$ rpki-client -vvf rpki-repo.registro.br/repo/HKpSasfyKDDZ4LMnbdkiaUafqFq5JazURcXrUhw45QCP/2/323830343a363863303a3a2f33322d3334203d3e20323639373133.roa File: 323830343a363863303a3a2f33322d3334203d3e20323639373133.roa (raw, json) Hash identifier: tbcKupIBobQoNEhsSGP3mdjnex9wXdoC1F3addJWdJw= Subject key identifier: 23:F0:BA:A2:53:F2:18:E2:04:FB:87:2D:5E:0A:1C:79:36:C5:C4:75 Certificate issuer: /CN=714DBA4ABCB1DE4B97627125F21027C00193E5D9 Certificate serial: 3F5A2A0905C8415EAFC47811B791F4601E98255C Authority key identifier: 71:4D:BA:4A:BC:B1:DE:4B:97:62:71:25:F2:10:27:C0:01:93:E5:D9 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/714DBA4ABCB1DE4B97627125F21027C00193E5D9.cer Subject info access: rsync://rpki-repo.registro.br/repo/HKpSasfyKDDZ4LMnbdkiaUafqFq5JazURcXrUhw45QCP/2/323830343a363863303a3a2f33322d3334203d3e20323639373133.roa Signing time: Tue 25 Mar 2025 12:00:00 +0000 ROA not before: Tue 25 Mar 2025 11:55:00 +0000 ROA not after: Tue 24 Mar 2026 12:00:00 +0000 asID: 269713 IP address blocks: 2804:68c0::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HKpSasfyKDDZ4LMnbdkiaUafqFq5JazURcXrUhw45QCP/2/714DBA4ABCB1DE4B97627125F21027C00193E5D9.crl rsync://rpki-repo.registro.br/repo/HKpSasfyKDDZ4LMnbdkiaUafqFq5JazURcXrUhw45QCP/2/714DBA4ABCB1DE4B97627125F21027C00193E5D9.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/714DBA4ABCB1DE4B97627125F21027C00193E5D9.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 17 May 2025 19:47:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:5a:2a:09:05:c8:41:5e:af:c4:78:11:b7:91:f4:60:1e:98:25:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=714DBA4ABCB1DE4B97627125F21027C00193E5D9 Validity Not Before: Mar 25 11:55:00 2025 GMT Not After : Mar 24 12:00:00 2026 GMT Subject: CN=23F0BAA253F218E204FB872D5E0A1C7936C5C475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d9:96:1b:6e:6b:99:ad:9c:79:ec:1b:4f:fe: 8f:c9:da:eb:43:f4:a9:b7:dd:3d:b6:a0:7d:3b:cc: 94:1a:2c:6d:f4:8c:f4:6e:ac:c7:fd:af:fa:7f:95: e5:51:f8:93:d8:e1:ff:aa:13:bb:ac:54:dd:17:00: e9:07:df:50:c9:f7:86:99:72:29:80:e8:3a:e8:9f: fb:2c:08:46:60:33:54:d3:f0:16:5c:90:a1:17:72: f2:44:8d:4c:f0:5f:35:08:17:80:07:1a:6c:b4:40: 92:a2:9d:22:fa:6a:46:57:3c:8f:ac:89:36:99:df: 39:1f:0a:c6:11:b5:e5:98:97:9f:08:8e:67:58:5e: 5a:93:a8:89:3b:56:ca:45:27:cc:6a:1c:53:73:34: 8e:3b:68:b8:a0:35:b1:91:e2:e4:ea:1d:cf:0d:5a: e1:fb:f1:70:22:0a:2b:95:82:5f:61:d0:79:0f:bb: af:3d:fa:c6:ed:fd:cb:41:ec:d6:39:7a:b4:15:21: 11:c3:b7:ee:94:54:9d:54:5c:29:53:58:e5:43:05: 23:89:93:2c:3e:04:cf:37:c4:98:e9:70:97:12:03: d4:5d:52:e9:6d:06:75:72:1a:6c:53:86:60:d8:4d: 58:90:db:dc:c5:92:c6:8b:c9:a2:70:96:f2:78:06: da:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F0:BA:A2:53:F2:18:E2:04:FB:87:2D:5E:0A:1C:79:36:C5:C4:75 X509v3 Authority Key Identifier: keyid:71:4D:BA:4A:BC:B1:DE:4B:97:62:71:25:F2:10:27:C0:01:93:E5:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HKpSasfyKDDZ4LMnbdkiaUafqFq5JazURcXrUhw45QCP/2/714DBA4ABCB1DE4B97627125F21027C00193E5D9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/714DBA4ABCB1DE4B97627125F21027C00193E5D9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HKpSasfyKDDZ4LMnbdkiaUafqFq5JazURcXrUhw45QCP/2/323830343a363863303a3a2f33322d3334203d3e20323639373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:68c0::/32 Signature Algorithm: sha256WithRSAEncryption 71:df:55:ce:3a:6e:57:e5:7e:7a:77:01:33:28:71:79:a6:fe: f6:a8:86:4c:af:ce:ae:31:7c:1b:c3:ef:7b:08:8e:d8:ff:f8: f8:a3:eb:77:ac:af:c2:ce:77:b2:b6:07:e0:1a:4d:b7:5d:18: 85:5b:f3:b0:6e:f2:19:41:09:da:48:81:55:6e:bc:09:5f:06: 83:a5:73:20:78:c9:da:7c:08:d2:4b:e7:5c:dd:9c:67:c6:6c: 0c:a2:8c:3b:c8:4a:a0:a8:3c:1a:2e:5e:a2:84:ce:e5:ca:a8: 83:c6:cb:7d:dd:de:35:35:c9:8f:f0:31:99:3e:58:67:65:c5: 24:28:f2:73:8e:a2:eb:db:fb:f3:c2:bc:1a:ad:8e:a1:c2:31: b0:01:e2:95:ad:26:e4:c0:d2:37:d7:18:5b:cf:f3:f9:70:3d: f4:22:e8:4d:10:ac:ba:17:9d:cb:25:a4:c4:48:dc:2d:f0:ec: 58:99:51:c3:ad:6b:9f:a5:b4:c4:55:fa:ad:a6:49:c7:32:14: e2:fd:92:7a:43:e2:4b:69:83:92:e1:01:b7:c1:02:7a:7e:ce: ab:ac:d7:01:ce:78:bd:d6:7c:a0:7f:99:eb:de:ce:f5:19:e7: 4e:7a:41:01:9f:9f:ed:bb:cc:a9:ea:06:6c:25:38:6c:b9:13: 4f:63:e3:48 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIUP1oqCQXIQV6vxHgRt5H0YB6YJVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzE0REJBNEFCQ0IxREU0Qjk3NjI3MTI1RjIxMDI3QzAw MTkzRTVEOTAeFw0yNTAzMjUxMTU1MDBaFw0yNjAzMjQxMjAwMDBaMDMxMTAvBgNV BAMTKDIzRjBCQUEyNTNGMjE4RTIwNEZCODcyRDVFMEExQzc5MzZDNUM0NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa2ZYbbmuZrZx57BtP/o/J2utD 9Km33T22oH07zJQaLG30jPRurMf9r/p/leVR+JPY4f+qE7usVN0XAOkH31DJ94aZ cimA6Dron/ssCEZgM1TT8BZckKEXcvJEjUzwXzUIF4AHGmy0QJKinSL6akZXPI+s iTaZ3zkfCsYRteWYl58IjmdYXlqTqIk7VspFJ8xqHFNzNI47aLigNbGR4uTqHc8N WuH78XAiCiuVgl9h0HkPu689+sbt/ctB7NY5erQVIRHDt+6UVJ1UXClTWOVDBSOJ kyw+BM83xJjpcJcSA9RdUultBnVyGmxThmDYTViQ29zFksaLyaJwlvJ4BtoFAgMB AAGjggJQMIICTDAdBgNVHQ4EFgQUI/C6olPyGOIE+4ctXgoceTbFxHUwHwYDVR0j BBgwFoAUcU26Sryx3kuXYnEl8hAnwAGT5dkwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSEtwU2FzZnlLRERaNExNbmJka2lhVWFmcUZxNUphelVSY1hyVWh3NDVR Q1AvMi83MTREQkE0QUJDQjFERTRCOTc2MjcxMjVGMjEwMjdDMDAxOTNFNUQ5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcxNERCQTRBQkNCMURFNEI5 NzYyNzEyNUYyMTAyN0MwMDE5M0U1RDkuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hLcFNhc2Z5S0REWjRMTW5iZGtpYVVhZnFGcTVKYXpVUmNYclVodzQ1UUNQLzIv MzIzODMwMzQzYTM2Mzg2MzMwM2EzYTJmMzMzMjJkMzMzNDIwM2QzZTIwMzIzNjM5 MzczMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH AQH/BBEwDzANBAIAAjAHAwUAKARowDANBgkqhkiG9w0BAQsFAAOCAQEAcd9Vzjpu V+V+encBMyhxeab+9qiGTK/OrjF8G8PvewiO2P/4+KPrd6yvws53srYH4BpNt10Y hVvzsG7yGUEJ2kiBVW68CV8Gg6VzIHjJ2nwI0kvnXN2cZ8ZsDKKMO8hKoKg8Gi5e ooTO5cqog8bLfd3eNTXJj/AxmT5YZ2XFJCjyc46i69v788K8Gq2OocIxsAHila0m 5MDSN9cYW8/z+XA99CLoTRCsuhedyyWkxEjcLfDsWJlRw61rn6W0xFX6raZJxzIU 4v2SekPiS2mDkuEBt8ECen7Oq6zXAc54vdZ8oH+Z697O9RnnTnpBAZ+f7bvMqeoG bCU4bLkTT2PjSA== -----END CERTIFICATE-----Generated at Sat May 17 11:14:17 2025 by rpki-client