$ rpki-client -vvf rpki-repo.registro.br/repo/HJindbE6S8b1HgmWqWqK93r1Twc6U8GbwPQSXykxdPSP/0/3136382e302e33362e302f32322d3234203d3e20323635323434.roa File: 3136382e302e33362e302f32322d3234203d3e20323635323434.roa (raw, json) Hash identifier: oIH6yi7sSGDk1vAzgCfYR2J0+DP7VwZ9p5vQHsh0Q60= Subject key identifier: DE:0D:54:B9:8C:62:74:B6:4F:65:7E:5E:AE:02:4E:5E:C5:5D:FC:3F Certificate issuer: /CN=CA336EA2A2165CECAC40EB5F29E14BF0A1DDF0B9 Certificate serial: 6042E86B0B2C082433B299AFDDD502731CD0E2AD Authority key identifier: CA:33:6E:A2:A2:16:5C:EC:AC:40:EB:5F:29:E1:4B:F0:A1:DD:F0:B9 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA336EA2A2165CECAC40EB5F29E14BF0A1DDF0B9.cer Subject info access: rsync://rpki-repo.registro.br/repo/HJindbE6S8b1HgmWqWqK93r1Twc6U8GbwPQSXykxdPSP/0/3136382e302e33362e302f32322d3234203d3e20323635323434.roa Signing time: Mon 13 Oct 2025 19:41:28 +0000 ROA not before: Mon 13 Oct 2025 19:36:28 +0000 ROA not after: Mon 12 Oct 2026 19:41:28 +0000 asID: 265244 IP address blocks: 168.0.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HJindbE6S8b1HgmWqWqK93r1Twc6U8GbwPQSXykxdPSP/0/CA336EA2A2165CECAC40EB5F29E14BF0A1DDF0B9.crl rsync://rpki-repo.registro.br/repo/HJindbE6S8b1HgmWqWqK93r1Twc6U8GbwPQSXykxdPSP/0/CA336EA2A2165CECAC40EB5F29E14BF0A1DDF0B9.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA336EA2A2165CECAC40EB5F29E14BF0A1DDF0B9.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 19:14:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:42:e8:6b:0b:2c:08:24:33:b2:99:af:dd:d5:02:73:1c:d0:e2:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA336EA2A2165CECAC40EB5F29E14BF0A1DDF0B9 Validity Not Before: Oct 13 19:36:28 2025 GMT Not After : Oct 12 19:41:28 2026 GMT Subject: CN=DE0D54B98C6274B64F657E5EAE024E5EC55DFC3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e0:74:c8:d8:41:96:a4:c3:d0:69:ed:8b:cd: 35:56:c6:4f:4d:39:ca:88:50:7c:5e:2b:00:45:66: d0:4f:3f:23:72:39:ed:13:ba:cc:94:e7:2e:27:e9: bd:52:a9:5d:aa:81:4c:44:a0:ae:fa:3e:38:8e:25: a3:20:ae:19:2e:e5:68:56:3a:41:bb:37:5a:ae:5c: 44:d0:8a:12:a1:d1:61:ec:38:5e:42:38:c8:0a:2a: 95:b5:36:89:6e:26:82:93:1f:85:31:46:ec:20:b1: 98:f2:a4:3b:a8:8e:6a:34:da:60:bf:0a:32:14:b6: 86:52:f4:3f:dd:65:e3:2b:d5:d5:4c:b5:31:cc:32: 25:7b:41:f3:49:68:b3:4a:3c:6f:bd:24:bf:ea:35: 3f:e8:0f:00:6b:70:fd:6d:a2:1e:66:3d:93:1a:f5: 3f:68:47:34:08:fb:f5:01:be:da:11:64:73:69:e3: d0:57:9b:21:aa:f8:1f:84:1c:f7:52:b4:c2:ac:27: ff:0b:0b:ca:8d:f7:48:04:25:0a:2b:38:ba:2e:37: 67:de:2d:a7:23:80:f5:39:a3:a7:7d:07:86:b7:ba: 34:10:ac:2e:e5:e1:dc:7a:2d:4d:5d:02:f7:e2:98: 1f:e4:0e:06:39:96:9c:16:0b:81:54:d5:61:bf:3b: a1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0D:54:B9:8C:62:74:B6:4F:65:7E:5E:AE:02:4E:5E:C5:5D:FC:3F X509v3 Authority Key Identifier: keyid:CA:33:6E:A2:A2:16:5C:EC:AC:40:EB:5F:29:E1:4B:F0:A1:DD:F0:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HJindbE6S8b1HgmWqWqK93r1Twc6U8GbwPQSXykxdPSP/0/CA336EA2A2165CECAC40EB5F29E14BF0A1DDF0B9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA336EA2A2165CECAC40EB5F29E14BF0A1DDF0B9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HJindbE6S8b1HgmWqWqK93r1Twc6U8GbwPQSXykxdPSP/0/3136382e302e33362e302f32322d3234203d3e20323635323434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.0.36.0/22 Signature Algorithm: sha256WithRSAEncryption 52:a1:e7:fd:79:a0:90:7d:ef:c8:7b:71:84:23:62:d9:5f:64: 4a:b7:37:ba:3c:45:da:8a:96:60:6b:7c:24:f1:98:b2:e1:2f: 9f:a3:fa:32:7d:06:46:68:1e:ab:d4:98:0d:24:69:c1:26:3a: ec:b3:39:c3:ef:97:51:d4:d8:c6:c7:cf:43:0f:25:c4:b7:a4: c9:1d:88:5a:b1:24:6f:50:99:57:11:2a:b2:e6:4f:86:c6:d8: b2:62:3b:3b:7e:82:cc:2a:32:1e:45:7e:1c:3e:e2:13:ad:9f: 03:1d:de:bf:bb:74:41:a6:62:7a:2a:e2:2b:74:e0:33:e2:ab: d1:7a:bc:5b:9a:90:5b:03:d9:0d:6e:31:70:1f:27:2a:33:93: e9:e9:be:02:ca:20:39:61:91:9d:52:d8:6b:7b:ca:f7:81:71: f7:33:1f:5c:c8:f9:8e:e8:05:7e:ac:a9:31:d0:c5:9c:12:dc: 64:90:66:bb:e7:60:92:2f:64:48:f8:c1:7d:d2:a2:f2:e1:34: 37:75:b1:0e:92:04:b9:5d:2e:3f:31:bd:8d:1e:02:e2:31:41: 07:25:0f:3c:6e:d4:17:b7:59:74:0a:95:cc:ef:e6:d5:1f:d0: a0:71:e5:bb:0a:40:95:57:a2:b1:5a:29:f1:a6:c4:d6:51:63: 36:22:eb:8c -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUYELoawssCCQzspmv3dUCcxzQ4q0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzMzZFQTJBMjE2NUNFQ0FDNDBFQjVGMjlFMTRCRjBB MURERjBCOTAeFw0yNTEwMTMxOTM2MjhaFw0yNjEwMTIxOTQxMjhaMDMxMTAvBgNV BAMTKERFMEQ1NEI5OEM2Mjc0QjY0RjY1N0U1RUFFMDI0RTVFQzU1REZDM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK4HTI2EGWpMPQae2LzTVWxk9N OcqIUHxeKwBFZtBPPyNyOe0TusyU5y4n6b1SqV2qgUxEoK76PjiOJaMgrhku5WhW OkG7N1quXETQihKh0WHsOF5COMgKKpW1NoluJoKTH4UxRuwgsZjypDuojmo02mC/ CjIUtoZS9D/dZeMr1dVMtTHMMiV7QfNJaLNKPG+9JL/qNT/oDwBrcP1toh5mPZMa 9T9oRzQI+/UBvtoRZHNp49BXmyGq+B+EHPdStMKsJ/8LC8qN90gEJQorOLouN2fe LacjgPU5o6d9B4a3ujQQrC7l4dx6LU1dAvfimB/kDgY5lpwWC4FU1WG/O6FdAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQU3g1UuYxidLZPZX5ergJOXsVd/D8wHwYDVR0j BBgwFoAUyjNuoqIWXOysQOtfKeFL8KHd8LkwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSEppbmRiRTZTOGIxSGdtV3FXcUs5M3IxVHdjNlU4R2J3UFFTWHlreGRQ U1AvMC9DQTMzNkVBMkEyMTY1Q0VDQUM0MEVCNUYyOUUxNEJGMEExRERGMEI5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NBMzM2RUEyQTIxNjVDRUNB QzQwRUI1RjI5RTE0QkYwQTFEREYwQjkuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hKaW5kYkU2UzhiMUhnbVdxV3FLOTNyMVR3YzZVOEdid1BRU1h5a3hkUFNQLzAv MzEzNjM4MmUzMDJlMzMzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzYzNTMy MzQzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAqgAJDANBgkqhkiG9w0BAQsFAAOCAQEAUqHn/XmgkH3v yHtxhCNi2V9kSrc3ujxF2oqWYGt8JPGYsuEvn6P6Mn0GRmgeq9SYDSRpwSY67LM5 w++XUdTYxsfPQw8lxLekyR2IWrEkb1CZVxEqsuZPhsbYsmI7O36CzCoyHkV+HD7i E62fAx3ev7t0QaZieiriK3TgM+Kr0Xq8W5qQWwPZDW4xcB8nKjOT6em+AsogOWGR nVLYa3vK94Fx9zMfXMj5jugFfqypMdDFnBLcZJBmu+dgki9kSPjBfdKi8uE0N3Wx DpIEuV0uPzG9jR4C4jFBByUPPG7UF7dZdAqVzO/m1R/QoHHluwpAlVeisVop8abE 1lFjNiLrjA== -----END CERTIFICATE-----Generated at Mon Oct 20 20:49:08 2025 by rpki-client