$ rpki-client -vvf rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/323830343a356136343a643030303a3a2f33362d3336203d3e20323638373730.roa File: 323830343a356136343a643030303a3a2f33362d3336203d3e20323638373730.roa (raw, json) Hash identifier: bVF3wG1Xu+J01nFcX7fTmsU6JToeWo9eUzHEg9jJNFI= Subject key identifier: 3A:FD:27:0D:FE:06:31:12:CC:E3:F7:C8:FF:AE:A2:E5:A6:B4:86:CF Certificate issuer: /CN=7FA00725B865657CC24A17AD7A99947906B51243 Certificate serial: 6E164254B62A7CF79B6869C775BE0AE925C13484 Authority key identifier: 7F:A0:07:25:B8:65:65:7C:C2:4A:17:AD:7A:99:94:79:06:B5:12:43 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7FA00725B865657CC24A17AD7A99947906B51243.cer Subject info access: rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/323830343a356136343a643030303a3a2f33362d3336203d3e20323638373730.roa Signing time: Thu 20 Mar 2025 19:37:53 +0000 ROA not before: Thu 20 Mar 2025 19:32:53 +0000 ROA not after: Thu 19 Mar 2026 19:37:53 +0000 asID: 268770 IP address blocks: 2804:5a64:d000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/7FA00725B865657CC24A17AD7A99947906B51243.crl rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/7FA00725B865657CC24A17AD7A99947906B51243.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7FA00725B865657CC24A17AD7A99947906B51243.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 13 Apr 2025 19:13:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:16:42:54:b6:2a:7c:f7:9b:68:69:c7:75:be:0a:e9:25:c1:34:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FA00725B865657CC24A17AD7A99947906B51243 Validity Not Before: Mar 20 19:32:53 2025 GMT Not After : Mar 19 19:37:53 2026 GMT Subject: CN=3AFD270DFE063112CCE3F7C8FFAEA2E5A6B486CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9e:03:62:3c:cb:16:d9:f6:ff:44:33:85:8f: 7c:50:36:aa:ec:cc:b8:a9:37:3b:1b:5d:fa:29:a5: ff:4a:9c:91:c9:60:f5:73:8d:44:1b:92:d6:8a:f5: 71:56:a9:ae:7b:34:5d:94:9f:23:6e:37:95:1b:67: c3:cb:97:dd:6d:c8:da:d6:66:8f:66:14:ad:45:d7: 6d:17:4f:08:03:e1:ea:66:71:6f:c0:fd:57:f4:c6: 3a:96:b5:da:76:e6:78:50:e1:90:f9:53:1a:ea:fb: 00:9a:be:43:e9:8f:25:21:e1:1d:11:e5:a2:36:e9: d8:f1:1f:33:fa:fa:4b:9c:4f:e2:a7:ad:a1:c8:db: 0a:5a:b6:dc:83:d8:9f:f4:05:cd:2d:14:56:70:7c: 5d:a3:5d:28:23:6c:2d:e4:ff:b0:a3:ba:64:d3:87: 7b:40:a1:b0:f0:da:62:43:fd:23:17:f9:01:38:be: 5e:ac:ed:f3:fc:99:c1:65:24:ae:1a:a8:94:a6:15: 9b:3b:c1:e3:b8:e3:eb:3c:24:d9:98:a3:97:d3:8c: f7:fa:c4:ae:aa:c0:67:6a:5a:8c:69:ef:67:0b:7d: f3:04:da:46:02:83:85:2f:ae:19:c0:4e:a2:e7:3b: 9a:8a:c6:bc:d9:a2:70:62:5f:5f:0c:cd:97:f6:ed: f7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:FD:27:0D:FE:06:31:12:CC:E3:F7:C8:FF:AE:A2:E5:A6:B4:86:CF X509v3 Authority Key Identifier: keyid:7F:A0:07:25:B8:65:65:7C:C2:4A:17:AD:7A:99:94:79:06:B5:12:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/7FA00725B865657CC24A17AD7A99947906B51243.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7FA00725B865657CC24A17AD7A99947906B51243.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/323830343a356136343a643030303a3a2f33362d3336203d3e20323638373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5a64:d000::/36 Signature Algorithm: sha256WithRSAEncryption a1:18:cf:d1:6c:05:c1:e8:ca:d5:d5:a7:7e:a3:f4:4d:32:f1: 05:5b:1c:f9:7d:c8:31:e9:a8:2b:b1:15:6d:f9:1e:89:1f:da: fa:5a:a1:1d:fd:76:19:99:d4:cf:93:fd:a5:81:95:07:83:df: 9b:35:82:e6:1f:5f:52:df:8a:da:4f:bb:54:54:ea:f8:06:4f: dc:1e:b7:30:10:56:ca:1d:9c:87:8a:82:ed:6d:5e:d8:62:76: 9c:d4:dc:26:e1:02:d1:cf:45:04:93:7e:8c:07:10:77:75:e2: 58:4d:07:66:bc:9c:f5:bf:95:ed:6e:7b:df:de:04:7b:8f:96: 9a:4c:3a:7d:05:17:a7:b5:d2:57:55:a7:f0:93:b3:4c:47:13: 5d:5b:41:7f:58:75:c7:65:a1:ca:f5:d7:08:57:c0:c5:c7:c0: 4e:8d:bb:ef:f9:bc:e6:5d:02:f7:f2:70:3c:9c:86:3c:ed:b5: 71:02:83:ed:91:8a:96:62:96:76:34:b1:25:bf:19:37:1b:56: e1:df:4a:44:22:14:4d:aa:66:b0:f4:cc:cb:f4:ed:02:dd:5f: eb:eb:e4:28:b6:f5:79:78:19:ff:f9:5a:2a:7e:b8:07:46:13: d7:aa:6f:03:46:60:8c:5a:22:15:88:b4:d1:48:0e:f5:27:4a: 50:72:e7:38 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUbhZCVLYqfPebaGnHdb4K6SXBNIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZBMDA3MjVCODY1NjU3Q0MyNEExN0FEN0E5OTk0Nzkw NkI1MTI0MzAeFw0yNTAzMjAxOTMyNTNaFw0yNjAzMTkxOTM3NTNaMDMxMTAvBgNV BAMTKDNBRkQyNzBERkUwNjMxMTJDQ0UzRjdDOEZGQUVBMkU1QTZCNDg2Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXngNiPMsW2fb/RDOFj3xQNqrs zLipNzsbXfoppf9KnJHJYPVzjUQbktaK9XFWqa57NF2UnyNuN5UbZ8PLl91tyNrW Zo9mFK1F120XTwgD4epmcW/A/Vf0xjqWtdp25nhQ4ZD5Uxrq+wCavkPpjyUh4R0R 5aI26djxHzP6+kucT+KnraHI2wpattyD2J/0Bc0tFFZwfF2jXSgjbC3k/7CjumTT h3tAobDw2mJD/SMX+QE4vl6s7fP8mcFlJK4aqJSmFZs7weO44+s8JNmYo5fTjPf6 xK6qwGdqWoxp72cLffME2kYCg4UvrhnATqLnO5qKxrzZonBiX18MzZf27feRAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUOv0nDf4GMRLM4/fI/66i5aa0hs8wHwYDVR0j BBgwFoAUf6AHJbhlZXzCShetepmUeQa1EkMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSGpzYmtIRUdtN0E3ckduRVFrRVNZRmdBcEVycFJDWUY2VjJmQ3pKY0E3 UmEvMC83RkEwMDcyNUI4NjU2NTdDQzI0QTE3QUQ3QTk5OTQ3OTA2QjUxMjQzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzdGQTAwNzI1Qjg2NTY1N0ND MjRBMTdBRDdBOTk5NDc5MDZCNTEyNDMuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hqc2JrSEVHbTdBN3JHbkVRa0VTWUZnQXBFcnBSQ1lGNlYyZkN6SmNBN1JhLzAv MzIzODMwMzQzYTM1NjEzNjM0M2E2NDMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzODM3MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEWmTQMA0GCSqGSIb3DQEBCwUA A4IBAQChGM/RbAXB6MrV1ad+o/RNMvEFWxz5fcgx6agrsRVt+R6JH9r6WqEd/XYZ mdTPk/2lgZUHg9+bNYLmH19S34raT7tUVOr4Bk/cHrcwEFbKHZyHioLtbV7YYnac 1Nwm4QLRz0UEk36MBxB3deJYTQdmvJz1v5Xtbnvf3gR7j5aaTDp9BRentdJXVafw k7NMRxNdW0F/WHXHZaHK9dcIV8DFx8BOjbvv+bzmXQL38nA8nIY87bVxAoPtkYqW YpZ2NLElvxk3G1bh30pEIhRNqmaw9MzL9O0C3V/r6+QotvV5eBn/+VoqfrgHRhPX qm8DRmCMWiIViLTRSA71J0pQcuc4 -----END CERTIFICATE-----Generated at Sun Apr 13 02:00:20 2025 by rpki-client