$ rpki-client -vvf rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/323830343a353564633a613030303a3a2f33352d3335203d3e20323637393631.roa File: 323830343a353564633a613030303a3a2f33352d3335203d3e20323637393631.roa (raw, json) Hash identifier: QGRbJzmP3kyGLcVJDyQ73NkJDm56c8v6temCkQsS9N0= Subject key identifier: 0E:78:43:04:5D:D4:01:28:B8:A7:2D:CA:9D:C7:47:54:5E:8B:01:47 Certificate issuer: /CN=DB20EFFC604C0A0B4EA1164B7FD7670E251B3675 Certificate serial: 32ADADE713993BAD6BF79BC3489AAA2195AB65DB Authority key identifier: DB:20:EF:FC:60:4C:0A:0B:4E:A1:16:4B:7F:D7:67:0E:25:1B:36:75 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DB20EFFC604C0A0B4EA1164B7FD7670E251B3675.cer Subject info access: rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/323830343a353564633a613030303a3a2f33352d3335203d3e20323637393631.roa Signing time: Sat 10 May 2025 20:20:26 +0000 ROA not before: Sat 10 May 2025 20:15:26 +0000 ROA not after: Sat 09 May 2026 20:20:26 +0000 asID: 267961 IP address blocks: 2804:55dc:a000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/DB20EFFC604C0A0B4EA1164B7FD7670E251B3675.crl rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/DB20EFFC604C0A0B4EA1164B7FD7670E251B3675.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DB20EFFC604C0A0B4EA1164B7FD7670E251B3675.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 12 May 2025 02:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ad:ad:e7:13:99:3b:ad:6b:f7:9b:c3:48:9a:aa:21:95:ab:65:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB20EFFC604C0A0B4EA1164B7FD7670E251B3675 Validity Not Before: May 10 20:15:26 2025 GMT Not After : May 9 20:20:26 2026 GMT Subject: CN=0E7843045DD40128B8A72DCA9DC747545E8B0147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:64:bd:92:b1:79:ab:d6:3f:ac:1b:60:d7:a8: ad:80:72:01:cd:69:84:1f:0f:ce:5b:a7:6d:2a:cd: 52:96:d5:31:ee:ad:e1:02:6f:31:3f:3b:ed:2c:2b: 32:44:43:37:6e:c7:d5:cf:d9:67:09:f7:49:00:c7: b4:7b:2a:3c:60:e5:e7:63:15:ee:0e:3f:cc:ba:6d: bb:69:41:be:6e:d8:d6:63:03:2e:65:89:5c:74:45: b5:ce:f5:a2:d2:22:cc:52:36:07:d6:80:2c:e0:4d: 56:4b:3c:cd:63:42:cb:93:aa:a3:28:13:b5:f6:28: d3:7d:c0:5a:a2:00:91:0b:b0:07:a9:4f:cc:0e:c0: a8:cf:26:03:2d:f1:fc:5a:9c:64:58:86:9d:36:ac: d5:0a:6b:88:aa:85:68:c3:5a:3f:c8:75:4c:06:6d: 55:20:62:8e:98:ff:5a:9c:cc:73:14:91:6d:a1:e9: 70:26:4f:d2:c1:b5:46:89:60:f4:9c:36:35:e6:8b: be:a0:8f:2e:ee:16:21:ad:d3:13:76:cb:ec:b8:20: bd:2f:cd:3d:e8:47:4b:4e:a3:47:ed:ed:1d:e6:75: 85:25:ec:6e:7d:aa:5b:d2:74:86:27:35:b2:a9:3b: c6:4a:eb:1b:e0:c4:6b:39:43:75:5b:9e:f5:65:52: 09:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:78:43:04:5D:D4:01:28:B8:A7:2D:CA:9D:C7:47:54:5E:8B:01:47 X509v3 Authority Key Identifier: keyid:DB:20:EF:FC:60:4C:0A:0B:4E:A1:16:4B:7F:D7:67:0E:25:1B:36:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/DB20EFFC604C0A0B4EA1164B7FD7670E251B3675.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DB20EFFC604C0A0B4EA1164B7FD7670E251B3675.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/323830343a353564633a613030303a3a2f33352d3335203d3e20323637393631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:55dc:a000::/35 Signature Algorithm: sha256WithRSAEncryption 25:c6:84:aa:fc:88:86:a2:55:c4:93:ce:86:3c:6a:14:42:40: 60:87:dd:2b:e0:d0:a4:0f:51:3d:2f:49:49:fa:b9:a0:c7:e4: a1:fc:ab:5f:15:95:ac:da:6f:ac:8f:f6:68:40:43:2a:0f:c7: 53:b4:e6:c3:1b:6d:a0:74:af:4a:7c:0f:9c:90:e7:4a:e5:b7: be:96:1b:8c:9b:5e:b0:fb:3a:00:01:88:1d:f0:d0:e3:c5:a1: 96:c1:0a:e5:a1:b6:76:87:6e:c2:53:16:3d:06:d8:03:ee:1d: 3c:22:cc:36:47:c3:45:49:a7:df:b1:f1:f0:7c:55:67:0f:86: ae:8d:85:af:7d:2c:f1:42:4a:6f:0f:0d:a8:9f:ee:24:5a:0a: ed:59:39:79:62:35:52:b9:29:ff:05:bc:ad:7f:2f:73:ba:f5: 63:ad:da:1c:bd:e5:60:4b:3a:3e:0c:54:9e:85:f1:bc:8e:f1: bc:82:64:cf:d8:47:07:88:85:9b:8f:72:b4:a1:0d:e5:c3:df: 42:6a:db:0e:37:5d:ca:a5:d0:d8:3c:6f:e0:79:a7:60:74:ba: c2:69:12:56:b6:9f:4b:0d:9a:5a:5d:64:15:9c:4e:c1:c5:95: 87:0c:bb:4c:0a:0a:44:95:e5:ed:f2:0a:79:45:23:46:5d:d1: 65:6d:0a:1b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUMq2t5xOZO61r95vDSJqqIZWrZdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREIyMEVGRkM2MDRDMEEwQjRFQTExNjRCN0ZENzY3MEUy NTFCMzY3NTAeFw0yNTA1MTAyMDE1MjZaFw0yNjA1MDkyMDIwMjZaMDMxMTAvBgNV BAMTKDBFNzg0MzA0NURENDAxMjhCOEE3MkRDQTlEQzc0NzU0NUU4QjAxNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsZL2SsXmr1j+sG2DXqK2AcgHN aYQfD85bp20qzVKW1THureECbzE/O+0sKzJEQzdux9XP2WcJ90kAx7R7Kjxg5edj Fe4OP8y6bbtpQb5u2NZjAy5liVx0RbXO9aLSIsxSNgfWgCzgTVZLPM1jQsuTqqMo E7X2KNN9wFqiAJELsAepT8wOwKjPJgMt8fxanGRYhp02rNUKa4iqhWjDWj/IdUwG bVUgYo6Y/1qczHMUkW2h6XAmT9LBtUaJYPScNjXmi76gjy7uFiGt0xN2y+y4IL0v zT3oR0tOo0ft7R3mdYUl7G59qlvSdIYnNbKpO8ZK6xvgxGs5Q3VbnvVlUgnbAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUDnhDBF3UASi4py3KncdHVF6LAUcwHwYDVR0j BBgwFoAU2yDv/GBMCgtOoRZLf9dnDiUbNnUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vR2V1RnRIUUwzUTMxY0Jjbm9iRlZkcEN2WUdpQTZiMTRnQnh6V1hKWGR6 aFYvMC9EQjIwRUZGQzYwNEMwQTBCNEVBMTE2NEI3RkQ3NjcwRTI1MUIzNjc1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RCMjBFRkZDNjA0QzBBMEI0 RUExMTY0QjdGRDc2NzBFMjUxQjM2NzUuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0dldUZ0SFFMM1EzMWNCY25vYkZWZHBDdllHaUE2YjE0Z0J4eldYSlhkemhWLzAv MzIzODMwMzQzYTM1MzU2NDYzM2E2MTMwMzAzMDNhM2EyZjMzMzUyZDMzMzUyMDNk M2UyMDMyMzYzNzM5MzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSgEVdygMA0GCSqGSIb3DQEBCwUA A4IBAQAlxoSq/IiGolXEk86GPGoUQkBgh90r4NCkD1E9L0lJ+rmgx+Sh/KtfFZWs 2m+sj/ZoQEMqD8dTtObDG22gdK9KfA+ckOdK5be+lhuMm16w+zoAAYgd8NDjxaGW wQrlobZ2h27CUxY9BtgD7h08Isw2R8NFSaffsfHwfFVnD4aujYWvfSzxQkpvDw2o n+4kWgrtWTl5YjVSuSn/Bbytfy9zuvVjrdocveVgSzo+DFSehfG8jvG8gmTP2EcH iIWbj3K0oQ3lw99CatsON13KpdDYPG/geadgdLrCaRJWtp9LDZpaXWQVnE7BxZWH DLtMCgpEleXt8gp5RSNGXdFlbQob -----END CERTIFICATE-----Generated at Sun May 11 16:14:36 2025 by rpki-client