$ rpki-client -vvf rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/323830343a343635343a383030303a3a2f33342d3334203d3e20323636393833.roa File: 323830343a343635343a383030303a3a2f33342d3334203d3e20323636393833.roa (raw, json) Hash identifier: /uVR8DEZ6Ps61zKcM4UEYkaQRViGBaAseUHfMjYOU4s= Subject key identifier: 8B:41:C2:52:D7:F6:40:9A:1A:73:8D:0B:02:9E:DD:90:CB:51:4C:B4 Certificate issuer: /CN=3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F Certificate serial: 58F3EAA0C2AC56AB8C21C4A8589E16738CDA1059 Authority key identifier: 3D:C3:91:5B:16:1F:2F:1D:4A:EF:DF:6B:F5:81:EE:C0:95:B3:D6:0F Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.cer Subject info access: rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/323830343a343635343a383030303a3a2f33342d3334203d3e20323636393833.roa Signing time: Tue 06 May 2025 12:25:37 +0000 ROA not before: Tue 06 May 2025 12:20:37 +0000 ROA not after: Tue 05 May 2026 12:25:37 +0000 asID: 266983 IP address blocks: 2804:4654:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.crl rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 13 May 2025 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:f3:ea:a0:c2:ac:56:ab:8c:21:c4:a8:58:9e:16:73:8c:da:10:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F Validity Not Before: May 6 12:20:37 2025 GMT Not After : May 5 12:25:37 2026 GMT Subject: CN=8B41C252D7F6409A1A738D0B029EDD90CB514CB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:40:5f:bf:28:d4:95:d5:32:e3:5d:d7:c7:99: 90:e3:ac:b0:67:eb:58:1f:9f:d7:15:18:f4:85:cf: 7f:ce:4c:a4:6f:2d:46:f2:c3:31:bd:c7:eb:76:b9: 35:f3:cf:c1:e7:68:a8:36:34:18:2c:1a:d4:0f:3c: 20:c0:ba:c7:ca:54:6a:45:3d:b6:8b:4e:3f:03:42: 03:2a:87:31:45:ca:4a:13:ac:f7:a1:b1:9e:6f:24: bc:9a:c6:87:74:4a:0d:b7:7e:44:5c:14:43:c3:2c: c1:4c:9a:f4:78:52:d1:7f:98:e0:fb:1e:21:4d:a6: 93:a2:88:00:43:94:03:62:f1:f6:6b:09:00:7b:8a: 08:56:cf:33:64:02:88:37:c6:64:11:26:77:2d:d3: 5f:ca:02:18:07:20:5b:a8:c1:f3:b1:3c:24:7f:98: 54:1e:40:99:d5:cd:c1:c9:16:01:4d:fc:c5:02:ff: bd:11:32:55:90:11:f6:18:5c:81:b4:a0:12:a8:c6: 55:89:40:d3:3a:67:c0:b5:3b:7e:8c:a7:80:2e:d7: 5f:06:f5:04:0a:12:58:f2:3a:97:54:9e:f2:6e:c7: 15:d9:3a:2d:5d:6f:ae:ec:3b:e9:62:6f:70:8f:5a: 75:0b:65:c9:67:02:be:a8:c8:6e:c0:1a:eb:0a:a8: 70:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:41:C2:52:D7:F6:40:9A:1A:73:8D:0B:02:9E:DD:90:CB:51:4C:B4 X509v3 Authority Key Identifier: keyid:3D:C3:91:5B:16:1F:2F:1D:4A:EF:DF:6B:F5:81:EE:C0:95:B3:D6:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/323830343a343635343a383030303a3a2f33342d3334203d3e20323636393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:4654:8000::/34 Signature Algorithm: sha256WithRSAEncryption af:ba:1e:18:eb:1a:ee:75:92:25:1d:bc:d1:4d:43:48:09:13: a4:02:89:52:f7:83:88:af:8e:8c:d3:ef:ab:ba:d2:a8:57:0f: 9e:94:72:ab:1c:46:65:19:a7:39:9f:9b:d4:e2:a2:e4:9c:ce: 65:07:83:c7:95:ca:f6:21:6e:92:d6:82:b7:20:f1:2b:b3:2c: 94:d4:7d:aa:41:5e:91:db:1e:1a:d2:13:35:17:19:2c:24:e8: f6:58:38:f5:4e:bc:ce:3a:ee:06:5a:57:b6:d8:eb:b4:7c:90: ae:2e:a1:fe:82:0e:e0:95:d6:a1:41:07:49:7d:5c:bb:49:e9: fb:5c:c2:5c:b8:98:9a:c7:5d:b1:93:78:31:83:68:21:9f:16: 72:d0:1e:d4:e5:b6:dc:6c:ee:1e:df:91:a3:5e:e0:fe:e7:4b: cf:4c:39:90:fc:30:3a:c2:9e:a1:92:5b:8e:bc:35:ef:7c:1e: c5:4b:3c:53:c0:60:12:0c:02:b8:b2:d4:6b:fa:38:40:9d:4b: be:55:41:8b:74:28:08:dc:8c:ce:36:6a:fa:e7:60:6c:a2:8e: 74:52:13:a0:67:ab:42:f3:58:e9:fa:04:a5:d0:b6:f0:9b:f2: f4:10:e5:13:73:6a:7e:69:66:e1:6a:09:c3:5c:0d:e5:d7:12: c4:86:c7:38 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUWPPqoMKsVquMIcSoWJ4Wc4zaEFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0RDMzkxNUIxNjFGMkYxRDRBRUZERjZCRjU4MUVFQzA5 NUIzRDYwRjAeFw0yNTA1MDYxMjIwMzdaFw0yNjA1MDUxMjI1MzdaMDMxMTAvBgNV BAMTKDhCNDFDMjUyRDdGNjQwOUExQTczOEQwQjAyOUVERDkwQ0I1MTRDQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqQF+/KNSV1TLjXdfHmZDjrLBn 61gfn9cVGPSFz3/OTKRvLUbywzG9x+t2uTXzz8HnaKg2NBgsGtQPPCDAusfKVGpF PbaLTj8DQgMqhzFFykoTrPehsZ5vJLyaxod0Sg23fkRcFEPDLMFMmvR4UtF/mOD7 HiFNppOiiABDlANi8fZrCQB7ighWzzNkAog3xmQRJnct01/KAhgHIFuowfOxPCR/ mFQeQJnVzcHJFgFN/MUC/70RMlWQEfYYXIG0oBKoxlWJQNM6Z8C1O36Mp4Au118G 9QQKEljyOpdUnvJuxxXZOi1db67sO+lib3CPWnULZclnAr6oyG7AGusKqHAlAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUi0HCUtf2QJoac40LAp7dkMtRTLQwHwYDVR0j BBgwFoAUPcORWxYfLx1K799r9YHuwJWz1g8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ01KaHRWOE5kbUdYcXRYWnlaTHVoQXdRWmtYTk1vQlBQaTJDN2N4SFlW WWgvMC8zREMzOTE1QjE2MUYyRjFENEFFRkRGNkJGNTgxRUVDMDk1QjNENjBGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzNEQzM5MTVCMTYxRjJGMUQ0 QUVGREY2QkY1ODFFRUMwOTVCM0Q2MEYuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NNSmh0VjhOZG1HWHF0WFp5Wkx1aEF3UVprWE5Nb0JQUGkyQzdjeEhZVlloLzAv MzIzODMwMzQzYTM0MzYzNTM0M2EzODMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzNjM5MzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigERlSAMA0GCSqGSIb3DQEBCwUA A4IBAQCvuh4Y6xrudZIlHbzRTUNICROkAolS94OIr46M0++rutKoVw+elHKrHEZl Gac5n5vU4qLknM5lB4PHlcr2IW6S1oK3IPErsyyU1H2qQV6R2x4a0hM1FxksJOj2 WDj1TrzOOu4GWle22Ou0fJCuLqH+gg7gldahQQdJfVy7Sen7XMJcuJiax12xk3gx g2ghnxZy0B7U5bbcbO4e35GjXuD+50vPTDmQ/DA6wp6hkluOvDXvfB7FSzxTwGAS DAK4stRr+jhAnUu+VUGLdCgI3IzONmr652Bsoo50UhOgZ6tC81jp+gSl0Lbwm/L0 EOUTc2p+aWbhagnDXA3l1xLEhsc4 -----END CERTIFICATE-----Generated at Mon May 12 19:51:22 2025 by rpki-client