$ rpki-client -vvf rpki-repo.registro.br/repo/DVaBNpcMKzq7DBzxANUPfQCgHSD1E3zauTXCscViW4H4/0/323830343a3539383a3a2f33322d3438203d3e20323632353236.roa File: 323830343a3539383a3a2f33322d3438203d3e20323632353236.roa (raw, json) Hash identifier: 9vkV4bXGio69RHBodWZNsdS05poTKo1o3sr0/N2+FGA= Subject key identifier: B1:F2:CD:D0:B2:99:0B:17:23:A0:50:25:98:24:B9:CC:0B:C8:4B:7B Certificate issuer: /CN=FF5D171186C7F92AA82E56A3848B9D1390938458 Certificate serial: 712CA3686E0B3E55090CF160C606FDE213C06E63 Authority key identifier: FF:5D:17:11:86:C7:F9:2A:A8:2E:56:A3:84:8B:9D:13:90:93:84:58 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FF5D171186C7F92AA82E56A3848B9D1390938458.cer Subject info access: rsync://rpki-repo.registro.br/repo/DVaBNpcMKzq7DBzxANUPfQCgHSD1E3zauTXCscViW4H4/0/323830343a3539383a3a2f33322d3438203d3e20323632353236.roa Signing time: Wed 30 Apr 2025 18:28:56 +0000 ROA not before: Wed 30 Apr 2025 18:23:56 +0000 ROA not after: Wed 29 Apr 2026 18:28:56 +0000 asID: 262526 IP address blocks: 2804:598::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DVaBNpcMKzq7DBzxANUPfQCgHSD1E3zauTXCscViW4H4/0/FF5D171186C7F92AA82E56A3848B9D1390938458.crl rsync://rpki-repo.registro.br/repo/DVaBNpcMKzq7DBzxANUPfQCgHSD1E3zauTXCscViW4H4/0/FF5D171186C7F92AA82E56A3848B9D1390938458.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FF5D171186C7F92AA82E56A3848B9D1390938458.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 01 May 2025 20:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:2c:a3:68:6e:0b:3e:55:09:0c:f1:60:c6:06:fd:e2:13:c0:6e:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF5D171186C7F92AA82E56A3848B9D1390938458 Validity Not Before: Apr 30 18:23:56 2025 GMT Not After : Apr 29 18:28:56 2026 GMT Subject: CN=B1F2CDD0B2990B1723A050259824B9CC0BC84B7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:80:66:0b:b7:08:0d:62:e9:c9:86:6f:db:a3: 3b:bf:e5:cf:2b:ee:b9:5c:67:b0:4e:93:ab:87:40: 9b:77:79:a9:6a:06:6a:91:ce:87:9d:f2:e8:16:9b: 01:0b:84:9d:c8:23:04:a0:09:70:a7:44:48:f0:52: 02:8a:e2:8f:70:d6:a9:47:18:d9:6f:6d:2f:43:4c: a7:78:6e:c1:2b:5e:ee:d7:97:3d:0b:53:7e:c6:02: ec:4c:a7:4a:98:a9:3e:0b:87:9b:4c:bb:51:2c:d7: 12:e8:87:02:c8:93:53:1a:b5:cf:10:f1:21:4e:19: 79:8e:d7:77:02:6f:88:e4:f7:55:29:27:f5:02:4e: 4f:73:46:d6:6c:8f:b5:f0:45:3b:0d:b3:21:85:35: 46:8c:b8:c0:cb:1a:a8:b6:fa:0c:dc:84:c5:c2:c2: 33:3d:5c:3f:cc:66:7d:49:5f:a3:96:78:f4:ce:91: f4:19:e0:33:a1:bb:a0:10:f7:43:72:85:14:96:d6: db:7a:31:5d:64:5d:e6:50:49:c5:3b:1b:fe:91:6e: 0f:6d:d2:b1:72:c2:bf:c5:0e:ce:f6:9c:19:5c:0f: ca:e1:05:af:77:48:9c:c4:76:e3:49:0e:51:de:ee: d5:59:55:d4:fa:e1:d0:cb:1b:6b:a1:ca:c9:61:8e: 55:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F2:CD:D0:B2:99:0B:17:23:A0:50:25:98:24:B9:CC:0B:C8:4B:7B X509v3 Authority Key Identifier: keyid:FF:5D:17:11:86:C7:F9:2A:A8:2E:56:A3:84:8B:9D:13:90:93:84:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DVaBNpcMKzq7DBzxANUPfQCgHSD1E3zauTXCscViW4H4/0/FF5D171186C7F92AA82E56A3848B9D1390938458.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FF5D171186C7F92AA82E56A3848B9D1390938458.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DVaBNpcMKzq7DBzxANUPfQCgHSD1E3zauTXCscViW4H4/0/323830343a3539383a3a2f33322d3438203d3e20323632353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:598::/32 Signature Algorithm: sha256WithRSAEncryption 59:f2:dd:2c:e6:59:e8:da:57:01:9c:2d:65:4d:2d:da:0c:4a: 99:d1:49:42:64:47:c5:11:d7:f3:b9:b1:41:37:e6:71:f2:4e: c2:34:9e:82:eb:bb:4b:88:a7:35:e6:2b:cc:1f:b1:e4:94:07: 27:90:96:e1:76:54:8b:2f:1f:d7:57:3f:fb:20:98:47:3e:d2: 66:66:71:67:03:16:6f:f1:a4:6c:89:7d:69:92:db:d2:7d:c9: 47:ce:dc:62:65:db:1c:83:c3:ab:f0:74:62:26:0c:11:63:ff: a3:dd:2d:7d:ba:ec:ec:15:5d:9f:37:f3:6e:92:d0:52:d3:83: 5a:43:b5:b1:ce:ef:5d:87:98:05:53:11:6a:8a:c5:fc:89:a4: 75:ab:8f:fe:fe:2b:8d:48:f3:62:f2:c1:39:57:70:ef:e0:53: 11:08:46:74:9d:10:88:d9:19:82:10:15:a2:54:12:98:9e:86: f0:02:32:00:b9:51:5f:70:17:be:64:6f:35:98:73:8c:07:3f: 0b:24:cd:78:15:c8:ac:a5:14:d8:fb:45:36:32:8a:3e:be:97: fa:2a:fd:14:fc:5d:34:ca:02:9d:88:e4:eb:b4:d1:cf:bb:27: 7e:91:71:57:7a:e6:b2:81:56:4d:b5:8f:4b:86:23:0b:12:46: a6:bd:6a:5b -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUcSyjaG4LPlUJDPFgxgb94hPAbmMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY1RDE3MTE4NkM3RjkyQUE4MkU1NkEzODQ4QjlEMTM5 MDkzODQ1ODAeFw0yNTA0MzAxODIzNTZaFw0yNjA0MjkxODI4NTZaMDMxMTAvBgNV BAMTKEIxRjJDREQwQjI5OTBCMTcyM0EwNTAyNTk4MjRCOUNDMEJDODRCN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQgGYLtwgNYunJhm/bozu/5c8r 7rlcZ7BOk6uHQJt3ealqBmqRzoed8ugWmwELhJ3IIwSgCXCnREjwUgKK4o9w1qlH GNlvbS9DTKd4bsErXu7Xlz0LU37GAuxMp0qYqT4Lh5tMu1Es1xLohwLIk1Matc8Q 8SFOGXmO13cCb4jk91UpJ/UCTk9zRtZsj7XwRTsNsyGFNUaMuMDLGqi2+gzchMXC wjM9XD/MZn1JX6OWePTOkfQZ4DOhu6AQ90NyhRSW1tt6MV1kXeZQScU7G/6Rbg9t 0rFywr/FDs72nBlcD8rhBa93SJzEduNJDlHe7tVZVdT64dDLG2uhyslhjlVRAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUsfLN0LKZCxcjoFAlmCS5zAvIS3swHwYDVR0j BBgwFoAU/10XEYbH+SqoLlajhIudE5CThFgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRFZhQk5wY01LenE3REJ6eEFOVVBmUUNnSFNEMUUzemF1VFhDc2NWaVc0 SDQvMC9GRjVEMTcxMTg2QzdGOTJBQTgyRTU2QTM4NDhCOUQxMzkwOTM4NDU4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0ZGNUQxNzExODZDN0Y5MkFB ODJFNTZBMzg0OEI5RDEzOTA5Mzg0NTguY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RWYUJOcGNNS3pxN0RCenhBTlVQZlFDZ0hTRDFFM3phdVRYQ3NjVmlXNEg0LzAv MzIzODMwMzQzYTM1MzkzODNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzYzMjM1 MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACgEBZgwDQYJKoZIhvcNAQELBQADggEBAFny3SzmWeja VwGcLWVNLdoMSpnRSUJkR8UR1/O5sUE35nHyTsI0noLru0uIpzXmK8wfseSUByeQ luF2VIsvH9dXP/sgmEc+0mZmcWcDFm/xpGyJfWmS29J9yUfO3GJl2xyDw6vwdGIm DBFj/6PdLX267OwVXZ83826S0FLTg1pDtbHO712HmAVTEWqKxfyJpHWrj/7+K41I 82LywTlXcO/gUxEIRnSdEIjZGYIQFaJUEpiehvACMgC5UV9wF75kbzWYc4wHPwsk zXgVyKylFNj7RTYyij6+l/oq/RT8XTTKAp2I5Ou00c+7J36RcVd65rKBVk21j0uG IwsSRqa9als= -----END CERTIFICATE-----Generated at Thu May 1 02:06:44 2025 by rpki-client