$ rpki-client -vvf rsync.nex3.com.br/repo/AS265356/0/323830343a326561303a3a2f33322d3333203d3e20323635333536.roa File: 323830343a326561303a3a2f33322d3333203d3e20323635333536.roa (raw, json) Hash identifier: /GdXx3fTDU97IsIU1kAg03PFW0XhC7Io6+X3cmTGq1g= Subject key identifier: D2:10:E3:B3:8D:BE:FB:33:E1:28:44:46:21:A2:C1:BD:22:13:2D:3B Certificate issuer: /CN=DC23EF8A45CF1AFC023B231103F26334E3B2BF14 Certificate serial: 6A56743CE92B690215C823A662DEE975552CE03C Authority key identifier: DC:23:EF:8A:45:CF:1A:FC:02:3B:23:11:03:F2:63:34:E3:B2:BF:14 Authority info access: rsync://rpki-repo.registro.br/repo/62eHZ4fSK6vNQGdNwNXibZMRXKaUmZVfEmt1ErTuTWEz/1/DC23EF8A45CF1AFC023B231103F26334E3B2BF14.cer Subject info access: rsync://rsync.nex3.com.br/repo/AS265356/0/323830343a326561303a3a2f33322d3333203d3e20323635333536.roa Signing time: Wed 25 Mar 2026 01:10:29 +0000 ROA not before: Wed 25 Mar 2026 01:05:29 +0000 ROA not after: Wed 24 Mar 2027 01:10:29 +0000 asID: 265356 IP address blocks: 2804:2ea0::/32 maxlen: 33 Validation: OK Signature path: rsync://rsync.nex3.com.br/repo/AS265356/0/DC23EF8A45CF1AFC023B231103F26334E3B2BF14.crl rsync://rsync.nex3.com.br/repo/AS265356/0/DC23EF8A45CF1AFC023B231103F26334E3B2BF14.mft rsync://rpki-repo.registro.br/repo/62eHZ4fSK6vNQGdNwNXibZMRXKaUmZVfEmt1ErTuTWEz/1/DC23EF8A45CF1AFC023B231103F26334E3B2BF14.cer rsync://rpki-repo.registro.br/repo/62eHZ4fSK6vNQGdNwNXibZMRXKaUmZVfEmt1ErTuTWEz/1/9805E398075C7266BCC46FC22F440B4946C6F361.crl rsync://rpki-repo.registro.br/repo/62eHZ4fSK6vNQGdNwNXibZMRXKaUmZVfEmt1ErTuTWEz/1/9805E398075C7266BCC46FC22F440B4946C6F361.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9805E398075C7266BCC46FC22F440B4946C6F361.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 26 Mar 2026 19:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:56:74:3c:e9:2b:69:02:15:c8:23:a6:62:de:e9:75:55:2c:e0:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC23EF8A45CF1AFC023B231103F26334E3B2BF14 Validity Not Before: Mar 25 01:05:29 2026 GMT Not After : Mar 24 01:10:29 2027 GMT Subject: CN=D210E3B38DBEFB33E128444621A2C1BD22132D3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a3:89:82:75:bd:d6:57:75:c7:d5:e6:14:6a: 96:02:4c:0d:6c:d7:5d:0d:08:e0:68:8e:a5:62:33: 81:cb:48:39:96:98:c8:3c:2c:0a:7a:b6:3b:fe:f8: c7:71:ea:05:c3:5d:40:b1:af:c7:38:db:d1:90:33: cd:40:58:da:3f:f6:1f:93:fe:34:ae:df:ca:07:54: 0d:d7:5b:78:4f:37:5a:d5:4b:6f:85:29:26:3d:e8: de:57:21:86:cb:3d:07:0f:6a:22:6d:8e:01:69:80: c3:0a:13:29:4a:55:46:87:91:6b:e5:b0:fd:11:1c: 14:8e:ff:a0:37:0f:e3:96:80:ed:49:ca:5a:e5:8d: 8c:ae:76:ee:7a:2c:11:b5:66:ac:7d:7c:eb:ee:3d: 3f:6c:f8:12:ad:8a:41:2c:bc:2e:a2:eb:9c:59:e9: 98:fe:84:b3:8d:33:cc:8b:6f:26:f3:96:9e:dc:c7: d3:ec:7d:77:ff:f6:fe:6f:15:d3:ba:57:0f:38:bb: 93:fc:b1:a9:20:0b:02:d7:dd:48:d4:65:41:9e:c2: 1e:4a:88:88:7b:18:e7:aa:72:52:a5:9f:dc:ef:eb: 72:83:3b:0d:c7:bb:c4:96:61:88:cc:3c:71:4d:bb: 75:83:e1:ae:57:01:35:a7:8f:2e:0a:dc:f9:9e:d5: 16:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:10:E3:B3:8D:BE:FB:33:E1:28:44:46:21:A2:C1:BD:22:13:2D:3B X509v3 Authority Key Identifier: keyid:DC:23:EF:8A:45:CF:1A:FC:02:3B:23:11:03:F2:63:34:E3:B2:BF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.nex3.com.br/repo/AS265356/0/DC23EF8A45CF1AFC023B231103F26334E3B2BF14.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/62eHZ4fSK6vNQGdNwNXibZMRXKaUmZVfEmt1ErTuTWEz/1/DC23EF8A45CF1AFC023B231103F26334E3B2BF14.cer Subject Information Access: Signed Object - URI:rsync://rsync.nex3.com.br/repo/AS265356/0/323830343a326561303a3a2f33322d3333203d3e20323635333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:2ea0::/32 Signature Algorithm: sha256WithRSAEncryption 6c:05:2a:73:57:16:6d:c1:c2:37:f1:99:17:c5:63:e5:e6:1e: 6c:58:bc:50:91:79:ac:6b:25:c2:8e:c4:a7:f4:1f:45:01:dc: d6:32:9c:e9:fc:cf:8c:3f:08:3c:ce:16:e2:52:b6:95:0f:e3: 00:fe:56:a6:7f:86:5d:c2:22:d3:26:30:cb:54:55:7e:7c:5e: 17:d3:88:33:5e:c5:9f:02:37:52:dc:dd:9c:51:28:89:e3:dd: 10:5b:26:94:70:d7:db:eb:15:5d:2b:c8:81:3f:4d:b2:14:4f: 7f:9f:9d:26:ee:32:f5:4d:ef:1e:1c:5b:86:1e:ac:57:bc:92: db:6a:0f:6e:2e:e9:5b:a0:48:a3:93:5b:9f:19:41:c7:a7:ea: fc:eb:85:55:be:5c:d6:e3:7f:6a:96:d2:0b:f9:17:e6:36:f8: f6:90:7a:0a:be:d8:14:d8:38:2c:bc:6d:3b:b3:30:e5:2f:12: 02:ad:79:6b:4a:f0:11:b7:6c:c1:af:30:13:cc:3d:4e:83:29: 3d:96:f1:1b:80:24:7f:e2:f6:54:a5:7b:7c:f3:a2:fc:b4:23: b5:42:8b:e1:5e:9e:89:08:85:18:ce:f3:9d:6a:19:bb:a3:25: 8b:e1:3d:84:30:4f:98:b8:08:b8:62:4d:ab:eb:25:d8:50:a7: 73:6d:49:3a -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgIUalZ0POkraQIVyCOmYt7pdVUs4DwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMyM0VGOEE0NUNGMUFGQzAyM0IyMzExMDNGMjYzMzRF M0IyQkYxNDAeFw0yNjAzMjUwMTA1MjlaFw0yNzAzMjQwMTEwMjlaMDMxMTAvBgNV BAMTKEQyMTBFM0IzOERCRUZCMzNFMTI4NDQ0NjIxQTJDMUJEMjIxMzJEM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqo4mCdb3WV3XH1eYUapYCTA1s 110NCOBojqViM4HLSDmWmMg8LAp6tjv++Mdx6gXDXUCxr8c429GQM81AWNo/9h+T /jSu38oHVA3XW3hPN1rVS2+FKSY96N5XIYbLPQcPaiJtjgFpgMMKEylKVUaHkWvl sP0RHBSO/6A3D+OWgO1JylrljYyudu56LBG1Zqx9fOvuPT9s+BKtikEsvC6i65xZ 6Zj+hLONM8yLbybzlp7cx9PsfXf/9v5vFdO6Vw84u5P8sakgCwLX3UjUZUGewh5K iIh7GOeqclKln9zv63KDOw3Hu8SWYYjMPHFNu3WD4a5XATWnjy4K3Pme1RbhAgMB AAGjggIcMIICGDAdBgNVHQ4EFgQU0hDjs42++zPhKERGIaLBvSITLTswHwYDVR0j BBgwFoAU3CPvikXPGvwCOyMRA/JjNOOyvxQwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnN5bmMubmV4My5jb20uYnIvcmVwby9BUzI2 NTM1Ni8wL0RDMjNFRjhBNDVDRjFBRkMwMjNCMjMxMTAzRjI2MzM0RTNCMkJGMTQu Y3JsMIGdBggrBgEFBQcBAQSBkDCBjTCBigYIKwYBBQUHMAKGfnJzeW5jOi8vcnBr aS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vNjJlSFo0ZlNLNnZOUUdkTndOWGliWk1S WEthVW1aVmZFbXQxRXJUdVRXRXovMS9EQzIzRUY4QTQ1Q0YxQUZDMDIzQjIzMTEw M0YyNjMzNEUzQjJCRjE0LmNlcjCBgAYIKwYBBQUHAQsEdDByMHAGCCsGAQUFBzAL hmRyc3luYzovL3JzeW5jLm5leDMuY29tLmJyL3JlcG8vQVMyNjUzNTYvMC8zMjM4 MzAzNDNhMzI2NTYxMzAzYTNhMmYzMzMyMmQzMzMzMjAzZDNlMjAzMjM2MzUzMzM1 MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoBC6gMA0GCSqGSIb3DQEBCwUAA4IBAQBsBSpzVxZtwcI3 8ZkXxWPl5h5sWLxQkXmsayXCjsSn9B9FAdzWMpzp/M+MPwg8zhbiUraVD+MA/lam f4ZdwiLTJjDLVFV+fF4X04gzXsWfAjdS3N2cUSiJ490QWyaUcNfb6xVdK8iBP02y FE9/n50m7jL1Te8eHFuGHqxXvJLbag9uLulboEijk1ufGUHHp+r864VVvlzW439q ltIL+RfmNvj2kHoKvtgU2DgsvG07szDlLxICrXlrSvARt2zBrzATzD1Ogyk9lvEb gCR/4vZUpXt886L8tCO1QovhXp6JCIUYzvOdahm7oyWL4T2EME+YuAi4Yk2r6yXY UKdzbUk6 -----END CERTIFICATE-----Generated at Wed Mar 25 22:54:28 2026 by rpki-client