$ rpki-client -vvf rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a323030303a3a2f33362d3336203d3e20323632373239.roa File: 323830343a313664383a323030303a3a2f33362d3336203d3e20323632373239.roa (raw, json) Hash identifier: xR+D1nGkbbX14J2U1zKzfOhZXjv/T9JWkdg9choiWgs= Subject key identifier: D7:50:AB:FD:CF:70:1E:CA:F5:F7:CD:3D:E8:FF:EF:69:24:A3:09:08 Certificate issuer: /CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Certificate serial: 4E0F9D72EC73DD537BF2F65B27F7FFAEEC2E933B Authority key identifier: B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject info access: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a323030303a3a2f33362d3336203d3e20323632373239.roa Signing time: Mon 16 Jun 2025 14:10:45 +0000 ROA not before: Mon 16 Jun 2025 14:05:45 +0000 ROA not after: Mon 15 Jun 2026 14:10:45 +0000 asID: 262729 IP address blocks: 2804:16d8:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 19 Jun 2025 19:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:0f:9d:72:ec:73:dd:53:7b:f2:f6:5b:27:f7:ff:ae:ec:2e:93:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Validity Not Before: Jun 16 14:05:45 2025 GMT Not After : Jun 15 14:10:45 2026 GMT Subject: CN=D750ABFDCF701ECAF5F7CD3DE8FFEF6924A30908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:20:4f:95:2d:b7:bf:79:4c:67:b4:f9:dd:6f: a3:f8:51:d9:d3:1c:ec:6a:ef:e1:cf:02:9d:5d:89: a8:e9:78:87:b9:a9:b8:05:4e:86:c7:19:ad:ff:e8: f7:a6:a2:5e:84:69:b7:24:46:96:c0:9b:2e:30:fe: 13:28:dc:cf:48:37:6a:d4:23:f1:4d:da:aa:f5:b8: ab:53:7b:dc:be:48:4b:88:c5:16:99:de:8b:63:f2: 11:6b:e6:e5:80:7e:ee:97:e3:a4:13:10:b6:51:fb: 51:e9:1d:1b:2a:95:32:67:a9:35:91:69:e3:be:81: b0:4a:5c:c8:c3:7d:82:83:c6:31:85:2a:7c:83:db: 6d:d9:77:31:fd:7f:99:9b:ae:99:c4:ea:ef:9e:a2: 17:43:28:df:cd:f9:9f:cc:06:da:87:eb:22:f4:54: 90:07:aa:d0:3e:c2:34:1d:ff:94:3b:05:dc:1c:f6: cc:d5:d5:3a:1a:94:de:30:5e:7a:d0:8d:d8:d4:55: cb:f0:5e:3b:4b:82:0e:03:60:29:5b:b3:e4:cb:96: 2c:0c:37:4c:e3:f1:6b:b6:65:3f:50:75:91:18:46: 92:17:ef:39:32:a5:91:66:2d:dd:63:91:8b:b0:52: e5:bf:87:bf:44:b5:69:b6:6e:cf:be:3f:04:90:44: a2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:50:AB:FD:CF:70:1E:CA:F5:F7:CD:3D:E8:FF:EF:69:24:A3:09:08 X509v3 Authority Key Identifier: keyid:B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a323030303a3a2f33362d3336203d3e20323632373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:16d8:2000::/36 Signature Algorithm: sha256WithRSAEncryption 2a:67:36:7b:8e:ac:58:70:5b:c6:0b:9e:90:e1:42:0d:bc:cf: 2b:6a:5f:00:8b:49:c2:99:84:86:da:fa:6b:a9:b2:b1:f9:b1: b1:b3:37:66:81:db:68:9d:42:6d:db:57:67:d7:0e:61:04:f7: da:95:d0:e7:0a:61:ef:40:2f:05:a2:e4:5b:a4:cd:0a:fd:9c: 24:31:cd:c4:ac:ac:a6:e5:1d:ce:b5:16:1e:8d:3f:d4:df:a5: 58:31:2e:34:b6:d3:6f:91:1e:40:2d:b8:c9:93:bc:f0:17:7c: bd:6f:62:c2:b9:95:a0:ac:35:03:fe:8e:49:4d:20:13:6a:58: 52:8a:d7:89:46:5e:94:04:12:e8:e5:66:bd:92:f8:2b:a4:89: b0:bd:84:4d:50:34:5c:9b:b9:d7:ac:b3:91:b0:8d:56:3b:16: 39:95:22:a8:ea:97:c5:6c:f9:f2:cf:bf:fc:a7:c9:54:3a:c8: b9:1a:8f:3f:ea:fa:5c:42:50:71:f7:73:bd:c8:81:40:10:57: d5:ca:b1:31:58:49:bf:d4:5e:59:72:25:47:a7:88:ad:c2:b1: 2c:d3:33:c4:c3:9f:5f:d4:5f:b5:28:11:a2:3e:c1:1c:91:d5: ad:8d:bf:da:fc:fc:db:86:c3:d5:77:8b:bc:72:59:b6:b2:95: cf:cb:81:c2 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUTg+dcuxz3VN78vZbJ/f/ruwukzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEQjFCNThEQ0Q0NkMyRTc0NkQ4RERFQUE3RjQ5ODMz MUREQjAxNzAeFw0yNTA2MTYxNDA1NDVaFw0yNjA2MTUxNDEwNDVaMDMxMTAvBgNV BAMTKEQ3NTBBQkZEQ0Y3MDFFQ0FGNUY3Q0QzREU4RkZFRjY5MjRBMzA5MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvIE+VLbe/eUxntPndb6P4UdnT HOxq7+HPAp1diajpeIe5qbgFTobHGa3/6Pemol6EabckRpbAmy4w/hMo3M9IN2rU I/FN2qr1uKtTe9y+SEuIxRaZ3otj8hFr5uWAfu6X46QTELZR+1HpHRsqlTJnqTWR aeO+gbBKXMjDfYKDxjGFKnyD223ZdzH9f5mbrpnE6u+eohdDKN/N+Z/MBtqH6yL0 VJAHqtA+wjQd/5Q7Bdwc9szV1ToalN4wXnrQjdjUVcvwXjtLgg4DYClbs+TLliwM N0zj8Wu2ZT9QdZEYRpIX7zkypZFmLd1jkYuwUuW/h79EtWm2bs++PwSQRKJfAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU11Cr/c9wHsr198096P/vaSSjCQgwHwYDVR0j BBgwFoAUudsbWNzUbC50bY3eqn9JgzHdsBcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDVmUEVVcmNhM21RVW9hNVVMS3pGNVB6WTdZZExVSkdXbTRiRzF0ZUZn OWsvMC9COURCMUI1OERDRDQ2QzJFNzQ2RDhEREVBQTdGNDk4MzMxRERCMDE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5REIxQjU4RENENDZDMkU3 NDZEOERERUFBN0Y0OTgzMzFEREIwMTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q1ZlBFVXJjYTNtUVVvYTVVTEt6RjVQelk3WWRMVUpHV200YkcxdGVGZzlrLzAv MzIzODMwMzQzYTMxMzY2NDM4M2EzMjMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzMjM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEFtggMA0GCSqGSIb3DQEBCwUA A4IBAQAqZzZ7jqxYcFvGC56Q4UINvM8ral8Ai0nCmYSG2vprqbKx+bGxszdmgdto nUJt21dn1w5hBPfaldDnCmHvQC8FouRbpM0K/ZwkMc3ErKym5R3OtRYejT/U36VY MS40ttNvkR5ALbjJk7zwF3y9b2LCuZWgrDUD/o5JTSATalhSiteJRl6UBBLo5Wa9 kvgrpImwvYRNUDRcm7nXrLORsI1WOxY5lSKo6pfFbPnyz7/8p8lUOsi5Go8/6vpc QlBx93O9yIFAEFfVyrExWEm/1F5ZciVHp4itwrEs0zPEw59f1F+1KBGiPsEckdWt jb/a/PzbhsPVd4u8clm2spXPy4HC -----END CERTIFICATE-----Generated at Thu Jun 19 04:58:43 2025 by rpki-client