$ rpki-client -vvf rpki-repo.registro.br/repo/5MVgeL9hjjMMubBa1WYTTFXoF63ZxBGK42YRSXanLUoM/0/323830343a343466303a3a2f33322d313238203d3e20323637363632.roa File: 323830343a343466303a3a2f33322d313238203d3e20323637363632.roa (raw, json) Hash identifier: /8gzut21hAY+N5yFLsLuew/7DQGenEvTo9jJvnNO1X8= Subject key identifier: D9:6B:89:6B:5C:FB:28:0C:50:86:52:65:35:28:52:AD:A1:80:80:B7 Certificate issuer: /CN=D05CE4E09A56473D03EDB36445192000C8B77A5D Certificate serial: 2B32BE84473C95B8FD1CDC1AE344D22F1AE93D5A Authority key identifier: D0:5C:E4:E0:9A:56:47:3D:03:ED:B3:64:45:19:20:00:C8:B7:7A:5D Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D05CE4E09A56473D03EDB36445192000C8B77A5D.cer Subject info access: rsync://rpki-repo.registro.br/repo/5MVgeL9hjjMMubBa1WYTTFXoF63ZxBGK42YRSXanLUoM/0/323830343a343466303a3a2f33322d313238203d3e20323637363632.roa Signing time: Mon 14 Jul 2025 18:20:07 +0000 ROA not before: Mon 14 Jul 2025 18:15:07 +0000 ROA not after: Mon 13 Jul 2026 18:20:07 +0000 asID: 267662 IP address blocks: 2804:44f0::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/5MVgeL9hjjMMubBa1WYTTFXoF63ZxBGK42YRSXanLUoM/0/D05CE4E09A56473D03EDB36445192000C8B77A5D.crl rsync://rpki-repo.registro.br/repo/5MVgeL9hjjMMubBa1WYTTFXoF63ZxBGK42YRSXanLUoM/0/D05CE4E09A56473D03EDB36445192000C8B77A5D.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D05CE4E09A56473D03EDB36445192000C8B77A5D.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 13 Aug 2025 19:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:32:be:84:47:3c:95:b8:fd:1c:dc:1a:e3:44:d2:2f:1a:e9:3d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D05CE4E09A56473D03EDB36445192000C8B77A5D Validity Not Before: Jul 14 18:15:07 2025 GMT Not After : Jul 13 18:20:07 2026 GMT Subject: CN=D96B896B5CFB280C50865265352852ADA18080B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ac:2c:3b:59:ab:44:20:8e:a9:87:8e:ed:02: 47:c8:26:39:56:15:ff:a6:a6:85:f0:14:b3:25:cb: a1:28:a7:64:23:64:06:82:25:26:53:f0:51:24:6e: 0a:02:af:65:3a:a5:a5:20:b1:fe:65:1e:17:0f:d2: ed:60:9a:74:70:19:c4:be:b9:71:cd:38:9d:ff:25: a6:a1:10:67:ef:19:9a:59:e0:88:d7:22:b6:ef:de: 44:bf:ee:d7:cb:d6:a0:ae:b9:76:67:e0:4f:e7:3b: ba:e7:09:18:e3:d5:ca:39:bd:fe:04:df:b3:52:b9: 91:bb:05:f6:5c:75:5d:c1:f4:18:4b:5e:a4:45:80: 29:82:d3:b1:3f:d4:b0:3d:51:e5:99:a4:59:3b:9c: 00:4f:cc:d0:18:4e:ad:48:0b:eb:11:4b:78:00:5d: a0:f4:e3:3a:c1:f1:05:04:0e:8e:d6:50:75:f4:7a: 77:fe:e9:22:7a:0e:b1:d4:31:83:08:65:b4:77:08: d3:98:f9:53:cc:70:0e:fb:63:a4:19:f4:98:5c:60: 73:69:ca:71:22:ae:36:d8:6d:74:e1:ca:84:07:97: 2a:51:2d:1a:d7:e7:fb:a3:e1:53:cb:1a:99:66:a5: 6f:62:0d:4b:5d:72:d3:73:0c:71:8e:bb:e1:a9:be: d1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:6B:89:6B:5C:FB:28:0C:50:86:52:65:35:28:52:AD:A1:80:80:B7 X509v3 Authority Key Identifier: keyid:D0:5C:E4:E0:9A:56:47:3D:03:ED:B3:64:45:19:20:00:C8:B7:7A:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/5MVgeL9hjjMMubBa1WYTTFXoF63ZxBGK42YRSXanLUoM/0/D05CE4E09A56473D03EDB36445192000C8B77A5D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D05CE4E09A56473D03EDB36445192000C8B77A5D.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/5MVgeL9hjjMMubBa1WYTTFXoF63ZxBGK42YRSXanLUoM/0/323830343a343466303a3a2f33322d313238203d3e20323637363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:44f0::/32 Signature Algorithm: sha256WithRSAEncryption 50:ea:40:ce:3a:b0:4c:f3:c6:98:cd:31:21:08:21:b1:72:86: 9b:39:14:5d:45:8c:c7:79:69:f9:47:83:5b:82:19:2f:9e:ae: 93:ca:72:e2:7e:d9:ca:ac:ad:80:22:4b:b1:63:8a:7c:9e:70: 7e:19:64:3d:f1:a3:52:ec:17:3e:04:19:dd:b3:29:19:09:7a: 10:a6:db:3f:81:3f:61:c6:7e:b3:d5:69:33:c1:a7:ab:6b:02: d1:f1:d5:b8:0a:61:8d:29:38:58:3f:7f:9b:ed:a4:f9:f9:6f: f4:b3:ac:4c:b2:ae:41:fd:ae:d7:fd:40:0b:56:c8:67:d6:ec: 51:f5:1f:f1:68:81:c9:6d:0c:bc:95:d6:51:4e:fe:6d:f6:67: 81:a6:05:79:d5:15:74:f0:4c:c2:6c:c4:49:22:e3:ac:8c:d9: 35:91:c8:c7:af:6b:1d:3b:95:e2:b3:5f:7e:d4:b4:ca:99:ef: 8d:6d:38:28:7b:f9:43:5e:75:ed:80:2e:83:a8:9c:7d:9d:ee: 6b:c7:d9:4d:68:8e:2b:7e:23:a0:d5:bb:cd:60:3c:4f:33:e1: c2:b5:91:01:ed:a1:e7:d4:ed:b3:4a:d1:5d:36:4b:b0:aa:3a: c7:39:5b:d4:b5:22:73:6a:54:22:23:57:24:7a:40:2f:33:19: bb:a7:f2:c6 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgIUKzK+hEc8lbj9HNwa40TSLxrpPVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA1Q0U0RTA5QTU2NDczRDAzRURCMzY0NDUxOTIwMDBD OEI3N0E1RDAeFw0yNTA3MTQxODE1MDdaFw0yNjA3MTMxODIwMDdaMDMxMTAvBgNV BAMTKEQ5NkI4OTZCNUNGQjI4MEM1MDg2NTI2NTM1Mjg1MkFEQTE4MDgwQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJrCw7WatEII6ph47tAkfIJjlW Ff+mpoXwFLMly6Eop2QjZAaCJSZT8FEkbgoCr2U6paUgsf5lHhcP0u1gmnRwGcS+ uXHNOJ3/JaahEGfvGZpZ4IjXIrbv3kS/7tfL1qCuuXZn4E/nO7rnCRjj1co5vf4E 37NSuZG7BfZcdV3B9BhLXqRFgCmC07E/1LA9UeWZpFk7nABPzNAYTq1IC+sRS3gA XaD04zrB8QUEDo7WUHX0enf+6SJ6DrHUMYMIZbR3CNOY+VPMcA77Y6QZ9JhcYHNp ynEirjbYbXThyoQHlypRLRrX5/uj4VPLGplmpW9iDUtdctNzDHGOu+GpvtEzAgMB AAGjggJSMIICTjAdBgNVHQ4EFgQU2WuJa1z7KAxQhlJlNShSraGAgLcwHwYDVR0j BBgwFoAU0Fzk4JpWRz0D7bNkRRkgAMi3el0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNU1WZ2VMOWhqak1NdWJCYTFXWVRURlhvRjYzWnhCR0s0MllSU1hhbkxV b00vMC9EMDVDRTRFMDlBNTY0NzNEMDNFREIzNjQ0NTE5MjAwMEM4Qjc3QTVELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QwNUNFNEUwOUE1NjQ3M0Qw M0VEQjM2NDQ1MTkyMDAwQzhCNzdBNUQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzVNVmdlTDloampNTXViQmExV1lUVEZYb0Y2M1p4QkdLNDJZUlNYYW5MVW9NLzAv MzIzODMwMzQzYTM0MzQ2NjMwM2EzYTJmMzMzMjJkMzEzMjM4MjAzZDNlMjAzMjM2 MzczNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUH AQcBAf8EETAPMA0EAgACMAcDBQAoBETwMA0GCSqGSIb3DQEBCwUAA4IBAQBQ6kDO OrBM88aYzTEhCCGxcoabORRdRYzHeWn5R4Nbghkvnq6TynLiftnKrK2AIkuxY4p8 nnB+GWQ98aNS7Bc+BBndsykZCXoQpts/gT9hxn6z1WkzwaerawLR8dW4CmGNKThY P3+b7aT5+W/0s6xMsq5B/a7X/UALVshn1uxR9R/xaIHJbQy8ldZRTv5t9meBpgV5 1RV08EzCbMRJIuOsjNk1kcjHr2sdO5Xis19+1LTKme+NbTgoe/lDXnXtgC6DqJx9 ne5rx9lNaI4rfiOg1bvNYDxPM+HCtZEB7aHn1O2zStFdNkuwqjrHOVvUtSJzalQi I1ckekAvMxm7p/LG -----END CERTIFICATE-----Generated at Wed Aug 13 05:34:50 2025 by rpki-client