$ rpki-client -vvf rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a396638363a3a2f34382d3438203d3e20323632373239.roa File: 323830343a313664383a396638363a3a2f34382d3438203d3e20323632373239.roa (raw, json) Hash identifier: 5H8ptT/K1m3GIzviNjVs3jmcmSgiph5IXhucYEo5E3Q= Subject key identifier: AF:53:F3:7F:7A:6A:EF:9F:5C:88:AE:54:FD:87:61:FF:3A:25:B6:E3 Certificate issuer: /CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Certificate serial: 2FF9A0C5D2F50BE2BD0CDE916548DACB487D6C54 Authority key identifier: B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject info access: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a396638363a3a2f34382d3438203d3e20323632373239.roa Signing time: Mon 16 Jun 2025 14:10:49 +0000 ROA not before: Mon 16 Jun 2025 14:05:49 +0000 ROA not after: Mon 15 Jun 2026 14:10:49 +0000 asID: 262729 IP address blocks: 2804:16d8:9f86::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 04 Nov 2025 20:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f9:a0:c5:d2:f5:0b:e2:bd:0c:de:91:65:48:da:cb:48:7d:6c:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Validity Not Before: Jun 16 14:05:49 2025 GMT Not After : Jun 15 14:10:49 2026 GMT Subject: CN=AF53F37F7A6AEF9F5C88AE54FD8761FF3A25B6E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:24:01:e0:ed:f5:e8:4e:15:33:24:e2:da:b1: 07:d0:4d:27:eb:74:28:11:7b:a7:b3:4b:6c:b4:0a: 8f:8c:ae:10:f0:e2:75:6d:59:ce:ba:a6:00:44:14: 5a:58:6a:ea:0b:97:5d:7b:e2:5f:78:3c:1c:54:d4: af:b8:8d:03:c2:11:8c:e8:54:57:ea:49:a5:07:8f: f9:37:56:37:e1:f6:b0:5f:3c:23:55:17:60:f6:cd: 4f:9e:67:4b:5d:6e:29:e2:46:b9:ad:da:f2:7b:c1: 26:e0:78:d7:e0:bc:c4:b3:ee:30:fa:97:23:ab:bc: ac:6b:71:b3:55:c1:b8:95:0f:5b:4d:09:c5:45:66: 26:ee:d2:4e:ee:b9:61:ca:66:33:44:8e:d1:1d:c6: 97:8f:8e:b5:ec:3c:ac:40:dd:03:71:2e:d7:ca:bc: 9b:7e:b5:e3:92:b0:6f:b5:72:5d:44:a6:29:ce:79: ce:f7:bc:51:c9:de:91:e1:99:bf:4c:27:cd:23:91: 0d:fa:a5:75:c5:93:9d:bb:75:3a:81:8c:36:3c:c2: 21:40:d4:5d:a4:3f:9e:f8:47:00:6b:d1:ef:5c:93: 2c:8d:7d:5c:19:b2:3b:a3:ef:5f:13:4d:a9:fe:bc: 6d:a2:43:86:fb:ad:25:68:f4:49:18:02:50:f5:d6: 70:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:53:F3:7F:7A:6A:EF:9F:5C:88:AE:54:FD:87:61:FF:3A:25:B6:E3 X509v3 Authority Key Identifier: keyid:B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a396638363a3a2f34382d3438203d3e20323632373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:16d8:9f86::/48 Signature Algorithm: sha256WithRSAEncryption a5:21:61:a1:82:8f:a3:f0:5a:e0:be:a3:0a:81:4b:b7:80:44: 8d:95:46:43:67:ca:8e:2b:a4:fc:35:ac:c9:63:06:11:a0:a0: e3:cd:e1:13:bb:08:bd:cd:d4:f4:1a:05:45:3b:23:9e:81:4f: b2:94:51:dd:ac:8d:1b:0e:dd:6d:a9:aa:97:3e:cc:2e:28:d2: 43:08:20:48:71:39:d0:44:ee:19:19:22:e7:37:43:47:2e:5f: 29:1b:f6:3d:3a:3f:fe:8f:37:e7:f8:41:b3:8e:a5:f6:b7:57: 9b:fe:e5:1c:4c:2c:c7:ec:5d:75:54:92:98:e0:bc:7d:61:d9: 28:d8:57:9a:cb:21:ba:3a:93:3d:c9:74:fd:51:a2:b8:42:39: a2:4d:e9:8b:ae:d0:58:8e:70:e3:82:09:7b:23:bf:02:ba:3c: c0:d5:6b:1f:84:4d:1d:4b:51:44:da:e0:f9:14:b2:e1:cc:fe: b3:b6:5d:ea:69:fc:8a:80:c5:66:20:58:82:eb:68:1a:b5:f6: 8e:b8:e6:45:22:45:1c:ff:35:ba:82:36:7e:2a:c0:77:c1:3f: 34:2d:e6:02:f6:ff:47:2e:e7:5f:f4:57:d8:04:8f:b8:93:7a: 32:6e:cd:26:05:d0:6b:c9:6c:01:f2:fb:01:8a:64:cd:8b:8c: 5f:a8:ad:35 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIUL/mgxdL1C+K9DN6RZUjay0h9bFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEQjFCNThEQ0Q0NkMyRTc0NkQ4RERFQUE3RjQ5ODMz MUREQjAxNzAeFw0yNTA2MTYxNDA1NDlaFw0yNjA2MTUxNDEwNDlaMDMxMTAvBgNV BAMTKEFGNTNGMzdGN0E2QUVGOUY1Qzg4QUU1NEZEODc2MUZGM0EyNUI2RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnJAHg7fXoThUzJOLasQfQTSfr dCgRe6ezS2y0Co+MrhDw4nVtWc66pgBEFFpYauoLl1174l94PBxU1K+4jQPCEYzo VFfqSaUHj/k3Vjfh9rBfPCNVF2D2zU+eZ0tdbiniRrmt2vJ7wSbgeNfgvMSz7jD6 lyOrvKxrcbNVwbiVD1tNCcVFZibu0k7uuWHKZjNEjtEdxpePjrXsPKxA3QNxLtfK vJt+teOSsG+1cl1EpinOec73vFHJ3pHhmb9MJ80jkQ36pXXFk527dTqBjDY8wiFA 1F2kP574RwBr0e9ckyyNfVwZsjuj718TTan+vG2iQ4b7rSVo9EkYAlD11nAbAgMB AAGjggJcMIICWDAdBgNVHQ4EFgQUr1Pzf3pq759ciK5U/Ydh/zoltuMwHwYDVR0j BBgwFoAUudsbWNzUbC50bY3eqn9JgzHdsBcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDVmUEVVcmNhM21RVW9hNVVMS3pGNVB6WTdZZExVSkdXbTRiRzF0ZUZn OWsvMC9COURCMUI1OERDRDQ2QzJFNzQ2RDhEREVBQTdGNDk4MzMxRERCMDE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5REIxQjU4RENENDZDMkU3 NDZEOERERUFBN0Y0OTgzMzFEREIwMTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q1ZlBFVXJjYTNtUVVvYTVVTEt6RjVQelk3WWRMVUpHV200YkcxdGVGZzlrLzAv MzIzODMwMzQzYTMxMzY2NDM4M2EzOTY2MzgzNjNhM2EyZjM0MzgyZDM0MzgyMDNk M2UyMDMyMzYzMjM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACgEFtifhjANBgkqhkiG9w0BAQsF AAOCAQEApSFhoYKPo/Ba4L6jCoFLt4BEjZVGQ2fKjiuk/DWsyWMGEaCg483hE7sI vc3U9BoFRTsjnoFPspRR3ayNGw7dbamqlz7MLijSQwggSHE50ETuGRki5zdDRy5f KRv2PTo//o835/hBs46l9rdXm/7lHEwsx+xddVSSmOC8fWHZKNhXmsshujqTPcl0 /VGiuEI5ok3pi67QWI5w44IJeyO/Aro8wNVrH4RNHUtRRNrg+RSy4cz+s7Zd6mn8 ioDFZiBYgutoGrX2jrjmRSJFHP81uoI2firAd8E/NC3mAvb/Ry7nX/RX2ASPuJN6 Mm7NJgXQa8lsAfL7AYpkzYuMX6itNQ== -----END CERTIFICATE-----Generated at Mon Nov 3 19:24:50 2025 by rpki-client