$ rpki-client -vvf rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/323830343a346565383a3a2f33322d3438203d3e2030.roa File: 323830343a346565383a3a2f33322d3438203d3e2030.roa (raw, json) Hash identifier: 2sP6uFKh/qzEQUnmI2XBkO1+/mEh+lqAHdRmfXyf1Vc= Subject key identifier: 2F:82:C1:44:12:1F:6F:AD:24:6E:3E:B8:1B:8A:7D:07:15:E5:D7:34 Certificate issuer: /CN=D01D2EC076BDA62D438B972886851503EED04B2F Certificate serial: 6771409A41A07075AA9F5DF6E1F023A0006C5250 Authority key identifier: D0:1D:2E:C0:76:BD:A6:2D:43:8B:97:28:86:85:15:03:EE:D0:4B:2F Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D01D2EC076BDA62D438B972886851503EED04B2F.cer Subject info access: rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/323830343a346565383a3a2f33322d3438203d3e2030.roa Signing time: Tue 23 Sep 2025 14:16:44 +0000 ROA not before: Tue 23 Sep 2025 14:11:44 +0000 ROA not after: Tue 22 Sep 2026 14:16:44 +0000 asID: 0 IP address blocks: 2804:4ee8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/D01D2EC076BDA62D438B972886851503EED04B2F.crl rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/D01D2EC076BDA62D438B972886851503EED04B2F.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D01D2EC076BDA62D438B972886851503EED04B2F.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 09 Oct 2025 01:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:71:40:9a:41:a0:70:75:aa:9f:5d:f6:e1:f0:23:a0:00:6c:52:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D01D2EC076BDA62D438B972886851503EED04B2F Validity Not Before: Sep 23 14:11:44 2025 GMT Not After : Sep 22 14:16:44 2026 GMT Subject: CN=2F82C144121F6FAD246E3EB81B8A7D0715E5D734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1a:c3:e8:e1:28:45:5b:03:61:73:91:9e:36: fd:1d:30:d5:14:72:20:14:f9:25:5f:44:56:3e:14: 82:1f:53:1e:2d:c6:78:6f:f1:ff:77:b9:52:75:20: d1:7d:90:d4:07:f5:a4:59:7e:6a:23:9f:ad:8b:78: fe:8b:a1:d1:b8:c3:f6:37:0f:f6:2c:a6:25:81:a2: 66:b4:a4:46:14:6e:f8:b4:55:45:88:15:69:de:92: fc:ed:03:a4:16:fa:cf:89:8c:ff:e9:54:f0:75:78: 67:f4:90:77:ab:b6:85:d2:3c:30:58:42:d2:57:34: 4f:f2:74:b9:2c:a7:04:cf:5e:e8:b7:e5:cd:c9:38: e2:55:33:7b:b4:a3:5d:23:bb:49:80:17:75:fb:cd: e3:15:27:48:59:66:3c:da:95:7c:82:f1:e1:18:25: b8:3a:a5:33:24:1d:90:cb:e3:9b:38:fb:90:65:35: f3:44:f6:0f:f5:fb:ee:35:97:4b:6d:3d:f1:68:09: a5:02:a3:5f:bd:b5:c8:98:a0:e0:e5:00:4b:8b:82: bf:a3:30:ab:7c:b3:73:37:e3:d5:93:56:8c:39:9a: 16:e2:d8:91:6f:bf:f6:4c:2b:60:8b:26:77:89:ac: db:dc:99:92:a3:b2:55:4f:2e:b5:47:73:13:d1:e0: a2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:82:C1:44:12:1F:6F:AD:24:6E:3E:B8:1B:8A:7D:07:15:E5:D7:34 X509v3 Authority Key Identifier: keyid:D0:1D:2E:C0:76:BD:A6:2D:43:8B:97:28:86:85:15:03:EE:D0:4B:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/D01D2EC076BDA62D438B972886851503EED04B2F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D01D2EC076BDA62D438B972886851503EED04B2F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/323830343a346565383a3a2f33322d3438203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:4ee8::/32 Signature Algorithm: sha256WithRSAEncryption 40:2e:ca:e8:62:d4:ed:17:c3:ee:7c:c4:95:0a:37:96:02:28: f5:a2:ac:30:c3:70:8e:19:cc:ac:27:a9:fb:31:82:82:07:96: 65:d7:22:84:ec:36:34:0c:1e:30:8f:90:8a:81:b3:43:5c:e9: 0b:55:55:9d:f0:43:61:2b:28:62:3d:f7:97:38:55:e8:dc:27: 94:e6:53:b7:44:c9:22:c4:78:31:22:f7:1f:22:d2:78:c4:ca: 11:b6:ac:9d:6d:10:01:eb:1a:b8:98:fc:45:c9:a2:24:74:c6: a8:46:cf:68:0a:68:ff:fe:1d:a4:ca:a9:d5:4a:9c:f2:e3:9b: f9:53:44:a3:7d:ae:89:5b:de:ed:14:74:9e:5e:9d:f5:a5:b0: 57:dd:1a:46:f4:a0:64:81:6d:67:0d:ea:41:3c:b3:48:03:2c: 94:1e:73:4a:c9:f9:53:12:da:24:93:2e:e7:53:54:ad:25:db: 07:5c:58:61:e3:04:70:17:8a:04:3a:7b:80:f7:fa:99:7f:c0: b3:95:17:ee:90:64:88:bb:3e:db:94:62:a5:77:8d:7a:44:d1: 16:bf:d2:5b:38:86:38:a8:2c:e3:da:9a:9d:43:99:4c:1e:69: 20:f8:5a:b5:f8:73:85:ab:62:aa:3e:8a:bf:76:58:65:e2:94: 5f:d7:61:f7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUZ3FAmkGgcHWqn1324fAjoABsUlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAxRDJFQzA3NkJEQTYyRDQzOEI5NzI4ODY4NTE1MDNF RUQwNEIyRjAeFw0yNTA5MjMxNDExNDRaFw0yNjA5MjIxNDE2NDRaMDMxMTAvBgNV BAMTKDJGODJDMTQ0MTIxRjZGQUQyNDZFM0VCODFCOEE3RDA3MTVFNUQ3MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiGsPo4ShFWwNhc5GeNv0dMNUU ciAU+SVfRFY+FIIfUx4txnhv8f93uVJ1INF9kNQH9aRZfmojn62LeP6LodG4w/Y3 D/YspiWBoma0pEYUbvi0VUWIFWnekvztA6QW+s+JjP/pVPB1eGf0kHertoXSPDBY QtJXNE/ydLkspwTPXui35c3JOOJVM3u0o10ju0mAF3X7zeMVJ0hZZjzalXyC8eEY Jbg6pTMkHZDL45s4+5BlNfNE9g/1++41l0ttPfFoCaUCo1+9tciYoODlAEuLgr+j MKt8s3M349WTVow5mhbi2JFvv/ZMK2CLJneJrNvcmZKjslVPLrVHcxPR4KJPAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUL4LBRBIfb60kbj64G4p9BxXl1zQwHwYDVR0j BBgwFoAU0B0uwHa9pi1Di5cohoUVA+7QSy8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNEFQTFdoaWhrblBVdktpY3JGbzJ5UUxiZ1o0Y3hMSFhZd2tQVUI2ZW5i M2IvMC9EMDFEMkVDMDc2QkRBNjJENDM4Qjk3Mjg4Njg1MTUwM0VFRDA0QjJGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QwMUQyRUMwNzZCREE2MkQ0 MzhCOTcyODg2ODUxNTAzRUVEMDRCMkYuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCB jwYIKwYBBQUHMAuGgYJyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRBUExXaGloa25QVXZLaWNyRm8yeVFMYmdaNGN4TEhYWXdrUFVCNmVuYjNiLzAv MzIzODMwMzQzYTM0NjU2NTM4M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzAucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAoBE7oMA0GCSqGSIb3DQEBCwUAA4IBAQBALsroYtTtF8PufMSVCjeW Aij1oqwww3COGcysJ6n7MYKCB5Zl1yKE7DY0DB4wj5CKgbNDXOkLVVWd8ENhKyhi PfeXOFXo3CeU5lO3RMkixHgxIvcfItJ4xMoRtqydbRAB6xq4mPxFyaIkdMaoRs9o Cmj//h2kyqnVSpzy45v5U0Sjfa6JW97tFHSeXp31pbBX3RpG9KBkgW1nDepBPLNI AyyUHnNKyflTEtokky7nU1StJdsHXFhh4wRwF4oEOnuA9/qZf8CzlRfukGSIuz7b lGKld416RNEWv9JbOIY4qCzj2pqdQ5lMHmkg+Fq1+HOFq2KqPoq/dlhl4pRf12H3 -----END CERTIFICATE-----Generated at Wed Oct 8 13:59:48 2025 by rpki-client