$ rpki-client -vvf rpki-repo.registro.br/repo/BFyiZhJjLBKzwSp4CTSi6Waai4KRDDiqE4AenVLceBTP/0/323830343a393063303a3a2f33322d3438203d3e203532383535.roa File: 323830343a393063303a3a2f33322d3438203d3e203532383535.roa (raw, json) Hash identifier: bFr144qNXiJnjjBqpVx2Hs1FVhxY1dhQgugWIFI/8tA= Subject key identifier: CB:AB:7B:22:73:24:A8:3C:84:FD:DE:4E:31:DD:D4:92:08:28:FC:65 Certificate issuer: /CN=71AC817F1B0FFFA174ACAE38AC4180ABEDE45570 Certificate serial: 5B1BDB30849F11409136F785D958669996189409 Authority key identifier: 71:AC:81:7F:1B:0F:FF:A1:74:AC:AE:38:AC:41:80:AB:ED:E4:55:70 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71AC817F1B0FFFA174ACAE38AC4180ABEDE45570.cer Subject info access: rsync://rpki-repo.registro.br/repo/BFyiZhJjLBKzwSp4CTSi6Waai4KRDDiqE4AenVLceBTP/0/323830343a393063303a3a2f33322d3438203d3e203532383535.roa Signing time: Wed 16 Apr 2025 21:03:27 +0000 ROA not before: Wed 16 Apr 2025 20:58:27 +0000 ROA not after: Wed 15 Apr 2026 21:03:27 +0000 asID: 52855 IP address blocks: 2804:90c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BFyiZhJjLBKzwSp4CTSi6Waai4KRDDiqE4AenVLceBTP/0/71AC817F1B0FFFA174ACAE38AC4180ABEDE45570.crl rsync://rpki-repo.registro.br/repo/BFyiZhJjLBKzwSp4CTSi6Waai4KRDDiqE4AenVLceBTP/0/71AC817F1B0FFFA174ACAE38AC4180ABEDE45570.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71AC817F1B0FFFA174ACAE38AC4180ABEDE45570.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 12 May 2025 02:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:1b:db:30:84:9f:11:40:91:36:f7:85:d9:58:66:99:96:18:94:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71AC817F1B0FFFA174ACAE38AC4180ABEDE45570 Validity Not Before: Apr 16 20:58:27 2025 GMT Not After : Apr 15 21:03:27 2026 GMT Subject: CN=CBAB7B227324A83C84FDDE4E31DDD4920828FC65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:94:73:ff:c0:6f:97:09:27:de:52:e9:a3:ef: 58:41:da:13:e3:e5:65:46:33:59:9d:7e:53:ed:d7: e8:d5:9f:41:f2:6a:15:35:ee:3f:b8:01:12:8a:ec: 0b:9a:25:f8:fa:2c:d7:2f:27:49:d3:2f:73:24:62: 28:8d:eb:da:33:72:78:ab:ec:48:47:10:5e:7d:d8: 36:a2:52:53:aa:91:64:fe:b9:75:74:c3:19:ef:d8: d5:ec:a0:b1:bf:ce:f4:b1:6b:19:ff:17:d8:ee:04: ff:3d:f7:f0:84:05:69:76:44:66:5d:b8:d4:0a:d1: d2:6c:d1:92:7e:00:8b:9b:16:c6:f2:97:28:2d:20: 15:fd:a1:2e:29:2b:d1:8f:bc:b8:ad:5b:80:13:b2: 7f:d9:f5:e5:5b:71:eb:83:c1:ff:0b:68:18:44:9d: 87:17:ba:ba:9a:0d:cb:2a:80:d0:05:33:f5:eb:a8: 37:6b:c9:66:4a:c1:37:70:d5:69:46:96:5a:ad:0a: 93:2c:06:38:54:8c:06:c6:d9:c3:a4:70:68:61:6a: ec:63:78:1f:0d:02:38:2b:00:f9:71:2a:ec:7a:73: 21:f3:c9:6e:d0:d0:2b:3a:d5:ac:13:81:89:b3:2a: 12:8f:a3:a5:20:b3:b7:1c:2d:21:60:dd:f1:2f:50: f4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AB:7B:22:73:24:A8:3C:84:FD:DE:4E:31:DD:D4:92:08:28:FC:65 X509v3 Authority Key Identifier: keyid:71:AC:81:7F:1B:0F:FF:A1:74:AC:AE:38:AC:41:80:AB:ED:E4:55:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BFyiZhJjLBKzwSp4CTSi6Waai4KRDDiqE4AenVLceBTP/0/71AC817F1B0FFFA174ACAE38AC4180ABEDE45570.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71AC817F1B0FFFA174ACAE38AC4180ABEDE45570.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BFyiZhJjLBKzwSp4CTSi6Waai4KRDDiqE4AenVLceBTP/0/323830343a393063303a3a2f33322d3438203d3e203532383535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:90c0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:4d:91:1a:ed:4c:ae:80:f6:06:cc:98:f9:a8:93:44:b6:40: 2e:ca:92:89:80:d3:49:b1:bc:09:c4:38:3e:18:5f:6c:13:11: a3:90:ee:0a:d9:19:08:33:28:41:ca:f7:00:ae:3a:28:a7:e4: a2:97:2d:aa:7f:f8:1e:8d:bc:f4:db:3a:03:91:4a:d0:88:64: 98:e7:1e:97:95:e4:6a:67:62:15:4c:02:f5:43:ad:91:30:4c: a1:c6:f1:7e:3f:03:29:a0:25:f2:9f:a7:2e:a2:fe:6f:09:64: 43:ef:17:25:a8:07:e6:ff:86:82:c3:dc:b3:90:ff:40:d6:24: 99:4d:ce:7f:e3:9b:5e:34:6f:50:fd:bd:41:4d:65:9b:d9:fd: 2a:01:e4:5b:4d:e5:8b:3a:f4:a9:6a:dd:b1:2a:0b:b9:0a:d1: 89:dd:d3:cc:5f:c2:ae:ed:79:12:10:da:19:2e:3c:2f:52:a4: 46:dd:50:26:6a:a8:6d:03:2d:86:ab:da:22:51:d6:16:77:cb: 90:1d:b6:8b:3a:05:7c:d1:53:e2:7b:55:5a:3b:47:c3:b0:84: 6b:c3:52:e2:96:d2:ae:47:f2:d0:ef:d7:ae:13:20:82:cd:8a: d4:a6:c5:a1:4b:86:b4:cc:22:88:f6:4c:eb:30:97:a0:fa:66: 87:cb:7d:bc -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUWxvbMISfEUCRNveF2VhmmZYYlAkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFBQzgxN0YxQjBGRkZBMTc0QUNBRTM4QUM0MTgwQUJF REU0NTU3MDAeFw0yNTA0MTYyMDU4MjdaFw0yNjA0MTUyMTAzMjdaMDMxMTAvBgNV BAMTKENCQUI3QjIyNzMyNEE4M0M4NEZEREU0RTMxRERENDkyMDgyOEZDNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDllHP/wG+XCSfeUumj71hB2hPj 5WVGM1mdflPt1+jVn0HyahU17j+4ARKK7AuaJfj6LNcvJ0nTL3MkYiiN69ozcnir 7EhHEF592DaiUlOqkWT+uXV0wxnv2NXsoLG/zvSxaxn/F9juBP899/CEBWl2RGZd uNQK0dJs0ZJ+AIubFsbylygtIBX9oS4pK9GPvLitW4ATsn/Z9eVbceuDwf8LaBhE nYcXurqaDcsqgNAFM/XrqDdryWZKwTdw1WlGllqtCpMsBjhUjAbG2cOkcGhhauxj eB8NAjgrAPlxKux6cyHzyW7Q0Cs61awTgYmzKhKPo6Ugs7ccLSFg3fEvUPTNAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUy6t7InMkqDyE/d5OMd3Ukggo/GUwHwYDVR0j BBgwFoAUcayBfxsP/6F0rK44rEGAq+3kVXAwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQkZ5aVpoSmpMQkt6d1NwNENUU2k2V2FhaTRLUkREaXFFNEFlblZMY2VC VFAvMC83MUFDODE3RjFCMEZGRkExNzRBQ0FFMzhBQzQxODBBQkVERTQ1NTcwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcxQUM4MTdGMUIwRkZGQTE3 NEFDQUUzOEFDNDE4MEFCRURFNDU1NzAuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0JGeWlaaEpqTEJLendTcDRDVFNpNldhYWk0S1JERGlxRTRBZW5WTGNlQlRQLzAv MzIzODMwMzQzYTM5MzA2MzMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzUzMjM4 MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACgEkMAwDQYJKoZIhvcNAQELBQADggEBAA1NkRrtTK6A 9gbMmPmok0S2QC7KkomA00mxvAnEOD4YX2wTEaOQ7grZGQgzKEHK9wCuOiin5KKX Lap/+B6NvPTbOgORStCIZJjnHpeV5GpnYhVMAvVDrZEwTKHG8X4/AymgJfKfpy6i /m8JZEPvFyWoB+b/hoLD3LOQ/0DWJJlNzn/jm140b1D9vUFNZZvZ/SoB5FtN5Ys6 9Klq3bEqC7kK0Ynd08xfwq7teRIQ2hkuPC9SpEbdUCZqqG0DLYar2iJR1hZ3y5Ad tos6BXzRU+J7VVo7R8OwhGvDUuKW0q5H8tDv164TIILNitSmxaFLhrTMIoj2TOsw l6D6ZofLfbw= -----END CERTIFICATE-----Generated at Sun May 11 12:48:47 2025 by rpki-client