$ rpki-client -vvf rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/3137372e3232312e3133362e302f32322d3234203d3e20323730373337.roa File: 3137372e3232312e3133362e302f32322d3234203d3e20323730373337.roa (raw, json) Hash identifier: DlhDw1dzTc6ndQvekwKDgY9PvHeoaodotFzkhX2390Y= Subject key identifier: E2:49:D5:46:19:0E:E0:83:BC:F0:A6:F0:B2:2C:66:56:0B:23:60:F4 Certificate issuer: /CN=AF709D487025EB90C014C7186CC0AEA341A27C3B Certificate serial: 28028079D5AE5099477FD0AE1B9065A5E25958AA Authority key identifier: AF:70:9D:48:70:25:EB:90:C0:14:C7:18:6C:C0:AE:A3:41:A2:7C:3B Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AF709D487025EB90C014C7186CC0AEA341A27C3B.cer Subject info access: rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/3137372e3232312e3133362e302f32322d3234203d3e20323730373337.roa Signing time: Mon 22 Sep 2025 17:52:24 +0000 ROA not before: Mon 22 Sep 2025 17:47:24 +0000 ROA not after: Mon 21 Sep 2026 17:52:24 +0000 asID: 270737 IP address blocks: 177.221.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/AF709D487025EB90C014C7186CC0AEA341A27C3B.crl rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/AF709D487025EB90C014C7186CC0AEA341A27C3B.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AF709D487025EB90C014C7186CC0AEA341A27C3B.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 14:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:02:80:79:d5:ae:50:99:47:7f:d0:ae:1b:90:65:a5:e2:59:58:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF709D487025EB90C014C7186CC0AEA341A27C3B Validity Not Before: Sep 22 17:47:24 2025 GMT Not After : Sep 21 17:52:24 2026 GMT Subject: CN=E249D546190EE083BCF0A6F0B22C66560B2360F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8c:4b:0d:4d:f6:51:1b:73:2d:bd:ee:91:f4: 2b:d0:58:6e:94:59:d7:ee:32:f0:55:6d:53:84:25: 89:21:f7:f7:6e:f4:87:84:38:14:ae:40:28:73:8b: 72:20:19:97:f0:11:61:00:22:33:41:da:c3:ba:10: 1d:d6:de:44:82:f2:28:ad:f3:f4:bd:5d:c5:90:56: 3c:6b:e0:9c:da:af:72:bb:cf:9a:3e:ff:6d:36:0e: fd:28:8d:09:e8:b1:67:1b:7c:5b:0d:d1:24:e0:4f: c7:e1:67:30:e5:a6:4a:9b:2f:7e:17:be:1e:2b:2e: 50:5b:31:38:92:cf:38:69:e7:1a:c9:57:cc:b5:ea: 8a:2b:c4:3b:7b:86:e6:0a:a4:48:14:ec:ac:36:d0: 87:97:c7:c9:08:43:94:39:7f:33:db:a4:94:ea:14: d3:77:b8:9c:5c:ff:49:e3:0d:23:eb:8d:7a:9e:cf: 5b:3d:80:87:a4:f0:ca:44:a4:22:50:50:08:f2:f0: 63:84:00:f2:de:ea:e7:96:07:2a:5e:ea:ef:a8:64: ee:55:74:66:13:7c:53:41:09:60:25:d4:f3:99:47: 37:55:46:dd:f0:52:ef:6a:dd:d5:6a:b6:92:ce:ba: 77:e7:2c:58:b3:2a:fd:0a:29:c4:d1:de:b5:73:15: 3f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:49:D5:46:19:0E:E0:83:BC:F0:A6:F0:B2:2C:66:56:0B:23:60:F4 X509v3 Authority Key Identifier: keyid:AF:70:9D:48:70:25:EB:90:C0:14:C7:18:6C:C0:AE:A3:41:A2:7C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/AF709D487025EB90C014C7186CC0AEA341A27C3B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AF709D487025EB90C014C7186CC0AEA341A27C3B.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4oKDjTtuVfRxybQECZfMRov5Z6DpryF7MyQN17v2sZKk/0/3137372e3232312e3133362e302f32322d3234203d3e20323730373337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.221.136.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:9f:49:1d:da:c0:45:4c:07:05:13:03:e7:13:b8:d3:b4:5c: 28:59:39:b8:89:68:b5:cc:f9:f6:11:e5:fe:18:0b:14:ee:a7: 98:5d:91:91:06:b2:8d:03:f1:22:06:36:b4:d5:aa:98:61:c0: 1d:46:f7:eb:ec:c7:b3:5a:77:e4:1d:34:5d:c9:f3:91:47:fd: 2c:48:6d:99:50:19:cf:2f:60:83:f2:ef:59:a8:4c:f2:c9:fe: ed:36:8d:a3:d3:e9:f5:9d:7f:f0:99:a3:6d:81:fa:5f:33:db: a2:00:7f:b6:c1:a5:f8:36:76:ef:b3:30:74:c3:68:48:10:45: 0c:ca:a6:17:75:66:b5:b9:32:49:38:8b:15:72:e6:95:8d:ab: ac:07:e2:19:a4:f4:c0:d0:05:d2:a5:30:72:69:ab:aa:2d:9c: 93:e5:1c:ab:6a:7b:bb:42:a9:07:86:30:07:70:cf:c9:ef:3a: d6:11:14:01:1b:55:64:91:5b:6e:91:74:24:0a:aa:ce:12:cf: 02:d7:e5:72:8d:01:1d:fd:ad:06:08:18:06:51:35:f2:28:30: 91:c4:f4:db:18:c1:20:71:e0:f5:da:d7:f0:26:1d:1b:d3:4b: 33:e0:d5:c5:18:65:6c:b7:22:7e:c9:1c:ff:33:6a:5d:fa:5d: 40:49:a9:35 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUKAKAedWuUJlHf9CuG5BlpeJZWKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY3MDlENDg3MDI1RUI5MEMwMTRDNzE4NkNDMEFFQTM0 MUEyN0MzQjAeFw0yNTA5MjIxNzQ3MjRaFw0yNjA5MjExNzUyMjRaMDMxMTAvBgNV BAMTKEUyNDlENTQ2MTkwRUUwODNCQ0YwQTZGMEIyMkM2NjU2MEIyMzYwRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOjEsNTfZRG3Mtve6R9CvQWG6U WdfuMvBVbVOEJYkh9/du9IeEOBSuQChzi3IgGZfwEWEAIjNB2sO6EB3W3kSC8iit 8/S9XcWQVjxr4Jzar3K7z5o+/202Dv0ojQnosWcbfFsN0STgT8fhZzDlpkqbL34X vh4rLlBbMTiSzzhp5xrJV8y16oorxDt7huYKpEgU7Kw20IeXx8kIQ5Q5fzPbpJTq FNN3uJxc/0njDSPrjXqez1s9gIek8MpEpCJQUAjy8GOEAPLe6ueWBype6u+oZO5V dGYTfFNBCWAl1POZRzdVRt3wUu9q3dVqtpLOunfnLFizKv0KKcTR3rVzFT9TAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQU4knVRhkO4IO88KbwsixmVgsjYPQwHwYDVR0j BBgwFoAUr3CdSHAl65DAFMcYbMCuo0GifDswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNG9LRGpUdHVWZlJ4eWJRRUNaZk1Sb3Y1WjZEcHJ5RjdNeVFOMTd2MnNa S2svMC9BRjcwOUQ0ODcwMjVFQjkwQzAxNEM3MTg2Q0MwQUVBMzQxQTI3QzNCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0FGNzA5RDQ4NzAyNUVCOTBD MDE0QzcxODZDQzBBRUEzNDFBMjdDM0IuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRvS0RqVHR1VmZSeHliUUVDWmZNUm92NVo2RHByeUY3TXlRTjE3djJzWktrLzAv MzEzNzM3MmUzMjMyMzEyZTMxMzMzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzczMDM3MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEArHdiDANBgkqhkiG9w0BAQsFAAOCAQEAfp9J HdrARUwHBRMD5xO407RcKFk5uIlotcz59hHl/hgLFO6nmF2RkQayjQPxIgY2tNWq mGHAHUb36+zHs1p35B00XcnzkUf9LEhtmVAZzy9gg/LvWahM8sn+7TaNo9Pp9Z1/ 8JmjbYH6XzPbogB/tsGl+DZ277MwdMNoSBBFDMqmF3VmtbkySTiLFXLmlY2rrAfi GaT0wNAF0qUwcmmrqi2ck+Ucq2p7u0KpB4YwB3DPye861hEUARtVZJFbbpF0JAqq zhLPAtflco0BHf2tBggYBlE18igwkcT02xjBIHHg9drX8CYdG9NLM+DVxRhlbLci fskc/zNqXfpdQEmpNQ== -----END CERTIFICATE-----Generated at Mon Oct 20 23:45:04 2025 by rpki-client