$ rpki-client -vvf rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/3137302e3135302e3230342e302f32322d3232203d3e20323633363635.roa File: 3137302e3135302e3230342e302f32322d3232203d3e20323633363635.roa (raw, json) Hash identifier: dKF5S3RFpi7oopso/2Zq7m8muGyWcN5o2HJWXty1BmM= Subject key identifier: 71:89:F4:28:65:2F:E1:8B:CF:63:DD:5E:D7:91:16:06:AF:0D:15:7F Certificate issuer: /CN=DDF75D11A85F5023747B20E973994EC53D23A68E Certificate serial: 4590595BD477B83BC01FC9DCF29A365477A1679C Authority key identifier: DD:F7:5D:11:A8:5F:50:23:74:7B:20:E9:73:99:4E:C5:3D:23:A6:8E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDF75D11A85F5023747B20E973994EC53D23A68E.cer Subject info access: rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/3137302e3135302e3230342e302f32322d3232203d3e20323633363635.roa Signing time: Sat 18 Oct 2025 19:53:57 +0000 ROA not before: Sat 18 Oct 2025 19:48:57 +0000 ROA not after: Sat 17 Oct 2026 19:53:57 +0000 asID: 263665 IP address blocks: 170.150.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/DDF75D11A85F5023747B20E973994EC53D23A68E.crl rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/DDF75D11A85F5023747B20E973994EC53D23A68E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDF75D11A85F5023747B20E973994EC53D23A68E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 12:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:90:59:5b:d4:77:b8:3b:c0:1f:c9:dc:f2:9a:36:54:77:a1:67:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDF75D11A85F5023747B20E973994EC53D23A68E Validity Not Before: Oct 18 19:48:57 2025 GMT Not After : Oct 17 19:53:57 2026 GMT Subject: CN=7189F428652FE18BCF63DD5ED7911606AF0D157F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c3:e1:5f:87:d4:92:b9:01:f2:b4:31:b9:a7: ca:70:07:ad:0d:2a:9e:0f:4e:b3:57:cf:db:10:f3: 22:29:ef:ae:14:ba:3a:ff:18:cc:84:8c:31:36:24: dd:a5:64:79:71:aa:e7:20:23:36:88:22:cc:ee:9a: bd:1d:4e:10:fe:2d:5a:d0:71:d6:c7:4a:2f:8e:f7: 33:37:06:73:8c:aa:06:18:07:61:bf:1b:27:9f:d1: 43:c4:4d:c7:7e:92:83:10:c5:89:3d:41:92:ff:67: f8:6c:f5:5a:e8:2e:59:91:e6:66:3c:b7:9f:b9:97: 68:14:72:dc:47:dd:e9:ff:0b:62:46:96:58:9d:aa: 30:ff:21:29:a8:03:49:e8:fa:5c:b6:28:73:28:78: 81:52:35:cd:88:81:a2:b3:26:41:4e:8d:73:61:7b: 04:c7:ea:cb:65:1c:92:5e:26:ac:89:72:b0:79:1a: 46:9c:21:8d:41:02:b7:24:98:2d:59:32:6a:c7:2f: 12:97:6d:36:24:86:6d:61:97:97:70:b9:06:47:3b: a5:c4:68:7a:8b:32:97:f6:c6:83:7c:86:92:db:a0: cd:0a:ea:1e:3c:c0:c8:43:38:b7:72:b7:8c:03:cf: 8f:e6:2c:70:db:86:2f:73:d0:6a:74:39:8b:18:0b: fa:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:89:F4:28:65:2F:E1:8B:CF:63:DD:5E:D7:91:16:06:AF:0D:15:7F X509v3 Authority Key Identifier: keyid:DD:F7:5D:11:A8:5F:50:23:74:7B:20:E9:73:99:4E:C5:3D:23:A6:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/DDF75D11A85F5023747B20E973994EC53D23A68E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDF75D11A85F5023747B20E973994EC53D23A68E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/3137302e3135302e3230342e302f32322d3232203d3e20323633363635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.150.204.0/22 Signature Algorithm: sha256WithRSAEncryption 26:f1:64:3d:17:18:63:21:ee:1f:d4:db:c2:38:59:74:18:49: 12:48:81:9e:bb:fd:21:c2:20:b8:6c:7a:f5:74:a2:d3:b5:4d: 3c:d3:df:f5:30:e3:cd:c0:72:63:f8:43:bc:9a:b0:2a:8f:f5: 3a:0f:61:07:14:ce:c7:1b:1a:7c:fc:b6:4c:c1:c7:d7:4a:3b: 10:97:a6:9a:d8:3d:27:99:8e:9e:5d:dc:63:9f:94:d1:2c:c0: 32:ac:c9:ed:f6:44:72:de:c7:80:57:48:22:38:ff:e8:74:bc: 49:13:31:96:e6:44:ce:04:2c:7c:91:39:52:3a:5c:2d:dd:cf: 3d:ca:aa:67:72:11:8e:88:a6:e1:93:b8:d3:b6:eb:7b:3f:38: 05:7b:3d:01:5b:56:a9:34:51:6d:a8:91:a9:e9:a8:07:43:fc: cb:9f:fc:05:ca:6d:be:f4:be:1c:d2:4e:d0:04:a9:2d:11:43: bf:e0:7a:e8:d3:21:2d:0f:51:8f:c6:05:fd:39:4a:16:37:a7: fe:aa:3e:cb:13:b1:a2:5d:e7:e1:f0:9e:92:71:f8:a8:44:f9: 6b:1a:40:e6:99:ae:fc:29:9c:39:2a:b4:45:df:ce:d7:ac:9a: 13:64:aa:6c:96:b2:53:a8:80:e8:c0:5d:7f:77:37:04:33:c9: b2:e0:a7:0e -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIURZBZW9R3uDvAH8nc8po2VHehZ5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERGNzVEMTFBODVGNTAyMzc0N0IyMEU5NzM5OTRFQzUz RDIzQTY4RTAeFw0yNTEwMTgxOTQ4NTdaFw0yNjEwMTcxOTUzNTdaMDMxMTAvBgNV BAMTKDcxODlGNDI4NjUyRkUxOEJDRjYzREQ1RUQ3OTExNjA2QUYwRDE1N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6w+Ffh9SSuQHytDG5p8pwB60N Kp4PTrNXz9sQ8yIp764Uujr/GMyEjDE2JN2lZHlxqucgIzaIIszumr0dThD+LVrQ cdbHSi+O9zM3BnOMqgYYB2G/Gyef0UPETcd+koMQxYk9QZL/Z/hs9VroLlmR5mY8 t5+5l2gUctxH3en/C2JGllidqjD/ISmoA0no+ly2KHMoeIFSNc2IgaKzJkFOjXNh ewTH6stlHJJeJqyJcrB5GkacIY1BArckmC1ZMmrHLxKXbTYkhm1hl5dwuQZHO6XE aHqLMpf2xoN8hpLboM0K6h48wMhDOLdyt4wDz4/mLHDbhi9z0Gp0OYsYC/ovAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUcYn0KGUv4YvPY91e15EWBq8NFX8wHwYDVR0j BBgwFoAU3fddEahfUCN0eyDpc5lOxT0jpo4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOU03WlFMVXp5Tkt2M3lTRTNGQ05KQ0t1bXdLTkN0Y3pTVFlwRjdIOE1n cmYvMC9EREY3NUQxMUE4NUY1MDIzNzQ3QjIwRTk3Mzk5NEVDNTNEMjNBNjhFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RERjc1RDExQTg1RjUwMjM3 NDdCMjBFOTczOTk0RUM1M0QyM0E2OEUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlNN1pRTFV6eU5LdjN5U0UzRkNOSkNLdW13S05DdGN6U1RZcEY3SDhNZ3JmLzAv MzEzNzMwMmUzMTM1MzAyZTMyMzAzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy MzYzMzM2MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqqWzDANBgkqhkiG9w0BAQsFAAOCAQEAJvFk PRcYYyHuH9TbwjhZdBhJEkiBnrv9IcIguGx69XSi07VNPNPf9TDjzcByY/hDvJqw Ko/1Og9hBxTOxxsafPy2TMHH10o7EJemmtg9J5mOnl3cY5+U0SzAMqzJ7fZEct7H gFdIIjj/6HS8SRMxluZEzgQsfJE5UjpcLd3PPcqqZ3IRjoim4ZO407brez84BXs9 AVtWqTRRbaiRqemoB0P8y5/8BcptvvS+HNJO0ASpLRFDv+B66NMhLQ9Rj8YF/TlK Fjen/qo+yxOxol3n4fCeknH4qET5axpA5pmu/CmcOSq0Rd/O16yaE2SqbJayU6iA 6MBdf3c3BDPJsuCnDg== -----END CERTIFICATE-----Generated at Tue Oct 21 02:04:42 2025 by rpki-client