$ rpki-client -vvf rpki-repo.registro.br/repo/DksCStozatYTEsM4a3BCFDfgZrYCz721reKvSoBJgeyk/0/323830343a353361303a3230303a3a2f34302d3430203d3e20323638353936.roa File: 323830343a353361303a3230303a3a2f34302d3430203d3e20323638353936.roa (raw, json) Hash identifier: pQ/6+QROnTD45yVH85SByk4DEU8dobh5Dw9HlvLQl4w= Subject key identifier: CD:B1:F9:9D:0B:99:95:1F:09:4F:68:77:C4:4E:77:AD:77:CD:6C:2D Certificate issuer: /CN=2A3BAA1CD10D76A97433F376CD6B7474C51797CC Certificate serial: 04DB7532A4EB6F9426C7023C03411AF3F9C9993F Authority key identifier: 2A:3B:AA:1C:D1:0D:76:A9:74:33:F3:76:CD:6B:74:74:C5:17:97:CC Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A3BAA1CD10D76A97433F376CD6B7474C51797CC.cer Subject info access: rsync://rpki-repo.registro.br/repo/DksCStozatYTEsM4a3BCFDfgZrYCz721reKvSoBJgeyk/0/323830343a353361303a3230303a3a2f34302d3430203d3e20323638353936.roa Signing time: Sat 02 Aug 2025 02:12:19 +0000 ROA not before: Sat 02 Aug 2025 02:07:19 +0000 ROA not after: Sat 01 Aug 2026 02:12:19 +0000 asID: 268596 IP address blocks: 2804:53a0:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DksCStozatYTEsM4a3BCFDfgZrYCz721reKvSoBJgeyk/0/2A3BAA1CD10D76A97433F376CD6B7474C51797CC.crl rsync://rpki-repo.registro.br/repo/DksCStozatYTEsM4a3BCFDfgZrYCz721reKvSoBJgeyk/0/2A3BAA1CD10D76A97433F376CD6B7474C51797CC.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A3BAA1CD10D76A97433F376CD6B7474C51797CC.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 06 Nov 2025 07:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:db:75:32:a4:eb:6f:94:26:c7:02:3c:03:41:1a:f3:f9:c9:99:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A3BAA1CD10D76A97433F376CD6B7474C51797CC Validity Not Before: Aug 2 02:07:19 2025 GMT Not After : Aug 1 02:12:19 2026 GMT Subject: CN=CDB1F99D0B99951F094F6877C44E77AD77CD6C2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:68:43:18:2d:c6:cd:57:e6:46:7b:c9:70:36: 31:db:85:8c:ec:da:45:cc:f2:4f:ed:51:f0:13:31: ea:99:40:61:84:82:cc:e0:8b:34:5d:9a:6f:3c:35: 5f:80:2a:43:72:87:b8:e4:65:47:cd:6f:a3:5b:9f: 03:08:fa:25:55:98:bc:e1:46:6c:a8:97:b6:50:66: 36:38:b0:78:81:23:bc:3b:c1:d0:c2:e3:90:f8:e4: 4d:1c:03:13:c9:31:04:a9:56:63:aa:bc:97:d9:6c: 98:f9:6f:2c:db:c7:85:eb:25:aa:f5:9b:80:05:91: 75:ef:d0:62:19:09:af:90:8d:08:4e:ca:e5:5a:95: de:c2:59:7b:0c:e6:9b:54:a6:77:41:c4:15:5f:cd: e0:04:0c:0f:f9:0b:d4:ec:f2:0b:05:9f:18:14:fc: 3d:d2:f6:15:12:ba:93:7f:6e:04:0a:d2:a1:fd:7a: 34:7e:aa:00:02:0c:95:6b:f7:23:9a:00:e3:d6:6b: 34:e3:d6:71:f2:8b:94:86:76:68:d4:9c:c9:37:37: 38:d8:92:93:15:2d:d6:8a:b2:e7:dc:35:8d:06:84: 11:8b:4a:12:74:57:fe:30:c9:62:04:68:ae:f4:a3: a1:a3:3a:c4:2c:9e:ad:5c:bb:1f:95:98:ac:38:2b: c6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B1:F9:9D:0B:99:95:1F:09:4F:68:77:C4:4E:77:AD:77:CD:6C:2D X509v3 Authority Key Identifier: keyid:2A:3B:AA:1C:D1:0D:76:A9:74:33:F3:76:CD:6B:74:74:C5:17:97:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DksCStozatYTEsM4a3BCFDfgZrYCz721reKvSoBJgeyk/0/2A3BAA1CD10D76A97433F376CD6B7474C51797CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A3BAA1CD10D76A97433F376CD6B7474C51797CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DksCStozatYTEsM4a3BCFDfgZrYCz721reKvSoBJgeyk/0/323830343a353361303a3230303a3a2f34302d3430203d3e20323638353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:53a0:200::/40 Signature Algorithm: sha256WithRSAEncryption 92:92:ff:03:fd:ff:64:b4:9c:02:11:d3:5e:0a:b1:b5:67:2a: b3:20:55:6a:79:fe:a8:19:c5:0e:62:9c:10:47:a5:ac:63:96: 22:85:e9:92:01:ee:19:26:20:2d:15:6d:94:d0:16:c4:b5:1c: 7b:4e:20:2f:20:f7:7f:a0:a3:00:36:b4:ce:1f:c3:49:71:1a: 13:45:31:81:2c:5b:03:62:73:f7:f8:23:f6:ee:b1:bf:bd:b9: b0:0a:95:ff:b8:92:66:45:cb:9c:cc:ba:e3:c7:04:93:82:a9: 81:d0:9e:e3:f6:c7:39:06:98:4a:5b:77:cf:0f:c6:75:21:13: 46:76:cd:84:04:09:bc:91:c5:60:dc:9e:ef:c4:13:aa:21:17: df:3b:de:33:ae:83:61:13:bf:50:67:fe:b5:d1:65:20:61:06: 8f:50:ff:bd:d7:15:74:ab:59:6e:48:07:fd:ea:9e:b7:54:33: c7:c0:4d:8b:55:aa:5e:e6:2d:22:81:a6:77:00:f4:30:dc:c6: e5:4e:43:48:02:9c:65:22:15:8c:90:07:db:45:5a:e9:be:fb: 4c:a5:bc:d1:e7:94:ec:28:84:85:6b:68:37:e5:2b:f9:fd:da: e9:eb:58:17:de:26:c5:fc:25:1a:d0:c4:29:02:74:1d:19:42: 58:bc:1e:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUBNt1MqTrb5QmxwI8A0Ea8/nJmT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEzQkFBMUNEMTBENzZBOTc0MzNGMzc2Q0Q2Qjc0NzRD NTE3OTdDQzAeFw0yNTA4MDIwMjA3MTlaFw0yNjA4MDEwMjEyMTlaMDMxMTAvBgNV BAMTKENEQjFGOTlEMEI5OTk1MUYwOTRGNjg3N0M0NEU3N0FENzdDRDZDMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDaEMYLcbNV+ZGe8lwNjHbhYzs 2kXM8k/tUfATMeqZQGGEgszgizRdmm88NV+AKkNyh7jkZUfNb6NbnwMI+iVVmLzh Rmyol7ZQZjY4sHiBI7w7wdDC45D45E0cAxPJMQSpVmOqvJfZbJj5byzbx4XrJar1 m4AFkXXv0GIZCa+QjQhOyuVald7CWXsM5ptUpndBxBVfzeAEDA/5C9Ts8gsFnxgU /D3S9hUSupN/bgQK0qH9ejR+qgACDJVr9yOaAOPWazTj1nHyi5SGdmjUnMk3NzjY kpMVLdaKsufcNY0GhBGLShJ0V/4wyWIEaK70o6GjOsQsnq1cux+VmKw4K8YnAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUzbH5nQuZlR8JT2h3xE53rXfNbC0wHwYDVR0j BBgwFoAUKjuqHNENdql0M/N2zWt0dMUXl8wwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRGtzQ1N0b3phdFlURXNNNGEzQkNGRGZnWnJZQ3o3MjFyZUt2U29CSmdl eWsvMC8yQTNCQUExQ0QxMEQ3NkE5NzQzM0YzNzZDRDZCNzQ3NEM1MTc5N0NDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJBM0JBQTFDRDEwRDc2QTk3 NDMzRjM3NkNENkI3NDc0QzUxNzk3Q0MuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Rrc0NTdG96YXRZVEVzTTRhM0JDRkRmZ1pyWUN6NzIxcmVLdlNvQkpnZXlrLzAv MzIzODMwMzQzYTM1MzM2MTMwM2EzMjMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNl MjAzMjM2MzgzNTM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYI KwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAoBFOgAjANBgkqhkiG9w0BAQsFAAOC AQEAkpL/A/3/ZLScAhHTXgqxtWcqsyBVann+qBnFDmKcEEelrGOWIoXpkgHuGSYg LRVtlNAWxLUce04gLyD3f6CjADa0zh/DSXEaE0UxgSxbA2Jz9/gj9u6xv725sAqV /7iSZkXLnMy648cEk4KpgdCe4/bHOQaYSlt3zw/GdSETRnbNhAQJvJHFYNye78QT qiEX3zveM66DYRO/UGf+tdFlIGEGj1D/vdcVdKtZbkgH/eqet1Qzx8BNi1WqXuYt IoGmdwD0MNzG5U5DSAKcZSIVjJAH20Va6b77TKW80eeU7CiEhWtoN+Ur+f3a6etY F94mxfwlGtDEKQJ0HRlCWLwesQ== -----END CERTIFICATE-----Generated at Wed Nov 5 15:17:05 2025 by rpki-client