$ rpki-client -vvf rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/34352e3233382e352e302f32342d3234203d3e20323638333038.roa File: 34352e3233382e352e302f32342d3234203d3e20323638333038.roa (raw, json) Hash identifier: 2zTq+KkzyQzrA1U6hIOetb6MDwapr/5UWxGaozh/8MM= Subject key identifier: 50:9C:2B:E2:DB:15:A8:64:F3:F3:A7:6F:11:74:A3:0A:F1:E7:15:94 Certificate issuer: /CN=8D04B01D1AC6E397E778A8BB24BF8A398E2E8187 Certificate serial: 270D4D007AA98D7E3B3DF4A27219B97214F9D9EE Authority key identifier: 8D:04:B0:1D:1A:C6:E3:97:E7:78:A8:BB:24:BF:8A:39:8E:2E:81:87 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8D04B01D1AC6E397E778A8BB24BF8A398E2E8187.cer Subject info access: rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/34352e3233382e352e302f32342d3234203d3e20323638333038.roa Signing time: Fri 12 Sep 2025 19:44:51 +0000 ROA not before: Fri 12 Sep 2025 19:39:51 +0000 ROA not after: Fri 11 Sep 2026 19:44:51 +0000 asID: 268308 IP address blocks: 45.238.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/8D04B01D1AC6E397E778A8BB24BF8A398E2E8187.crl rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/8D04B01D1AC6E397E778A8BB24BF8A398E2E8187.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8D04B01D1AC6E397E778A8BB24BF8A398E2E8187.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 19 Sep 2025 08:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:0d:4d:00:7a:a9:8d:7e:3b:3d:f4:a2:72:19:b9:72:14:f9:d9:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D04B01D1AC6E397E778A8BB24BF8A398E2E8187 Validity Not Before: Sep 12 19:39:51 2025 GMT Not After : Sep 11 19:44:51 2026 GMT Subject: CN=509C2BE2DB15A864F3F3A76F1174A30AF1E71594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:74:28:b1:9d:2d:21:af:fc:b3:28:94:b9:40: dd:82:76:c7:cb:81:1d:08:c9:19:bb:9d:38:12:bc: c8:01:bf:ed:86:1f:42:03:0c:ed:e6:3d:c0:b7:ff: 51:2f:1a:af:dc:e5:c5:f4:a3:bb:3a:cc:73:dd:36: be:55:be:89:3a:70:5b:81:92:ca:98:c0:33:03:1f: 26:0a:9b:4c:85:62:3d:cc:a4:68:75:fe:1b:49:b9: 65:77:a0:73:89:d7:15:06:29:fc:f2:6a:00:db:bd: ae:87:e9:9d:ab:34:2f:f4:73:46:70:4f:f4:1d:bd: d3:07:74:5b:a9:17:03:34:c4:31:c8:e5:f0:96:87: 11:63:81:0d:cf:4b:36:08:7f:1d:c1:9e:f1:21:dd: 3c:50:49:df:be:7f:5d:e9:83:db:99:27:c1:76:f8: 29:9a:3d:ec:05:83:8e:3e:38:f4:8a:ea:b9:11:56: a2:d0:fe:1d:a8:f3:d7:10:ed:fe:e9:a4:11:ec:db: 53:6a:ab:86:93:47:96:d7:9a:4c:e5:77:a4:27:48: 3a:f3:9d:ea:b3:8b:8d:a3:77:6f:9a:d6:2a:9e:3b: d9:fe:4d:82:33:12:86:43:39:80:47:64:de:e2:aa: bf:26:e4:d1:4b:bf:b0:39:18:42:d1:e3:83:0b:1f: a9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:9C:2B:E2:DB:15:A8:64:F3:F3:A7:6F:11:74:A3:0A:F1:E7:15:94 X509v3 Authority Key Identifier: keyid:8D:04:B0:1D:1A:C6:E3:97:E7:78:A8:BB:24:BF:8A:39:8E:2E:81:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/8D04B01D1AC6E397E778A8BB24BF8A398E2E8187.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8D04B01D1AC6E397E778A8BB24BF8A398E2E8187.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/34352e3233382e352e302f32342d3234203d3e20323638333038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.238.5.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:5d:09:49:53:b8:a4:d3:4e:99:e3:86:b5:df:8f:74:f6:d7: ab:a6:b0:2d:f2:d9:45:f7:58:95:e4:52:5f:65:5b:64:41:b1: 41:1a:42:0c:3b:24:b0:2c:82:ce:71:ca:63:f6:f2:fd:36:b8: 7d:e5:62:48:5e:4a:c2:80:f8:85:af:78:cb:c5:68:f7:87:1d: 38:de:81:4f:15:e6:c9:8d:a8:2e:82:8a:5b:fb:a2:15:c7:25: 8c:c3:fb:ad:2a:4b:03:a9:2a:b9:4b:f2:47:de:85:cd:49:25: 06:72:86:34:1c:c7:c2:0a:94:11:2b:c1:fd:62:74:3a:16:01: a5:04:3f:09:79:6c:ea:a2:08:29:c3:91:96:75:de:1d:bb:b0: ad:17:9a:a7:90:9e:82:b5:e2:72:6e:5c:52:be:d9:fb:93:1f: 91:01:4d:86:a7:15:bb:79:14:7e:4a:45:25:f9:df:d6:a4:f3: 21:1e:c1:ca:37:8a:b4:29:ea:30:18:80:45:0f:07:c1:1a:55: 27:a4:58:0b:fb:2f:33:9b:e7:50:0f:58:63:1d:fe:2d:9d:b5: b3:39:6a:0f:02:d7:7c:09:4e:4a:19:68:d8:07:3c:40:3b:b7: 05:59:90:75:06:05:27:61:2e:74:14:d9:d6:aa:8c:48:c5:7e: 1c:ed:c1:35 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUJw1NAHqpjX47PfSichm5chT52e4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQwNEIwMUQxQUM2RTM5N0U3NzhBOEJCMjRCRjhBMzk4 RTJFODE4NzAeFw0yNTA5MTIxOTM5NTFaFw0yNjA5MTExOTQ0NTFaMDMxMTAvBgNV BAMTKDUwOUMyQkUyREIxNUE4NjRGM0YzQTc2RjExNzRBMzBBRjFFNzE1OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBdCixnS0hr/yzKJS5QN2CdsfL gR0IyRm7nTgSvMgBv+2GH0IDDO3mPcC3/1EvGq/c5cX0o7s6zHPdNr5Vvok6cFuB ksqYwDMDHyYKm0yFYj3MpGh1/htJuWV3oHOJ1xUGKfzyagDbva6H6Z2rNC/0c0Zw T/QdvdMHdFupFwM0xDHI5fCWhxFjgQ3PSzYIfx3BnvEh3TxQSd++f13pg9uZJ8F2 +CmaPewFg44+OPSK6rkRVqLQ/h2o89cQ7f7ppBHs21Nqq4aTR5bXmkzld6QnSDrz neqzi42jd2+a1iqeO9n+TYIzEoZDOYBHZN7iqr8m5NFLv7A5GELR44MLH6k7AgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUUJwr4tsVqGTz86dvEXSjCvHnFZQwHwYDVR0j BBgwFoAUjQSwHRrG45fneKi7JL+KOY4ugYcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNzI1REU4VnVDMUxFdHk1SERQQm9mZWlFUkNUQzlLMzh1OFVQNlNiaDV3 OW0vMC84RDA0QjAxRDFBQzZFMzk3RTc3OEE4QkIyNEJGOEEzOThFMkU4MTg3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzhEMDRCMDFEMUFDNkUzOTdF Nzc4QThCQjI0QkY4QTM5OEUyRTgxODcuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzcyNURFOFZ1QzFMRXR5NUhEUEJvZmVpRVJDVEM5SzM4dThVUDZTYmg1dzltLzAv MzQzNTJlMzIzMzM4MmUzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzODMz MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAC3uBTANBgkqhkiG9w0BAQsFAAOCAQEAPV0JSVO4pNNO meOGtd+PdPbXq6awLfLZRfdYleRSX2VbZEGxQRpCDDsksCyCznHKY/by/Ta4feVi SF5KwoD4ha94y8Vo94cdON6BTxXmyY2oLoKKW/uiFccljMP7rSpLA6kquUvyR96F zUklBnKGNBzHwgqUESvB/WJ0OhYBpQQ/CXls6qIIKcORlnXeHbuwrReap5CegrXi cm5cUr7Z+5MfkQFNhqcVu3kUfkpFJfnf1qTzIR7ByjeKtCnqMBiARQ8HwRpVJ6RY C/svM5vnUA9YYx3+LZ21szlqDwLXfAlOShlo2Ac8QDu3BVmQdQYFJ2EudBTZ1qqM SMV+HO3BNQ== -----END CERTIFICATE-----Generated at Fri Sep 19 00:45:25 2025 by rpki-client