$ rpki-client -vvf rpki-repo.registro.br/repo/DwzrFPz3qsBakCCDwgCq3HrmiFGEWbDcmCN1dHUK17ko/0/3136382e3139362e3139362e302f32342d3234203d3e20323730393830.roa File: 3136382e3139362e3139362e302f32342d3234203d3e20323730393830.roa (raw, json) Hash identifier: yXkdxyBrN8yFuI6ITnbdjcPZ4UsnqxVDnjDrcB8EHK4= Subject key identifier: 9C:44:11:A2:99:B9:47:A3:37:B7:92:7D:52:B2:CF:A3:E9:B5:AE:EB Certificate issuer: /CN=0999EEBD16ACF640EA6ECD54D32D89799668A6E2 Certificate serial: 5EE3146649146D7438636902B14DDA02586C0AFF Authority key identifier: 09:99:EE:BD:16:AC:F6:40:EA:6E:CD:54:D3:2D:89:79:96:68:A6:E2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0999EEBD16ACF640EA6ECD54D32D89799668A6E2.cer Subject info access: rsync://rpki-repo.registro.br/repo/DwzrFPz3qsBakCCDwgCq3HrmiFGEWbDcmCN1dHUK17ko/0/3136382e3139362e3139362e302f32342d3234203d3e20323730393830.roa Signing time: Mon 29 Sep 2025 12:55:18 +0000 ROA not before: Mon 29 Sep 2025 12:50:18 +0000 ROA not after: Mon 28 Sep 2026 12:55:18 +0000 asID: 270980 IP address blocks: 168.196.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DwzrFPz3qsBakCCDwgCq3HrmiFGEWbDcmCN1dHUK17ko/0/0999EEBD16ACF640EA6ECD54D32D89799668A6E2.crl rsync://rpki-repo.registro.br/repo/DwzrFPz3qsBakCCDwgCq3HrmiFGEWbDcmCN1dHUK17ko/0/0999EEBD16ACF640EA6ECD54D32D89799668A6E2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0999EEBD16ACF640EA6ECD54D32D89799668A6E2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 21:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:e3:14:66:49:14:6d:74:38:63:69:02:b1:4d:da:02:58:6c:0a:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0999EEBD16ACF640EA6ECD54D32D89799668A6E2 Validity Not Before: Sep 29 12:50:18 2025 GMT Not After : Sep 28 12:55:18 2026 GMT Subject: CN=9C4411A299B947A337B7927D52B2CFA3E9B5AEEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:60:6c:e5:87:f3:39:c8:09:17:88:fd:8f:76: 5a:58:d8:e0:a3:24:67:f6:fd:01:98:49:b9:53:9a: 3c:8f:84:12:e9:ff:78:ea:47:24:23:a0:64:76:c9: d5:bb:a8:09:80:e7:5b:ac:8e:e1:0f:56:8f:79:cb: ed:cb:b3:0f:23:1f:af:c9:75:ae:c8:1f:e6:f7:62: cc:b7:23:39:b9:d9:8d:0a:ce:d8:b0:4c:08:5b:97: 52:81:43:10:0c:80:32:9a:36:04:ae:e9:cd:66:c0: 11:f8:1f:f1:bb:8f:66:dd:50:4a:c7:25:ff:42:82: 4e:51:c7:70:a1:6f:c1:ae:f8:d4:15:ce:f6:31:e0: de:2a:df:e4:cc:c7:ef:bc:ae:7d:1d:ff:ad:5a:00: ff:d5:b1:ea:a5:c0:21:b1:33:5d:c8:57:3d:0c:29: d7:8b:b2:7e:27:5b:44:04:33:e3:57:89:0d:c0:19: 97:55:88:43:04:4b:4f:d7:18:8e:e5:33:b0:64:6c: f6:2a:6a:4c:6e:1d:b3:80:0c:f7:94:91:4c:94:28: 54:51:a9:e1:e2:a3:24:46:c3:a4:2d:1d:73:81:c6: 40:e1:2e:67:c8:70:7c:b3:64:40:6e:fb:63:5e:c3: 61:8b:49:b3:94:79:11:96:35:e1:f1:e2:b7:bb:2d: bb:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:44:11:A2:99:B9:47:A3:37:B7:92:7D:52:B2:CF:A3:E9:B5:AE:EB X509v3 Authority Key Identifier: keyid:09:99:EE:BD:16:AC:F6:40:EA:6E:CD:54:D3:2D:89:79:96:68:A6:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DwzrFPz3qsBakCCDwgCq3HrmiFGEWbDcmCN1dHUK17ko/0/0999EEBD16ACF640EA6ECD54D32D89799668A6E2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0999EEBD16ACF640EA6ECD54D32D89799668A6E2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DwzrFPz3qsBakCCDwgCq3HrmiFGEWbDcmCN1dHUK17ko/0/3136382e3139362e3139362e302f32342d3234203d3e20323730393830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.196.196.0/24 Signature Algorithm: sha256WithRSAEncryption 82:ac:6a:6c:27:b7:29:9f:1c:1d:a8:5b:2b:a4:93:dd:2f:50: 60:7a:0b:d7:e7:89:05:89:14:59:9b:e2:84:44:17:ea:e0:93: b4:4d:a8:6d:e1:6f:a9:bd:05:27:00:97:4a:73:20:83:52:2a: 80:09:d6:cc:0d:ef:29:13:6b:44:03:1e:8e:8c:3c:48:e8:6b: 25:86:fa:84:ed:b8:e7:39:ef:6a:b5:4a:92:42:c2:7c:25:68: cf:e4:70:7e:aa:b8:40:dd:22:1a:af:31:df:39:04:6f:14:31: 5f:ea:db:62:ed:5f:d3:cb:e9:d7:dc:a7:d8:f1:98:dc:db:23: a8:71:ce:98:6e:7d:0b:a7:ca:94:f9:23:0f:f8:da:c3:58:10: 5c:31:3d:f8:f8:1c:4a:be:05:c8:7a:0b:87:71:dd:30:bb:00: d2:c2:d8:39:1b:a6:ec:40:44:d9:7f:f7:51:b6:6c:bf:ac:76: d0:d9:dd:77:1b:80:aa:a0:97:aa:76:db:95:cc:30:29:a5:9b: 4d:a7:39:cb:53:a8:9b:b8:b3:ce:79:c4:9a:9a:4e:8c:d4:53: 3c:4f:98:c6:b0:87:1f:9e:cb:f5:44:b9:ad:14:f3:9a:1c:88: c6:f5:4f:99:b9:81:55:17:1e:88:a4:01:cf:71:af:05:9f:57: 09:32:c6:a5 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUXuMUZkkUbXQ4Y2kCsU3aAlhsCv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk5OUVFQkQxNkFDRjY0MEVBNkVDRDU0RDMyRDg5Nzk5 NjY4QTZFMjAeFw0yNTA5MjkxMjUwMThaFw0yNjA5MjgxMjU1MThaMDMxMTAvBgNV BAMTKDlDNDQxMUEyOTlCOTQ3QTMzN0I3OTI3RDUyQjJDRkEzRTlCNUFFRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3YGzlh/M5yAkXiP2PdlpY2OCj JGf2/QGYSblTmjyPhBLp/3jqRyQjoGR2ydW7qAmA51usjuEPVo95y+3Lsw8jH6/J da7IH+b3Ysy3Izm52Y0KztiwTAhbl1KBQxAMgDKaNgSu6c1mwBH4H/G7j2bdUErH Jf9Cgk5Rx3Chb8Gu+NQVzvYx4N4q3+TMx++8rn0d/61aAP/VseqlwCGxM13IVz0M KdeLsn4nW0QEM+NXiQ3AGZdViEMES0/XGI7lM7BkbPYqakxuHbOADPeUkUyUKFRR qeHioyRGw6QtHXOBxkDhLmfIcHyzZEBu+2New2GLSbOUeRGWNeHx4re7LbsFAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUnEQRopm5R6M3t5J9UrLPo+m1ruswHwYDVR0j BBgwFoAUCZnuvRas9kDqbs1U0y2JeZZopuIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRHd6ckZQejNxc0Jha0NDRHdnQ3EzSHJtaUZHRVdiRGNtQ04xZEhVSzE3 a28vMC8wOTk5RUVCRDE2QUNGNjQwRUE2RUNENTREMzJEODk3OTk2NjhBNkUyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzA5OTlFRUJEMTZBQ0Y2NDBF QTZFQ0Q1NEQzMkQ4OTc5OTY2OEE2RTIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0R3enJGUHozcXNCYWtDQ0R3Z0NxM0hybWlGR0VXYkRjbUNOMWRIVUsxN2tvLzAv MzEzNjM4MmUzMTM5MzYyZTMxMzkzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzczMDM5MzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKjExDANBgkqhkiG9w0BAQsFAAOCAQEAgqxq bCe3KZ8cHahbK6ST3S9QYHoL1+eJBYkUWZvihEQX6uCTtE2obeFvqb0FJwCXSnMg g1IqgAnWzA3vKRNrRAMejow8SOhrJYb6hO245znvarVKkkLCfCVoz+Rwfqq4QN0i Gq8x3zkEbxQxX+rbYu1f08vp19yn2PGY3NsjqHHOmG59C6fKlPkjD/jaw1gQXDE9 +PgcSr4FyHoLh3HdMLsA0sLYORum7EBE2X/3UbZsv6x20NnddxuAqqCXqnbblcww KaWbTac5y1Oom7izznnEmppOjNRTPE+YxrCHH57L9US5rRTzmhyIxvVPmbmBVRce iKQBz3GvBZ9XCTLGpQ== -----END CERTIFICATE-----Generated at Tue Oct 21 12:07:06 2025 by rpki-client