$ rpki-client -vvf rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a316430363a3a2f34382d3438203d3e20323632373239.roa File: 323830343a313664383a316430363a3a2f34382d3438203d3e20323632373239.roa (raw, json) Hash identifier: xJFygF6P0aVGm/J9FjbcZZYNUrk5DpShCJcPkSYTAYs= Subject key identifier: 2E:E9:E2:44:F4:3D:FF:CE:4F:70:A2:10:49:3E:D3:BE:A5:40:E2:E6 Certificate issuer: /CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Certificate serial: 17C14F8B2B0B9959110EB62447CB61BE468C06F3 Authority key identifier: B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject info access: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a316430363a3a2f34382d3438203d3e20323632373239.roa Signing time: Mon 16 Jun 2025 14:10:48 +0000 ROA not before: Mon 16 Jun 2025 14:05:48 +0000 ROA not after: Mon 15 Jun 2026 14:10:48 +0000 asID: 262729 IP address blocks: 2804:16d8:1d06::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 03 Jul 2025 07:21:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c1:4f:8b:2b:0b:99:59:11:0e:b6:24:47:cb:61:be:46:8c:06:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Validity Not Before: Jun 16 14:05:48 2025 GMT Not After : Jun 15 14:10:48 2026 GMT Subject: CN=2EE9E244F43DFFCE4F70A210493ED3BEA540E2E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5c:34:e5:e8:7f:2e:d2:bf:6b:ef:18:fc:4d: 01:6d:12:53:79:48:e7:ca:33:ed:0c:2b:a9:4d:53: b2:2c:d2:d6:6e:b8:09:7e:69:9c:cb:58:ef:16:83: 34:79:a0:9b:f6:58:f6:f4:76:86:43:a8:96:3f:2b: e0:ad:9a:3f:9f:a8:86:ae:70:8a:f9:e7:f0:63:07: 4f:a7:d3:0d:f3:88:04:cc:50:bd:3b:d7:da:6b:e1: dd:ce:19:0d:44:b6:ab:a3:73:3e:88:0b:00:ee:16: e6:e4:a0:18:cc:8e:b1:37:04:12:23:1b:68:5f:09: 4b:02:7e:45:bf:7a:51:66:7f:80:51:7a:db:89:2e: a0:69:5e:de:5e:29:c4:db:ea:94:21:af:a1:9d:12: f0:b6:78:70:7d:a7:bd:e9:17:5e:4e:32:05:ab:3e: 25:b8:98:4c:6f:3a:5b:fe:87:1d:5f:ca:3d:c4:c2: 76:28:d5:12:cd:33:65:f0:88:b1:27:39:b7:17:63: 51:8a:45:8c:df:5c:84:3d:b4:ac:d2:1c:d1:fd:41: 26:4c:ae:fe:54:0b:32:a3:51:7d:ae:97:96:89:6e: 31:a9:d1:45:c9:26:dc:00:bf:6e:b1:23:a2:85:90: 2e:1c:32:12:0c:91:8a:77:5c:03:f8:3d:66:92:ec: 7c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E9:E2:44:F4:3D:FF:CE:4F:70:A2:10:49:3E:D3:BE:A5:40:E2:E6 X509v3 Authority Key Identifier: keyid:B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a316430363a3a2f34382d3438203d3e20323632373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:16d8:1d06::/48 Signature Algorithm: sha256WithRSAEncryption a8:b9:8a:bb:bc:94:80:9d:bc:8d:2f:70:6f:1e:6e:34:57:07: df:27:85:86:75:bd:e7:67:ff:26:20:aa:93:15:e2:78:f1:9e: e9:30:c4:95:ac:c1:d2:48:c6:28:d7:d3:30:0c:bf:94:6a:81: 40:5b:55:e1:da:01:ef:ca:68:04:97:54:b7:00:a3:84:be:31: 57:46:38:62:a3:eb:0a:17:e0:d7:72:f1:fb:f4:09:f0:da:fe: e1:c5:53:e3:37:68:e7:52:7e:ec:41:93:6a:ab:12:d3:5a:5c: 20:92:61:14:d7:00:6f:49:8e:cb:c4:1e:0b:f7:6c:ce:45:88: a6:34:2f:45:8b:04:36:55:43:af:43:04:a1:96:ef:1a:8e:fa: 8f:7d:c6:d1:cb:a6:e7:87:91:73:d1:e4:08:2e:64:aa:ee:c4: 76:dc:fd:4f:d1:2c:b0:be:52:f8:7b:ee:ce:9f:63:bf:51:43: 1f:47:19:1a:1b:c7:dd:20:48:14:ba:c7:ea:30:50:18:c4:bd: ea:ac:f5:49:b4:c8:9f:67:1f:92:f2:48:4e:6b:f0:f9:40:57: 1e:0d:85:7c:96:01:b6:18:c5:87:4c:8c:1f:8a:52:d5:cf:61: 76:10:4d:45:63:bc:9f:83:7d:f9:e1:5e:2d:f0:7d:b2:f6:f7: 65:0e:59:11 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIUF8FPiysLmVkRDrYkR8thvkaMBvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEQjFCNThEQ0Q0NkMyRTc0NkQ4RERFQUE3RjQ5ODMz MUREQjAxNzAeFw0yNTA2MTYxNDA1NDhaFw0yNjA2MTUxNDEwNDhaMDMxMTAvBgNV BAMTKDJFRTlFMjQ0RjQzREZGQ0U0RjcwQTIxMDQ5M0VEM0JFQTU0MEUyRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8XDTl6H8u0r9r7xj8TQFtElN5 SOfKM+0MK6lNU7Is0tZuuAl+aZzLWO8WgzR5oJv2WPb0doZDqJY/K+Ctmj+fqIau cIr55/BjB0+n0w3ziATMUL0719pr4d3OGQ1Etqujcz6ICwDuFubkoBjMjrE3BBIj G2hfCUsCfkW/elFmf4BRetuJLqBpXt5eKcTb6pQhr6GdEvC2eHB9p73pF15OMgWr PiW4mExvOlv+hx1fyj3EwnYo1RLNM2XwiLEnObcXY1GKRYzfXIQ9tKzSHNH9QSZM rv5UCzKjUX2ul5aJbjGp0UXJJtwAv26xI6KFkC4cMhIMkYp3XAP4PWaS7Hy7AgMB AAGjggJcMIICWDAdBgNVHQ4EFgQULuniRPQ9/85PcKIQST7TvqVA4uYwHwYDVR0j BBgwFoAUudsbWNzUbC50bY3eqn9JgzHdsBcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDVmUEVVcmNhM21RVW9hNVVMS3pGNVB6WTdZZExVSkdXbTRiRzF0ZUZn OWsvMC9COURCMUI1OERDRDQ2QzJFNzQ2RDhEREVBQTdGNDk4MzMxRERCMDE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5REIxQjU4RENENDZDMkU3 NDZEOERERUFBN0Y0OTgzMzFEREIwMTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q1ZlBFVXJjYTNtUVVvYTVVTEt6RjVQelk3WWRMVUpHV200YkcxdGVGZzlrLzAv MzIzODMwMzQzYTMxMzY2NDM4M2EzMTY0MzAzNjNhM2EyZjM0MzgyZDM0MzgyMDNk M2UyMDMyMzYzMjM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACgEFtgdBjANBgkqhkiG9w0BAQsF AAOCAQEAqLmKu7yUgJ28jS9wbx5uNFcH3yeFhnW952f/JiCqkxXiePGe6TDElazB 0kjGKNfTMAy/lGqBQFtV4doB78poBJdUtwCjhL4xV0Y4YqPrChfg13Lx+/QJ8Nr+ 4cVT4zdo51J+7EGTaqsS01pcIJJhFNcAb0mOy8QeC/dszkWIpjQvRYsENlVDr0ME oZbvGo76j33G0cum54eRc9HkCC5kqu7Edtz9T9EssL5S+Hvuzp9jv1FDH0cZGhvH 3SBIFLrH6jBQGMS96qz1SbTIn2cfkvJITmvw+UBXHg2FfJYBthjFh0yMH4pS1c9h dhBNRWO8n4N9+eFeLfB9svb3ZQ5ZEQ== -----END CERTIFICATE-----Generated at Wed Jul 2 22:40:23 2025 by rpki-client