$ rpki-client -vvf rpki-repo.registro.br/repo/HBZohAC6zF8fmNP48aqbVRM4ML5gBRuAkYFvdDYGBvYw/0/34352e3137312e32382e302f32322d3331203d3e20323638313836.roa File: 34352e3137312e32382e302f32322d3331203d3e20323638313836.roa (raw, json) Hash identifier: GTuyip9hCm0elVP41LNTBU5YGx+u9OcrBFnEgwpF37Q= Subject key identifier: 01:9B:DF:01:7E:34:1D:E6:09:26:B6:BC:9A:4C:4D:87:04:C9:21:51 Certificate issuer: /CN=25C4E9C01E97F4E89102ACE4A7EBB9CEE53BD080 Certificate serial: 02A3A609A4C277091EE0F1E2AA4270ACE61D8F Authority key identifier: 25:C4:E9:C0:1E:97:F4:E8:91:02:AC:E4:A7:EB:B9:CE:E5:3B:D0:80 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/25C4E9C01E97F4E89102ACE4A7EBB9CEE53BD080.cer Subject info access: rsync://rpki-repo.registro.br/repo/HBZohAC6zF8fmNP48aqbVRM4ML5gBRuAkYFvdDYGBvYw/0/34352e3137312e32382e302f32322d3331203d3e20323638313836.roa Signing time: Mon 06 Oct 2025 18:07:18 +0000 ROA not before: Mon 06 Oct 2025 18:02:18 +0000 ROA not after: Mon 05 Oct 2026 18:07:18 +0000 asID: 268186 IP address blocks: 45.171.28.0/22 maxlen: 31 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HBZohAC6zF8fmNP48aqbVRM4ML5gBRuAkYFvdDYGBvYw/0/25C4E9C01E97F4E89102ACE4A7EBB9CEE53BD080.crl rsync://rpki-repo.registro.br/repo/HBZohAC6zF8fmNP48aqbVRM4ML5gBRuAkYFvdDYGBvYw/0/25C4E9C01E97F4E89102ACE4A7EBB9CEE53BD080.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/25C4E9C01E97F4E89102ACE4A7EBB9CEE53BD080.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 08:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a3:a6:09:a4:c2:77:09:1e:e0:f1:e2:aa:42:70:ac:e6:1d:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25C4E9C01E97F4E89102ACE4A7EBB9CEE53BD080 Validity Not Before: Oct 6 18:02:18 2025 GMT Not After : Oct 5 18:07:18 2026 GMT Subject: CN=019BDF017E341DE60926B6BC9A4C4D8704C92151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b5:73:a2:08:35:39:b2:94:d9:90:8d:f6:04: f1:fa:18:5a:ba:e5:6f:a1:38:ce:65:bc:1e:ee:53: ce:23:30:fe:07:1b:50:28:0f:2e:f3:01:cb:05:24: 35:7b:57:6f:e0:1f:27:05:df:a4:4b:9b:f4:2f:37: 59:7b:06:a9:3f:2b:07:0e:51:55:c4:c7:6a:7e:fb: a3:bd:0f:88:84:73:1f:4f:06:82:d6:71:83:76:90: 4f:94:63:75:08:af:92:2c:22:99:b9:41:eb:89:a6: bc:b0:7d:a3:1d:af:d3:df:6b:ff:10:bd:53:e8:20: 09:35:4c:ec:44:24:63:0e:fc:a6:38:d7:97:cb:e9: 79:97:92:55:ce:5c:67:8a:15:b4:d7:1d:e1:cf:3f: 5d:57:a4:5a:dd:15:eb:7e:a6:d9:60:95:fc:aa:af: 74:7e:b4:b8:c1:27:cb:3c:f2:8a:71:ee:50:51:8e: 35:76:54:73:49:30:87:e7:46:72:e7:81:31:cf:df: 8f:e0:2c:b3:c9:76:d5:ff:a0:7d:60:10:77:cb:7f: a7:a5:c8:40:18:25:39:51:f2:1d:5e:9b:4e:14:12: 45:80:dd:aa:11:3f:2c:ed:2d:39:46:0a:ea:7a:6a: 49:7a:fe:dd:80:26:bb:f1:41:d2:87:c3:c3:a2:61: 1f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:9B:DF:01:7E:34:1D:E6:09:26:B6:BC:9A:4C:4D:87:04:C9:21:51 X509v3 Authority Key Identifier: keyid:25:C4:E9:C0:1E:97:F4:E8:91:02:AC:E4:A7:EB:B9:CE:E5:3B:D0:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HBZohAC6zF8fmNP48aqbVRM4ML5gBRuAkYFvdDYGBvYw/0/25C4E9C01E97F4E89102ACE4A7EBB9CEE53BD080.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/25C4E9C01E97F4E89102ACE4A7EBB9CEE53BD080.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HBZohAC6zF8fmNP48aqbVRM4ML5gBRuAkYFvdDYGBvYw/0/34352e3137312e32382e302f32322d3331203d3e20323638313836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.171.28.0/22 Signature Algorithm: sha256WithRSAEncryption aa:0c:59:72:67:91:67:5a:cb:86:10:da:f0:d0:9a:2f:bc:7d: 7a:03:3f:6c:26:1a:cf:5b:d4:e8:f0:0b:7f:b1:a8:01:c0:7a: 6a:f9:d7:d6:07:b0:fc:68:53:63:02:c8:df:6c:11:80:7d:fb: 70:f1:e3:c1:a5:29:4a:02:ae:f7:0a:9c:70:f6:65:bf:eb:b4: 51:10:e1:55:59:d4:cc:a2:1a:44:6b:5d:71:92:f6:b7:e9:79: dd:a5:ca:b2:1b:35:36:78:b2:dd:5e:b6:2d:50:b5:64:88:71: 5d:1f:ba:b9:0d:86:7f:89:d6:20:10:03:97:9a:c2:82:7b:eb: 0e:ba:ec:da:de:bc:2b:ac:e0:04:3e:b2:f9:4a:81:62:ca:2f: cc:f0:f4:d5:57:e8:be:e6:ed:ff:9b:f4:40:1b:ac:2a:f8:cf: a2:40:4f:32:d4:d9:dd:47:a9:f3:e4:3c:17:28:78:d0:2b:a8: 81:ee:03:15:04:78:be:94:1e:8a:b2:0a:9b:95:5e:46:79:05: df:ce:b5:8c:f8:31:3d:dc:e2:b6:2d:db:51:ea:f0:74:35:11: 40:2b:45:0e:7b:a0:f1:50:c6:58:fa:e9:0c:6f:69:f8:d8:51: 86:8e:54:df:6b:6c:f0:9b:a9:3b:b3:69:db:17:d3:50:68:18: c6:c8:70:a7 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgITAqOmCaTCdwke4PHiqkJwrOYdjzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygyNUM0RTlDMDFFOTdGNEU4OTEwMkFDRTRBN0VCQjlDRUU1 M0JEMDgwMB4XDTI1MTAwNjE4MDIxOFoXDTI2MTAwNTE4MDcxOFowMzExMC8GA1UE AxMoMDE5QkRGMDE3RTM0MURFNjA5MjZCNkJDOUE0QzREODcwNEM5MjE1MTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM+1c6IINTmylNmQjfYE8foYWrrl b6E4zmW8Hu5TziMw/gcbUCgPLvMBywUkNXtXb+AfJwXfpEub9C83WXsGqT8rBw5R VcTHan77o70PiIRzH08GgtZxg3aQT5RjdQivkiwimblB64mmvLB9ox2v099r/xC9 U+ggCTVM7EQkYw78pjjXl8vpeZeSVc5cZ4oVtNcd4c8/XVekWt0V636m2WCV/Kqv dH60uMEnyzzyinHuUFGONXZUc0kwh+dGcueBMc/fj+Ass8l21f+gfWAQd8t/p6XI QBglOVHyHV6bThQSRYDdqhE/LO0tOUYK6npqSXr+3YAmu/FB0ofDw6JhHxkCAwEA AaOCAk8wggJLMB0GA1UdDgQWBBQBm98BfjQd5gkmtryaTE2HBMkhUTAfBgNVHSME GDAWgBQlxOnAHpf06JECrOSn67nO5TvQgDAOBgNVHQ8BAf8EBAMCB4AwgZQGA1Ud HwSBjDCBiTCBhqCBg6CBgIZ+cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv cmVwby9IQlpvaEFDNnpGOGZtTlA0OGFxYlZSTTRNTDVnQlJ1QWtZRnZkRFlHQnZZ dy8wLzI1QzRFOUMwMUU5N0Y0RTg5MTAyQUNFNEE3RUJCOUNFRTUzQkQwODAuY3Js MHgGCCsGAQUFBwEBBGwwajBoBggrBgEFBQcwAoZccnN5bmM6Ly9ycGtpLXJlcG8u cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzEvMjVDNEU5QzAxRTk3RjRFODkx MDJBQ0U0QTdFQkI5Q0VFNTNCRDA4MC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZ BggrBgEFBQcwC4aBjHJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8v SEJab2hBQzZ6RjhmbU5QNDhhcWJWUk00TUw1Z0JSdUFrWUZ2ZERZR0J2WXcvMC8z NDM1MmUzMTM3MzEyZTMyMzgyZTMwMmYzMjMyMmQzMzMxMjAzZDNlMjAzMjM2Mzgz MTM4MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB Af8EEDAOMAwEAgABMAYDBAItqxwwDQYJKoZIhvcNAQELBQADggEBAKoMWXJnkWda y4YQ2vDQmi+8fXoDP2wmGs9b1OjwC3+xqAHAemr519YHsPxoU2MCyN9sEYB9+3Dx 48GlKUoCrvcKnHD2Zb/rtFEQ4VVZ1MyiGkRrXXGS9rfped2lyrIbNTZ4st1eti1Q tWSIcV0furkNhn+J1iAQA5eawoJ76w667NrevCus4AQ+svlKgWLKL8zw9NVX6L7m 7f+b9EAbrCr4z6JATzLU2d1HqfPkPBcoeNArqIHuAxUEeL6UHoqyCpuVXkZ5Bd/O tYz4MT3c4rYt21Hq8HQ1EUArRQ57oPFQxlj66QxvafjYUYaOVN9rbPCbqTuzadsX 01BoGMbIcKc= -----END CERTIFICATE-----Generated at Mon Oct 20 23:26:51 2025 by rpki-client