$ rpki-client -vvf rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a363830303a3a2f33372d3337203d3e20323632373239.roa File: 323830343a313664383a363830303a3a2f33372d3337203d3e20323632373239.roa (raw, json) Hash identifier: fp3t076x8W9wOq6rOrcvbWUyCwZgdOIPDnoF0/OvTTk= Subject key identifier: 9F:69:B4:E2:16:F9:B9:4B:F8:58:C4:36:1A:31:48:0E:45:3D:BE:46 Certificate issuer: /CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Certificate serial: 52DCB6062C19038A3CFAEDB79CA876D416AAFBB5 Authority key identifier: B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject info access: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a363830303a3a2f33372d3337203d3e20323632373239.roa Signing time: Mon 16 Jun 2025 14:10:48 +0000 ROA not before: Mon 16 Jun 2025 14:05:48 +0000 ROA not after: Mon 15 Jun 2026 14:10:48 +0000 asID: 262729 IP address blocks: 2804:16d8:6800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 04 Nov 2025 20:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:dc:b6:06:2c:19:03:8a:3c:fa:ed:b7:9c:a8:76:d4:16:aa:fb:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Validity Not Before: Jun 16 14:05:48 2025 GMT Not After : Jun 15 14:10:48 2026 GMT Subject: CN=9F69B4E216F9B94BF858C4361A31480E453DBE46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a1:06:b2:02:ea:f7:a0:4a:02:6d:84:14:91: 57:2b:f1:89:1c:66:59:bf:de:d9:f0:1a:1d:5b:fc: 30:d1:70:61:e9:71:e4:93:69:b3:26:ef:46:02:23: a5:b8:9c:79:94:5c:3c:bf:3e:6b:33:ad:4e:f1:e4: 4e:3a:f8:b8:71:a7:c5:8e:84:50:72:7d:13:e4:a2: bf:09:05:e9:78:a9:82:bd:7d:62:cb:e3:b6:d2:d9: 04:bb:16:be:29:bd:3e:71:f5:3c:63:e8:5e:e4:01: 8e:f3:97:27:26:1a:41:f3:c0:9d:a8:fa:df:5a:59: b2:7d:5e:5a:01:0d:6e:ef:33:c0:6c:3a:98:a7:35: 25:b2:0b:11:26:58:79:d0:94:ef:5b:65:ed:56:ac: 3e:59:70:55:56:f0:44:02:29:f2:ce:85:3f:e1:c7: 94:fb:17:e4:b5:7b:09:39:54:1d:43:5b:10:c5:64: 75:7d:96:c4:ee:32:4f:a5:22:6f:78:4d:b7:fc:2e: 23:7e:3a:b1:75:db:4a:e3:63:80:5b:e3:be:82:ca: 8c:f3:70:72:57:ca:ab:0d:d8:64:b3:d2:f9:dd:8f: ca:7e:6c:fd:dd:85:16:c0:af:a2:7c:06:b4:79:47: c9:53:d3:14:cc:33:94:bd:10:c9:cd:7d:4a:ff:84: 3d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:69:B4:E2:16:F9:B9:4B:F8:58:C4:36:1A:31:48:0E:45:3D:BE:46 X509v3 Authority Key Identifier: keyid:B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a363830303a3a2f33372d3337203d3e20323632373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:16d8:6800::/37 Signature Algorithm: sha256WithRSAEncryption 36:02:cb:2a:ad:9b:b9:b9:15:a6:ec:06:a1:f4:9f:87:2e:e2: fd:79:a0:74:10:8a:88:c6:81:6d:99:ba:72:9d:53:7b:5f:f0: fc:24:b4:ee:f7:e5:c8:ae:78:08:3a:1c:0a:61:04:fc:53:ea: fb:62:cd:78:f0:59:fa:0f:f4:aa:05:ce:ea:1e:cc:fc:58:b7: db:5b:34:6d:f0:d6:6b:c7:e0:a7:17:ed:a7:2a:e0:a2:95:5d: 62:8c:40:89:30:32:7d:b4:c2:30:1c:9d:02:df:c8:6c:e2:79: e3:8e:63:84:d8:0d:d3:8a:0b:fa:ef:b7:bc:54:45:aa:b4:06: 30:e7:6d:17:97:1b:16:16:35:89:79:2e:7a:53:5d:71:de:1d: 9b:5d:26:8f:d0:49:d0:a3:74:65:dd:48:5e:e3:7d:bc:c4:62: 89:fb:dd:7f:ec:f4:37:ed:9a:75:a7:db:6e:10:8c:f7:0f:e9: 10:fb:81:7b:18:0d:ea:8e:89:cc:f5:bd:5c:50:74:ed:03:5b: a7:62:e2:a3:f2:15:48:ee:f0:b0:4b:01:39:8c:00:05:6d:f7: 4d:e5:6a:58:f6:7c:e7:a0:20:b0:46:54:b5:a9:32:8c:46:bd: 12:82:3d:15:e1:66:82:30:30:90:a5:4e:d5:d1:fa:f1:0f:fb: df:93:c2:33 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUUty2BiwZA4o8+u23nKh21Baq+7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEQjFCNThEQ0Q0NkMyRTc0NkQ4RERFQUE3RjQ5ODMz MUREQjAxNzAeFw0yNTA2MTYxNDA1NDhaFw0yNjA2MTUxNDEwNDhaMDMxMTAvBgNV BAMTKDlGNjlCNEUyMTZGOUI5NEJGODU4QzQzNjFBMzE0ODBFNDUzREJFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDioQayAur3oEoCbYQUkVcr8Ykc Zlm/3tnwGh1b/DDRcGHpceSTabMm70YCI6W4nHmUXDy/PmszrU7x5E46+Lhxp8WO hFByfRPkor8JBel4qYK9fWLL47bS2QS7Fr4pvT5x9Txj6F7kAY7zlycmGkHzwJ2o +t9aWbJ9XloBDW7vM8BsOpinNSWyCxEmWHnQlO9bZe1WrD5ZcFVW8EQCKfLOhT/h x5T7F+S1ewk5VB1DWxDFZHV9lsTuMk+lIm94Tbf8LiN+OrF120rjY4Bb476Cyozz cHJXyqsN2GSz0vndj8p+bP3dhRbAr6J8BrR5R8lT0xTMM5S9EMnNfUr/hD0DAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUn2m04hb5uUv4WMQ2GjFIDkU9vkYwHwYDVR0j BBgwFoAUudsbWNzUbC50bY3eqn9JgzHdsBcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDVmUEVVcmNhM21RVW9hNVVMS3pGNVB6WTdZZExVSkdXbTRiRzF0ZUZn OWsvMC9COURCMUI1OERDRDQ2QzJFNzQ2RDhEREVBQTdGNDk4MzMxRERCMDE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5REIxQjU4RENENDZDMkU3 NDZEOERERUFBN0Y0OTgzMzFEREIwMTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q1ZlBFVXJjYTNtUVVvYTVVTEt6RjVQelk3WWRMVUpHV200YkcxdGVGZzlrLzAv MzIzODMwMzQzYTMxMzY2NDM4M2EzNjM4MzAzMDNhM2EyZjMzMzcyZDMzMzcyMDNk M2UyMDMyMzYzMjM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAygEFthoMA0GCSqGSIb3DQEBCwUA A4IBAQA2AssqrZu5uRWm7Aah9J+HLuL9eaB0EIqIxoFtmbpynVN7X/D8JLTu9+XI rngIOhwKYQT8U+r7Ys148Fn6D/SqBc7qHsz8WLfbWzRt8NZrx+CnF+2nKuCilV1i jECJMDJ9tMIwHJ0C38hs4nnjjmOE2A3Tigv677e8VEWqtAYw520XlxsWFjWJeS56 U11x3h2bXSaP0EnQo3Rl3Uhe4328xGKJ+91/7PQ37Zp1p9tuEIz3D+kQ+4F7GA3q jonM9b1cUHTtA1unYuKj8hVI7vCwSwE5jAAFbfdN5WpY9nznoCCwRlS1qTKMRr0S gj0V4WaCMDCQpU7V0frxD/vfk8Iz -----END CERTIFICATE-----Generated at Mon Nov 3 19:24:45 2025 by rpki-client