$ rpki-client -vvf rpki-repo.registro.br/repo/2LNrvT9Z6utiKHbBCARkSXCjB3iVKXVqxFvX4vRNPp5n/0/34352e3136312e36372e302f32342d3234203d3e20323638343434.roa File: 34352e3136312e36372e302f32342d3234203d3e20323638343434.roa (raw, json) Hash identifier: 0egYk00yhfNAsWtX77B7UJzjpdWYJzXm9OxeJpA2exg= Subject key identifier: BA:4C:05:7E:41:94:0A:9C:CA:D3:2C:7E:A0:C8:68:A7:2F:8F:5D:EB Certificate issuer: /CN=86B2810A6C4EB421987C3396698910082BEA85F9 Certificate serial: 0B022B239DF2DFBBE4ECFD857E9E0EF4AA37FF04 Authority key identifier: 86:B2:81:0A:6C:4E:B4:21:98:7C:33:96:69:89:10:08:2B:EA:85:F9 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/86B2810A6C4EB421987C3396698910082BEA85F9.cer Subject info access: rsync://rpki-repo.registro.br/repo/2LNrvT9Z6utiKHbBCARkSXCjB3iVKXVqxFvX4vRNPp5n/0/34352e3136312e36372e302f32342d3234203d3e20323638343434.roa Signing time: Mon 25 Aug 2025 11:54:55 +0000 ROA not before: Mon 25 Aug 2025 11:49:55 +0000 ROA not after: Mon 24 Aug 2026 11:54:55 +0000 asID: 268444 IP address blocks: 45.161.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2LNrvT9Z6utiKHbBCARkSXCjB3iVKXVqxFvX4vRNPp5n/0/86B2810A6C4EB421987C3396698910082BEA85F9.crl rsync://rpki-repo.registro.br/repo/2LNrvT9Z6utiKHbBCARkSXCjB3iVKXVqxFvX4vRNPp5n/0/86B2810A6C4EB421987C3396698910082BEA85F9.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/86B2810A6C4EB421987C3396698910082BEA85F9.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 04 Nov 2025 08:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:02:2b:23:9d:f2:df:bb:e4:ec:fd:85:7e:9e:0e:f4:aa:37:ff:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86B2810A6C4EB421987C3396698910082BEA85F9 Validity Not Before: Aug 25 11:49:55 2025 GMT Not After : Aug 24 11:54:55 2026 GMT Subject: CN=BA4C057E41940A9CCAD32C7EA0C868A72F8F5DEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ef:68:42:d8:c5:8e:be:45:c0:5d:d1:6e:ad: a3:fa:92:50:b1:7a:b3:56:38:71:3b:ff:27:65:da: 58:4b:78:fa:00:b6:9c:68:eb:1d:25:2b:42:a5:9c: fe:94:c8:6d:d3:16:41:75:36:74:00:6e:ca:45:85: 49:e2:de:11:e1:2c:06:b5:07:a0:92:39:35:e5:82: 44:d6:d8:90:a4:2d:a2:34:a5:4e:2c:3d:c4:32:af: 1b:8a:26:d1:eb:09:d4:0e:88:58:6b:f8:99:dc:3b: c4:af:08:48:8c:fc:46:96:25:ff:3c:d7:1f:d0:f5: 91:ad:cc:60:1f:5e:c3:04:91:73:c0:7d:d1:e2:67: 7a:f9:93:d1:51:db:35:3a:57:f3:44:77:d9:3a:db: 1d:a6:27:14:a5:13:f1:77:b1:8a:52:7c:bc:4b:0c: 2a:ab:d7:2a:6d:de:a0:80:ec:f3:66:2a:27:db:13: 40:41:f2:40:b8:6e:10:8b:65:47:3f:1c:db:82:6e: 74:4c:16:55:65:19:b6:22:4d:4b:c7:c2:95:fb:15: d2:43:6e:93:de:1d:18:8c:2f:50:5c:b6:4b:77:2e: ef:15:ee:94:53:64:c6:10:ab:91:32:73:6d:22:c0: 97:fd:3f:a2:e7:17:1f:7a:9e:46:9d:82:02:12:9c: 83:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4C:05:7E:41:94:0A:9C:CA:D3:2C:7E:A0:C8:68:A7:2F:8F:5D:EB X509v3 Authority Key Identifier: keyid:86:B2:81:0A:6C:4E:B4:21:98:7C:33:96:69:89:10:08:2B:EA:85:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2LNrvT9Z6utiKHbBCARkSXCjB3iVKXVqxFvX4vRNPp5n/0/86B2810A6C4EB421987C3396698910082BEA85F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/86B2810A6C4EB421987C3396698910082BEA85F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2LNrvT9Z6utiKHbBCARkSXCjB3iVKXVqxFvX4vRNPp5n/0/34352e3136312e36372e302f32342d3234203d3e20323638343434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.161.67.0/24 Signature Algorithm: sha256WithRSAEncryption 36:08:25:ef:a7:f0:2a:f3:65:c8:8c:d3:a9:cd:50:39:bc:1b: 29:b9:61:d7:ef:7a:f7:71:c6:09:f1:28:02:2b:31:65:77:09: 70:72:d3:1f:02:5c:eb:5f:bf:55:9d:4e:84:31:ff:0d:a9:e8: c5:b2:14:18:2a:6e:fa:de:98:cc:de:66:83:37:b7:ab:61:34: 59:dc:5c:6c:e7:a3:9c:f7:01:4b:ff:6d:bd:12:c8:fe:98:bd: eb:0e:d7:84:10:f5:ac:21:65:38:2b:f3:13:ec:28:b7:2d:21: b5:ce:52:bc:ad:5b:05:a6:4b:81:c3:a2:0a:f3:64:54:4a:fb: 4b:42:a1:15:c6:75:3b:31:6d:d3:6d:3c:12:6c:f0:cf:58:16: 36:7e:04:b8:7a:6f:e4:0a:be:4a:7b:bc:23:98:84:85:fd:91: c3:12:97:b7:d4:83:36:86:60:c6:8b:da:08:aa:3b:72:aa:b4: e4:e6:db:ec:83:e2:c5:b2:9c:53:31:4e:fa:a0:97:1d:9e:f9: 8d:90:b5:e5:0a:25:bf:4d:b5:75:cb:eb:cf:de:fa:bc:16:2f: 8c:ff:8c:21:4f:a6:88:0b:41:48:b9:0f:78:b5:9d:3f:19:96: af:86:be:2b:89:af:ae:b4:b6:1b:b6:9c:ae:79:a9:f9:70:b8: 75:9f:b5:dd -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUCwIrI53y37vk7P2Ffp4O9Ko3/wQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZCMjgxMEE2QzRFQjQyMTk4N0MzMzk2Njk4OTEwMDgy QkVBODVGOTAeFw0yNTA4MjUxMTQ5NTVaFw0yNjA4MjQxMTU0NTVaMDMxMTAvBgNV BAMTKEJBNEMwNTdFNDE5NDBBOUNDQUQzMkM3RUEwQzg2OEE3MkY4RjVERUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb72hC2MWOvkXAXdFuraP6klCx erNWOHE7/ydl2lhLePoAtpxo6x0lK0KlnP6UyG3TFkF1NnQAbspFhUni3hHhLAa1 B6CSOTXlgkTW2JCkLaI0pU4sPcQyrxuKJtHrCdQOiFhr+JncO8SvCEiM/EaWJf88 1x/Q9ZGtzGAfXsMEkXPAfdHiZ3r5k9FR2zU6V/NEd9k62x2mJxSlE/F3sYpSfLxL DCqr1ypt3qCA7PNmKifbE0BB8kC4bhCLZUc/HNuCbnRMFlVlGbYiTUvHwpX7FdJD bpPeHRiML1Bctkt3Lu8V7pRTZMYQq5Eyc20iwJf9P6LnFx96nkadggISnIOTAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUukwFfkGUCpzK0yx+oMhopy+PXeswHwYDVR0j BBgwFoAUhrKBCmxOtCGYfDOWaYkQCCvqhfkwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMkxOcnZUOVo2dXRpS0hiQkNBUmtTWENqQjNpVktYVnF4RnZYNHZSTlBw NW4vMC84NkIyODEwQTZDNEVCNDIxOTg3QzMzOTY2OTg5MTAwODJCRUE4NUY5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg2QjI4MTBBNkM0RUI0MjE5 ODdDMzM5NjY5ODkxMDA4MkJFQTg1RjkuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJMTnJ2VDlaNnV0aUtIYkJDQVJrU1hDakIzaVZLWFZxeEZ2WDR2Uk5QcDVuLzAv MzQzNTJlMzEzNjMxMmUzNjM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM4 MzQzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQALaFDMA0GCSqGSIb3DQEBCwUAA4IBAQA2CCXvp/Aq 82XIjNOpzVA5vBspuWHX73r3ccYJ8SgCKzFldwlwctMfAlzrX79VnU6EMf8NqejF shQYKm763pjM3maDN7erYTRZ3Fxs56Oc9wFL/229Esj+mL3rDteEEPWsIWU4K/MT 7Ci3LSG1zlK8rVsFpkuBw6IK82RUSvtLQqEVxnU7MW3TbTwSbPDPWBY2fgS4em/k Cr5Ke7wjmISF/ZHDEpe31IM2hmDGi9oIqjtyqrTk5tvsg+LFspxTMU76oJcdnvmN kLXlCiW/TbV1y+vP3vq8Fi+M/4whT6aIC0FIuQ94tZ0/GZavhr4ria+utLYbtpyu ean5cLh1n7Xd -----END CERTIFICATE-----Generated at Mon Nov 3 12:34:45 2025 by rpki-client