$ rpki-client -vvf rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/3132382e3230312e3232332e302f32342d3234203d3e20323734353530.roa File: 3132382e3230312e3232332e302f32342d3234203d3e20323734353530.roa (raw, json) Hash identifier: qaZF5sGE7R1S3fyD9Olk3Z91Djr7aIFGFPpqG9LyOrg= Subject key identifier: DD:04:2D:4E:73:2E:41:C0:72:81:D9:C6:8F:99:8B:B5:8A:EC:71:A3 Certificate issuer: /CN=A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8 Certificate serial: 1B0AA0106B46602472B08324E0D73996EEAFD170 Authority key identifier: A8:6F:29:09:A8:CF:8A:80:C2:23:9E:5F:95:3F:F1:B4:AB:9D:73:C8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.cer Subject info access: rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/3132382e3230312e3232332e302f32342d3234203d3e20323734353530.roa Signing time: Fri 03 Oct 2025 12:40:43 +0000 ROA not before: Fri 03 Oct 2025 12:35:43 +0000 ROA not after: Fri 02 Oct 2026 12:40:43 +0000 asID: 274550 IP address blocks: 128.201.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.crl rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 06:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:0a:a0:10:6b:46:60:24:72:b0:83:24:e0:d7:39:96:ee:af:d1:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8 Validity Not Before: Oct 3 12:35:43 2025 GMT Not After : Oct 2 12:40:43 2026 GMT Subject: CN=DD042D4E732E41C07281D9C68F998BB58AEC71A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:74:82:c5:39:bf:f8:3f:17:07:95:be:45:5d: 11:72:25:57:47:c8:6a:84:a1:f4:33:12:32:0b:99: 52:46:8d:fe:94:5e:94:31:9d:9a:32:0e:da:44:be: 20:db:32:13:59:86:b4:d3:c4:12:6c:1d:c8:e7:bf: 7b:b9:3b:88:77:0c:10:81:be:8f:9a:fc:a7:9e:a8: 1f:50:37:11:6a:6b:c7:96:c3:6d:f5:61:1e:af:c9: 67:23:5f:61:f2:5a:fd:c6:f8:98:74:cf:54:df:b6: 2f:fe:17:8d:91:9b:b1:72:3d:65:3f:0c:64:70:33: 22:79:44:6e:17:38:f1:95:21:67:5d:8d:61:ea:ce: 9c:ac:00:5e:da:1a:4f:25:59:36:fe:7a:0b:90:70: af:46:aa:57:b7:a0:90:94:5a:f4:c8:77:16:6d:c4: 67:7f:80:53:03:26:c0:32:e8:85:e5:ee:64:22:14: d3:1a:33:e0:a2:60:cb:db:9e:0e:13:a1:00:0b:3a: d0:de:cd:3a:4a:3d:1e:de:bb:82:49:31:88:4f:4f: c0:eb:df:ad:b4:db:d1:82:4a:48:3a:47:25:1a:ff: f8:d9:af:eb:28:05:32:4d:41:a8:2f:7d:f2:75:8f: 5a:61:64:ec:ed:01:08:90:00:20:33:56:04:68:87: ef:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:04:2D:4E:73:2E:41:C0:72:81:D9:C6:8F:99:8B:B5:8A:EC:71:A3 X509v3 Authority Key Identifier: keyid:A8:6F:29:09:A8:CF:8A:80:C2:23:9E:5F:95:3F:F1:B4:AB:9D:73:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/3132382e3230312e3232332e302f32342d3234203d3e20323734353530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.201.223.0/24 Signature Algorithm: sha256WithRSAEncryption aa:33:6f:b3:82:ce:8a:14:11:8a:83:10:b6:28:ea:f1:69:b9: 3e:bb:11:99:c6:f0:66:7c:5e:de:6c:cf:70:4d:eb:91:2b:a3: 58:b4:a4:17:d6:3a:15:fe:46:7b:18:53:da:64:23:28:65:85: ef:7b:d8:f8:33:a9:f2:2a:26:33:5a:20:5e:47:b0:8b:a7:df: f0:66:e1:a4:37:f5:9c:02:cd:c7:b9:84:dc:e9:3e:7a:69:24: e2:0b:f9:46:af:b8:23:23:fc:ac:06:94:9f:12:e8:e2:6a:88: 55:0e:36:f0:0a:7b:1d:6a:22:9e:a0:d2:b6:58:6e:2b:f1:9d: 85:bf:c9:49:05:14:f5:b0:81:63:b8:43:6e:c7:6e:83:f6:87: 8b:7f:e6:46:3f:6c:d4:5b:ba:27:cb:1e:da:2e:c5:ef:d9:4b: a7:1b:85:f3:b6:dd:26:13:aa:c8:ad:11:ba:96:af:3c:87:31: ed:f6:de:3c:f8:29:d4:9e:10:6e:1f:f3:f1:81:7a:f0:e9:a5: 0b:91:fe:dc:c5:2f:0e:f1:4c:52:0d:be:65:63:3d:cf:5e:b6: cd:48:85:f1:ec:6d:c0:76:70:bd:0e:92:01:4e:a7:f9:eb:36: ce:73:1f:b5:e0:88:93:24:ac:d2:ac:a0:b5:50:df:33:cb:97: aa:95:f9:fc -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUGwqgEGtGYCRysIMk4Nc5lu6v0XAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTg2RjI5MDlBOENGOEE4MEMyMjM5RTVGOTUzRkYxQjRB QjlENzNDODAeFw0yNTEwMDMxMjM1NDNaFw0yNjEwMDIxMjQwNDNaMDMxMTAvBgNV BAMTKEREMDQyRDRFNzMyRTQxQzA3MjgxRDlDNjhGOTk4QkI1OEFFQzcxQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWdILFOb/4PxcHlb5FXRFyJVdH yGqEofQzEjILmVJGjf6UXpQxnZoyDtpEviDbMhNZhrTTxBJsHcjnv3u5O4h3DBCB vo+a/KeeqB9QNxFqa8eWw231YR6vyWcjX2HyWv3G+Jh0z1Tfti/+F42Rm7FyPWU/ DGRwMyJ5RG4XOPGVIWddjWHqzpysAF7aGk8lWTb+eguQcK9Gqle3oJCUWvTIdxZt xGd/gFMDJsAy6IXl7mQiFNMaM+CiYMvbng4ToQALOtDezTpKPR7eu4JJMYhPT8Dr 362029GCSkg6RyUa//jZr+soBTJNQagvffJ1j1phZOztAQiQACAzVgRoh+99AgMB AAGjggJTMIICTzAdBgNVHQ4EFgQU3QQtTnMuQcBygdnGj5mLtYrscaMwHwYDVR0j BBgwFoAUqG8pCajPioDCI55flT/xtKudc8gwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSDd0dnBGSEYzQmtaUGM1SlpTaVVMS3RqR212UGU0ZkFqeGlVMkRKWnFQ RzEvMC9BODZGMjkwOUE4Q0Y4QTgwQzIyMzlFNUY5NTNGRjFCNEFCOUQ3M0M4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E4NkYyOTA5QThDRjhBODBD MjIzOUU1Rjk1M0ZGMUI0QUI5RDczQzguY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0g3dHZwRkhGM0JrWlBjNUpaU2lVTEt0akdtdlBlNGZBanhpVTJESlpxUEcxLzAv MzEzMjM4MmUzMjMwMzEyZTMyMzIzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzczNDM1MzUzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAIDJ3zANBgkqhkiG9w0BAQsFAAOCAQEAqjNv s4LOihQRioMQtijq8Wm5PrsRmcbwZnxe3mzPcE3rkSujWLSkF9Y6Ff5GexhT2mQj KGWF73vY+DOp8iomM1ogXkewi6ff8GbhpDf1nALNx7mE3Ok+emkk4gv5Rq+4IyP8 rAaUnxLo4mqIVQ428Ap7HWoinqDStlhuK/Gdhb/JSQUU9bCBY7hDbsdug/aHi3/m Rj9s1Fu6J8se2i7F79lLpxuF87bdJhOqyK0RupavPIcx7fbePPgp1J4Qbh/z8YF6 8OmlC5H+3MUvDvFMUg2+ZWM9z162zUiF8extwHZwvQ6SAU6n+es2znMfteCIkySs 0qygtVDfM8uXqpX5/A== -----END CERTIFICATE-----Generated at Mon Oct 20 16:40:20 2025 by rpki-client