtR5t40rpNfb88cY6BHchPMhZdSdbtVydr19P67ecm/ov6xqGR ZDz5CR4UGhPhQEiGmwA9ohX+/HlIdG7puy5fG7OkpYtT8WySIya13Jjss3bpAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUQGNl5nxJeXIRGdV6Ocs5fzkBxxIwHwYDVR0j BBgwFoAUf6AHJbhlZXzCShetepmUeQa1EkMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSGpzYmtIRUdtN0E3ckduRVFrRVNZRmdBcEVycFJDWUY2VjJmQ3pKY0E3 UmEvMC83RkEwMDcyNUI4NjU2NTdDQzI0QTE3QUQ3QTk5OTQ3OTA2QjUxMjQzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzdGQTAwNzI1Qjg2NTY1N0ND MjRBMTdBRDdBOTk5NDc5MDZCNTEyNDMuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hqc2JrSEVHbTdBN3JHbkVRa0VTWUZnQXBFcnBSQ1lGNlYyZkN6SmNBN1JhLzAv MzIzODMwMzQzYTM1NjEzNjM0M2EzOTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzODM3MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEWmSQMA0GCSqGSIb3DQEBCwUA A4IBAQAyQ7xijDAxjncTxMBIL3wxSr6/QpdZg9giOw7XGiUd2gvOO4wkXqdAXXHF zLggfBueMatyYoBqv9rO91yo98DeCRRgc/OmKa+GHMmcdpdfcnu2Amf4HHKzQs0m dFFWrA63prB4GikLl4Z1piOFGeVfSv5NjIqVGhzGZgMm43YscKfkpJ++wKROuFjI PnRVZd+Ir5QjnF9v4qhfECIpP76Bk1a5iFgAJta7J2Ys4DPxxiTmugTYp5jsKdFB eQ+yff3l/+ESoTj3PFAN9IuOMHRTFOppCjOB/odDC1ghlR0/pW2jjetS13Dn4jUB 90ua+PNpdARjObUceP/Vtli7CyCv -----END CERTIFICATE-----Generated at Sun Apr 13 02:02:37 2025 by rpki-client