$ rpki-client -vvf rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/3132382e3230312e3232302e302f32322d3232203d3e20323635383932.roa File: 3132382e3230312e3232302e302f32322d3232203d3e20323635383932.roa (raw, json) Hash identifier: 8qiFbgchLw8pTTTW3I4yw5PV0b+F00qivfgsVT/H1MA= Subject key identifier: 0D:6A:24:CA:5A:C2:8B:F1:56:AA:24:92:4C:23:BD:55:97:39:C4:DF Certificate issuer: /CN=A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8 Certificate serial: 40AA03D629553285DED8A3C3FE5F2D1733284AFB Authority key identifier: A8:6F:29:09:A8:CF:8A:80:C2:23:9E:5F:95:3F:F1:B4:AB:9D:73:C8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.cer Subject info access: rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/3132382e3230312e3232302e302f32322d3232203d3e20323635383932.roa Signing time: Thu 14 Aug 2025 17:27:37 +0000 ROA not before: Thu 14 Aug 2025 17:22:37 +0000 ROA not after: Thu 13 Aug 2026 17:27:37 +0000 asID: 265892 IP address blocks: 128.201.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.crl rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Aug 2025 19:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:aa:03:d6:29:55:32:85:de:d8:a3:c3:fe:5f:2d:17:33:28:4a:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8 Validity Not Before: Aug 14 17:22:37 2025 GMT Not After : Aug 13 17:27:37 2026 GMT Subject: CN=0D6A24CA5AC28BF156AA24924C23BD559739C4DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:da:f1:da:d6:23:ce:17:8f:19:18:df:87:ce: 79:c9:ee:13:6d:51:8e:c5:61:6e:8b:45:66:34:31: da:d8:b6:70:d5:6b:f3:b9:6c:0e:39:f8:e2:ea:8f: e3:f7:61:49:82:0d:50:4b:dd:a7:c1:b8:8e:4a:be: ef:57:f4:e4:37:c5:e9:f4:e5:81:0e:02:a2:33:e1: 43:81:14:27:09:f0:ed:3e:45:d1:d8:12:68:33:1e: 74:9c:de:7d:b2:be:04:f5:58:d5:bf:a8:13:00:a2: 58:ce:e7:d4:34:00:53:ab:13:27:41:32:bc:d7:a9: 62:86:27:b1:79:86:ac:d1:3c:b5:1c:e8:f9:a0:aa: 88:7e:87:07:e1:6d:66:d8:6a:bd:3d:d5:6b:51:18: 72:20:09:0c:ea:30:c9:90:54:f9:b2:a1:58:d1:2e: 38:3a:bf:18:1b:dd:41:46:c3:ef:9e:73:a8:f9:5f: bf:75:86:38:7e:40:40:a9:67:e1:c8:36:27:5d:6b: 67:bf:cd:9c:19:97:15:c0:fb:d6:19:07:01:59:ea: 28:71:d5:2f:2d:03:15:e7:9d:a6:ab:bb:fa:45:ae: dc:22:5f:24:46:00:4c:01:1d:66:e0:af:f4:04:68: 1d:54:ae:22:26:71:02:f3:e5:00:19:9f:d1:4e:a6: 1c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:6A:24:CA:5A:C2:8B:F1:56:AA:24:92:4C:23:BD:55:97:39:C4:DF X509v3 Authority Key Identifier: keyid:A8:6F:29:09:A8:CF:8A:80:C2:23:9E:5F:95:3F:F1:B4:AB:9D:73:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/3132382e3230312e3232302e302f32322d3232203d3e20323635383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.201.220.0/22 Signature Algorithm: sha256WithRSAEncryption 80:7e:c6:d9:90:6a:05:c4:de:d8:58:a1:38:74:ef:19:29:cd: 61:fa:bd:f0:0d:30:c3:ed:12:b7:3e:ac:0f:53:a8:23:ef:df: 9a:2b:4d:72:af:85:21:c0:06:2a:1a:53:6a:0b:6f:bb:8b:46: 48:02:a2:c6:4e:ad:50:ec:54:38:96:ab:98:a7:a3:e9:c0:11: bb:19:67:bd:cc:e4:b6:eb:1f:88:53:36:c4:d9:77:84:76:eb: 8c:b6:e6:41:84:14:48:52:b5:f3:be:06:89:a7:8a:eb:fa:af: 55:8f:09:1d:c1:ac:58:26:49:0e:c4:09:0a:6d:5a:ed:33:43: ee:6e:cb:50:7d:68:ca:5b:bd:d5:eb:ea:f8:68:b2:84:d8:04: 24:33:24:fc:48:31:92:55:e3:8d:07:08:af:f9:0e:cc:cb:f2: 5b:c4:c5:be:45:9c:c4:2c:fa:6d:d3:5d:36:12:c8:30:5f:88: 58:bc:f7:d8:e8:fc:1a:52:15:26:2e:fd:46:8e:99:52:13:b3: 78:40:29:0b:b4:d1:4b:2e:e8:b7:30:44:c2:0b:fa:e3:cd:52: 8f:06:98:1a:70:b8:33:85:62:e9:6e:0c:f2:0f:6e:af:2c:9a: ab:f1:cc:0f:4c:03:a7:7c:29:75:e4:cb:00:da:b0:40:bb:2d: 04:4c:e2:56 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUQKoD1ilVMoXe2KPD/l8tFzMoSvswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTg2RjI5MDlBOENGOEE4MEMyMjM5RTVGOTUzRkYxQjRB QjlENzNDODAeFw0yNTA4MTQxNzIyMzdaFw0yNjA4MTMxNzI3MzdaMDMxMTAvBgNV BAMTKDBENkEyNENBNUFDMjhCRjE1NkFBMjQ5MjRDMjNCRDU1OTczOUM0REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz2vHa1iPOF48ZGN+HznnJ7hNt UY7FYW6LRWY0MdrYtnDVa/O5bA45+OLqj+P3YUmCDVBL3afBuI5Kvu9X9OQ3xen0 5YEOAqIz4UOBFCcJ8O0+RdHYEmgzHnSc3n2yvgT1WNW/qBMAoljO59Q0AFOrEydB MrzXqWKGJ7F5hqzRPLUc6Pmgqoh+hwfhbWbYar091WtRGHIgCQzqMMmQVPmyoVjR Ljg6vxgb3UFGw++ec6j5X791hjh+QECpZ+HINidda2e/zZwZlxXA+9YZBwFZ6ihx 1S8tAxXnnaaru/pFrtwiXyRGAEwBHWbgr/QEaB1UriImcQLz5QAZn9FOphy3AgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUDWokylrCi/FWqiSSTCO9VZc5xN8wHwYDVR0j BBgwFoAUqG8pCajPioDCI55flT/xtKudc8gwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSDd0dnBGSEYzQmtaUGM1SlpTaVVMS3RqR212UGU0ZkFqeGlVMkRKWnFQ RzEvMC9BODZGMjkwOUE4Q0Y4QTgwQzIyMzlFNUY5NTNGRjFCNEFCOUQ3M0M4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E4NkYyOTA5QThDRjhBODBD MjIzOUU1Rjk1M0ZGMUI0QUI5RDczQzguY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0g3dHZwRkhGM0JrWlBjNUpaU2lVTEt0akdtdlBlNGZBanhpVTJESlpxUEcxLzAv MzEzMjM4MmUzMjMwMzEyZTMyMzIzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy MzYzNTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAoDJ3DANBgkqhkiG9w0BAQsFAAOCAQEAgH7G 2ZBqBcTe2FihOHTvGSnNYfq98A0ww+0Stz6sD1OoI+/fmitNcq+FIcAGKhpTagtv u4tGSAKixk6tUOxUOJarmKej6cARuxlnvczktusfiFM2xNl3hHbrjLbmQYQUSFK1 874GiaeK6/qvVY8JHcGsWCZJDsQJCm1a7TND7m7LUH1oylu91evq+GiyhNgEJDMk /EgxklXjjQcIr/kOzMvyW8TFvkWcxCz6bdNdNhLIMF+IWLz32Oj8GlIVJi79Ro6Z UhOzeEApC7TRSy7otzBEwgv6481SjwaYGnC4M4Vi6W4M8g9uryyaq/HMD0wDp3wp deTLANqwQLstBEziVg== -----END CERTIFICATE-----Generated at Sun Aug 24 00:17:16 2025 by rpki-client