$ rpki-client -vvf rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a316430313a3a2f34382d3438203d3e20323632373239.roa File: 323830343a313664383a316430313a3a2f34382d3438203d3e20323632373239.roa (raw, json) Hash identifier: lnv5Wuhng7bInqT7FDchCBsk8KdaGiQT/A+7ZZpR/PA= Subject key identifier: 7A:A5:26:DB:C0:3A:8F:75:16:76:7B:F2:07:8E:79:5D:7A:92:7D:E8 Certificate issuer: /CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Certificate serial: 3696A87DD2FB1552CB4ECF3E9B3B17B2317C35E2 Authority key identifier: B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject info access: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a316430313a3a2f34382d3438203d3e20323632373239.roa Signing time: Mon 16 Jun 2025 14:10:48 +0000 ROA not before: Mon 16 Jun 2025 14:05:48 +0000 ROA not after: Mon 15 Jun 2026 14:10:48 +0000 asID: 262729 IP address blocks: 2804:16d8:1d01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 04 Nov 2025 18:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:96:a8:7d:d2:fb:15:52:cb:4e:cf:3e:9b:3b:17:b2:31:7c:35:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Validity Not Before: Jun 16 14:05:48 2025 GMT Not After : Jun 15 14:10:48 2026 GMT Subject: CN=7AA526DBC03A8F7516767BF2078E795D7A927DE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:4e:35:20:32:2d:08:27:bd:c7:14:c2:0e: bf:64:9d:04:6d:63:38:5a:2d:ad:e9:4c:e6:5e:d7: 61:85:d1:a4:92:2d:91:0f:9c:4c:0b:a6:f6:91:63: bd:f4:34:e7:ac:14:9a:2a:af:1f:67:53:f4:8a:89: 0b:b1:5e:12:67:1b:0f:43:8d:e3:50:7d:67:e3:b9: 00:ba:aa:b5:06:86:3a:60:d7:93:85:2e:e7:01:3d: 20:3c:7e:6e:d3:87:fd:6d:54:43:d0:80:be:6c:0c: e4:45:44:70:69:6c:b6:56:e7:4d:53:e6:f4:28:ea: 1f:17:d5:53:5b:a2:05:67:98:f1:80:79:eb:44:66: ec:ee:79:92:88:0a:b4:1d:43:f9:68:95:09:79:52: 69:d8:bb:26:9e:eb:c5:93:b8:6d:d2:c4:d0:ce:3c: eb:56:83:3e:67:82:fa:c8:b1:e9:41:d3:95:7c:1f: 35:4d:1b:3a:be:e2:ce:b7:7d:22:14:2a:cf:e9:67: f7:d8:6f:5e:e7:1e:95:01:20:07:46:36:ae:e2:4f: 7a:12:ef:54:6b:0c:e4:e4:eb:d7:66:d8:f8:a0:4f: 80:7e:62:cf:2c:15:f3:74:68:9a:0f:77:c9:f4:00: 46:a3:17:08:84:78:75:b3:96:eb:cf:f9:2c:71:68: 1f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:A5:26:DB:C0:3A:8F:75:16:76:7B:F2:07:8E:79:5D:7A:92:7D:E8 X509v3 Authority Key Identifier: keyid:B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a316430313a3a2f34382d3438203d3e20323632373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:16d8:1d01::/48 Signature Algorithm: sha256WithRSAEncryption 4c:73:88:68:31:9c:1c:6e:8f:b9:fa:d5:fc:48:dc:8b:59:3d: 22:97:c8:0c:c6:a3:ae:4c:03:d6:6c:1d:93:9a:9a:d0:94:f5: 51:bf:29:f0:f1:de:57:69:b1:77:63:0f:03:69:69:65:eb:17: 57:ea:fe:29:97:cf:0f:8b:a2:d5:95:b4:cd:40:a2:34:f8:64: 4c:ce:88:97:7d:be:c7:30:ef:e5:68:d3:0f:0b:ae:2d:c4:40: c5:70:75:5d:e1:5c:af:88:76:4c:5d:da:50:c0:ea:51:98:06: 64:b6:3b:1d:3d:70:4d:98:96:e2:72:73:50:24:e0:2f:67:ac: 47:6f:27:41:b6:77:cd:d8:4d:47:7e:bd:14:a5:6f:f7:9a:37: cd:3e:fc:d4:e0:bc:a8:65:32:4e:5c:0d:fc:33:fc:b8:6e:1e: 25:3a:3b:dd:67:b7:5a:71:a4:4e:0f:8e:86:0b:8b:16:d0:c8: 26:5e:56:0c:7f:70:b2:4a:81:9e:19:53:14:99:c4:ef:be:32: 5b:0d:8f:52:49:ec:5a:b2:49:7c:59:52:05:a9:85:e8:b5:5b: 04:d9:20:1b:f2:df:f4:0a:0f:be:c5:5e:fb:f7:bb:06:ca:54: 6f:06:29:3b:fc:86:55:fc:60:0a:04:97:51:fe:68:f7:34:4a: 83:df:0c:9a -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIUNpaofdL7FVLLTs8+mzsXsjF8NeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEQjFCNThEQ0Q0NkMyRTc0NkQ4RERFQUE3RjQ5ODMz MUREQjAxNzAeFw0yNTA2MTYxNDA1NDhaFw0yNjA2MTUxNDEwNDhaMDMxMTAvBgNV BAMTKDdBQTUyNkRCQzAzQThGNzUxNjc2N0JGMjA3OEU3OTVEN0E5MjdERTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO/U41IDItCCe9xxTCDr9knQRt YzhaLa3pTOZe12GF0aSSLZEPnEwLpvaRY730NOesFJoqrx9nU/SKiQuxXhJnGw9D jeNQfWfjuQC6qrUGhjpg15OFLucBPSA8fm7Th/1tVEPQgL5sDORFRHBpbLZW501T 5vQo6h8X1VNbogVnmPGAeetEZuzueZKICrQdQ/lolQl5UmnYuyae68WTuG3SxNDO POtWgz5ngvrIselB05V8HzVNGzq+4s63fSIUKs/pZ/fYb17nHpUBIAdGNq7iT3oS 71RrDOTk69dm2PigT4B+Ys8sFfN0aJoPd8n0AEajFwiEeHWzluvP+SxxaB/JAgMB AAGjggJcMIICWDAdBgNVHQ4EFgQUeqUm28A6j3UWdnvyB455XXqSfegwHwYDVR0j BBgwFoAUudsbWNzUbC50bY3eqn9JgzHdsBcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDVmUEVVcmNhM21RVW9hNVVMS3pGNVB6WTdZZExVSkdXbTRiRzF0ZUZn OWsvMC9COURCMUI1OERDRDQ2QzJFNzQ2RDhEREVBQTdGNDk4MzMxRERCMDE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5REIxQjU4RENENDZDMkU3 NDZEOERERUFBN0Y0OTgzMzFEREIwMTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q1ZlBFVXJjYTNtUVVvYTVVTEt6RjVQelk3WWRMVUpHV200YkcxdGVGZzlrLzAv MzIzODMwMzQzYTMxMzY2NDM4M2EzMTY0MzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNk M2UyMDMyMzYzMjM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACgEFtgdATANBgkqhkiG9w0BAQsF AAOCAQEATHOIaDGcHG6PufrV/Ejci1k9IpfIDMajrkwD1mwdk5qa0JT1Ub8p8PHe V2mxd2MPA2lpZesXV+r+KZfPD4ui1ZW0zUCiNPhkTM6Il32+xzDv5WjTDwuuLcRA xXB1XeFcr4h2TF3aUMDqUZgGZLY7HT1wTZiW4nJzUCTgL2esR28nQbZ3zdhNR369 FKVv95o3zT781OC8qGUyTlwN/DP8uG4eJTo73We3WnGkTg+OhguLFtDIJl5WDH9w skqBnhlTFJnE774yWw2PUknsWrJJfFlSBamF6LVbBNkgG/Lf9AoPvsVe+/e7BspU bwYpO/yGVfxgCgSXUf5o9zRKg98Mmg== -----END CERTIFICATE-----Generated at Mon Nov 3 19:24:07 2025 by rpki-client