$ rpki-client -vvf rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/323830343a3732633a3a2f33322d3438203d3e203532383531.roa File: 323830343a3732633a3a2f33322d3438203d3e203532383531.roa (raw, json) Hash identifier: 49nv3S957iF/Bl878PyBacYSNESML1j3+sBPDpKuoK4= Subject key identifier: 68:C3:34:18:5A:62:13:EF:11:E1:DE:29:58:7F:90:F5:CE:15:41:A3 Certificate issuer: /CN=010E573258A339BA98BB3BB090EDE36C06300407 Certificate serial: 1796B82B333D491089CF03677F60EE6D1F233EE8 Authority key identifier: 01:0E:57:32:58:A3:39:BA:98:BB:3B:B0:90:ED:E3:6C:06:30:04:07 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/010E573258A339BA98BB3BB090EDE36C06300407.cer Subject info access: rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/323830343a3732633a3a2f33322d3438203d3e203532383531.roa Signing time: Wed 24 Sep 2025 15:58:24 +0000 ROA not before: Wed 24 Sep 2025 15:53:24 +0000 ROA not after: Wed 23 Sep 2026 15:58:24 +0000 asID: 52851 IP address blocks: 2804:72c::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/010E573258A339BA98BB3BB090EDE36C06300407.crl rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/010E573258A339BA98BB3BB090EDE36C06300407.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/010E573258A339BA98BB3BB090EDE36C06300407.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 20:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:96:b8:2b:33:3d:49:10:89:cf:03:67:7f:60:ee:6d:1f:23:3e:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=010E573258A339BA98BB3BB090EDE36C06300407 Validity Not Before: Sep 24 15:53:24 2025 GMT Not After : Sep 23 15:58:24 2026 GMT Subject: CN=68C334185A6213EF11E1DE29587F90F5CE1541A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:26:8e:7a:a6:db:8a:41:1e:9b:21:b3:db:5e: 80:d2:cf:bb:c6:f3:d6:13:a6:d8:1a:54:bb:a0:bd: 67:1a:35:00:97:4e:78:6f:a7:e8:1d:86:43:d7:75: a2:0e:5d:f5:8c:6a:57:8e:a3:9c:a3:d4:78:1f:23: 82:8e:4f:de:dd:78:34:99:52:1f:e2:ef:b1:a8:a9: 5c:65:2c:95:8c:00:dd:9a:d5:c9:07:de:00:6d:5a: 8a:a7:50:66:28:77:c9:4a:b1:9c:b2:9c:5d:d8:4d: d0:70:81:73:27:7d:cd:c2:98:f4:41:73:45:68:35: bd:33:0d:bc:3a:1a:a2:ca:0a:e0:cf:bf:1f:05:95: f4:1b:43:ca:28:a9:4e:79:6c:0c:2d:84:e2:84:bd: 75:f5:d8:23:90:c2:e9:16:9c:a2:b3:b7:33:4d:dd: 2a:d3:a2:6f:3d:9a:eb:6c:ce:d7:43:e8:2e:2f:7e: c9:bd:17:ee:76:9a:9f:fd:47:cc:8f:f2:d7:1b:4d: b7:0a:b1:e6:55:16:6e:e9:86:b7:17:e8:58:68:b6: 52:bd:66:de:3e:60:ff:a0:a5:2d:5d:e9:b4:39:9d: a1:62:de:df:f3:f3:8a:08:28:1a:c8:28:2f:e0:3b: eb:b7:86:bb:22:a8:24:d6:bb:f5:27:ff:44:f8:65: 49:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C3:34:18:5A:62:13:EF:11:E1:DE:29:58:7F:90:F5:CE:15:41:A3 X509v3 Authority Key Identifier: keyid:01:0E:57:32:58:A3:39:BA:98:BB:3B:B0:90:ED:E3:6C:06:30:04:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/010E573258A339BA98BB3BB090EDE36C06300407.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/010E573258A339BA98BB3BB090EDE36C06300407.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2M21yVMuVu5amq9AsiUagsuaSWSMEXSoxBtr9fiBBQzx/0/323830343a3732633a3a2f33322d3438203d3e203532383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:72c::/32 Signature Algorithm: sha256WithRSAEncryption 48:45:b7:56:28:3e:95:26:5d:53:89:2e:3d:e6:18:2a:94:32: a2:ff:44:12:56:64:e5:b8:7e:da:0c:62:c0:9b:f6:5a:5e:73: 07:6e:4c:30:2c:65:4e:98:59:7f:32:e7:42:9e:91:bb:a3:5a: 19:cb:1b:3d:85:4c:6e:85:1a:f8:cc:a3:0f:1e:ef:00:b4:bc: 24:20:99:d1:29:ec:b1:d5:99:9a:b7:71:1c:d3:67:e9:9e:3b: 6c:67:ed:bd:00:07:4d:3a:14:5d:65:ba:3d:fb:26:cc:08:ab: b6:11:f6:c3:17:6d:35:a7:bf:dd:94:fe:1a:35:5e:a7:39:ee: 21:6e:35:bf:82:c7:e6:35:80:f5:f0:19:fe:ed:e9:f6:6a:fa: 6c:9d:26:26:8d:d0:90:94:3a:11:c1:9b:99:65:7c:be:7d:06: 0e:ca:6b:ff:fb:67:f3:f4:83:04:96:33:f3:9e:77:e5:fe:61: a8:54:e2:5d:5a:8b:43:e3:39:22:ae:e5:ad:1e:3e:7c:00:d9: 37:5e:04:ab:75:80:0e:27:55:96:85:51:04:7e:e5:79:ed:bb: 87:7c:3c:9d:7a:4b:84:36:ec:fe:59:69:42:20:d1:79:2e:1e: b0:2e:2e:b1:5c:04:ab:3a:42:b2:7b:8c:67:1a:60:c1:ef:91: 76:63:d8:23 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUF5a4KzM9SRCJzwNnf2DubR8jPugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEwRTU3MzI1OEEzMzlCQTk4QkIzQkIwOTBFREUzNkMw NjMwMDQwNzAeFw0yNTA5MjQxNTUzMjRaFw0yNjA5MjMxNTU4MjRaMDMxMTAvBgNV BAMTKDY4QzMzNDE4NUE2MjEzRUYxMUUxREUyOTU4N0Y5MEY1Q0UxNTQxQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSJo56ptuKQR6bIbPbXoDSz7vG 89YTptgaVLugvWcaNQCXTnhvp+gdhkPXdaIOXfWMaleOo5yj1HgfI4KOT97deDSZ Uh/i77GoqVxlLJWMAN2a1ckH3gBtWoqnUGYod8lKsZyynF3YTdBwgXMnfc3CmPRB c0VoNb0zDbw6GqLKCuDPvx8FlfQbQ8ooqU55bAwthOKEvXX12COQwukWnKKztzNN 3SrTom89mutsztdD6C4vfsm9F+52mp/9R8yP8tcbTbcKseZVFm7phrcX6FhotlK9 Zt4+YP+gpS1d6bQ5naFi3t/z84oIKBrIKC/gO+u3hrsiqCTWu/Un/0T4ZUn1AgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUaMM0GFpiE+8R4d4pWH+Q9c4VQaMwHwYDVR0j BBgwFoAUAQ5XMlijObqYuzuwkO3jbAYwBAcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMk0yMXlWTXVWdTVhbXE5QXNpVWFnc3VhU1dTTUVYU294QnRyOWZpQkJR engvMC8wMTBFNTczMjU4QTMzOUJBOThCQjNCQjA5MEVERTM2QzA2MzAwNDA3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAxMEU1NzMyNThBMzM5QkE5 OEJCM0JCMDkwRURFMzZDMDYzMDA0MDcuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJNMjF5Vk11VnU1YW1xOUFzaVVhZ3N1YVNXU01FWFNveEJ0cjlmaUJCUXp4LzAv MzIzODMwMzQzYTM3MzI2MzNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDM1MzIzODM1 MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoBAcsMA0GCSqGSIb3DQEBCwUAA4IBAQBIRbdWKD6VJl1T iS495hgqlDKi/0QSVmTluH7aDGLAm/ZaXnMHbkwwLGVOmFl/MudCnpG7o1oZyxs9 hUxuhRr4zKMPHu8AtLwkIJnRKeyx1Zmat3Ec02fpnjtsZ+29AAdNOhRdZbo9+ybM CKu2EfbDF201p7/dlP4aNV6nOe4hbjW/gsfmNYD18Bn+7en2avpsnSYmjdCQlDoR wZuZZXy+fQYOymv/+2fz9IMEljPznnfl/mGoVOJdWotD4zkiruWtHj58ANk3XgSr dYAOJ1WWhVEEfuV57buHfDydekuENuz+WWlCINF5Lh6wLi6xXASrOkKye4xnGmDB 75F2Y9gj -----END CERTIFICATE-----Generated at Mon Oct 20 22:44:54 2025 by rpki-client