$ rpki-client -vvf rpki-repo.registro.br/repo/HMCXjXrqj8urYLUoJaBbAgws9PhjJhgT5S4MnPpXAkam/0/323830343a383733303a343030303a3a2f33342d3334203d3e20323732363934.roa File: 323830343a383733303a343030303a3a2f33342d3334203d3e20323732363934.roa (raw, json) Hash identifier: KMwlOgi2UabbhnBbDdolr9z8NzkQc1SWfqfa3W7s+cU= Subject key identifier: F9:E1:86:3C:A5:B1:EA:1A:B7:7E:76:56:DB:77:68:D0:60:18:43:2A Certificate issuer: /CN=31FA0AE794589CB2734A9B6E6D94B276F9A9F9C6 Certificate serial: 2A60F393D72DBCC9BE2C6C84640A1AD4D22F2233 Authority key identifier: 31:FA:0A:E7:94:58:9C:B2:73:4A:9B:6E:6D:94:B2:76:F9:A9:F9:C6 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/31FA0AE794589CB2734A9B6E6D94B276F9A9F9C6.cer Subject info access: rsync://rpki-repo.registro.br/repo/HMCXjXrqj8urYLUoJaBbAgws9PhjJhgT5S4MnPpXAkam/0/323830343a383733303a343030303a3a2f33342d3334203d3e20323732363934.roa Signing time: Tue 12 Aug 2025 17:53:32 +0000 ROA not before: Tue 12 Aug 2025 17:48:32 +0000 ROA not after: Tue 11 Aug 2026 17:53:32 +0000 asID: 272694 IP address blocks: 2804:8730:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HMCXjXrqj8urYLUoJaBbAgws9PhjJhgT5S4MnPpXAkam/0/31FA0AE794589CB2734A9B6E6D94B276F9A9F9C6.crl rsync://rpki-repo.registro.br/repo/HMCXjXrqj8urYLUoJaBbAgws9PhjJhgT5S4MnPpXAkam/0/31FA0AE794589CB2734A9B6E6D94B276F9A9F9C6.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/31FA0AE794589CB2734A9B6E6D94B276F9A9F9C6.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Aug 2025 10:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:60:f3:93:d7:2d:bc:c9:be:2c:6c:84:64:0a:1a:d4:d2:2f:22:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31FA0AE794589CB2734A9B6E6D94B276F9A9F9C6 Validity Not Before: Aug 12 17:48:32 2025 GMT Not After : Aug 11 17:53:32 2026 GMT Subject: CN=F9E1863CA5B1EA1AB77E7656DB7768D06018432A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:61:b5:80:39:26:71:16:d9:9f:94:94:ca:55: 38:03:ea:47:67:8d:c1:2c:68:59:fa:31:0f:ca:27: db:77:d8:e7:0d:20:de:df:6e:c5:ef:9d:87:53:a5: 1a:a9:46:96:18:60:86:e3:3a:71:43:d3:a8:71:2c: 3d:5c:2e:d0:1a:fc:3b:ac:ff:70:e5:76:c4:17:2c: 6c:5d:83:24:05:7a:f4:c3:c4:f4:b6:d9:bd:20:cc: 98:32:74:e9:ad:01:85:db:12:56:58:99:70:3e:b0: 16:2b:5a:f9:a5:6a:c9:b0:1a:5f:87:0e:fb:22:2a: 0b:fc:21:ad:5a:d9:e9:9d:2a:6b:9f:b5:3b:f2:57: 13:fe:26:66:f6:aa:b3:f3:30:dd:e2:3d:8c:b8:a4: da:f0:9a:88:27:f6:f0:c0:27:e7:e0:1a:34:29:13: 12:43:9d:87:f5:7e:2a:53:fe:c6:69:6d:41:38:74: 31:3b:e1:f7:fa:d6:21:2e:b7:29:97:24:ce:62:55: 82:85:d7:7d:b5:cd:1d:84:6e:e2:11:b1:6e:de:8a: 17:f7:85:f7:47:ff:ac:ee:5d:4d:7a:83:e3:63:d1: 0d:b7:79:b2:ae:73:c1:4f:b3:e1:2f:9d:d6:90:ad: 6b:fd:39:e7:34:0a:7a:d2:39:73:13:f9:49:51:34: fe:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:E1:86:3C:A5:B1:EA:1A:B7:7E:76:56:DB:77:68:D0:60:18:43:2A X509v3 Authority Key Identifier: keyid:31:FA:0A:E7:94:58:9C:B2:73:4A:9B:6E:6D:94:B2:76:F9:A9:F9:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HMCXjXrqj8urYLUoJaBbAgws9PhjJhgT5S4MnPpXAkam/0/31FA0AE794589CB2734A9B6E6D94B276F9A9F9C6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/31FA0AE794589CB2734A9B6E6D94B276F9A9F9C6.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HMCXjXrqj8urYLUoJaBbAgws9PhjJhgT5S4MnPpXAkam/0/323830343a383733303a343030303a3a2f33342d3334203d3e20323732363934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8730:4000::/34 Signature Algorithm: sha256WithRSAEncryption 54:8e:e0:8b:45:1b:53:ac:4c:15:62:6b:e2:47:af:a9:a9:18: 96:2b:3a:97:a8:17:f2:0b:0f:15:6e:1b:30:1f:42:f9:ef:1c: db:26:cf:e3:64:f4:3a:a1:ed:91:61:af:6c:9f:15:0d:74:f5: 8c:5a:f7:db:e2:2b:fa:9c:79:22:40:17:22:63:83:c2:29:c1: af:b9:f6:98:07:0d:85:38:64:3d:b5:f2:0b:41:33:24:57:4e: 0c:63:75:cf:08:0e:a8:bd:93:24:dd:7e:f4:08:90:b2:77:0e: ce:ec:5b:ec:e1:15:96:24:af:58:40:48:16:a7:29:33:0e:53: 50:19:44:10:0a:22:44:66:be:4e:aa:f9:80:9b:5e:87:4a:f5: 04:d3:e8:54:54:47:fe:e0:9a:d7:75:d3:b5:6e:be:d7:fb:c5: 1b:73:8c:2d:e5:56:c0:5e:0a:ff:e1:c0:b2:6a:8c:45:62:77: 4a:43:b6:21:f0:d4:57:9d:90:9e:3c:3c:93:dc:92:64:2b:e7: aa:c3:80:10:40:5f:bf:89:00:dc:c4:7c:2a:2b:b5:e1:ba:1d: de:bf:43:db:51:38:f7:2e:3e:0d:e2:d6:8b:d3:c3:1d:78:97: 02:22:62:b2:eb:d4:5d:cc:fb:e8:a6:11:2a:8e:71:0e:10:da: c8:a9:df:be -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUKmDzk9ctvMm+LGyEZAoa1NIvIjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzFGQTBBRTc5NDU4OUNCMjczNEE5QjZFNkQ5NEIyNzZG OUE5RjlDNjAeFw0yNTA4MTIxNzQ4MzJaFw0yNjA4MTExNzUzMzJaMDMxMTAvBgNV BAMTKEY5RTE4NjNDQTVCMUVBMUFCNzdFNzY1NkRCNzc2OEQwNjAxODQzMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8YbWAOSZxFtmflJTKVTgD6kdn jcEsaFn6MQ/KJ9t32OcNIN7fbsXvnYdTpRqpRpYYYIbjOnFD06hxLD1cLtAa/Dus /3DldsQXLGxdgyQFevTDxPS22b0gzJgydOmtAYXbElZYmXA+sBYrWvmlasmwGl+H DvsiKgv8Ia1a2emdKmuftTvyVxP+Jmb2qrPzMN3iPYy4pNrwmogn9vDAJ+fgGjQp ExJDnYf1fipT/sZpbUE4dDE74ff61iEutymXJM5iVYKF1321zR2EbuIRsW7eihf3 hfdH/6zuXU16g+Nj0Q23ebKuc8FPs+EvndaQrWv9Oec0CnrSOXMT+UlRNP6dAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU+eGGPKWx6hq3fnZW23do0GAYQyowHwYDVR0j BBgwFoAUMfoK55RYnLJzSptubZSydvmp+cYwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSE1DWGpYcnFqOHVyWUxVb0phQmJBZ3dzOVBoakpoZ1Q1UzRNblBwWEFr YW0vMC8zMUZBMEFFNzk0NTg5Q0IyNzM0QTlCNkU2RDk0QjI3NkY5QTlGOUM2LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzMxRkEwQUU3OTQ1ODlDQjI3 MzRBOUI2RTZEOTRCMjc2RjlBOUY5QzYuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hNQ1hqWHJxajh1cllMVW9KYUJiQWd3czlQaGpKaGdUNVM0TW5QcFhBa2FtLzAv MzIzODMwMzQzYTM4MzczMzMwM2EzNDMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzczMjM2MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEhzBAMA0GCSqGSIb3DQEBCwUA A4IBAQBUjuCLRRtTrEwVYmviR6+pqRiWKzqXqBfyCw8VbhswH0L57xzbJs/jZPQ6 oe2RYa9snxUNdPWMWvfb4iv6nHkiQBciY4PCKcGvufaYBw2FOGQ9tfILQTMkV04M Y3XPCA6ovZMk3X70CJCydw7O7Fvs4RWWJK9YQEgWpykzDlNQGUQQCiJEZr5OqvmA m16HSvUE0+hUVEf+4JrXddO1br7X+8Ubc4wt5VbAXgr/4cCyaoxFYndKQ7Yh8NRX nZCePDyT3JJkK+eqw4AQQF+/iQDcxHwqK7Xhuh3ev0PbUTj3Lj4N4taL08MdeJcC ImKy69RdzPvophEqjnEOENrIqd++ -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:57 2025 by rpki-client