$ rpki-client -vvf rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/323830343a373039633a3a2f33322d3438203d3e20323730373337.roa File: 323830343a373039633a3a2f33322d3438203d3e20323730373337.roa (raw, json) Hash identifier: z3+jy+kvN0ec/CwA1jDFeo1POc5HGxkNptEzu9VsNXs= Subject key identifier: 40:C2:EF:B1:BB:5C:FC:A1:B3:96:FB:2D:9D:82:04:F3:BA:79:6C:9C Certificate issuer: /CN=AF709D487025EB90C014C7186CC0AEA341A27C3B Certificate serial: 0F1A8516081244CCFFD4AC6066BE4DA7C1F08D18 Authority key identifier: AF:70:9D:48:70:25:EB:90:C0:14:C7:18:6C:C0:AE:A3:41:A2:7C:3B Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AF709D487025EB90C014C7186CC0AEA341A27C3B.cer Subject info access: rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/323830343a373039633a3a2f33322d3438203d3e20323730373337.roa Signing time: Mon 22 Sep 2025 17:52:36 +0000 ROA not before: Mon 22 Sep 2025 17:47:36 +0000 ROA not after: Mon 21 Sep 2026 17:52:36 +0000 asID: 270737 IP address blocks: 2804:709c::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/AF709D487025EB90C014C7186CC0AEA341A27C3B.crl rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/AF709D487025EB90C014C7186CC0AEA341A27C3B.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AF709D487025EB90C014C7186CC0AEA341A27C3B.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 14:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:1a:85:16:08:12:44:cc:ff:d4:ac:60:66:be:4d:a7:c1:f0:8d:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF709D487025EB90C014C7186CC0AEA341A27C3B Validity Not Before: Sep 22 17:47:36 2025 GMT Not After : Sep 21 17:52:36 2026 GMT Subject: CN=40C2EFB1BB5CFCA1B396FB2D9D8204F3BA796C9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b4:af:4d:cb:bc:2c:4d:85:42:77:8d:68:df: ac:d7:23:a4:34:9b:15:2f:1d:89:3b:4c:c0:0d:05: a7:85:93:c0:95:95:98:33:d2:9c:5b:d6:e2:76:b1: 91:c1:d8:3b:3f:24:25:8e:0e:23:f3:9c:e0:6f:52: aa:35:b1:dc:c3:89:98:ef:5f:f7:f1:4c:8f:df:f1: c0:a3:36:87:2e:6f:fc:8b:98:e0:83:ab:85:50:79: 41:c3:3d:77:d7:df:26:15:96:07:dc:c8:08:e8:cf: 1d:72:9e:6a:09:01:70:a8:36:99:0e:2b:2c:c0:2b: db:8b:07:35:4b:14:a2:b3:e0:a1:c2:2f:ec:86:bb: 70:9c:7b:e8:c7:b8:e0:7e:8f:58:d1:34:88:14:0b: 79:ab:55:4f:c0:80:f2:f4:2c:5d:1c:2a:42:5a:60: d4:e9:4d:34:bf:cb:d0:98:f3:16:82:6e:d8:85:29: ff:08:49:d6:34:a9:a5:86:fe:98:e7:4c:4a:f0:08: fe:af:94:57:1d:a5:73:f8:68:e5:6a:16:e3:2d:21: 1e:b7:67:f0:b2:6c:a8:4a:4e:3d:71:f9:d7:f5:85: f4:78:a0:d3:f3:17:6c:27:2e:33:f3:6b:2b:e3:bc: 1d:bc:83:dc:ad:c2:1d:3d:31:ec:da:25:6a:ab:fa: 10:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C2:EF:B1:BB:5C:FC:A1:B3:96:FB:2D:9D:82:04:F3:BA:79:6C:9C X509v3 Authority Key Identifier: keyid:AF:70:9D:48:70:25:EB:90:C0:14:C7:18:6C:C0:AE:A3:41:A2:7C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/AF709D487025EB90C014C7186CC0AEA341A27C3B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AF709D487025EB90C014C7186CC0AEA341A27C3B.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/323830343a373039633a3a2f33322d3438203d3e20323730373337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:709c::/32 Signature Algorithm: sha256WithRSAEncryption 16:35:64:20:74:d5:d7:72:df:1f:97:e0:c6:c9:67:44:f4:bc: 6e:0b:46:34:c3:b4:89:d4:d9:f8:17:67:31:17:64:53:3a:5c: 36:2e:e3:39:d5:95:6a:2a:8c:45:20:52:5b:85:bf:73:27:b7: 11:e3:00:52:b9:07:ec:bb:cf:38:1f:d1:fa:5a:dd:62:13:ec: 34:a9:7a:62:41:9e:4e:1d:2c:8c:c4:55:a4:7e:01:c3:50:47: de:2b:68:1d:31:b5:c7:b1:c3:22:ae:23:56:ee:e0:54:15:d8: 7e:fd:1a:20:cd:27:be:41:cd:f2:f8:a6:2d:de:92:5a:52:19: 8e:c0:e5:c7:3c:88:5d:cc:88:64:0f:84:26:27:3a:c5:ec:7e: f0:ae:3d:73:61:54:c5:c0:66:15:aa:ca:f8:71:d2:7d:c3:3f: 13:12:9a:10:43:9e:d4:bc:8e:a4:8a:0f:e0:a5:6c:2c:dc:3c: 3e:e0:6a:93:d6:49:00:83:ff:13:87:81:80:52:d3:0b:c9:12: 3b:d6:fe:5d:ec:e6:17:a0:4c:51:39:b5:12:4e:ea:da:3d:f3: fa:5f:db:18:56:eb:9d:b4:45:f1:88:24:96:1c:66:f1:50:09: 27:c7:7f:05:6a:5e:18:0c:e0:1c:c7:83:da:73:1d:d4:7c:b9: 44:5a:e1:6c -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIUDxqFFggSRMz/1KxgZr5Np8HwjRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY3MDlENDg3MDI1RUI5MEMwMTRDNzE4NkNDMEFFQTM0 MUEyN0MzQjAeFw0yNTA5MjIxNzQ3MzZaFw0yNjA5MjExNzUyMzZaMDMxMTAvBgNV BAMTKDQwQzJFRkIxQkI1Q0ZDQTFCMzk2RkIyRDlEODIwNEYzQkE3OTZDOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgtK9Ny7wsTYVCd41o36zXI6Q0 mxUvHYk7TMANBaeFk8CVlZgz0pxb1uJ2sZHB2Ds/JCWODiPznOBvUqo1sdzDiZjv X/fxTI/f8cCjNocub/yLmOCDq4VQeUHDPXfX3yYVlgfcyAjozx1ynmoJAXCoNpkO KyzAK9uLBzVLFKKz4KHCL+yGu3Cce+jHuOB+j1jRNIgUC3mrVU/AgPL0LF0cKkJa YNTpTTS/y9CY8xaCbtiFKf8ISdY0qaWG/pjnTErwCP6vlFcdpXP4aOVqFuMtIR63 Z/CybKhKTj1x+df1hfR4oNPzF2wnLjPzayvjvB28g9ytwh09MezaJWqr+hDLAgMB AAGjggJQMIICTDAdBgNVHQ4EFgQUQMLvsbtc/KGzlvstnYIE87p5bJwwHwYDVR0j BBgwFoAUr3CdSHAl65DAFMcYbMCuo0GifDswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNG9LRGpUdHVWZlJ4eWJRRUNaZk1Sb3Y1WjZEcHJ5RjdNeVFOMTd2MnNa S2svMC9BRjcwOUQ0ODcwMjVFQjkwQzAxNEM3MTg2Q0MwQUVBMzQxQTI3QzNCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0FGNzA5RDQ4NzAyNUVCOTBD MDE0QzcxODZDQzBBRUEzNDFBMjdDM0IuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRvS0RqVHR1VmZSeHliUUVDWmZNUm92NVo2RHByeUY3TXlRTjE3djJzWktrLzAv MzIzODMwMzQzYTM3MzAzOTYzM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzNzMw MzczMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH AQH/BBEwDzANBAIAAjAHAwUAKARwnDANBgkqhkiG9w0BAQsFAAOCAQEAFjVkIHTV 13LfH5fgxslnRPS8bgtGNMO0idTZ+BdnMRdkUzpcNi7jOdWVaiqMRSBSW4W/cye3 EeMAUrkH7LvPOB/R+lrdYhPsNKl6YkGeTh0sjMRVpH4Bw1BH3itoHTG1x7HDIq4j Vu7gVBXYfv0aIM0nvkHN8vimLd6SWlIZjsDlxzyIXcyIZA+EJic6xex+8K49c2FU xcBmFarK+HHSfcM/ExKaEEOe1LyOpIoP4KVsLNw8PuBqk9ZJAIP/E4eBgFLTC8kS O9b+XezmF6BMUTm1Ek7q2j3z+l/bGFbrnbRF8Ygklhxm8VAJJ8d/BWpeGAzgHMeD 2nMd1Hy5RFrhbA== -----END CERTIFICATE-----Generated at Mon Oct 20 23:52:25 2025 by rpki-client