$ rpki-client -vvf rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa File: 3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa (raw, json) Hash identifier: 3sA6ZP7lORiCotXcfIM6SVmG6TQ1Wgc/zSF931trJR4= Subject key identifier: BF:FA:61:94:2D:58:67:19:86:A3:E3:1F:19:AC:9B:F5:9B:89:2F:6B Certificate issuer: /CN=1B7A42896A4FBF2E2E2B0494300AB6F0094EF9E5 Certificate serial: 62F0D315197877F30376FD5EEDEC09A4B3A1768F Authority key identifier: 1B:7A:42:89:6A:4F:BF:2E:2E:2B:04:94:30:0A:B6:F0:09:4E:F9:E5 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B7A42896A4FBF2E2E2B0494300AB6F0094EF9E5.cer Subject info access: rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa Signing time: Tue 19 Aug 2025 12:46:59 +0000 ROA not before: Tue 19 Aug 2025 12:41:59 +0000 ROA not after: Tue 18 Aug 2026 12:46:59 +0000 asID: 265384 IP address blocks: 170.254.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/1B7A42896A4FBF2E2E2B0494300AB6F0094EF9E5.crl rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/1B7A42896A4FBF2E2E2B0494300AB6F0094EF9E5.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B7A42896A4FBF2E2E2B0494300AB6F0094EF9E5.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 25 Aug 2025 04:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:f0:d3:15:19:78:77:f3:03:76:fd:5e:ed:ec:09:a4:b3:a1:76:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B7A42896A4FBF2E2E2B0494300AB6F0094EF9E5 Validity Not Before: Aug 19 12:41:59 2025 GMT Not After : Aug 18 12:46:59 2026 GMT Subject: CN=BFFA61942D58671986A3E31F19AC9BF59B892F6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9e:d5:23:c6:e4:2e:5b:a5:f3:5f:db:73:11: e2:60:e9:a1:19:71:d7:bf:84:31:05:7f:cb:7e:cc: 60:f1:9f:35:1b:b8:83:aa:03:92:2e:2d:de:75:10: c3:ab:dd:ea:0a:58:6d:72:d2:24:bc:f7:4c:62:a8: 63:4d:36:21:f8:30:f9:8f:13:23:ea:d8:59:c3:29: 6f:9f:b7:70:6a:2f:44:5b:5b:f5:be:53:2b:3d:91: 9c:56:43:d5:02:5f:cd:31:84:e6:4b:b6:ee:23:eb: ee:41:94:20:ca:f3:75:bf:dc:00:c6:c6:b8:bf:42: 7e:cf:90:a0:97:f7:89:57:ad:91:5c:51:15:5b:86: 63:0e:68:6d:4b:8c:6b:23:df:bb:cf:41:64:49:24: 91:f9:93:61:51:8a:79:67:59:b9:ce:35:85:fe:34: 1c:18:f1:22:15:85:f2:46:11:c8:4b:67:bd:07:12: 89:28:b9:d9:9f:f3:a0:d4:2f:d2:75:17:70:51:5e: 8e:34:22:7a:bc:cd:ba:3c:17:2d:f2:ff:09:3d:51: d2:3c:3b:56:94:44:dc:eb:4a:c3:49:50:12:ca:bb: 55:f1:fa:4f:b0:24:c5:da:8e:50:98:39:02:69:1b: 1d:82:f1:11:d4:05:5c:74:8f:ba:8b:be:51:b1:19: 43:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:FA:61:94:2D:58:67:19:86:A3:E3:1F:19:AC:9B:F5:9B:89:2F:6B X509v3 Authority Key Identifier: keyid:1B:7A:42:89:6A:4F:BF:2E:2E:2B:04:94:30:0A:B6:F0:09:4E:F9:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/1B7A42896A4FBF2E2E2B0494300AB6F0094EF9E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B7A42896A4FBF2E2E2B0494300AB6F0094EF9E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.254.240.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:2d:55:07:6a:05:55:4d:7b:9f:74:ff:66:fc:e0:70:21:64: e1:f7:2c:e1:66:5d:60:0b:35:ca:53:0a:45:ea:a4:01:86:2c: a6:86:e9:16:6d:aa:6d:4d:dd:b3:8f:ad:b0:54:f2:6c:c9:3d: aa:3e:48:1d:85:0f:e0:81:7d:ef:a1:76:be:9f:08:54:77:43: a3:4e:f3:01:19:a1:8c:a2:f6:17:84:d4:4f:5f:80:4e:ce:81: 5b:e5:ab:25:d5:e3:73:67:f0:cc:76:70:4c:4b:06:00:c1:77: 15:d4:08:6b:f7:bf:b9:ad:3b:73:f9:c5:23:f2:5b:0e:dc:e3: 3b:ec:9c:6d:bd:4c:bf:05:9e:c0:3d:49:43:80:78:f1:70:67: 19:74:42:26:29:35:a1:6f:60:21:14:62:25:d2:19:db:5e:d5: 98:91:72:a6:2f:68:49:f2:80:e9:96:a8:d2:fb:be:10:3e:d5: 02:b6:2a:26:e8:68:cc:96:4f:dd:f9:2a:0b:12:46:f8:82:bb: cd:10:03:ff:c6:be:13:b9:0b:3a:c4:73:3e:c1:ee:f0:aa:c3: 2a:ae:04:a5:3f:bd:97:d5:d3:15:af:d3:f6:84:59:69:26:e6: 8f:fb:de:c2:3f:73:34:55:23:e6:7d:ca:83:f1:e0:e7:e6:68: 13:63:6b:cd -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUYvDTFRl4d/MDdv1e7ewJpLOhdo8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI3QTQyODk2QTRGQkYyRTJFMkIwNDk0MzAwQUI2RjAw OTRFRjlFNTAeFw0yNTA4MTkxMjQxNTlaFw0yNjA4MTgxMjQ2NTlaMDMxMTAvBgNV BAMTKEJGRkE2MTk0MkQ1ODY3MTk4NkEzRTMxRjE5QUM5QkY1OUI4OTJGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ntUjxuQuW6XzX9tzEeJg6aEZ cde/hDEFf8t+zGDxnzUbuIOqA5IuLd51EMOr3eoKWG1y0iS890xiqGNNNiH4MPmP EyPq2FnDKW+ft3BqL0RbW/W+Uys9kZxWQ9UCX80xhOZLtu4j6+5BlCDK83W/3ADG xri/Qn7PkKCX94lXrZFcURVbhmMOaG1LjGsj37vPQWRJJJH5k2FRinlnWbnONYX+ NBwY8SIVhfJGEchLZ70HEokoudmf86DUL9J1F3BRXo40Inq8zbo8Fy3y/wk9UdI8 O1aURNzrSsNJUBLKu1Xx+k+wJMXajlCYOQJpGx2C8RHUBVx0j7qLvlGxGUOpAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUv/phlC1YZxmGo+MfGayb9ZuJL2swHwYDVR0j BBgwFoAUG3pCiWpPvy4uKwSUMAq28AlO+eUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMk5QOGNQRDQ0VGp3ZlBXUER2cFJVM3pTeGdZSjlZVkVXQ2phaWdmY2VR cHQvMC8xQjdBNDI4OTZBNEZCRjJFMkUyQjA0OTQzMDBBQjZGMDA5NEVGOUU1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzFCN0E0Mjg5NkE0RkJGMkUy RTJCMDQ5NDMwMEFCNkYwMDk0RUY5RTUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJOUDhjUEQ0NFRqd2ZQV1BEdnBSVTN6U3hnWUo5WVZFV0NqYWlnZmNlUXB0LzAv MzEzNzMwMmUzMjM1MzQyZTMyMzQzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy MzYzNTMzMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqr+8DANBgkqhkiG9w0BAQsFAAOCAQEADy1V B2oFVU17n3T/ZvzgcCFk4fcs4WZdYAs1ylMKReqkAYYspobpFm2qbU3ds4+tsFTy bMk9qj5IHYUP4IF976F2vp8IVHdDo07zARmhjKL2F4TUT1+ATs6BW+WrJdXjc2fw zHZwTEsGAMF3FdQIa/e/ua07c/nFI/JbDtzjO+ycbb1MvwWewD1JQ4B48XBnGXRC Jik1oW9gIRRiJdIZ217VmJFypi9oSfKA6Zao0vu+ED7VArYqJuhozJZP3fkqCxJG +IK7zRAD/8a+E7kLOsRzPsHu8KrDKq4EpT+9l9XTFa/T9oRZaSbmj/vewj9zNFUj 5n3Kg/Hg5+ZoE2NrzQ== -----END CERTIFICATE-----Generated at Sun Aug 24 08:51:54 2025 by rpki-client