$ rpki-client -vvf rpki-repo.registro.br/repo/HrgJEbRsQzZPQBBHdkzxngKKapi92F7yCyDZaz9rVkFR/1/323830343a353931633a633030303a3a2f33342d3334203d3e203238333730.roa File: 323830343a353931633a633030303a3a2f33342d3334203d3e203238333730.roa (raw, json) Hash identifier: xP8Z7zgvQLJ1mZxoIouLA2XBPnZBIpfHaepZL0Kjyvw= Subject key identifier: D1:A5:3B:44:95:8B:DA:28:33:36:74:6E:DE:B6:96:09:82:30:74:42 Certificate issuer: /CN=32A915BA5A97568A877890D55DC289FFCB6FEE60 Certificate serial: 6CCB992B8BD306D78B9D2B6133933021D989F929 Authority key identifier: 32:A9:15:BA:5A:97:56:8A:87:78:90:D5:5D:C2:89:FF:CB:6F:EE:60 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/32A915BA5A97568A877890D55DC289FFCB6FEE60.cer Subject info access: rsync://rpki-repo.registro.br/repo/HrgJEbRsQzZPQBBHdkzxngKKapi92F7yCyDZaz9rVkFR/1/323830343a353931633a633030303a3a2f33342d3334203d3e203238333730.roa Signing time: Wed 23 Jul 2025 23:02:09 +0000 ROA not before: Wed 23 Jul 2025 22:57:09 +0000 ROA not after: Wed 22 Jul 2026 23:02:09 +0000 asID: 28370 IP address blocks: 2804:591c:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HrgJEbRsQzZPQBBHdkzxngKKapi92F7yCyDZaz9rVkFR/1/32A915BA5A97568A877890D55DC289FFCB6FEE60.crl rsync://rpki-repo.registro.br/repo/HrgJEbRsQzZPQBBHdkzxngKKapi92F7yCyDZaz9rVkFR/1/32A915BA5A97568A877890D55DC289FFCB6FEE60.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/32A915BA5A97568A877890D55DC289FFCB6FEE60.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 10 Aug 2025 00:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:cb:99:2b:8b:d3:06:d7:8b:9d:2b:61:33:93:30:21:d9:89:f9:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32A915BA5A97568A877890D55DC289FFCB6FEE60 Validity Not Before: Jul 23 22:57:09 2025 GMT Not After : Jul 22 23:02:09 2026 GMT Subject: CN=D1A53B44958BDA283336746EDEB6960982307442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:64:b2:bd:38:99:2b:1a:72:43:5b:bc:61:64: 1a:71:3f:b7:f8:71:46:a6:57:9f:a4:40:fe:2a:42: 32:78:93:6a:04:e5:bc:04:aa:fe:40:b9:d2:da:61: 0b:ba:00:98:a8:db:e0:f2:69:1e:3e:82:bf:5b:fd: a0:de:75:01:0a:4f:9c:28:b4:5d:99:8c:c0:6e:09: 39:6c:97:18:f7:a9:6b:cc:61:10:e5:8b:59:17:09: 07:27:c7:0e:db:ac:13:98:13:7b:8c:5c:b4:63:cb: 62:42:7f:a7:2d:d7:0d:52:dc:a3:65:ee:cd:59:be: ad:70:58:7e:da:2a:e5:d9:8c:b0:2b:3a:6a:7b:ff: f4:78:78:14:97:46:50:4a:71:fc:9e:e3:da:c6:70: 8c:12:50:5d:fa:a5:c1:0a:d9:80:7c:75:77:8a:a3: 6b:ce:76:d3:ee:47:85:be:e9:02:5f:00:3a:c3:49: 3a:61:17:d5:52:2c:c1:70:51:e9:bd:43:1e:90:d5: d3:95:94:b9:ec:a2:ca:69:5e:33:30:83:f2:a7:4f: a5:7d:f9:b3:44:f3:97:2e:f3:5e:f0:d5:66:4b:2b: 86:b1:ac:02:4c:ef:0e:43:35:f0:e4:08:15:08:ff: 7b:f3:ed:c9:b3:02:e4:e5:54:c7:51:4f:dc:7d:f5: d9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A5:3B:44:95:8B:DA:28:33:36:74:6E:DE:B6:96:09:82:30:74:42 X509v3 Authority Key Identifier: keyid:32:A9:15:BA:5A:97:56:8A:87:78:90:D5:5D:C2:89:FF:CB:6F:EE:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HrgJEbRsQzZPQBBHdkzxngKKapi92F7yCyDZaz9rVkFR/1/32A915BA5A97568A877890D55DC289FFCB6FEE60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/32A915BA5A97568A877890D55DC289FFCB6FEE60.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HrgJEbRsQzZPQBBHdkzxngKKapi92F7yCyDZaz9rVkFR/1/323830343a353931633a633030303a3a2f33342d3334203d3e203238333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:591c:c000::/34 Signature Algorithm: sha256WithRSAEncryption 7a:76:05:c4:95:80:1e:c1:e1:bd:52:e0:bc:29:bc:f8:58:9b: cc:8b:83:64:96:4a:a4:9a:74:d9:26:b8:e8:17:a8:5b:f6:8f: 1a:75:37:ce:24:df:06:04:4f:66:e2:bb:87:f5:61:ed:99:74: 41:ef:1b:98:5d:ea:22:8c:63:ab:eb:11:3f:4c:42:04:bd:4b: 7f:1b:0b:38:6d:9d:70:9b:3b:76:03:4c:04:02:57:23:14:67: a6:2f:fe:55:39:1e:78:ce:41:ad:93:8c:3a:8e:17:29:13:80: 53:73:e7:07:85:57:77:89:88:aa:98:09:3a:e7:1c:f8:9a:1a: f9:9a:b5:72:0e:f7:a3:ae:3d:fa:0e:c4:62:49:b7:e5:69:6d: 3d:d0:93:f2:97:01:6b:56:b6:ac:bc:e8:0e:4b:9c:ac:17:16: 71:4f:55:d0:31:28:76:29:84:0b:91:c7:21:22:f9:9a:c4:0d: c9:e0:8f:24:30:a3:d9:9b:98:14:92:05:14:df:8a:33:d2:0f: 5e:1e:38:e5:53:16:71:17:51:dc:c8:3c:2c:3d:95:e7:a7:e6: 4b:4e:bd:a2:b2:7d:2a:11:59:86:75:20:76:38:9d:26:29:98: 71:f1:aa:30:73:22:d3:75:3c:70:3a:dc:97:13:8c:28:e2:61: 80:40:72:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUbMuZK4vTBteLnSthM5MwIdmJ+SkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJBOTE1QkE1QTk3NTY4QTg3Nzg5MEQ1NURDMjg5RkZD QjZGRUU2MDAeFw0yNTA3MjMyMjU3MDlaFw0yNjA3MjIyMzAyMDlaMDMxMTAvBgNV BAMTKEQxQTUzQjQ0OTU4QkRBMjgzMzM2NzQ2RURFQjY5NjA5ODIzMDc0NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHZLK9OJkrGnJDW7xhZBpxP7f4 cUamV5+kQP4qQjJ4k2oE5bwEqv5AudLaYQu6AJio2+DyaR4+gr9b/aDedQEKT5wo tF2ZjMBuCTlslxj3qWvMYRDli1kXCQcnxw7brBOYE3uMXLRjy2JCf6ct1w1S3KNl 7s1Zvq1wWH7aKuXZjLArOmp7//R4eBSXRlBKcfye49rGcIwSUF36pcEK2YB8dXeK o2vOdtPuR4W+6QJfADrDSTphF9VSLMFwUem9Qx6Q1dOVlLnsosppXjMwg/KnT6V9 +bNE85cu817w1WZLK4axrAJM7w5DNfDkCBUI/3vz7cmzAuTlVMdRT9x99dkRAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQU0aU7RJWL2igzNnRu3raWCYIwdEIwHwYDVR0j BBgwFoAUMqkVulqXVoqHeJDVXcKJ/8tv7mAwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSHJnSkViUnNRelpQUUJCSGRrenhuZ0tLYXBpOTJGN3lDeURaYXo5clZr RlIvMS8zMkE5MTVCQTVBOTc1NjhBODc3ODkwRDU1REMyODlGRkNCNkZFRTYwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzMyQTkxNUJBNUE5NzU2OEE4 Nzc4OTBENTVEQzI4OUZGQ0I2RkVFNjAuY2VyMIG0BggrBgEFBQcBCwSBpzCBpDCB oQYIKwYBBQUHMAuGgZRyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hyZ0pFYlJzUXpaUFFCQkhka3p4bmdLS2FwaTkyRjd5Q3lEWmF6OXJWa0ZSLzEv MzIzODMwMzQzYTM1MzkzMTYzM2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzgzMzM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYI KwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYoBFkcwDANBgkqhkiG9w0BAQsFAAOC AQEAenYFxJWAHsHhvVLgvCm8+FibzIuDZJZKpJp02Sa46BeoW/aPGnU3ziTfBgRP ZuK7h/Vh7Zl0Qe8bmF3qIoxjq+sRP0xCBL1LfxsLOG2dcJs7dgNMBAJXIxRnpi/+ VTkeeM5BrZOMOo4XKROAU3PnB4VXd4mIqpgJOucc+Joa+Zq1cg73o649+g7EYkm3 5WltPdCT8pcBa1a2rLzoDkucrBcWcU9V0DEodimEC5HHISL5msQNyeCPJDCj2ZuY FJIFFN+KM9IPXh445VMWcRdR3Mg8LD2V56fmS069orJ9KhFZhnUgdjidJimYcfGq MHMi03U8cDrclxOMKOJhgEByVQ== -----END CERTIFICATE-----Generated at Sat Aug 9 14:28:08 2025 by rpki-client