$ rpki-client -vvf rpki-repo.registro.br/repo/3KXkan1P1xc7JNJjtPeLTmsGGQt8ifRtVZPYTuri3NUR/0/323830343a333336303a3a2f33322d3438203d3e20323632373235.roa File: 323830343a333336303a3a2f33322d3438203d3e20323632373235.roa (raw, json) Hash identifier: iZRZHxag0+tPBMVhvuUKsY7/fLV/sxx+xABdX823i5g= Subject key identifier: D0:44:24:51:A0:D6:84:D3:E5:68:4D:7E:A4:A6:72:BE:0C:59:62:77 Certificate issuer: /CN=33D99D98BFD993CB7DE4284CD0B834BDAA1FB768 Certificate serial: 2000A423EFA0E9E69AE36EA3B1CED5890C710478 Authority key identifier: 33:D9:9D:98:BF:D9:93:CB:7D:E4:28:4C:D0:B8:34:BD:AA:1F:B7:68 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/33D99D98BFD993CB7DE4284CD0B834BDAA1FB768.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KXkan1P1xc7JNJjtPeLTmsGGQt8ifRtVZPYTuri3NUR/0/323830343a333336303a3a2f33322d3438203d3e20323632373235.roa Signing time: Tue 14 Oct 2025 16:39:00 +0000 ROA not before: Tue 14 Oct 2025 16:34:00 +0000 ROA not after: Tue 13 Oct 2026 16:39:00 +0000 asID: 262725 IP address blocks: 2804:3360::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KXkan1P1xc7JNJjtPeLTmsGGQt8ifRtVZPYTuri3NUR/0/33D99D98BFD993CB7DE4284CD0B834BDAA1FB768.crl rsync://rpki-repo.registro.br/repo/3KXkan1P1xc7JNJjtPeLTmsGGQt8ifRtVZPYTuri3NUR/0/33D99D98BFD993CB7DE4284CD0B834BDAA1FB768.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/33D99D98BFD993CB7DE4284CD0B834BDAA1FB768.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 27 Oct 2025 09:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:00:a4:23:ef:a0:e9:e6:9a:e3:6e:a3:b1:ce:d5:89:0c:71:04:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33D99D98BFD993CB7DE4284CD0B834BDAA1FB768 Validity Not Before: Oct 14 16:34:00 2025 GMT Not After : Oct 13 16:39:00 2026 GMT Subject: CN=D0442451A0D684D3E5684D7EA4A672BE0C596277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:95:c8:c1:ad:a0:5d:ef:44:8f:56:64:fc:7b: 5b:b8:8e:cb:78:4e:05:38:41:76:d6:c3:c0:df:83: 3f:e2:4c:69:d4:77:f6:13:38:4d:6d:89:0a:6f:0d: cc:c8:e3:a3:32:12:f5:64:7d:0a:b3:fb:19:26:2c: e6:1b:b9:7e:f5:17:3d:f5:d5:32:15:0f:0f:a1:35: eb:80:02:d9:61:2d:3c:12:88:59:76:af:e2:73:0a: ff:4b:e4:c1:bc:10:c9:5f:62:be:7d:b0:8d:d8:1c: d3:ee:b7:39:94:d9:fa:2c:c2:dd:c6:1a:07:9e:90: 40:69:cc:7d:fd:39:58:3c:f5:32:fd:16:f7:0b:aa: a9:3c:e7:70:d0:10:58:94:f9:c5:5f:e1:af:03:5b: 9d:c5:72:51:91:26:50:23:30:f7:9b:7d:87:31:34: 66:be:ea:67:89:2c:bf:86:71:5a:41:6b:6c:89:03: 95:12:f2:fd:d3:58:e6:7b:91:66:76:6d:6a:e1:43: 19:34:5a:c3:27:5c:cb:0e:e0:9b:8e:c5:d1:04:45: 6e:21:86:89:3d:cf:02:26:18:20:16:bb:d0:54:5d: a5:9a:d5:88:7f:f9:48:13:54:2f:2e:79:ac:55:3d: 37:bd:14:31:6e:78:56:86:e9:ec:f6:c9:5b:c2:b6: 3c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:44:24:51:A0:D6:84:D3:E5:68:4D:7E:A4:A6:72:BE:0C:59:62:77 X509v3 Authority Key Identifier: keyid:33:D9:9D:98:BF:D9:93:CB:7D:E4:28:4C:D0:B8:34:BD:AA:1F:B7:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KXkan1P1xc7JNJjtPeLTmsGGQt8ifRtVZPYTuri3NUR/0/33D99D98BFD993CB7DE4284CD0B834BDAA1FB768.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/33D99D98BFD993CB7DE4284CD0B834BDAA1FB768.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KXkan1P1xc7JNJjtPeLTmsGGQt8ifRtVZPYTuri3NUR/0/323830343a333336303a3a2f33322d3438203d3e20323632373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:3360::/32 Signature Algorithm: sha256WithRSAEncryption 8a:11:4c:49:16:97:c5:df:d2:35:56:63:e1:a8:d3:23:a0:e1: 88:a2:ba:27:ef:fa:42:ca:76:2f:c9:29:24:f4:e2:9d:e9:4f: fb:2d:e7:40:51:60:d6:ef:ee:bb:c5:4b:2c:94:9f:60:80:96: c6:0f:18:0c:f8:f0:23:5c:db:35:37:6c:8b:e2:b3:02:a2:c3: 96:d7:ba:98:1f:7b:e7:fe:cf:01:ff:9b:65:f5:66:fc:63:4b: c2:74:47:af:49:bc:5d:29:f4:5a:96:f7:5f:1c:12:8d:3c:e1: e1:8b:09:14:32:46:f3:8f:1d:30:54:bb:89:61:3e:11:57:d6: bc:e2:82:27:48:07:b1:1f:18:ee:af:7a:6a:0a:7a:27:84:28: a6:bf:a3:ff:0e:82:21:05:0f:e6:d8:8b:74:d1:0e:8b:27:1f: 3d:41:51:66:84:d8:be:d0:a5:d6:7f:a4:73:fc:a8:52:9f:55: f6:d2:30:c1:54:f0:eb:e0:d7:a7:d4:10:e0:dc:9e:85:7b:98: e2:63:2e:03:7e:66:59:5d:75:6e:c3:57:c8:72:62:3b:0d:70: 0b:9b:5b:10:1b:37:63:f0:14:a6:b9:7c:d2:9c:cc:ab:11:b4: 6a:e0:f2:f9:90:4d:a8:4e:87:0e:fa:25:84:ef:91:ba:a7:12: 4d:d7:55:80 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIUIACkI++g6eaa426jsc7ViQxxBHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNEOTlEOThCRkQ5OTNDQjdERTQyODRDRDBCODM0QkRB QTFGQjc2ODAeFw0yNTEwMTQxNjM0MDBaFw0yNjEwMTMxNjM5MDBaMDMxMTAvBgNV BAMTKEQwNDQyNDUxQTBENjg0RDNFNTY4NEQ3RUE0QTY3MkJFMEM1OTYyNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKlcjBraBd70SPVmT8e1u4jst4 TgU4QXbWw8Dfgz/iTGnUd/YTOE1tiQpvDczI46MyEvVkfQqz+xkmLOYbuX71Fz31 1TIVDw+hNeuAAtlhLTwSiFl2r+JzCv9L5MG8EMlfYr59sI3YHNPutzmU2foswt3G GgeekEBpzH39OVg89TL9FvcLqqk853DQEFiU+cVf4a8DW53FclGRJlAjMPebfYcx NGa+6meJLL+GcVpBa2yJA5US8v3TWOZ7kWZ2bWrhQxk0WsMnXMsO4JuOxdEERW4h hok9zwImGCAWu9BUXaWa1Yh/+UgTVC8ueaxVPTe9FDFueFaG6ez2yVvCtjwhAgMB AAGjggJQMIICTDAdBgNVHQ4EFgQU0EQkUaDWhNPlaE1+pKZyvgxZYncwHwYDVR0j BBgwFoAUM9mdmL/Zk8t95ChM0Lg0vaoft2gwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0tYa2FuMVAxeGM3Sk5KanRQZUxUbXNHR1F0OGlmUnRWWlBZVHVyaTNO VVIvMC8zM0Q5OUQ5OEJGRDk5M0NCN0RFNDI4NENEMEI4MzRCREFBMUZCNzY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzMzRDk5RDk4QkZEOTkzQ0I3 REU0Mjg0Q0QwQjgzNEJEQUExRkI3NjguY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNLWGthbjFQMXhjN0pOSmp0UGVMVG1zR0dRdDhpZlJ0VlpQWVR1cmkzTlVSLzAv MzIzODMwMzQzYTMzMzMzNjMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzNjMy MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH AQH/BBEwDzANBAIAAjAHAwUAKAQzYDANBgkqhkiG9w0BAQsFAAOCAQEAihFMSRaX xd/SNVZj4ajTI6DhiKK6J+/6Qsp2L8kpJPTinelP+y3nQFFg1u/uu8VLLJSfYICW xg8YDPjwI1zbNTdsi+KzAqLDlte6mB975/7PAf+bZfVm/GNLwnRHr0m8XSn0Wpb3 XxwSjTzh4YsJFDJG848dMFS7iWE+EVfWvOKCJ0gHsR8Y7q96agp6J4Qopr+j/w6C IQUP5tiLdNEOiycfPUFRZoTYvtCl1n+kc/yoUp9V9tIwwVTw6+DXp9QQ4NyehXuY 4mMuA35mWV11bsNXyHJiOw1wC5tbEBs3Y/AUprl80pzMqxG0auDy+ZBNqE6HDvol hO+RuqcSTddVgA== -----END CERTIFICATE-----Generated at Sun Oct 26 23:14:31 2025 by rpki-client