$ rpki-client -vvf rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a383030303a3a2f33352d3335203d3e20323632373239.roa File: 323830343a313664383a383030303a3a2f33352d3335203d3e20323632373239.roa (raw, json) Hash identifier: Iwp2Hkj0EBc5ctuTR0xnZ+AWzQmiREFZLd4NdgYkAIY= Subject key identifier: 53:8D:1D:95:E3:4E:5D:20:DA:CA:1D:FC:C2:CD:0C:35:99:F3:62:56 Certificate issuer: /CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Certificate serial: 2DCDC15AF08D3A916D33D2CF8C8948282A58B841 Authority key identifier: B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject info access: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a383030303a3a2f33352d3335203d3e20323632373239.roa Signing time: Mon 16 Jun 2025 14:10:47 +0000 ROA not before: Mon 16 Jun 2025 14:05:47 +0000 ROA not after: Mon 15 Jun 2026 14:10:47 +0000 asID: 262729 IP address blocks: 2804:16d8:8000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 20 Jun 2025 14:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:cd:c1:5a:f0:8d:3a:91:6d:33:d2:cf:8c:89:48:28:2a:58:b8:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Validity Not Before: Jun 16 14:05:47 2025 GMT Not After : Jun 15 14:10:47 2026 GMT Subject: CN=538D1D95E34E5D20DACA1DFCC2CD0C3599F36256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:12:e7:c7:86:51:ad:c9:9e:41:48:6c:4e:2d: 6d:cc:26:b5:8f:1d:38:7d:f9:9c:0c:9c:bf:5c:9c: ae:b4:cb:38:e3:fb:85:d9:17:bb:05:59:e9:98:59: 2a:dc:ff:a8:80:5e:52:66:16:a0:83:34:8a:ac:ee: aa:2b:4d:d3:13:bb:83:ae:c2:80:6d:fa:84:e1:d5: fa:ef:65:bf:6a:c8:3f:cc:87:51:b1:f0:0b:4a:91: 05:33:49:5a:e8:3b:42:3f:47:e8:89:9b:a6:bc:5d: 85:d4:2f:23:5c:0d:ba:e3:be:04:b0:3c:2f:64:ca: 11:ed:3f:24:4a:01:51:a2:71:41:4f:30:03:2b:ea: a7:bb:08:d4:5d:a8:02:bf:e6:92:1c:f1:f4:f2:ee: b9:89:fb:af:1b:81:12:32:52:43:2c:db:25:8f:42: 56:5f:a4:af:22:87:58:44:fb:56:82:f3:e6:2e:f1: 38:52:28:78:59:1e:d2:4b:5f:f1:18:40:68:9f:6d: bc:5c:49:cc:e9:aa:c0:fc:ba:b4:eb:fc:59:3e:18: e4:f5:73:c1:32:71:ef:95:d7:f3:bb:5e:62:59:c0: b0:21:dd:ed:03:a7:61:87:b1:6d:57:49:7a:0b:2d: 65:da:0d:f4:fb:f7:79:ed:92:5b:97:85:73:75:23: 83:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8D:1D:95:E3:4E:5D:20:DA:CA:1D:FC:C2:CD:0C:35:99:F3:62:56 X509v3 Authority Key Identifier: keyid:B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a383030303a3a2f33352d3335203d3e20323632373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:16d8:8000::/35 Signature Algorithm: sha256WithRSAEncryption 14:c4:bd:9c:82:e0:70:cd:87:08:3b:a3:c6:fb:fb:de:06:c5: 5b:d8:fc:94:f9:b5:28:aa:2a:e4:49:9d:24:31:f3:a1:0a:14: f6:1b:25:8d:af:37:b1:1d:77:93:15:f2:25:8c:0e:9d:ab:62: 88:07:df:07:f6:97:4d:50:38:c0:9d:01:99:35:32:99:9e:a6: 88:e4:5f:fd:7a:bf:41:28:91:61:77:b0:7c:d8:ea:0d:ee:b6: ef:53:f8:b5:34:7b:1f:44:aa:8c:14:fa:28:f7:c5:93:11:04: b6:3e:c5:86:fc:7b:2f:78:70:85:bf:33:60:a5:ac:da:cc:1f: 48:34:b1:da:0e:0b:c2:c6:b6:17:aa:4a:87:56:d6:90:34:18: 68:7c:f9:9c:53:95:54:86:a4:9a:0f:a0:44:f3:59:0c:6a:57: 22:9e:70:fd:60:c2:18:7f:db:9e:d4:8e:1f:1e:12:06:7c:05: c8:18:2d:8f:7c:a2:1c:64:c7:7a:82:e1:07:eb:bb:e7:82:2b: 2c:25:cb:a8:ad:f7:b3:d1:a5:e9:7a:84:a5:39:a5:42:27:44: 57:eb:bc:b5:f0:2e:02:19:69:41:5a:0b:6f:6a:5e:df:b0:f6: cb:be:bd:e7:4a:a8:f6:67:b3:1a:a8:7c:e7:f6:c9:37:77:47: a7:1c:fe:e2 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIULc3BWvCNOpFtM9LPjIlIKCpYuEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEQjFCNThEQ0Q0NkMyRTc0NkQ4RERFQUE3RjQ5ODMz MUREQjAxNzAeFw0yNTA2MTYxNDA1NDdaFw0yNjA2MTUxNDEwNDdaMDMxMTAvBgNV BAMTKDUzOEQxRDk1RTM0RTVEMjBEQUNBMURGQ0MyQ0QwQzM1OTlGMzYyNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSEufHhlGtyZ5BSGxOLW3MJrWP HTh9+ZwMnL9cnK60yzjj+4XZF7sFWemYWSrc/6iAXlJmFqCDNIqs7qorTdMTu4Ou woBt+oTh1frvZb9qyD/Mh1Gx8AtKkQUzSVroO0I/R+iJm6a8XYXULyNcDbrjvgSw PC9kyhHtPyRKAVGicUFPMAMr6qe7CNRdqAK/5pIc8fTy7rmJ+68bgRIyUkMs2yWP QlZfpK8ih1hE+1aC8+Yu8ThSKHhZHtJLX/EYQGifbbxcSczpqsD8urTr/Fk+GOT1 c8Eyce+V1/O7XmJZwLAh3e0Dp2GHsW1XSXoLLWXaDfT793ntkluXhXN1I4O5AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUU40dleNOXSDayh38ws0MNZnzYlYwHwYDVR0j BBgwFoAUudsbWNzUbC50bY3eqn9JgzHdsBcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDVmUEVVcmNhM21RVW9hNVVMS3pGNVB6WTdZZExVSkdXbTRiRzF0ZUZn OWsvMC9COURCMUI1OERDRDQ2QzJFNzQ2RDhEREVBQTdGNDk4MzMxRERCMDE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5REIxQjU4RENENDZDMkU3 NDZEOERERUFBN0Y0OTgzMzFEREIwMTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q1ZlBFVXJjYTNtUVVvYTVVTEt6RjVQelk3WWRMVUpHV200YkcxdGVGZzlrLzAv MzIzODMwMzQzYTMxMzY2NDM4M2EzODMwMzAzMDNhM2EyZjMzMzUyZDMzMzUyMDNk M2UyMDMyMzYzMjM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSgEFtiAMA0GCSqGSIb3DQEBCwUA A4IBAQAUxL2cguBwzYcIO6PG+/veBsVb2PyU+bUoqirkSZ0kMfOhChT2GyWNrzex HXeTFfIljA6dq2KIB98H9pdNUDjAnQGZNTKZnqaI5F/9er9BKJFhd7B82OoN7rbv U/i1NHsfRKqMFPoo98WTEQS2PsWG/HsveHCFvzNgpazazB9INLHaDgvCxrYXqkqH VtaQNBhofPmcU5VUhqSaD6BE81kMalcinnD9YMIYf9ue1I4fHhIGfAXIGC2PfKIc ZMd6guEH67vngissJcuorfez0aXpeoSlOaVCJ0RX67y18C4CGWlBWgtval7fsPbL vr3nSqj2Z7MaqHzn9sk3d0enHP7i -----END CERTIFICATE-----Generated at Thu Jun 19 16:30:42 2025 by rpki-client