$ rpki-client -vvf rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/323830343a333433633a3a2f33322d3332203d3e20323633363635.roa File: 323830343a333433633a3a2f33322d3332203d3e20323633363635.roa (raw, json) Hash identifier: qzkIktbxo2vBt40v1fv2gFF+F0vRV1kX0DvfP0Sj79Y= Subject key identifier: 2C:74:E2:61:A5:0C:D9:16:E0:E3:BC:2B:56:DF:3B:D2:5E:5D:E5:84 Certificate issuer: /CN=DDF75D11A85F5023747B20E973994EC53D23A68E Certificate serial: 3EA3CB9E37B89FD40FBFA6D29C896A14E072A072 Authority key identifier: DD:F7:5D:11:A8:5F:50:23:74:7B:20:E9:73:99:4E:C5:3D:23:A6:8E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDF75D11A85F5023747B20E973994EC53D23A68E.cer Subject info access: rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/323830343a333433633a3a2f33322d3332203d3e20323633363635.roa Signing time: Thu 09 Oct 2025 21:02:31 +0000 ROA not before: Thu 09 Oct 2025 20:57:31 +0000 ROA not after: Thu 08 Oct 2026 21:02:31 +0000 asID: 263665 IP address blocks: 2804:343c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/DDF75D11A85F5023747B20E973994EC53D23A68E.crl rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/DDF75D11A85F5023747B20E973994EC53D23A68E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDF75D11A85F5023747B20E973994EC53D23A68E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 12:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:a3:cb:9e:37:b8:9f:d4:0f:bf:a6:d2:9c:89:6a:14:e0:72:a0:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDF75D11A85F5023747B20E973994EC53D23A68E Validity Not Before: Oct 9 20:57:31 2025 GMT Not After : Oct 8 21:02:31 2026 GMT Subject: CN=2C74E261A50CD916E0E3BC2B56DF3BD25E5DE584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:50:02:01:38:ff:2a:56:5e:d5:7a:68:8c:33: 9c:d4:50:ba:02:38:fa:36:30:7f:13:a4:f5:6e:f4: 70:e0:10:c3:c6:36:c8:1d:79:76:25:49:92:f3:66: 36:67:b3:d9:51:44:3f:99:4c:14:9e:84:36:17:68: 0f:80:57:cb:17:44:c3:51:8c:c4:39:30:46:be:03: 37:60:8e:8e:fd:96:d0:7a:95:c9:00:3d:86:26:96: 61:83:96:b9:e2:b1:93:82:c4:b0:a9:99:2d:64:ae: 12:04:62:8b:d6:cc:da:c5:75:e6:d4:52:f4:0f:66: 83:5d:40:9c:07:78:57:10:6a:09:a6:df:88:88:6d: 33:3c:01:0c:2e:0f:38:73:d9:e3:db:db:d4:8e:1c: 91:84:1b:8e:35:9e:e0:5d:5e:ec:ab:44:97:f7:49: a4:49:1a:13:40:5b:71:3b:e2:d8:f6:50:9b:1a:71: 10:30:20:04:30:1e:42:4f:e8:af:f9:aa:1e:e1:3e: 83:98:f3:c2:d7:c3:88:d3:f9:0f:7c:10:c6:9b:60: ef:8f:83:4c:f4:8e:65:85:c6:bd:12:32:85:e9:eb: 9f:3f:d8:15:df:26:7c:5d:8a:04:22:63:90:9c:6a: 57:f0:ed:df:d4:66:63:72:44:bb:d4:3e:b2:a5:32: e5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:74:E2:61:A5:0C:D9:16:E0:E3:BC:2B:56:DF:3B:D2:5E:5D:E5:84 X509v3 Authority Key Identifier: keyid:DD:F7:5D:11:A8:5F:50:23:74:7B:20:E9:73:99:4E:C5:3D:23:A6:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/DDF75D11A85F5023747B20E973994EC53D23A68E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDF75D11A85F5023747B20E973994EC53D23A68E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/323830343a333433633a3a2f33322d3332203d3e20323633363635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:343c::/32 Signature Algorithm: sha256WithRSAEncryption 4e:41:d3:67:b3:47:54:b4:28:9f:76:08:76:66:bd:3f:83:da: 41:b8:5a:6e:58:90:d6:fe:eb:8e:f5:e7:b5:ca:d6:05:34:51: 49:34:25:e3:80:1d:53:a1:7e:85:71:5f:33:00:84:d3:ec:ff: 5e:b8:af:c4:ee:35:df:54:43:d0:ba:91:68:57:93:98:31:ce: cf:d9:46:a2:df:95:02:48:52:15:50:df:ea:7e:31:bf:76:84: 3b:06:15:bc:9f:14:8e:81:62:29:f3:75:0c:d4:8e:d6:69:eb: c8:89:27:bc:f4:90:13:03:07:50:55:ed:81:a7:17:9a:a4:c3: 08:a5:74:ef:af:51:d5:82:5a:5f:f6:5f:33:26:09:61:73:fd: 94:19:12:e1:20:79:fa:47:ed:7f:a7:cf:c3:78:17:9e:f0:c7: a4:a7:26:18:14:51:5b:81:f3:3c:a4:d5:fe:82:29:bc:e3:a4: a4:0f:c6:8c:14:01:a3:2f:a2:55:01:15:6c:d5:70:ab:ea:3e: 5e:33:b4:85:ee:fa:ac:7c:a4:38:88:21:22:77:cd:2d:1d:da: 77:e3:60:74:7b:ee:01:60:91:14:88:2f:e3:e4:24:b5:21:bd: db:5a:73:7b:30:f6:46:8c:72:f3:5d:d5:8c:90:b6:ba:0b:8b: 9d:74:51:da -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIUPqPLnje4n9QPv6bSnIlqFOByoHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERGNzVEMTFBODVGNTAyMzc0N0IyMEU5NzM5OTRFQzUz RDIzQTY4RTAeFw0yNTEwMDkyMDU3MzFaFw0yNjEwMDgyMTAyMzFaMDMxMTAvBgNV BAMTKDJDNzRFMjYxQTUwQ0Q5MTZFMEUzQkMyQjU2REYzQkQyNUU1REU1ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQUAIBOP8qVl7VemiMM5zUULoC OPo2MH8TpPVu9HDgEMPGNsgdeXYlSZLzZjZns9lRRD+ZTBSehDYXaA+AV8sXRMNR jMQ5MEa+Azdgjo79ltB6lckAPYYmlmGDlrnisZOCxLCpmS1krhIEYovWzNrFdebU UvQPZoNdQJwHeFcQagmm34iIbTM8AQwuDzhz2ePb29SOHJGEG441nuBdXuyrRJf3 SaRJGhNAW3E74tj2UJsacRAwIAQwHkJP6K/5qh7hPoOY88LXw4jT+Q98EMabYO+P g0z0jmWFxr0SMoXp658/2BXfJnxdigQiY5Ccalfw7d/UZmNyRLvUPrKlMuVvAgMB AAGjggJQMIICTDAdBgNVHQ4EFgQULHTiYaUM2Rbg47wrVt870l5d5YQwHwYDVR0j BBgwFoAU3fddEahfUCN0eyDpc5lOxT0jpo4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOU03WlFMVXp5Tkt2M3lTRTNGQ05KQ0t1bXdLTkN0Y3pTVFlwRjdIOE1n cmYvMC9EREY3NUQxMUE4NUY1MDIzNzQ3QjIwRTk3Mzk5NEVDNTNEMjNBNjhFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RERjc1RDExQTg1RjUwMjM3 NDdCMjBFOTczOTk0RUM1M0QyM0E2OEUuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlNN1pRTFV6eU5LdjN5U0UzRkNOSkNLdW13S05DdGN6U1RZcEY3SDhNZ3JmLzAv MzIzODMwMzQzYTMzMzQzMzYzM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzNjMz MzYzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH AQH/BBEwDzANBAIAAjAHAwUAKAQ0PDANBgkqhkiG9w0BAQsFAAOCAQEATkHTZ7NH VLQon3YIdma9P4PaQbhabliQ1v7rjvXntcrWBTRRSTQl44AdU6F+hXFfMwCE0+z/ XrivxO4131RD0LqRaFeTmDHOz9lGot+VAkhSFVDf6n4xv3aEOwYVvJ8UjoFiKfN1 DNSO1mnryIknvPSQEwMHUFXtgacXmqTDCKV0769R1YJaX/ZfMyYJYXP9lBkS4SB5 +kftf6fPw3gXnvDHpKcmGBRRW4HzPKTV/oIpvOOkpA/GjBQBoy+iVQEVbNVwq+o+ XjO0he76rHykOIghInfNLR3ad+NgdHvuAWCRFIgv4+QktSG921pzezD2Roxy813V jJC2uguLnXRR2g== -----END CERTIFICATE-----Generated at Mon Oct 20 20:56:48 2025 by rpki-client