$ rpki-client -vvf rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/323830343a353764633a383230303a3a2f34302d3430203d3e20323638303931.roa File: 323830343a353764633a383230303a3a2f34302d3430203d3e20323638303931.roa (raw, json) Hash identifier: DObBohczAtbVFc+gXQALG48vy+FyQuPw1ZUWtZCW2WA= Subject key identifier: 2E:12:8E:D1:FC:F5:29:C1:3B:67:68:35:51:25:47:C2:AE:7E:09:CF Certificate issuer: /CN=89489A8E2CAF2EA16C1DAA6E07FB00463F4F788C Certificate serial: 531DCFAC128BCA4338F10EA418B52A590315E20E Authority key identifier: 89:48:9A:8E:2C:AF:2E:A1:6C:1D:AA:6E:07:FB:00:46:3F:4F:78:8C Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/89489A8E2CAF2EA16C1DAA6E07FB00463F4F788C.cer Subject info access: rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/323830343a353764633a383230303a3a2f34302d3430203d3e20323638303931.roa Signing time: Thu 08 May 2025 18:33:44 +0000 ROA not before: Thu 08 May 2025 18:28:44 +0000 ROA not after: Thu 07 May 2026 18:33:44 +0000 asID: 268091 IP address blocks: 2804:57dc:8200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/89489A8E2CAF2EA16C1DAA6E07FB00463F4F788C.crl rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/89489A8E2CAF2EA16C1DAA6E07FB00463F4F788C.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/89489A8E2CAF2EA16C1DAA6E07FB00463F4F788C.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 15 May 2025 02:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:1d:cf:ac:12:8b:ca:43:38:f1:0e:a4:18:b5:2a:59:03:15:e2:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89489A8E2CAF2EA16C1DAA6E07FB00463F4F788C Validity Not Before: May 8 18:28:44 2025 GMT Not After : May 7 18:33:44 2026 GMT Subject: CN=2E128ED1FCF529C13B676835512547C2AE7E09CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:92:6a:73:27:c9:0d:a8:d1:c1:07:71:1a:04: b2:db:f2:d5:8c:a9:96:6a:87:75:61:01:f1:28:66: 47:1e:44:a6:b4:bd:17:60:36:78:83:31:ab:72:6b: 97:ef:01:60:b2:b0:68:45:71:77:5d:5f:e6:a9:3f: 8a:0c:88:af:0b:c2:32:23:25:e5:cd:8e:2d:e8:67: 0e:42:90:5c:4b:4f:cd:6f:89:8e:58:8d:a7:f6:7d: bc:50:c8:ab:d1:d3:0c:58:65:cb:29:ee:ff:21:f2: 8a:c1:d7:e9:77:fb:ee:f5:04:2a:70:0d:ef:4c:c8: 35:66:36:9f:1d:e4:e6:33:a5:15:0e:28:0c:76:47: b4:11:40:27:5b:cf:f0:ee:75:91:d2:20:e4:f5:1b: 1d:15:86:a0:62:b0:d9:b0:a9:13:55:e1:29:91:3e: e6:2b:98:9d:f0:68:77:1e:cf:8a:f5:b6:2c:b7:e0: 34:08:1b:90:b9:1c:11:6d:a6:0e:1b:17:8b:42:ac: c9:5e:94:28:6e:61:bc:74:c5:8a:e6:9a:a1:1e:38: c5:68:48:e7:91:2c:ea:33:dd:1f:0d:84:bf:ad:a2: 9d:4e:c9:f5:7c:cc:41:04:9f:fd:da:e7:cf:f9:ba: 13:2a:0c:8f:04:d0:3a:d9:43:a8:8f:97:2a:4a:3f: f8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:12:8E:D1:FC:F5:29:C1:3B:67:68:35:51:25:47:C2:AE:7E:09:CF X509v3 Authority Key Identifier: keyid:89:48:9A:8E:2C:AF:2E:A1:6C:1D:AA:6E:07:FB:00:46:3F:4F:78:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/89489A8E2CAF2EA16C1DAA6E07FB00463F4F788C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/89489A8E2CAF2EA16C1DAA6E07FB00463F4F788C.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/323830343a353764633a383230303a3a2f34302d3430203d3e20323638303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:57dc:8200::/40 Signature Algorithm: sha256WithRSAEncryption c2:a0:6c:74:4c:0f:8a:9e:72:1d:20:78:f5:c7:7d:f5:85:06: 53:5b:7c:a5:a3:77:7c:a9:fb:af:20:d5:03:6b:09:50:57:b1: 6f:36:e9:7a:e2:2e:fa:04:6c:28:c9:61:ed:11:3b:b4:ee:49: 82:59:55:df:7a:cf:51:90:39:b1:cb:07:c7:3b:c1:f5:68:93: 29:da:e7:e7:4d:c6:04:11:5c:58:09:2e:42:11:14:51:d1:82: 2f:aa:d1:13:e4:5d:88:aa:5d:7d:3f:62:5e:0a:b4:06:86:a4: 2c:94:7c:dc:df:96:4e:82:dd:50:3c:d6:ad:01:65:fa:5e:46: e9:3a:2c:d0:e2:f4:f8:a3:26:fc:42:b0:67:d0:03:03:c0:b4: 47:cc:96:e3:17:a3:de:1b:5b:27:bf:66:ee:f2:cd:f1:0f:d8: 5f:93:28:f7:e7:6b:2f:c6:1b:1f:d5:68:cc:f4:1f:3a:a4:11: f8:08:29:7f:f9:6d:10:c9:ed:01:68:bd:a2:97:72:37:54:c1: 5a:f9:01:05:41:71:16:17:c7:68:ea:9e:ca:90:70:04:37:34: 2f:b6:75:bc:d6:36:e6:1c:a6:0d:5f:17:bf:d5:3a:49:77:57: b7:2a:29:c5:5c:8c:e5:e6:02:9b:86:3b:b5:57:f1:12:4f:b3: 0b:59:76:23 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUUx3PrBKLykM48Q6kGLUqWQMV4g4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk0ODlBOEUyQ0FGMkVBMTZDMURBQTZFMDdGQjAwNDYz RjRGNzg4QzAeFw0yNTA1MDgxODI4NDRaFw0yNjA1MDcxODMzNDRaMDMxMTAvBgNV BAMTKDJFMTI4RUQxRkNGNTI5QzEzQjY3NjgzNTUxMjU0N0MyQUU3RTA5Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqkmpzJ8kNqNHBB3EaBLLb8tWM qZZqh3VhAfEoZkceRKa0vRdgNniDMatya5fvAWCysGhFcXddX+apP4oMiK8LwjIj JeXNji3oZw5CkFxLT81viY5Yjaf2fbxQyKvR0wxYZcsp7v8h8orB1+l3++71BCpw De9MyDVmNp8d5OYzpRUOKAx2R7QRQCdbz/DudZHSIOT1Gx0VhqBisNmwqRNV4SmR PuYrmJ3waHcez4r1tiy34DQIG5C5HBFtpg4bF4tCrMlelChuYbx0xYrmmqEeOMVo SOeRLOoz3R8NhL+top1OyfV8zEEEn/3a58/5uhMqDI8E0DrZQ6iPlypKP/jxAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQULhKO0fz1KcE7Z2g1USVHwq5+Cc8wHwYDVR0j BBgwFoAUiUiajiyvLqFsHapuB/sARj9PeIwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vN2E4S1ROYVJMZlMxZ1I5eDQ5cHV1Ymt0OXpuZk1OaHVlS2gyVmVXSzVn RTgvMC84OTQ4OUE4RTJDQUYyRUExNkMxREFBNkUwN0ZCMDA0NjNGNEY3ODhDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg5NDg5QThFMkNBRjJFQTE2 QzFEQUE2RTA3RkIwMDQ2M0Y0Rjc4OEMuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzdhOEtUTmFSTGZTMWdSOXg0OXB1dWJrdDl6bmZNTmh1ZUtoMlZlV0s1Z0U4LzAv MzIzODMwMzQzYTM1Mzc2NDYzM2EzODMyMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNk M2UyMDMyMzYzODMwMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACgEV9yCMA0GCSqGSIb3DQEBCwUA A4IBAQDCoGx0TA+KnnIdIHj1x331hQZTW3ylo3d8qfuvINUDawlQV7FvNul64i76 BGwoyWHtETu07kmCWVXfes9RkDmxywfHO8H1aJMp2ufnTcYEEVxYCS5CERRR0YIv qtET5F2Iql19P2JeCrQGhqQslHzc35ZOgt1QPNatAWX6XkbpOizQ4vT4oyb8QrBn 0AMDwLRHzJbjF6PeG1snv2bu8s3xD9hfkyj352svxhsf1WjM9B86pBH4CCl/+W0Q ye0BaL2il3I3VMFa+QEFQXEWF8do6p7KkHAENzQvtnW81jbmHKYNXxe/1TpJd1e3 KinFXIzl5gKbhju1V/EST7MLWXYj -----END CERTIFICATE-----Generated at Wed May 14 10:12:32 2025 by rpki-client