$ rpki-client -vvf rpki-repo.registro.br/repo/HrNTwKVdenTRK7dXVPcC31SpRrTHQyiwEvyXhQUBYti9/0/34352e3233392e37322e302f32322d3232203d3e20323638333535.roa File: 34352e3233392e37322e302f32322d3232203d3e20323638333535.roa (raw, json) Hash identifier: Irtvtjw9Qn1ROshMlDhm83Na66r4xtEJQ5KfElKCj/0= Subject key identifier: 43:6B:8F:F4:63:8D:AB:EF:D0:4E:D9:DA:1C:85:D4:92:76:5F:A5:FB Certificate issuer: /CN=28F9F9FBDF489E86A2CB929A47E8BC0ABC2A1B1C Certificate serial: 40F86198ECB95CFAA1EE6A95A46B12715B08CFC8 Authority key identifier: 28:F9:F9:FB:DF:48:9E:86:A2:CB:92:9A:47:E8:BC:0A:BC:2A:1B:1C Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/28F9F9FBDF489E86A2CB929A47E8BC0ABC2A1B1C.cer Subject info access: rsync://rpki-repo.registro.br/repo/HrNTwKVdenTRK7dXVPcC31SpRrTHQyiwEvyXhQUBYti9/0/34352e3233392e37322e302f32322d3232203d3e20323638333535.roa Signing time: Wed 17 Sep 2025 14:36:07 +0000 ROA not before: Wed 17 Sep 2025 14:31:07 +0000 ROA not after: Wed 16 Sep 2026 14:36:07 +0000 asID: 268355 IP address blocks: 45.239.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HrNTwKVdenTRK7dXVPcC31SpRrTHQyiwEvyXhQUBYti9/0/28F9F9FBDF489E86A2CB929A47E8BC0ABC2A1B1C.crl rsync://rpki-repo.registro.br/repo/HrNTwKVdenTRK7dXVPcC31SpRrTHQyiwEvyXhQUBYti9/0/28F9F9FBDF489E86A2CB929A47E8BC0ABC2A1B1C.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/28F9F9FBDF489E86A2CB929A47E8BC0ABC2A1B1C.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 05:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:f8:61:98:ec:b9:5c:fa:a1:ee:6a:95:a4:6b:12:71:5b:08:cf:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28F9F9FBDF489E86A2CB929A47E8BC0ABC2A1B1C Validity Not Before: Sep 17 14:31:07 2025 GMT Not After : Sep 16 14:36:07 2026 GMT Subject: CN=436B8FF4638DABEFD04ED9DA1C85D492765FA5FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:79:76:e9:9f:fc:2e:98:a0:82:4f:39:1e:6e: ad:10:e8:52:65:06:5d:ca:ae:57:6d:41:68:88:07: 05:88:57:f7:64:8f:c1:25:c9:2a:ef:64:50:a1:79: 7d:cd:88:86:46:62:0b:1b:b6:de:b9:e8:2d:3c:9d: 0a:91:99:f6:0c:38:40:fa:e8:9c:f6:d3:c0:2c:64: fa:d2:46:ce:bc:73:fc:41:11:c9:07:ec:ea:92:d2: 4b:22:1c:95:c1:b8:4d:75:c8:51:63:46:1b:39:9a: b4:6b:7c:99:c7:53:fc:36:3e:fe:4c:6e:7e:8a:c8: 71:d7:40:0e:19:d1:c6:c8:26:54:22:36:35:e0:ef: 93:24:1d:2b:7e:fa:19:78:30:53:52:b7:0d:4f:ac: 73:5a:84:21:ab:e2:e0:a6:fa:e5:a2:7f:ce:df:09: e7:81:26:d1:1a:01:02:38:56:c1:c3:72:59:72:29: ae:54:b9:f7:bd:5a:0f:97:b9:81:a4:86:11:26:56: b2:95:c0:6e:49:e1:d9:cf:d2:3f:8a:c1:9a:4b:00: 12:3c:9d:3e:11:53:86:db:6d:62:2d:48:33:91:33: 01:0e:5c:90:27:1e:30:6d:38:7f:bd:06:45:34:51: c7:f2:0f:de:ab:d8:08:f6:0a:19:cd:ce:59:3c:65: a2:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:6B:8F:F4:63:8D:AB:EF:D0:4E:D9:DA:1C:85:D4:92:76:5F:A5:FB X509v3 Authority Key Identifier: keyid:28:F9:F9:FB:DF:48:9E:86:A2:CB:92:9A:47:E8:BC:0A:BC:2A:1B:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HrNTwKVdenTRK7dXVPcC31SpRrTHQyiwEvyXhQUBYti9/0/28F9F9FBDF489E86A2CB929A47E8BC0ABC2A1B1C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/28F9F9FBDF489E86A2CB929A47E8BC0ABC2A1B1C.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HrNTwKVdenTRK7dXVPcC31SpRrTHQyiwEvyXhQUBYti9/0/34352e3233392e37322e302f32322d3232203d3e20323638333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.239.72.0/22 Signature Algorithm: sha256WithRSAEncryption 29:0a:29:94:e7:bf:3e:77:5e:71:e4:21:64:51:e9:b8:1d:bb: e6:e4:91:16:5c:d4:d9:40:c2:8b:ca:cc:54:3a:81:7c:22:c8: 19:e9:fd:24:2f:e1:e8:29:0d:5a:61:89:c8:ba:fa:df:08:99: 6a:cc:50:34:17:36:da:c2:1c:c6:fc:56:ec:63:d8:7b:d9:1a: f0:01:67:c4:85:a2:fe:33:de:6a:11:c6:84:00:60:d7:43:1b: a0:2d:fd:fc:3e:9a:3c:8e:e4:b9:93:f1:85:d0:99:84:bd:d0: 48:5b:cd:a6:a9:e9:fa:87:19:3b:fe:14:40:77:41:9b:c0:a1: 53:a9:4d:69:40:16:8a:d4:42:84:dc:84:09:99:a4:a6:08:6a: f4:ed:85:96:e4:8c:c5:60:ac:38:9f:66:46:39:90:2a:88:f4: e3:ef:23:26:38:57:c3:af:6c:d4:09:84:35:1c:68:05:f5:ec: b6:5b:ab:fb:00:8a:fc:42:00:6d:0e:99:37:93:d0:07:3d:33: 54:2b:50:93:aa:02:eb:0c:8d:1a:0d:40:74:6d:61:a5:d3:a1: 5f:05:80:a2:07:4c:01:88:db:76:51:70:db:75:1b:06:66:30: 96:af:1f:e3:97:0f:a4:89:b2:98:ee:c5:3c:4f:6c:79:db:e8: 34:ad:6d:8d -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUQPhhmOy5XPqh7mqVpGsScVsIz8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhGOUY5RkJERjQ4OUU4NkEyQ0I5MjlBNDdFOEJDMEFC QzJBMUIxQzAeFw0yNTA5MTcxNDMxMDdaFw0yNjA5MTYxNDM2MDdaMDMxMTAvBgNV BAMTKDQzNkI4RkY0NjM4REFCRUZEMDRFRDlEQTFDODVENDkyNzY1RkE1RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/eXbpn/wumKCCTzkebq0Q6FJl Bl3KrldtQWiIBwWIV/dkj8ElySrvZFCheX3NiIZGYgsbtt656C08nQqRmfYMOED6 6Jz208AsZPrSRs68c/xBEckH7OqS0ksiHJXBuE11yFFjRhs5mrRrfJnHU/w2Pv5M bn6KyHHXQA4Z0cbIJlQiNjXg75MkHSt++hl4MFNStw1PrHNahCGr4uCm+uWif87f CeeBJtEaAQI4VsHDcllyKa5Uufe9Wg+XuYGkhhEmVrKVwG5J4dnP0j+KwZpLABI8 nT4RU4bbbWItSDORMwEOXJAnHjBtOH+9BkU0UcfyD96r2Aj2ChnNzlk8ZaLXAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUQ2uP9GONq+/QTtnaHIXUknZfpfswHwYDVR0j BBgwFoAUKPn5+99Inoaiy5KaR+i8CrwqGxwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSHJOVHdLVmRlblRSSzdkWFZQY0MzMVNwUnJUSFF5aXdFdnlYaFFVQll0 aTkvMC8yOEY5RjlGQkRGNDg5RTg2QTJDQjkyOUE0N0U4QkMwQUJDMkExQjFDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzI4RjlGOUZCREY0ODlFODZB MkNCOTI5QTQ3RThCQzBBQkMyQTFCMUMuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hyTlR3S1ZkZW5UUks3ZFhWUGNDMzFTcFJyVEhReWl3RXZ5WGhRVUJZdGk5LzAv MzQzNTJlMzIzMzM5MmUzNzMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjM4 MzMzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCLe9IMA0GCSqGSIb3DQEBCwUAA4IBAQApCimU578+ d15x5CFkUem4Hbvm5JEWXNTZQMKLysxUOoF8IsgZ6f0kL+HoKQ1aYYnIuvrfCJlq zFA0FzbawhzG/FbsY9h72RrwAWfEhaL+M95qEcaEAGDXQxugLf38Ppo8juS5k/GF 0JmEvdBIW82mqen6hxk7/hRAd0GbwKFTqU1pQBaK1EKE3IQJmaSmCGr07YWW5IzF YKw4n2ZGOZAqiPTj7yMmOFfDr2zUCYQ1HGgF9ey2W6v7AIr8QgBtDpk3k9AHPTNU K1CTqgLrDI0aDUB0bWGl06FfBYCiB0wBiNt2UXDbdRsGZjCWrx/jlw+kibKY7sU8 T2x52+g0rW2N -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:38 2025 by rpki-client