$ rpki-client -vvf rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/3132382e3230312e3232332e302f32342d3234203d3e203238323737.roa File: 3132382e3230312e3232332e302f32342d3234203d3e203238323737.roa (raw, json) Hash identifier: xLSExaqOcC3sKNlIkpnrMmizhw1Xk7CdTAXvYPC9zgQ= Subject key identifier: 13:EF:DC:E8:C8:33:BC:E0:3F:EF:4C:B2:F4:7A:B7:E5:79:DE:24:A5 Certificate issuer: /CN=A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8 Certificate serial: 332932263BCD578194FE0457C4AFE57699C41004 Authority key identifier: A8:6F:29:09:A8:CF:8A:80:C2:23:9E:5F:95:3F:F1:B4:AB:9D:73:C8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.cer Subject info access: rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/3132382e3230312e3232332e302f32342d3234203d3e203238323737.roa Signing time: Thu 14 Aug 2025 17:27:19 +0000 ROA not before: Thu 14 Aug 2025 17:22:19 +0000 ROA not after: Thu 13 Aug 2026 17:27:19 +0000 asID: 28277 IP address blocks: 128.201.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.crl rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Aug 2025 19:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:29:32:26:3b:cd:57:81:94:fe:04:57:c4:af:e5:76:99:c4:10:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8 Validity Not Before: Aug 14 17:22:19 2025 GMT Not After : Aug 13 17:27:19 2026 GMT Subject: CN=13EFDCE8C833BCE03FEF4CB2F47AB7E579DE24A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d3:2f:d3:90:12:d3:e6:8a:7f:df:a0:d1:2c: fa:2e:fc:95:c2:c2:4b:e1:55:b8:df:af:f6:98:22: 95:8c:df:20:51:45:94:1f:92:db:10:72:51:78:87: 61:78:fd:3f:08:1f:51:37:0c:39:92:d0:d9:ad:56: d0:a2:d5:6f:65:3f:8f:9a:ea:9c:9b:7a:99:65:6a: fa:c9:1e:78:06:d6:43:85:40:a9:7c:9e:6a:08:c8: 5b:5c:59:7f:77:62:04:64:da:c0:f8:0a:12:b7:cb: 3c:3c:38:6b:7a:fb:3f:bf:8c:ac:d8:b2:63:5b:15: 0e:7a:7d:5d:4a:bc:99:1e:bb:77:ab:2a:dd:9a:9e: 63:02:7f:98:c9:89:6b:27:6f:d9:28:65:db:ee:c5: 1e:73:4a:58:3a:cd:12:b5:a1:c5:5c:15:89:7e:23: 25:6a:18:47:b8:d5:65:a6:15:66:0e:6c:98:4f:f8: 98:c3:dc:ed:82:3d:9a:44:4b:00:ba:de:19:9f:aa: 20:82:ce:fa:2a:e0:85:c4:dc:72:e5:b4:63:31:02: ae:23:1e:81:45:18:c1:42:83:d8:8e:97:72:57:e1: 11:06:0b:2e:2b:0c:c0:e9:28:3c:a5:df:ee:20:f3: 82:d5:e8:6c:18:c2:c5:f8:77:e0:cd:7a:2b:c4:87: 9c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:EF:DC:E8:C8:33:BC:E0:3F:EF:4C:B2:F4:7A:B7:E5:79:DE:24:A5 X509v3 Authority Key Identifier: keyid:A8:6F:29:09:A8:CF:8A:80:C2:23:9E:5F:95:3F:F1:B4:AB:9D:73:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A86F2909A8CF8A80C2239E5F953FF1B4AB9D73C8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/H7tvpFHF3BkZPc5JZSiULKtjGmvPe4fAjxiU2DJZqPG1/0/3132382e3230312e3232332e302f32342d3234203d3e203238323737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.201.223.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:b2:4c:a1:9d:ef:2d:d9:b1:5a:e2:9a:e8:17:22:03:17:b3: ae:41:5d:7f:1b:ca:ac:57:2c:aa:97:4d:4e:47:f9:be:76:96: da:6f:6b:c3:0e:3d:80:82:7a:b7:64:5a:c8:20:04:f7:26:f8: dd:65:f3:1b:d9:14:47:29:f3:3c:52:05:a1:50:b6:32:c9:8f: 50:ad:6c:36:1b:90:03:97:1f:bc:99:e0:61:98:06:65:4c:ef: 9a:2c:f3:32:58:f5:f3:aa:14:3b:e6:17:64:98:b2:66:37:23: 73:24:e0:be:e8:1c:aa:a1:c4:98:c6:20:bd:91:ee:28:ec:b1: 84:31:fb:d2:bd:b1:7f:c5:7f:2d:3f:cc:6e:7a:25:1d:14:b9: 5e:b4:6d:3a:ac:fc:d1:b0:fc:fd:57:ff:0d:96:c0:0d:43:01: a6:f5:9b:dd:b8:e2:9a:b5:7b:b3:ec:5b:67:aa:63:55:f6:c3: 06:5c:bd:d8:00:e9:77:86:80:96:6f:02:65:34:03:dc:83:d1: ad:e0:b9:55:26:50:1c:cc:ef:e0:0c:74:3b:95:96:f5:46:f0: 5a:b1:1d:7a:6b:e0:8d:0a:59:82:69:3a:fe:81:b9:e0:ba:96: f3:36:a3:2c:be:bf:47:2a:38:de:6d:47:0c:38:58:ca:91:e6: 4e:41:b5:fc -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUMykyJjvNV4GU/gRXxK/ldpnEEAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTg2RjI5MDlBOENGOEE4MEMyMjM5RTVGOTUzRkYxQjRB QjlENzNDODAeFw0yNTA4MTQxNzIyMTlaFw0yNjA4MTMxNzI3MTlaMDMxMTAvBgNV BAMTKDEzRUZEQ0U4QzgzM0JDRTAzRkVGNENCMkY0N0FCN0U1NzlERTI0QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj0y/TkBLT5op/36DRLPou/JXC wkvhVbjfr/aYIpWM3yBRRZQfktsQclF4h2F4/T8IH1E3DDmS0NmtVtCi1W9lP4+a 6pybepllavrJHngG1kOFQKl8nmoIyFtcWX93YgRk2sD4ChK3yzw8OGt6+z+/jKzY smNbFQ56fV1KvJkeu3erKt2anmMCf5jJiWsnb9koZdvuxR5zSlg6zRK1ocVcFYl+ IyVqGEe41WWmFWYObJhP+JjD3O2CPZpESwC63hmfqiCCzvoq4IXE3HLltGMxAq4j HoFFGMFCg9iOl3JX4REGCy4rDMDpKDyl3+4g84LV6GwYwsX4d+DNeivEh5zZAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUE+/c6MgzvOA/70yy9Hq35XneJKUwHwYDVR0j BBgwFoAUqG8pCajPioDCI55flT/xtKudc8gwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSDd0dnBGSEYzQmtaUGM1SlpTaVVMS3RqR212UGU0ZkFqeGlVMkRKWnFQ RzEvMC9BODZGMjkwOUE4Q0Y4QTgwQzIyMzlFNUY5NTNGRjFCNEFCOUQ3M0M4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E4NkYyOTA5QThDRjhBODBD MjIzOUU1Rjk1M0ZGMUI0QUI5RDczQzguY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0g3dHZwRkhGM0JrWlBjNUpaU2lVTEt0akdtdlBlNGZBanhpVTJESlpxUEcxLzAv MzEzMjM4MmUzMjMwMzEyZTMyMzIzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzgzMjM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBACAyd8wDQYJKoZIhvcNAQELBQADggEBAIuyTKGd 7y3ZsVrimugXIgMXs65BXX8byqxXLKqXTU5H+b52ltpva8MOPYCCerdkWsggBPcm +N1l8xvZFEcp8zxSBaFQtjLJj1CtbDYbkAOXH7yZ4GGYBmVM75os8zJY9fOqFDvm F2SYsmY3I3Mk4L7oHKqhxJjGIL2R7ijssYQx+9K9sX/Ffy0/zG56JR0UuV60bTqs /NGw/P1X/w2WwA1DAab1m9244pq1e7PsW2eqY1X2wwZcvdgA6XeGgJZvAmU0A9yD 0a3guVUmUBzM7+AMdDuVlvVG8FqxHXpr4I0KWYJpOv6BueC6lvM2oyy+v0cqON5t Rww4WMqR5k5Btfw= -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:15 2025 by rpki-client