$ rpki-client -vvf rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/323830343a343635343a633030303a3a2f33342d3334203d3e20323636393833.roa File: 323830343a343635343a633030303a3a2f33342d3334203d3e20323636393833.roa (raw, json) Hash identifier: z43TMRkdjOxiYGmXt5jEbDjV2/qYS1A613MwMjShzDY= Subject key identifier: 05:00:1D:D2:35:5E:6D:0C:96:0A:A4:F0:E0:36:4C:B4:F1:6E:16:A6 Certificate issuer: /CN=3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F Certificate serial: 185C36E307E030C54210DBCABF90701390D754F4 Authority key identifier: 3D:C3:91:5B:16:1F:2F:1D:4A:EF:DF:6B:F5:81:EE:C0:95:B3:D6:0F Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.cer Subject info access: rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/323830343a343635343a633030303a3a2f33342d3334203d3e20323636393833.roa Signing time: Tue 06 May 2025 12:25:36 +0000 ROA not before: Tue 06 May 2025 12:20:36 +0000 ROA not after: Tue 05 May 2026 12:25:36 +0000 asID: 266983 IP address blocks: 2804:4654:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.crl rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 12 May 2025 22:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:5c:36:e3:07:e0:30:c5:42:10:db:ca:bf:90:70:13:90:d7:54:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F Validity Not Before: May 6 12:20:36 2025 GMT Not After : May 5 12:25:36 2026 GMT Subject: CN=05001DD2355E6D0C960AA4F0E0364CB4F16E16A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1e:08:97:18:c6:9a:35:0a:88:fe:97:2b:57: d5:e3:c8:d7:c6:48:17:c0:e7:5e:76:e7:fb:42:57: 86:c1:41:ae:af:2a:e9:9c:c7:bf:51:c0:fa:8d:cc: 5d:c3:b3:66:d4:4e:7e:b7:dc:85:cd:2a:f4:b4:8b: 80:fc:1b:d4:11:18:b1:60:d5:e0:c4:3a:4e:28:70: c8:78:ed:7e:95:7a:eb:67:e7:65:c2:4c:9e:50:08: 81:82:e2:c2:4b:18:bd:4c:cb:bf:6c:68:c9:41:be: f4:ea:40:cb:a5:77:ef:b5:e8:f2:c5:f5:5a:e1:84: 0f:ce:df:d1:8d:3f:58:06:9b:d0:65:74:19:11:ac: 32:4f:5f:eb:17:f4:6e:14:94:d9:9e:c8:c1:07:15: 91:ac:00:b0:7d:40:1a:c7:bb:07:ee:32:5a:d1:0b: 52:1b:fb:0e:cc:b4:2c:d9:f1:4d:f2:f5:01:44:a2: 8f:70:03:f0:af:86:c0:d8:a6:3f:fc:20:90:c7:fc: 44:69:65:05:84:0c:2a:b4:3d:0e:73:af:7a:0d:6f: b0:94:81:42:df:19:a4:cb:47:9a:7d:b5:69:bb:c4: 1a:de:f6:20:f9:ee:3c:08:a4:43:3b:d5:82:33:90: da:24:36:3d:91:eb:7b:6d:8a:b8:62:cc:d3:33:a5: 71:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:00:1D:D2:35:5E:6D:0C:96:0A:A4:F0:E0:36:4C:B4:F1:6E:16:A6 X509v3 Authority Key Identifier: keyid:3D:C3:91:5B:16:1F:2F:1D:4A:EF:DF:6B:F5:81:EE:C0:95:B3:D6:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/323830343a343635343a633030303a3a2f33342d3334203d3e20323636393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:4654:c000::/34 Signature Algorithm: sha256WithRSAEncryption 1f:24:2d:00:ab:b9:2a:35:4b:7f:31:56:f7:a1:f8:0c:d1:57: aa:0b:9e:45:aa:b5:7e:b4:6a:39:37:fe:87:20:d2:ed:bd:4b: 7a:72:43:56:66:40:dc:c8:5d:8e:63:60:a0:5a:de:03:77:96: 1f:3f:cb:c1:63:3e:db:e1:5f:53:2e:b8:2d:df:2d:f3:24:33: ab:ee:e1:6d:72:c1:68:8f:b9:3a:2f:58:37:f6:14:c2:21:9c: f0:af:36:c3:c7:df:42:14:a8:ef:30:2e:81:15:8c:65:86:d9: e8:7a:23:e5:db:ae:35:78:29:be:93:3d:7f:c9:1d:42:06:c5: 6b:ff:77:59:47:3a:1e:17:e3:74:4e:d0:da:24:05:57:2c:d1: 17:7c:19:f4:4b:23:4f:90:fb:cb:ad:6c:45:83:56:b3:13:a7: ef:fb:ed:8d:fb:e5:b6:1b:61:84:3c:86:30:22:f8:63:82:cf: 91:09:40:2d:de:5f:47:c1:3c:5b:9c:4c:ae:ac:e5:dc:fc:d5: f4:61:4b:4f:2a:02:31:3e:43:45:6c:53:5b:b6:bb:7c:4b:83: dd:e4:61:ef:ff:24:7e:7b:4e:1a:5d:0a:73:82:ba:cf:64:ad: 2a:0e:c5:53:d2:5f:24:8a:ca:a2:04:c0:15:fe:0c:2c:ae:71: 3b:0a:8a:bb -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUGFw24wfgMMVCENvKv5BwE5DXVPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0RDMzkxNUIxNjFGMkYxRDRBRUZERjZCRjU4MUVFQzA5 NUIzRDYwRjAeFw0yNTA1MDYxMjIwMzZaFw0yNjA1MDUxMjI1MzZaMDMxMTAvBgNV BAMTKDA1MDAxREQyMzU1RTZEMEM5NjBBQTRGMEUwMzY0Q0I0RjE2RTE2QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMHgiXGMaaNQqI/pcrV9XjyNfG SBfA51525/tCV4bBQa6vKumcx79RwPqNzF3Ds2bUTn633IXNKvS0i4D8G9QRGLFg 1eDEOk4ocMh47X6Veutn52XCTJ5QCIGC4sJLGL1My79saMlBvvTqQMuld++16PLF 9VrhhA/O39GNP1gGm9BldBkRrDJPX+sX9G4UlNmeyMEHFZGsALB9QBrHuwfuMlrR C1Ib+w7MtCzZ8U3y9QFEoo9wA/CvhsDYpj/8IJDH/ERpZQWEDCq0PQ5zr3oNb7CU gULfGaTLR5p9tWm7xBre9iD57jwIpEM71YIzkNokNj2R63ttirhizNMzpXGFAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUBQAd0jVebQyWCqTw4DZMtPFuFqYwHwYDVR0j BBgwFoAUPcORWxYfLx1K799r9YHuwJWz1g8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ01KaHRWOE5kbUdYcXRYWnlaTHVoQXdRWmtYTk1vQlBQaTJDN2N4SFlW WWgvMC8zREMzOTE1QjE2MUYyRjFENEFFRkRGNkJGNTgxRUVDMDk1QjNENjBGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzNEQzM5MTVCMTYxRjJGMUQ0 QUVGREY2QkY1ODFFRUMwOTVCM0Q2MEYuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NNSmh0VjhOZG1HWHF0WFp5Wkx1aEF3UVprWE5Nb0JQUGkyQzdjeEhZVlloLzAv MzIzODMwMzQzYTM0MzYzNTM0M2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzNjM5MzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigERlTAMA0GCSqGSIb3DQEBCwUA A4IBAQAfJC0Aq7kqNUt/MVb3ofgM0VeqC55FqrV+tGo5N/6HINLtvUt6ckNWZkDc yF2OY2CgWt4Dd5YfP8vBYz7b4V9TLrgt3y3zJDOr7uFtcsFoj7k6L1g39hTCIZzw rzbDx99CFKjvMC6BFYxlhtnoeiPl2641eCm+kz1/yR1CBsVr/3dZRzoeF+N0TtDa JAVXLNEXfBn0SyNPkPvLrWxFg1azE6fv++2N++W2G2GEPIYwIvhjgs+RCUAt3l9H wTxbnEyurOXc/NX0YUtPKgIxPkNFbFNbtrt8S4Pd5GHv/yR+e04aXQpzgrrPZK0q DsVT0l8kisqiBMAV/gwsrnE7Coq7 -----END CERTIFICATE-----Generated at Mon May 12 04:21:29 2025 by rpki-client