$ rpki-client -vvf rpki-repo.registro.br/repo/DhUX35ZMUCbRhYuECLQuQiyiqCX4z9LvRirJw3bBUwyX/0/323830343a363434303a383030303a3a2f33342d3334203d3e20323639343136.roa File: 323830343a363434303a383030303a3a2f33342d3334203d3e20323639343136.roa (raw, json) Hash identifier: KDlkqU107hUXdXYoo35fRepzG5VFjD+NFFxTFVH44S0= Subject key identifier: F1:1D:10:7F:84:5F:DA:B2:64:DF:5C:34:CC:F8:CB:05:84:6C:80:10 Certificate issuer: /CN=8AB2A3D96616CA3040ECFCC30EC898EFF68BCDC2 Certificate serial: 5268EB8B35271D31BA5013F1DB96A9D0BCFE774C Authority key identifier: 8A:B2:A3:D9:66:16:CA:30:40:EC:FC:C3:0E:C8:98:EF:F6:8B:CD:C2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8AB2A3D96616CA3040ECFCC30EC898EFF68BCDC2.cer Subject info access: rsync://rpki-repo.registro.br/repo/DhUX35ZMUCbRhYuECLQuQiyiqCX4z9LvRirJw3bBUwyX/0/323830343a363434303a383030303a3a2f33342d3334203d3e20323639343136.roa Signing time: Thu 24 Apr 2025 13:44:39 +0000 ROA not before: Thu 24 Apr 2025 13:39:39 +0000 ROA not after: Thu 23 Apr 2026 13:44:39 +0000 asID: 269416 IP address blocks: 2804:6440:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DhUX35ZMUCbRhYuECLQuQiyiqCX4z9LvRirJw3bBUwyX/0/8AB2A3D96616CA3040ECFCC30EC898EFF68BCDC2.crl rsync://rpki-repo.registro.br/repo/DhUX35ZMUCbRhYuECLQuQiyiqCX4z9LvRirJw3bBUwyX/0/8AB2A3D96616CA3040ECFCC30EC898EFF68BCDC2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8AB2A3D96616CA3040ECFCC30EC898EFF68BCDC2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 30 Apr 2025 04:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:68:eb:8b:35:27:1d:31:ba:50:13:f1:db:96:a9:d0:bc:fe:77:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AB2A3D96616CA3040ECFCC30EC898EFF68BCDC2 Validity Not Before: Apr 24 13:39:39 2025 GMT Not After : Apr 23 13:44:39 2026 GMT Subject: CN=F11D107F845FDAB264DF5C34CCF8CB05846C8010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f6:e3:ad:2d:67:c4:dc:47:30:cc:68:52:19: 97:93:f2:dc:1c:14:da:e3:aa:e2:b2:79:83:1f:b5: ab:e3:80:fd:3a:8d:8a:df:e1:4f:ed:b7:b4:ac:0e: 50:07:9a:e1:b1:ac:d1:ec:03:70:3f:39:54:18:b6: d3:05:03:ee:7a:00:95:f8:f3:13:c5:c2:fd:63:26: 75:72:d4:f4:11:23:83:24:7f:e2:31:fc:f5:c4:09: 20:a1:88:5f:89:07:ee:fa:fc:67:d7:84:f6:14:64: ad:d6:03:91:54:a8:6c:b7:5c:19:a2:b7:ff:01:db: 8c:fa:50:e8:3b:21:73:d2:82:e3:ec:ce:bb:4a:dd: a5:62:6e:78:83:85:0b:1f:18:49:67:d3:f7:75:ed: 40:55:e8:02:59:a3:b1:4f:6c:dd:ab:06:14:90:1a: ab:c2:36:08:d1:19:73:e9:75:3a:ca:38:13:8c:6d: c3:67:4f:58:b7:c4:df:d0:0f:0e:c9:02:25:39:c7: a8:d3:3d:26:ee:29:2f:09:f7:40:3d:cc:ea:91:f7: 0a:00:54:8d:ed:cb:c1:60:66:ff:86:3b:53:7b:14: 64:07:b5:00:90:64:1e:f4:e4:c1:4e:82:f1:26:db: 95:4a:5d:a9:f5:e0:42:ff:a1:61:88:c7:f7:49:1b: 24:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1D:10:7F:84:5F:DA:B2:64:DF:5C:34:CC:F8:CB:05:84:6C:80:10 X509v3 Authority Key Identifier: keyid:8A:B2:A3:D9:66:16:CA:30:40:EC:FC:C3:0E:C8:98:EF:F6:8B:CD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DhUX35ZMUCbRhYuECLQuQiyiqCX4z9LvRirJw3bBUwyX/0/8AB2A3D96616CA3040ECFCC30EC898EFF68BCDC2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8AB2A3D96616CA3040ECFCC30EC898EFF68BCDC2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DhUX35ZMUCbRhYuECLQuQiyiqCX4z9LvRirJw3bBUwyX/0/323830343a363434303a383030303a3a2f33342d3334203d3e20323639343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:6440:8000::/34 Signature Algorithm: sha256WithRSAEncryption 84:47:c0:2f:33:2c:d7:9c:a0:95:fc:0a:35:e2:64:35:33:13: 6c:63:c6:9b:d3:61:68:21:04:b7:4f:be:56:04:b5:dd:17:8d: 85:13:f6:99:12:01:8a:94:b3:ea:96:cc:86:8d:0d:82:52:e0: 8f:4a:1d:ce:a0:36:28:11:4b:f6:88:3d:5e:70:37:29:7c:4d: c7:6a:10:cd:52:01:ef:22:04:5c:31:c6:1e:22:4a:b5:5c:d7: 69:d1:f5:9d:4e:24:56:c7:88:db:8b:3c:5c:df:c1:95:c6:fa: d5:60:b6:af:c5:59:50:b4:ac:c0:8c:96:ab:26:cd:73:43:08: ee:ea:3d:db:a6:5b:53:cb:b3:a0:ee:45:1d:c4:5b:74:4a:77: c4:1b:48:dd:a1:be:2c:a1:50:56:1d:48:10:1e:65:61:e8:ca: 20:db:6c:b8:ab:db:80:ef:ff:25:35:e7:71:4f:f4:9f:28:93: a3:59:8a:ec:5e:71:e4:30:2f:f2:31:e4:c7:b7:53:fa:f0:14: cb:47:f3:d3:4e:72:a9:83:0e:1c:86:f1:19:eb:72:0a:f9:c1: 14:51:92:d2:13:73:33:39:9f:04:fe:f4:1a:79:91:1f:f6:ac: a4:12:99:3c:13:0e:c8:7d:57:45:45:94:b0:ff:8c:fa:30:e4: 0f:44:68:5e -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUUmjrizUnHTG6UBPx25ap0Lz+d0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFCMkEzRDk2NjE2Q0EzMDQwRUNGQ0MzMEVDODk4RUZG NjhCQ0RDMjAeFw0yNTA0MjQxMzM5MzlaFw0yNjA0MjMxMzQ0MzlaMDMxMTAvBgNV BAMTKEYxMUQxMDdGODQ1RkRBQjI2NERGNUMzNENDRjhDQjA1ODQ2QzgwMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB9uOtLWfE3EcwzGhSGZeT8twc FNrjquKyeYMftavjgP06jYrf4U/tt7SsDlAHmuGxrNHsA3A/OVQYttMFA+56AJX4 8xPFwv1jJnVy1PQRI4Mkf+Ix/PXECSChiF+JB+76/GfXhPYUZK3WA5FUqGy3XBmi t/8B24z6UOg7IXPSguPszrtK3aVibniDhQsfGEln0/d17UBV6AJZo7FPbN2rBhSQ GqvCNgjRGXPpdTrKOBOMbcNnT1i3xN/QDw7JAiU5x6jTPSbuKS8J90A9zOqR9woA VI3ty8FgZv+GO1N7FGQHtQCQZB705MFOgvEm25VKXan14EL/oWGIx/dJGySHAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU8R0Qf4Rf2rJk31w0zPjLBYRsgBAwHwYDVR0j BBgwFoAUirKj2WYWyjBA7PzDDsiY7/aLzcIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRGhVWDM1Wk1VQ2JSaFl1RUNMUXVRaXlpcUNYNHo5THZSaXJKdzNiQlV3 eVgvMC84QUIyQTNEOTY2MTZDQTMwNDBFQ0ZDQzMwRUM4OThFRkY2OEJDREMyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzhBQjJBM0Q5NjYxNkNBMzA0 MEVDRkNDMzBFQzg5OEVGRjY4QkNEQzIuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RoVVgzNVpNVUNiUmhZdUVDTFF1UWl5aXFDWDR6OUx2UmlySnczYkJVd3lYLzAv MzIzODMwMzQzYTM2MzQzNDMwM2EzODMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzOTM0MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEZECAMA0GCSqGSIb3DQEBCwUA A4IBAQCER8AvMyzXnKCV/Ao14mQ1MxNsY8ab02FoIQS3T75WBLXdF42FE/aZEgGK lLPqlsyGjQ2CUuCPSh3OoDYoEUv2iD1ecDcpfE3HahDNUgHvIgRcMcYeIkq1XNdp 0fWdTiRWx4jbizxc38GVxvrVYLavxVlQtKzAjJarJs1zQwju6j3bpltTy7Og7kUd xFt0SnfEG0jdob4soVBWHUgQHmVh6Mog22y4q9uA7/8lNedxT/SfKJOjWYrsXnHk MC/yMeTHt1P68BTLR/PTTnKpgw4chvEZ63IK+cEUUZLSE3MzOZ8E/vQaeZEf9qyk Epk8Ew7IfVdFRZSw/4z6MOQPRGhe -----END CERTIFICATE-----Generated at Tue Apr 29 16:18:24 2025 by rpki-client