$ rpki-client -vvf rpki-repo.registro.br/repo/4xpyJNVZSf4NatVBAsox9RYepbiDWxtcUU9XXde7ULJj/0/3230302e31382e3130362e302f32332d3234203d3e203238353731.roa File: 3230302e31382e3130362e302f32332d3234203d3e203238353731.roa (raw, json) Hash identifier: Z9d4Nor6EVDafzfEo5evrQNDRNJlTeZ9wC5veQb3cCs= Subject key identifier: 39:1C:8A:C0:15:63:3B:85:CB:72:FB:ED:16:92:A2:52:0C:55:0D:E0 Certificate issuer: /CN=2A617987C2BF83B643E45B35FB810319E8B26AA5 Certificate serial: 5D0724109DB90D07D924921FB9C8EA8486A31282 Authority key identifier: 2A:61:79:87:C2:BF:83:B6:43:E4:5B:35:FB:81:03:19:E8:B2:6A:A5 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A617987C2BF83B643E45B35FB810319E8B26AA5.cer Subject info access: rsync://rpki-repo.registro.br/repo/4xpyJNVZSf4NatVBAsox9RYepbiDWxtcUU9XXde7ULJj/0/3230302e31382e3130362e302f32332d3234203d3e203238353731.roa Signing time: Mon 13 Oct 2025 13:46:26 +0000 ROA not before: Mon 13 Oct 2025 13:41:26 +0000 ROA not after: Mon 12 Oct 2026 13:46:26 +0000 asID: 28571 IP address blocks: 200.18.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4xpyJNVZSf4NatVBAsox9RYepbiDWxtcUU9XXde7ULJj/0/2A617987C2BF83B643E45B35FB810319E8B26AA5.crl rsync://rpki-repo.registro.br/repo/4xpyJNVZSf4NatVBAsox9RYepbiDWxtcUU9XXde7ULJj/0/2A617987C2BF83B643E45B35FB810319E8B26AA5.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A617987C2BF83B643E45B35FB810319E8B26AA5.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 12:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:07:24:10:9d:b9:0d:07:d9:24:92:1f:b9:c8:ea:84:86:a3:12:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A617987C2BF83B643E45B35FB810319E8B26AA5 Validity Not Before: Oct 13 13:41:26 2025 GMT Not After : Oct 12 13:46:26 2026 GMT Subject: CN=391C8AC015633B85CB72FBED1692A2520C550DE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:82:1e:2c:c5:45:71:fb:4f:e4:72:57:24:71: c6:08:27:66:4c:dd:cf:0e:01:3d:70:76:79:99:15: 60:00:e4:be:f3:14:3a:e4:37:31:83:5c:de:0a:ea: 3a:a9:fb:2e:12:e1:70:6d:3c:b9:4a:d7:26:a3:9f: 70:06:06:6a:46:e9:2e:83:44:25:b1:94:e6:97:c3: fa:d2:41:85:bf:b9:8d:13:a7:50:c0:c5:fc:80:63: 1f:87:20:94:78:27:f1:4e:bc:50:7e:bd:65:5f:3d: 62:c5:61:d8:8a:37:49:53:8b:bf:d8:57:43:89:0c: b0:29:c9:de:fc:b1:66:97:e9:49:0f:92:b9:ca:cc: c4:f4:3b:86:1d:c9:bd:ad:ee:ab:36:5a:4d:4a:4d: f9:80:27:be:f5:7a:b2:38:87:c7:23:55:fb:27:b5: 9e:09:30:33:d1:ce:04:54:6a:57:6c:7f:bc:29:fd: f3:52:72:da:0d:81:43:30:4a:56:4e:f5:e0:c8:2d: 59:34:4f:f6:29:79:7e:6b:06:4f:ed:28:a4:72:35: dc:1a:a7:2a:43:ef:81:0b:23:48:19:4a:cd:97:90: 25:98:4c:c3:5b:3b:eb:86:51:fa:a5:3c:0d:2c:80: a5:df:d8:c3:a3:1b:37:8a:05:65:9b:30:07:34:4d: c3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:1C:8A:C0:15:63:3B:85:CB:72:FB:ED:16:92:A2:52:0C:55:0D:E0 X509v3 Authority Key Identifier: keyid:2A:61:79:87:C2:BF:83:B6:43:E4:5B:35:FB:81:03:19:E8:B2:6A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4xpyJNVZSf4NatVBAsox9RYepbiDWxtcUU9XXde7ULJj/0/2A617987C2BF83B643E45B35FB810319E8B26AA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A617987C2BF83B643E45B35FB810319E8B26AA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4xpyJNVZSf4NatVBAsox9RYepbiDWxtcUU9XXde7ULJj/0/3230302e31382e3130362e302f32332d3234203d3e203238353731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.18.106.0/23 Signature Algorithm: sha256WithRSAEncryption 02:a8:15:24:81:8f:1f:10:ba:91:58:68:c4:43:c0:75:2b:1e: 79:55:ff:7d:5f:cd:43:d2:de:fc:f3:88:3c:57:02:6a:b8:20: a9:cf:1b:bc:c2:a6:90:94:e4:b5:63:a4:41:7f:40:3b:3f:5c: 0a:6e:7f:45:d7:f1:ac:5e:fc:d5:eb:8e:c7:00:09:e9:0e:c8: bc:18:68:f5:09:8e:d1:19:b2:89:64:fb:90:24:87:a1:10:51: 39:3d:71:e7:f7:fd:e4:40:1a:ef:45:d1:a4:56:2b:03:93:3d: 64:d1:2f:30:34:a8:28:4d:29:38:5d:a2:e5:d5:3a:7c:de:b9: 56:25:22:53:9a:8f:5a:f7:ed:4b:39:a8:13:78:e1:cf:cc:7b: e0:43:b3:49:26:2e:24:03:1b:a3:2e:da:99:a6:58:20:8e:95: 57:46:c9:02:0b:d5:09:32:22:1c:c8:6a:e3:25:d9:0e:68:1d: 5d:bf:54:97:66:7f:78:91:ab:b4:97:1a:92:eb:b7:1d:6d:03: f7:36:0c:bd:09:05:8c:ac:6a:be:c6:69:2f:0d:d6:b5:1f:86: d5:12:28:4d:26:c3:17:07:3a:54:6c:b9:6f:03:6a:9f:75:d2: 7f:e1:62:24:04:3d:10:68:08:65:f0:8b:46:ca:69:49:28:94: d0:07:ab:da -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUXQckEJ25DQfZJJIfucjqhIajEoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkE2MTc5ODdDMkJGODNCNjQzRTQ1QjM1RkI4MTAzMTlF OEIyNkFBNTAeFw0yNTEwMTMxMzQxMjZaFw0yNjEwMTIxMzQ2MjZaMDMxMTAvBgNV BAMTKDM5MUM4QUMwMTU2MzNCODVDQjcyRkJFRDE2OTJBMjUyMEM1NTBERTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCggh4sxUVx+0/kclckccYIJ2ZM 3c8OAT1wdnmZFWAA5L7zFDrkNzGDXN4K6jqp+y4S4XBtPLlK1yajn3AGBmpG6S6D RCWxlOaXw/rSQYW/uY0Tp1DAxfyAYx+HIJR4J/FOvFB+vWVfPWLFYdiKN0lTi7/Y V0OJDLApyd78sWaX6UkPkrnKzMT0O4Ydyb2t7qs2Wk1KTfmAJ771erI4h8cjVfsn tZ4JMDPRzgRUaldsf7wp/fNSctoNgUMwSlZO9eDILVk0T/YpeX5rBk/tKKRyNdwa pypD74ELI0gZSs2XkCWYTMNbO+uGUfqlPA0sgKXf2MOjGzeKBWWbMAc0TcPxAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUORyKwBVjO4XLcvvtFpKiUgxVDeAwHwYDVR0j BBgwFoAUKmF5h8K/g7ZD5Fs1+4EDGeiyaqUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNHhweUpOVlpTZjROYXRWQkFzb3g5UlllcGJpRFd4dGNVVTlYWGRlN1VM SmovMC8yQTYxNzk4N0MyQkY4M0I2NDNFNDVCMzVGQjgxMDMxOUU4QjI2QUE1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJBNjE3OTg3QzJCRjgzQjY0 M0U0NUIzNUZCODEwMzE5RThCMjZBQTUuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzR4cHlKTlZaU2Y0TmF0VkJBc294OVJZZXBiaURXeHRjVVU5WFhkZTdVTEpqLzAv MzIzMDMwMmUzMTM4MmUzMTMwMzYyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMjM4 MzUzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQByBJqMA0GCSqGSIb3DQEBCwUAA4IBAQACqBUkgY8f ELqRWGjEQ8B1Kx55Vf99X81D0t7884g8VwJquCCpzxu8wqaQlOS1Y6RBf0A7P1wK bn9F1/GsXvzV647HAAnpDsi8GGj1CY7RGbKJZPuQJIehEFE5PXHn9/3kQBrvRdGk VisDkz1k0S8wNKgoTSk4XaLl1Tp83rlWJSJTmo9a9+1LOagTeOHPzHvgQ7NJJi4k AxujLtqZplggjpVXRskCC9UJMiIcyGrjJdkOaB1dv1SXZn94kau0lxqS67cdbQP3 Ngy9CQWMrGq+xmkvDda1H4bVEihNJsMXBzpUbLlvA2qfddJ/4WIkBD0QaAhl8ItG ymlJKJTQB6va -----END CERTIFICATE-----Generated at Mon Oct 20 18:10:57 2025 by rpki-client