$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134302e302f32342d3234203d3e20323633353834.roa File: 3137372e3132392e3134302e302f32342d3234203d3e20323633353834.roa (raw, json) Hash identifier: 3TXU/a091INWrv3kqaGCx70TJRgpYwig+h7bTy0j2r0= Subject key identifier: 95:01:27:A5:F7:50:FC:8C:87:78:02:AA:93:A1:39:44:2D:D4:DB:52 Certificate issuer: /CN=AE237DC7B299A0FDCDF8225D9403B0A582305290 Certificate serial: 7087584B0A3B4C809AE2789A483CAA49787A1B99 Authority key identifier: AE:23:7D:C7:B2:99:A0:FD:CD:F8:22:5D:94:03:B0:A5:82:30:52:90 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AE237DC7B299A0FDCDF8225D9403B0A582305290.cer Subject info access: rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134302e302f32342d3234203d3e20323633353834.roa Signing time: Mon 11 Aug 2025 19:04:51 +0000 ROA not before: Mon 11 Aug 2025 18:59:51 +0000 ROA not after: Mon 10 Aug 2026 19:04:51 +0000 asID: 263584 IP address blocks: 177.129.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/AE237DC7B299A0FDCDF8225D9403B0A582305290.crl rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/AE237DC7B299A0FDCDF8225D9403B0A582305290.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AE237DC7B299A0FDCDF8225D9403B0A582305290.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Aug 2025 09:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:87:58:4b:0a:3b:4c:80:9a:e2:78:9a:48:3c:aa:49:78:7a:1b:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE237DC7B299A0FDCDF8225D9403B0A582305290 Validity Not Before: Aug 11 18:59:51 2025 GMT Not After : Aug 10 19:04:51 2026 GMT Subject: CN=950127A5F750FC8C877802AA93A139442DD4DB52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e4:27:88:20:65:80:5f:fb:72:d7:75:ba:c4: 2b:b0:3d:c0:1e:cc:f8:e8:d1:64:4c:fb:25:da:d1: 46:b6:91:fa:3c:18:bc:f8:e8:25:f0:56:02:7c:b7: 0d:d3:83:87:c5:bc:dc:31:46:32:cd:ba:ac:3c:61: b1:39:f2:2b:a6:25:72:e5:d6:f5:64:24:ee:89:a8: 1d:37:24:cb:6e:e1:dc:fc:9b:d3:d3:cc:81:b0:e2: 8d:4a:d0:dc:4d:38:5d:32:c6:de:8c:38:5a:d8:7f: 65:48:c3:c5:4c:70:a9:e8:9c:91:88:1a:63:74:2a: 28:49:12:12:3f:2d:07:eb:1a:c1:84:5d:e5:66:6c: b5:ce:ae:d1:90:26:66:f2:13:07:5a:36:e4:8b:51: f9:23:3d:b9:f3:37:68:82:af:54:9f:1b:53:68:a4: f3:8f:b7:e8:c1:2c:6d:78:c7:86:3f:3f:52:69:fd: 56:06:0e:97:aa:f7:10:a1:38:04:55:7f:25:58:ca: 82:6a:42:80:02:37:75:a4:d7:3a:a5:cb:e2:24:91: c7:63:0a:36:59:fd:f6:21:69:65:8f:38:1d:6d:2d: 81:0a:ff:c7:1c:d8:de:a5:2e:00:d5:e8:41:7c:b8: 28:c7:53:41:f4:a3:80:5c:d2:76:ba:b2:38:d8:d5: f1:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:01:27:A5:F7:50:FC:8C:87:78:02:AA:93:A1:39:44:2D:D4:DB:52 X509v3 Authority Key Identifier: keyid:AE:23:7D:C7:B2:99:A0:FD:CD:F8:22:5D:94:03:B0:A5:82:30:52:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/AE237DC7B299A0FDCDF8225D9403B0A582305290.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AE237DC7B299A0FDCDF8225D9403B0A582305290.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134302e302f32342d3234203d3e20323633353834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.129.140.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:85:7b:40:9e:a0:ab:34:de:e3:7a:a2:1e:05:bf:09:3e:6a: 3f:13:9a:07:b2:6c:c6:35:ac:a1:15:63:a2:cf:02:3a:44:a6: 66:4a:88:54:70:4a:5e:68:33:75:6e:1c:b9:dc:79:d7:93:0b: 92:10:9e:48:40:f0:1d:38:41:06:de:0c:1e:d2:1c:15:fa:9f: 0e:5d:dc:b1:17:fc:c1:09:2b:71:38:77:e1:3d:6a:0c:55:29: 88:ee:cc:61:11:fe:92:2f:1d:92:4a:e3:d5:1d:0d:bf:d2:43: 2c:38:b9:bc:ed:38:62:12:68:8b:df:ed:56:74:96:ef:48:d6: 40:30:61:fd:30:8e:e3:fc:e1:88:64:8a:17:d4:f5:75:72:da: a4:03:83:ef:bd:5e:a5:70:38:05:4f:18:9b:64:2a:b4:e5:6b: 07:d3:ab:b9:9a:93:fd:81:73:da:54:be:42:d2:89:23:97:01: ca:08:73:a7:80:a0:69:bc:45:56:c5:88:4b:3b:9f:27:f1:88: 3d:5c:b5:7f:d8:d7:e8:64:60:b6:b8:2c:1b:ac:bf:26:8c:04: 5a:bb:a3:71:1e:be:94:f4:b5:12:14:1d:00:2b:0b:b1:ae:85: 69:24:8c:f2:65:63:6e:a4:95:2a:99:d5:0c:5e:6a:e1:f3:aa: a1:a9:b2:54 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUcIdYSwo7TICa4niaSDyqSXh6G5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUUyMzdEQzdCMjk5QTBGRENERjgyMjVEOTQwM0IwQTU4 MjMwNTI5MDAeFw0yNTA4MTExODU5NTFaFw0yNjA4MTAxOTA0NTFaMDMxMTAvBgNV BAMTKDk1MDEyN0E1Rjc1MEZDOEM4Nzc4MDJBQTkzQTEzOTQ0MkRENERCNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm5CeIIGWAX/ty13W6xCuwPcAe zPjo0WRM+yXa0Ua2kfo8GLz46CXwVgJ8tw3Tg4fFvNwxRjLNuqw8YbE58iumJXLl 1vVkJO6JqB03JMtu4dz8m9PTzIGw4o1K0NxNOF0yxt6MOFrYf2VIw8VMcKnonJGI GmN0KihJEhI/LQfrGsGEXeVmbLXOrtGQJmbyEwdaNuSLUfkjPbnzN2iCr1SfG1No pPOPt+jBLG14x4Y/P1Jp/VYGDpeq9xChOARVfyVYyoJqQoACN3Wk1zqly+Ikkcdj CjZZ/fYhaWWPOB1tLYEK/8cc2N6lLgDV6EF8uCjHU0H0o4Bc0na6sjjY1fFZAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUlQEnpfdQ/IyHeAKqk6E5RC3U21IwHwYDVR0j BBgwFoAUriN9x7KZoP3N+CJdlAOwpYIwUpAwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vR0tpMnpZUHZWQ3ZVcGFLOFRSSFZhODhZa2RLUWk3d0J6S2d3am15TDRS Q3EvMC9BRTIzN0RDN0IyOTlBMEZEQ0RGODIyNUQ5NDAzQjBBNTgyMzA1MjkwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0FFMjM3REM3QjI5OUEwRkRD REY4MjI1RDk0MDNCMEE1ODIzMDUyOTAuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0dLaTJ6WVB2VkN2VXBhSzhUUkhWYTg4WWtkS1FpN3dCektnd2pteUw0UkNxLzAv MzEzNzM3MmUzMTMyMzkyZTMxMzQzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzMzM1MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEALGBjDANBgkqhkiG9w0BAQsFAAOCAQEAHYV7 QJ6gqzTe43qiHgW/CT5qPxOaB7JsxjWsoRVjos8COkSmZkqIVHBKXmgzdW4cudx5 15MLkhCeSEDwHThBBt4MHtIcFfqfDl3csRf8wQkrcTh34T1qDFUpiO7MYRH+ki8d kkrj1R0Nv9JDLDi5vO04YhJoi9/tVnSW70jWQDBh/TCO4/zhiGSKF9T1dXLapAOD 771epXA4BU8Ym2QqtOVrB9OruZqT/YFz2lS+QtKJI5cByghzp4CgabxFVsWISzuf J/GIPVy1f9jX6GRgtrgsG6y/JowEWrujcR6+lPS1EhQdACsLsa6FaSSM8mVjbqSV KpnVDF5q4fOqoamyVA== -----END CERTIFICATE-----Generated at Sun Aug 24 00:36:20 2025 by rpki-client