$ rpki-client -vvf rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/323830343a383236383a343030303a3a2f33342d3334203d3e20323732353138.roa File: 323830343a383236383a343030303a3a2f33342d3334203d3e20323732353138.roa (raw, json) Hash identifier: 4tOjqevwqLCbIHFMqiUCrC3QvIg8BgWmeIZlTS/cwMg= Subject key identifier: 19:CD:B9:59:9E:16:0C:FD:4A:13:3B:A6:05:64:32:C7:6D:03:15:14 Certificate issuer: /CN=3170E59F647D12F2C01381F789FEA19B94A7EA94 Certificate serial: 2810531E7DBB80A78F1B13A103D40641DD3F35D8 Authority key identifier: 31:70:E5:9F:64:7D:12:F2:C0:13:81:F7:89:FE:A1:9B:94:A7:EA:94 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3170E59F647D12F2C01381F789FEA19B94A7EA94.cer Subject info access: rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/323830343a383236383a343030303a3a2f33342d3334203d3e20323732353138.roa Signing time: Wed 01 Oct 2025 02:16:53 +0000 ROA not before: Wed 01 Oct 2025 02:11:53 +0000 ROA not after: Wed 30 Sep 2026 02:16:53 +0000 asID: 272518 IP address blocks: 2804:8268:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/3170E59F647D12F2C01381F789FEA19B94A7EA94.crl rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/3170E59F647D12F2C01381F789FEA19B94A7EA94.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3170E59F647D12F2C01381F789FEA19B94A7EA94.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 03:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:10:53:1e:7d:bb:80:a7:8f:1b:13:a1:03:d4:06:41:dd:3f:35:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3170E59F647D12F2C01381F789FEA19B94A7EA94 Validity Not Before: Oct 1 02:11:53 2025 GMT Not After : Sep 30 02:16:53 2026 GMT Subject: CN=19CDB9599E160CFD4A133BA6056432C76D031514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a6:52:5d:89:6a:86:3a:45:33:a3:78:97:20: 84:74:b4:6f:bb:1f:f8:4d:42:0b:70:fb:6a:fc:87: de:aa:32:80:6d:98:2d:cf:85:14:03:64:c7:bc:94: 5b:9c:80:df:7e:da:30:3a:1f:3d:0e:1f:b7:16:cd: c7:5f:7e:b3:f2:5d:1e:4b:bc:ab:e6:64:15:11:a2: b4:69:f8:33:92:fe:9b:1d:ec:9f:5e:e2:f1:01:c8: b6:b8:6b:21:f5:70:24:d4:92:d4:49:45:34:9a:77: 9f:5b:b8:69:ef:be:5b:aa:93:36:c0:b9:27:e5:8f: 83:a6:e7:29:aa:ee:94:76:74:96:dd:e3:4e:ab:a9: 6d:d6:48:5d:e4:26:cb:82:f4:14:ff:73:cd:94:cd: 54:1a:4e:5a:f8:75:9f:09:3c:e1:5c:db:9c:ed:d4: ce:d8:fe:78:f2:38:d6:c6:1c:91:63:60:ac:0b:d2: 40:5d:7f:d3:bf:bd:6a:ed:a4:0d:0d:ee:13:23:a8: 4f:2f:2b:e4:fe:07:5c:e7:05:99:47:00:97:00:dc: 52:14:de:19:7e:1a:ce:0e:86:ef:72:27:29:a1:83: d2:20:8d:34:bc:33:7c:8d:d3:4c:87:2b:5f:a0:b0: 8c:cc:d3:d6:8e:14:7d:9b:5e:da:a5:4c:1d:6e:82: 24:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:CD:B9:59:9E:16:0C:FD:4A:13:3B:A6:05:64:32:C7:6D:03:15:14 X509v3 Authority Key Identifier: keyid:31:70:E5:9F:64:7D:12:F2:C0:13:81:F7:89:FE:A1:9B:94:A7:EA:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/3170E59F647D12F2C01381F789FEA19B94A7EA94.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3170E59F647D12F2C01381F789FEA19B94A7EA94.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9B2GTi7pYjEfGWxYDa6FjaLtJeshQFXJsU9SsZgVF6xt/0/323830343a383236383a343030303a3a2f33342d3334203d3e20323732353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8268:4000::/34 Signature Algorithm: sha256WithRSAEncryption 76:ad:bb:25:a9:33:b9:6c:68:8b:13:04:7c:44:0c:e9:c1:80: 85:07:bc:63:33:91:1e:53:ac:9f:84:5f:86:22:3d:dd:7a:33: da:8d:71:2e:f0:53:71:c4:cc:a7:af:0d:95:5a:44:60:25:f7: 2c:cf:aa:03:b3:68:bb:d7:76:6e:97:58:e6:6f:07:8d:44:14: 7c:2c:d0:35:2c:de:11:e9:fc:c1:07:a2:76:88:50:f4:6e:a2: 05:17:f9:c1:54:de:7b:5a:12:91:24:23:a6:11:c3:72:0c:bb: a0:a7:3a:b6:8b:27:04:9c:c1:15:87:78:a9:bc:d0:33:94:72: 01:58:bf:50:f6:ca:00:a6:1e:81:c1:93:f8:71:f9:5b:a2:06: a2:20:ac:93:2f:31:05:0c:af:4e:53:ce:e4:6b:8e:ba:5c:c7: 93:d4:0e:53:a6:2c:54:4d:b3:95:b9:f6:57:49:ee:39:15:e4: 7d:fa:68:7f:7a:3a:0a:a1:d3:37:08:3e:76:2f:54:27:15:51: 9d:dd:80:18:13:bb:7f:8a:6b:62:90:43:0b:45:8d:df:e0:5b: 3c:1e:f6:7c:74:f2:87:2a:8f:15:6a:83:34:a4:2c:b1:6e:68: e6:a3:ae:b1:fc:2a:29:6d:7e:d3:8c:08:96:9a:1a:05:fb:de: 79:52:2c:d1 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUKBBTHn27gKePGxOhA9QGQd0/NdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE3MEU1OUY2NDdEMTJGMkMwMTM4MUY3ODlGRUExOUI5 NEE3RUE5NDAeFw0yNTEwMDEwMjExNTNaFw0yNjA5MzAwMjE2NTNaMDMxMTAvBgNV BAMTKDE5Q0RCOTU5OUUxNjBDRkQ0QTEzM0JBNjA1NjQzMkM3NkQwMzE1MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGplJdiWqGOkUzo3iXIIR0tG+7 H/hNQgtw+2r8h96qMoBtmC3PhRQDZMe8lFucgN9+2jA6Hz0OH7cWzcdffrPyXR5L vKvmZBURorRp+DOS/psd7J9e4vEByLa4ayH1cCTUktRJRTSad59buGnvvluqkzbA uSflj4Om5ymq7pR2dJbd406rqW3WSF3kJsuC9BT/c82UzVQaTlr4dZ8JPOFc25zt 1M7Y/njyONbGHJFjYKwL0kBdf9O/vWrtpA0N7hMjqE8vK+T+B1znBZlHAJcA3FIU 3hl+Gs4Ohu9yJymhg9IgjTS8M3yN00yHK1+gsIzM09aOFH2bXtqlTB1ugiS9AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUGc25WZ4WDP1KEzumBWQyx20DFRQwHwYDVR0j BBgwFoAUMXDln2R9EvLAE4H3if6hm5Sn6pQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOUIyR1RpN3BZakVmR1d4WURhNkZqYUx0SmVzaFFGWEpzVTlTc1pnVkY2 eHQvMC8zMTcwRTU5RjY0N0QxMkYyQzAxMzgxRjc4OUZFQTE5Qjk0QTdFQTk0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzMxNzBFNTlGNjQ3RDEyRjJD MDEzODFGNzg5RkVBMTlCOTRBN0VBOTQuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlCMkdUaTdwWWpFZkdXeFlEYTZGamFMdEplc2hRRlhKc1U5U3NaZ1ZGNnh0LzAv MzIzODMwMzQzYTM4MzIzNjM4M2EzNDMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzczMjM1MzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEgmhAMA0GCSqGSIb3DQEBCwUA A4IBAQB2rbslqTO5bGiLEwR8RAzpwYCFB7xjM5EeU6yfhF+GIj3dejPajXEu8FNx xMynrw2VWkRgJfcsz6oDs2i713Zul1jmbweNRBR8LNA1LN4R6fzBB6J2iFD0bqIF F/nBVN57WhKRJCOmEcNyDLugpzq2iycEnMEVh3ipvNAzlHIBWL9Q9soAph6BwZP4 cflbogaiIKyTLzEFDK9OU87ka466XMeT1A5TpixUTbOVufZXSe45FeR9+mh/ejoK odM3CD52L1QnFVGd3YAYE7t/imtikEMLRY3f4Fs8HvZ8dPKHKo8VaoM0pCyxbmjm o66x/CopbX7TjAiWmhoF+955UizR -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:45 2025 by rpki-client