$ rpki-client -vvf rpki-repo.registro.br/repo/5ayJTmdpMcycQEuVqeEZ5ufF1ikeKFqUMScWPsxMzf3e/0/3137302e3233332e3232382e302f32322d3234203d3e20323635313938.roa File: 3137302e3233332e3232382e302f32322d3234203d3e20323635313938.roa (raw, json) Hash identifier: MuQbLzIZuSpWyERvK+xI40C/X/vVd+MF6mc7CZ2hyGQ= Subject key identifier: 21:0D:44:1B:4F:62:F4:82:89:1C:CF:51:BB:F3:41:3E:4D:03:00:18 Certificate issuer: /CN=08B96662A0C7D84FF28CAF0BBAC15478F1C89C04 Certificate serial: 62DBF7EE4E81FBB0C2B12031A65873ECC2593CBF Authority key identifier: 08:B9:66:62:A0:C7:D8:4F:F2:8C:AF:0B:BA:C1:54:78:F1:C8:9C:04 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/08B96662A0C7D84FF28CAF0BBAC15478F1C89C04.cer Subject info access: rsync://rpki-repo.registro.br/repo/5ayJTmdpMcycQEuVqeEZ5ufF1ikeKFqUMScWPsxMzf3e/0/3137302e3233332e3232382e302f32322d3234203d3e20323635313938.roa Signing time: Mon 15 Sep 2025 16:58:43 +0000 ROA not before: Mon 15 Sep 2025 16:53:43 +0000 ROA not after: Mon 14 Sep 2026 16:58:43 +0000 asID: 265198 IP address blocks: 170.233.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/5ayJTmdpMcycQEuVqeEZ5ufF1ikeKFqUMScWPsxMzf3e/0/08B96662A0C7D84FF28CAF0BBAC15478F1C89C04.crl rsync://rpki-repo.registro.br/repo/5ayJTmdpMcycQEuVqeEZ5ufF1ikeKFqUMScWPsxMzf3e/0/08B96662A0C7D84FF28CAF0BBAC15478F1C89C04.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/08B96662A0C7D84FF28CAF0BBAC15478F1C89C04.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 20 Oct 2025 20:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:db:f7:ee:4e:81:fb:b0:c2:b1:20:31:a6:58:73:ec:c2:59:3c:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08B96662A0C7D84FF28CAF0BBAC15478F1C89C04 Validity Not Before: Sep 15 16:53:43 2025 GMT Not After : Sep 14 16:58:43 2026 GMT Subject: CN=210D441B4F62F482891CCF51BBF3413E4D030018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6e:1a:e0:f6:31:0c:04:2e:d7:c2:99:d6:81: 2e:91:df:45:cb:dd:37:77:cf:6d:f7:9f:24:39:f2: 9a:93:8c:7f:d9:75:d4:95:95:46:fc:37:bf:70:6b: d3:2f:ed:c7:67:6b:3b:46:09:29:fd:2c:1e:c0:f1: ee:46:cf:b9:e9:ef:eb:2d:99:e0:3a:ae:3f:3d:dd: 37:c5:ae:29:3c:e9:cc:3b:56:80:55:7a:df:86:ca: f1:75:1f:c3:bb:9f:8c:f6:48:e3:68:2f:54:60:99: 35:a3:46:ca:b9:e2:43:ec:4a:11:30:b8:cb:ff:68: 8c:52:dc:90:48:70:c1:4f:86:f4:9f:11:6c:ff:1c: e6:64:7d:5f:2e:27:0e:08:aa:81:b1:5d:ce:4c:5f: 61:ed:58:f7:36:a7:4d:67:a3:85:3d:3e:58:75:50: 8b:88:d0:17:40:a3:88:35:d4:ec:53:fd:a9:05:17: cc:98:c0:fe:27:95:96:ba:d7:bc:97:ea:c7:50:fb: 0a:23:7d:d3:75:66:36:d9:e3:46:09:ee:c4:8f:4e: 3d:f3:d9:41:b3:a1:2a:16:2c:a1:0b:65:0e:f6:8d: b6:3a:8e:ed:55:60:1e:78:98:45:c0:5e:9d:f3:bd: b5:ec:c0:3b:01:28:f2:40:e5:e1:f7:1b:55:89:c6: 84:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0D:44:1B:4F:62:F4:82:89:1C:CF:51:BB:F3:41:3E:4D:03:00:18 X509v3 Authority Key Identifier: keyid:08:B9:66:62:A0:C7:D8:4F:F2:8C:AF:0B:BA:C1:54:78:F1:C8:9C:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/5ayJTmdpMcycQEuVqeEZ5ufF1ikeKFqUMScWPsxMzf3e/0/08B96662A0C7D84FF28CAF0BBAC15478F1C89C04.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/08B96662A0C7D84FF28CAF0BBAC15478F1C89C04.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/5ayJTmdpMcycQEuVqeEZ5ufF1ikeKFqUMScWPsxMzf3e/0/3137302e3233332e3232382e302f32322d3234203d3e20323635313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.228.0/22 Signature Algorithm: sha256WithRSAEncryption 14:be:d1:de:6b:59:55:08:c9:26:27:cd:8a:28:3b:26:4f:02: 25:68:fe:09:56:7a:9a:e1:ef:fd:c2:ff:56:86:57:f9:af:d3: 05:0e:6e:5c:ef:f1:e6:6c:86:a8:8d:f7:ea:9b:6f:da:ad:6f: 06:e2:d8:51:1f:ec:aa:e6:f7:be:19:9c:2a:64:17:2d:ec:24: 84:e9:f3:ff:b0:96:df:e6:44:fd:c0:d2:5a:a8:93:38:04:e3: a9:00:1d:00:ee:44:96:e0:96:e5:a3:9c:1c:f8:4b:ae:90:99: 3e:e9:46:8f:0d:10:67:de:10:ad:8c:11:46:a2:6d:45:72:6f: 95:c2:da:b5:60:23:10:96:a4:4c:1b:d9:ef:ee:79:7a:5c:8a: 3d:f6:ee:8b:aa:c7:f4:11:66:6b:65:e8:d9:6f:b9:f9:68:cc: ca:09:18:03:03:95:1e:3b:71:dd:bd:44:d3:68:ca:52:72:56: 21:36:1b:94:20:53:4a:98:3b:4c:19:22:6f:e7:52:04:0d:ae: 8b:79:4c:e2:05:3d:8c:55:8b:76:4c:6c:a8:4d:4a:57:5a:f6: fc:16:a5:b7:37:cd:58:ba:d8:d6:82:f9:0b:10:4c:65:8d:1f: 7b:90:fc:43:8b:06:a5:e2:68:d0:c3:1c:9a:08:a1:7d:83:ca: 7e:5a:31:0b -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUYtv37k6B+7DCsSAxplhz7MJZPL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhCOTY2NjJBMEM3RDg0RkYyOENBRjBCQkFDMTU0NzhG MUM4OUMwNDAeFw0yNTA5MTUxNjUzNDNaFw0yNjA5MTQxNjU4NDNaMDMxMTAvBgNV BAMTKDIxMEQ0NDFCNEY2MkY0ODI4OTFDQ0Y1MUJCRjM0MTNFNEQwMzAwMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpbhrg9jEMBC7XwpnWgS6R30XL 3Td3z233nyQ58pqTjH/ZddSVlUb8N79wa9Mv7cdnaztGCSn9LB7A8e5Gz7np7+st meA6rj893TfFrik86cw7VoBVet+GyvF1H8O7n4z2SONoL1RgmTWjRsq54kPsShEw uMv/aIxS3JBIcMFPhvSfEWz/HOZkfV8uJw4IqoGxXc5MX2HtWPc2p01no4U9Plh1 UIuI0BdAo4g11OxT/akFF8yYwP4nlZa617yX6sdQ+wojfdN1ZjbZ40YJ7sSPTj3z 2UGzoSoWLKELZQ72jbY6ju1VYB54mEXAXp3zvbXswDsBKPJA5eH3G1WJxoTdAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUIQ1EG09i9IKJHM9Ru/NBPk0DABgwHwYDVR0j BBgwFoAUCLlmYqDH2E/yjK8LusFUePHInAQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNWF5SlRtZHBNY3ljUUV1VnFlRVo1dWZGMWlrZUtGcVVNU2NXUHN4TXpm M2UvMC8wOEI5NjY2MkEwQzdEODRGRjI4Q0FGMEJCQUMxNTQ3OEYxQzg5QzA0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzA4Qjk2NjYyQTBDN0Q4NEZG MjhDQUYwQkJBQzE1NDc4RjFDODlDMDQuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzVheUpUbWRwTWN5Y1FFdVZxZUVaNXVmRjFpa2VLRnFVTVNjV1BzeE16ZjNlLzAv MzEzNzMwMmUzMjMzMzMyZTMyMzIzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzYzNTMxMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqrp5DANBgkqhkiG9w0BAQsFAAOCAQEAFL7R 3mtZVQjJJifNiig7Jk8CJWj+CVZ6muHv/cL/VoZX+a/TBQ5uXO/x5myGqI336ptv 2q1vBuLYUR/squb3vhmcKmQXLewkhOnz/7CW3+ZE/cDSWqiTOATjqQAdAO5EluCW 5aOcHPhLrpCZPulGjw0QZ94QrYwRRqJtRXJvlcLatWAjEJakTBvZ7+55elyKPfbu i6rH9BFma2Xo2W+5+WjMygkYAwOVHjtx3b1E02jKUnJWITYblCBTSpg7TBkib+dS BA2ui3lM4gU9jFWLdkxsqE1KV1r2/BaltzfNWLrY1oL5CxBMZY0fe5D8Q4sGpeJo 0MMcmgihfYPKfloxCw== -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:09 2025 by rpki-client