$ rpki-client -vvf rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/34352e3233372e3230342e302f32322d3234203d3e2030.roa File: 34352e3233372e3230342e302f32322d3234203d3e2030.roa (raw, json) Hash identifier: kUcj68eyBC5ukf19L72YnNZ7Sd6sAZ16sWy9SBGoI10= Subject key identifier: 71:40:CC:DF:FB:F3:B8:CC:8F:DB:7C:EE:89:2C:CF:F7:A3:87:A1:F0 Certificate issuer: /CN=D01D2EC076BDA62D438B972886851503EED04B2F Certificate serial: 59A3D05DE349D3F8F5DBD263B901A5750DCC1A39 Authority key identifier: D0:1D:2E:C0:76:BD:A6:2D:43:8B:97:28:86:85:15:03:EE:D0:4B:2F Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D01D2EC076BDA62D438B972886851503EED04B2F.cer Subject info access: rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/34352e3233372e3230342e302f32322d3234203d3e2030.roa Signing time: Tue 23 Sep 2025 14:16:15 +0000 ROA not before: Tue 23 Sep 2025 14:11:15 +0000 ROA not after: Tue 22 Sep 2026 14:16:15 +0000 asID: 0 IP address blocks: 45.237.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/D01D2EC076BDA62D438B972886851503EED04B2F.crl rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/D01D2EC076BDA62D438B972886851503EED04B2F.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D01D2EC076BDA62D438B972886851503EED04B2F.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 09 Oct 2025 01:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a3:d0:5d:e3:49:d3:f8:f5:db:d2:63:b9:01:a5:75:0d:cc:1a:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D01D2EC076BDA62D438B972886851503EED04B2F Validity Not Before: Sep 23 14:11:15 2025 GMT Not After : Sep 22 14:16:15 2026 GMT Subject: CN=7140CCDFFBF3B8CC8FDB7CEE892CCFF7A387A1F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:02:ae:a8:b2:91:6a:03:71:a5:70:2d:fd:6d: f2:5d:d9:56:55:91:78:f8:3a:eb:d8:89:b2:c6:16: 0d:ae:49:ae:50:c4:02:91:ee:ca:6d:5c:1e:81:a7: c9:29:a9:c7:79:65:a1:50:2f:1c:4a:d9:2f:02:37: 83:6b:07:18:96:30:10:e3:99:b8:c5:c7:64:96:b3: e0:3d:8f:dc:87:96:0e:18:ec:c3:4b:7f:fe:32:4c: e6:fd:d2:99:bb:ac:37:a9:53:70:ac:21:91:e7:cf: 85:16:11:0b:d8:b1:42:2f:69:e0:84:80:e3:76:0b: aa:ec:cb:a0:5b:f4:3e:e2:13:fc:55:c5:19:67:b6: 4c:40:6a:05:10:e6:f8:8e:f6:7c:ec:d4:2f:45:3e: 19:a0:20:f8:0b:e2:ab:0c:f9:50:32:6d:0e:ea:c6: 83:60:71:df:75:3a:d2:b8:c9:ec:e2:9b:9b:73:45: 87:28:38:90:3f:67:9e:2b:48:cd:ab:ed:7c:6d:7c: 62:60:ce:de:da:13:49:13:0a:da:8a:53:dc:6c:58: 74:45:d7:1d:1c:a2:f5:f6:ed:65:b5:4b:42:cd:8e: 40:04:79:61:83:b6:ed:85:40:f8:25:76:a4:91:63: 36:25:81:21:f8:88:16:25:99:a0:bd:1c:94:a3:dc: 5b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:40:CC:DF:FB:F3:B8:CC:8F:DB:7C:EE:89:2C:CF:F7:A3:87:A1:F0 X509v3 Authority Key Identifier: keyid:D0:1D:2E:C0:76:BD:A6:2D:43:8B:97:28:86:85:15:03:EE:D0:4B:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/D01D2EC076BDA62D438B972886851503EED04B2F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D01D2EC076BDA62D438B972886851503EED04B2F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4APLWhihknPUvKicrFo2yQLbgZ4cxLHXYwkPUB6enb3b/0/34352e3233372e3230342e302f32322d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.237.204.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:1f:65:0e:95:cb:79:d1:05:c4:04:e4:7f:35:6b:0e:bc:2f: ae:44:b2:3e:ee:ca:4d:fd:80:50:b2:f9:84:37:a4:72:9d:2a: 2b:97:e9:d4:4b:52:ed:3e:ec:15:2e:89:77:b8:2a:80:ef:a8: d5:d6:19:b2:9b:c6:cf:f4:88:e4:f8:94:2f:33:f0:a1:a6:22: 2e:96:bd:f0:e0:de:fd:60:05:fe:9a:d7:5c:67:11:42:3e:72: 75:f1:aa:18:3d:30:68:21:3a:22:34:11:9b:c4:62:41:0c:b3: 48:a6:5c:b8:ad:c6:04:ce:56:19:b3:4a:e5:1e:41:40:22:85: 79:4a:11:4a:13:82:fc:ff:54:de:82:80:13:36:da:8a:0e:a3: 36:71:f4:75:a5:ba:60:d9:4d:9d:bb:35:9c:d1:bb:f7:0f:16: 2d:22:3d:d0:39:1c:58:61:47:d7:27:b6:37:b3:f4:07:0a:00: 2f:dc:3e:9f:10:1a:9e:2b:a6:35:2f:95:49:4f:7a:92:43:0b: 40:a5:e7:7a:2b:27:fe:f1:10:5d:c9:05:23:e4:42:4a:75:5d: d3:7d:59:0f:5e:76:dd:2b:76:40:21:d9:fb:f5:b2:6e:1a:1c: 83:7b:57:05:a1:5b:26:7e:69:4d:fc:86:07:d3:89:fb:76:60: 58:2d:d1:a1 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWaPQXeNJ0/j129JjuQGldQ3MGjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAxRDJFQzA3NkJEQTYyRDQzOEI5NzI4ODY4NTE1MDNF RUQwNEIyRjAeFw0yNTA5MjMxNDExMTVaFw0yNjA5MjIxNDE2MTVaMDMxMTAvBgNV BAMTKDcxNDBDQ0RGRkJGM0I4Q0M4RkRCN0NFRTg5MkNDRkY3QTM4N0ExRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrAq6ospFqA3GlcC39bfJd2VZV kXj4OuvYibLGFg2uSa5QxAKR7sptXB6Bp8kpqcd5ZaFQLxxK2S8CN4NrBxiWMBDj mbjFx2SWs+A9j9yHlg4Y7MNLf/4yTOb90pm7rDepU3CsIZHnz4UWEQvYsUIvaeCE gON2C6rsy6Bb9D7iE/xVxRlntkxAagUQ5viO9nzs1C9FPhmgIPgL4qsM+VAybQ7q xoNgcd91OtK4yezim5tzRYcoOJA/Z54rSM2r7XxtfGJgzt7aE0kTCtqKU9xsWHRF 1x0covX27WW1S0LNjkAEeWGDtu2FQPgldqSRYzYlgSH4iBYlmaC9HJSj3Fs/AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUcUDM3/vzuMyP23zuiSzP96OHofAwHwYDVR0j BBgwFoAU0B0uwHa9pi1Di5cohoUVA+7QSy8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNEFQTFdoaWhrblBVdktpY3JGbzJ5UUxiZ1o0Y3hMSFhZd2tQVUI2ZW5i M2IvMC9EMDFEMkVDMDc2QkRBNjJENDM4Qjk3Mjg4Njg1MTUwM0VFRDA0QjJGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QwMUQyRUMwNzZCREE2MkQ0 MzhCOTcyODg2ODUxNTAzRUVEMDRCMkYuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCB kQYIKwYBBQUHMAuGgYRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRBUExXaGloa25QVXZLaWNyRm8yeVFMYmdaNGN4TEhYWXdrUFVCNmVuYjNiLzAv MzQzNTJlMzIzMzM3MmUzMjMwMzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAi3tzDANBgkqhkiG9w0BAQsFAAOCAQEAWx9lDpXLedEFxATkfzVr DrwvrkSyPu7KTf2AULL5hDekcp0qK5fp1EtS7T7sFS6Jd7gqgO+o1dYZspvGz/SI 5PiULzPwoaYiLpa98ODe/WAF/prXXGcRQj5ydfGqGD0waCE6IjQRm8RiQQyzSKZc uK3GBM5WGbNK5R5BQCKFeUoRShOC/P9U3oKAEzbaig6jNnH0daW6YNlNnbs1nNG7 9w8WLSI90DkcWGFH1ye2N7P0BwoAL9w+nxAaniumNS+VSU96kkMLQKXneisn/vEQ XckFI+RCSnVd031ZD1523St2QCHZ+/Wybhocg3tXBaFbJn5pTfyGB9OJ+3ZgWC3R oQ== -----END CERTIFICATE-----Generated at Wed Oct 8 14:01:49 2025 by rpki-client