$ rpki-client -vvf rpki-repo.registro.br/repo/4ThxcMVBnzFQJiwpWB1mKgMDSzxVR6h61L93ymbKv2k9/0/3137302e3234362e3233362e302f32322d3332203d3e203631363738.roa File: 3137302e3234362e3233362e302f32322d3332203d3e203631363738.roa (raw, json) Hash identifier: iUhuZCqf+gxZqO/cM6ScZTXsH+jrXHXlfnCWGA2Il7o= Subject key identifier: B3:C8:57:45:1B:71:B4:02:5D:DA:C4:73:BA:0C:41:73:60:06:CC:C8 Certificate issuer: /CN=8E52C6A9BEAD79DC950F9DA560C530F28BC6FCDC Certificate serial: 415615D2A04B5152BCA7A7E022367973128EBFA0 Authority key identifier: 8E:52:C6:A9:BE:AD:79:DC:95:0F:9D:A5:60:C5:30:F2:8B:C6:FC:DC Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8E52C6A9BEAD79DC950F9DA560C530F28BC6FCDC.cer Subject info access: rsync://rpki-repo.registro.br/repo/4ThxcMVBnzFQJiwpWB1mKgMDSzxVR6h61L93ymbKv2k9/0/3137302e3234362e3233362e302f32322d3332203d3e203631363738.roa Signing time: Sat 12 Jul 2025 23:16:41 +0000 ROA not before: Sat 12 Jul 2025 23:11:41 +0000 ROA not after: Sat 11 Jul 2026 23:16:41 +0000 asID: 61678 IP address blocks: 170.246.236.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4ThxcMVBnzFQJiwpWB1mKgMDSzxVR6h61L93ymbKv2k9/0/8E52C6A9BEAD79DC950F9DA560C530F28BC6FCDC.crl rsync://rpki-repo.registro.br/repo/4ThxcMVBnzFQJiwpWB1mKgMDSzxVR6h61L93ymbKv2k9/0/8E52C6A9BEAD79DC950F9DA560C530F28BC6FCDC.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8E52C6A9BEAD79DC950F9DA560C530F28BC6FCDC.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 29 Jul 2025 23:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:56:15:d2:a0:4b:51:52:bc:a7:a7:e0:22:36:79:73:12:8e:bf:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E52C6A9BEAD79DC950F9DA560C530F28BC6FCDC Validity Not Before: Jul 12 23:11:41 2025 GMT Not After : Jul 11 23:16:41 2026 GMT Subject: CN=B3C857451B71B4025DDAC473BA0C41736006CCC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b3:d4:c1:4f:f6:f0:50:4c:45:38:40:f5:a5: 9a:6e:44:2c:2a:52:39:28:2e:03:cd:1b:79:83:a4: c2:52:98:58:62:b6:0f:8c:43:19:79:f3:05:1b:e5: bd:5e:b4:35:1b:ad:d6:c2:b4:c0:84:4d:6e:bf:c1: 35:6c:9b:d6:a6:13:c4:53:95:1a:29:89:95:01:aa: 9e:90:7e:a7:1f:b1:f6:c3:4f:46:50:fd:1d:9d:8a: ae:eb:62:ca:b6:5a:de:78:18:e1:ce:44:53:6c:e2: a0:7e:5c:b1:02:55:87:50:b7:49:1e:8a:d3:2d:13: cc:45:e5:8b:5c:80:28:0f:75:80:92:9e:24:b7:8c: d2:74:cc:10:cb:20:01:e8:8a:a4:eb:1c:d9:14:7c: ff:5e:2f:5b:54:c8:8c:a9:a2:06:bd:cd:10:ff:69: c8:c8:45:d4:d5:c4:9c:e0:77:33:e4:e6:8b:00:b4: 91:97:13:ce:f6:2f:3d:12:67:45:b0:ad:61:60:48: 72:5f:f9:4d:b1:ae:1a:ad:a3:45:c3:fd:21:dd:1e: 19:a9:a1:70:f8:f0:2c:aa:76:89:2d:e8:61:b8:a9: 6c:99:a0:05:13:5f:3e:0d:48:6f:ac:c5:27:b0:5b: cf:23:6e:be:5f:88:35:f9:7a:18:cc:19:3a:67:b1: d6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C8:57:45:1B:71:B4:02:5D:DA:C4:73:BA:0C:41:73:60:06:CC:C8 X509v3 Authority Key Identifier: keyid:8E:52:C6:A9:BE:AD:79:DC:95:0F:9D:A5:60:C5:30:F2:8B:C6:FC:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4ThxcMVBnzFQJiwpWB1mKgMDSzxVR6h61L93ymbKv2k9/0/8E52C6A9BEAD79DC950F9DA560C530F28BC6FCDC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8E52C6A9BEAD79DC950F9DA560C530F28BC6FCDC.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4ThxcMVBnzFQJiwpWB1mKgMDSzxVR6h61L93ymbKv2k9/0/3137302e3234362e3233362e302f32322d3332203d3e203631363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.246.236.0/22 Signature Algorithm: sha256WithRSAEncryption 03:0e:3b:cc:ae:90:bd:1d:e4:c3:e6:b4:53:9a:0e:a4:fa:8e: 41:d5:cd:4e:fa:fe:10:15:13:d8:d1:2a:4e:f4:ac:48:f7:19: d9:6b:81:53:31:c0:9c:5e:f2:bb:87:26:c5:65:63:fe:cd:6c: 12:80:14:ae:99:a8:c8:72:a2:32:8c:c0:cf:50:de:10:52:d8: d1:96:75:65:ff:56:8e:e7:f6:70:6f:c6:f5:62:1d:04:65:71: c2:a3:a0:f5:08:5b:6f:cd:91:3e:91:81:ed:12:b3:c9:df:fa: f6:62:50:05:ec:da:5c:2a:fa:96:6a:8f:59:04:7a:ab:ac:23: 5b:fd:29:6e:e9:38:5c:d0:33:49:20:24:b6:34:6a:66:40:79: 0c:eb:4f:72:60:37:ec:81:5b:84:6c:1c:e7:57:7f:7e:15:35: ea:f8:0e:c2:8d:10:8c:e1:39:c3:ea:b1:0a:cc:f5:19:e7:30: 6c:68:9f:87:f8:2a:ca:c4:66:f7:17:1d:91:67:2a:55:02:2b: 2e:36:f9:0f:ef:4d:2e:a7:7e:89:31:dd:07:57:c4:8a:e4:d8: 84:e6:1c:c0:ff:46:6e:af:ee:1e:4a:c7:ef:10:7f:cd:81:84: 58:ad:36:af:e8:95:67:90:0c:a2:ca:da:e1:0e:81:9f:de:9a: 6a:91:2e:2e -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUQVYV0qBLUVK8p6fgIjZ5cxKOv6AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU1MkM2QTlCRUFENzlEQzk1MEY5REE1NjBDNTMwRjI4 QkM2RkNEQzAeFw0yNTA3MTIyMzExNDFaFw0yNjA3MTEyMzE2NDFaMDMxMTAvBgNV BAMTKEIzQzg1NzQ1MUI3MUI0MDI1RERBQzQ3M0JBMEM0MTczNjAwNkNDQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCys9TBT/bwUExFOED1pZpuRCwq UjkoLgPNG3mDpMJSmFhitg+MQxl58wUb5b1etDUbrdbCtMCETW6/wTVsm9amE8RT lRopiZUBqp6QfqcfsfbDT0ZQ/R2diq7rYsq2Wt54GOHORFNs4qB+XLECVYdQt0ke itMtE8xF5YtcgCgPdYCSniS3jNJ0zBDLIAHoiqTrHNkUfP9eL1tUyIypoga9zRD/ acjIRdTVxJzgdzPk5osAtJGXE872Lz0SZ0WwrWFgSHJf+U2xrhqto0XD/SHdHhmp oXD48Cyqdokt6GG4qWyZoAUTXz4NSG+sxSewW88jbr5fiDX5ehjMGTpnsdbrAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUs8hXRRtxtAJd2sRzugxBc2AGzMgwHwYDVR0j BBgwFoAUjlLGqb6tedyVD52lYMUw8ovG/NwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNFRoeGNNVkJuekZRSml3cFdCMW1LZ01EU3p4VlI2aDYxTDkzeW1iS3Yy azkvMC84RTUyQzZBOUJFQUQ3OURDOTUwRjlEQTU2MEM1MzBGMjhCQzZGQ0RDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzhFNTJDNkE5QkVBRDc5REM5 NTBGOURBNTYwQzUzMEYyOEJDNkZDREMuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRUaHhjTVZCbnpGUUppd3BXQjFtS2dNRFN6eFZSNmg2MUw5M3ltYkt2Mms5LzAv MzEzNzMwMmUzMjM0MzYyZTMyMzMzNjJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDM2 MzEzNjM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKq9uwwDQYJKoZIhvcNAQELBQADggEBAAMOO8yu kL0d5MPmtFOaDqT6jkHVzU76/hAVE9jRKk70rEj3GdlrgVMxwJxe8ruHJsVlY/7N bBKAFK6ZqMhyojKMwM9Q3hBS2NGWdWX/Vo7n9nBvxvViHQRlccKjoPUIW2/NkT6R ge0Ss8nf+vZiUAXs2lwq+pZqj1kEequsI1v9KW7pOFzQM0kgJLY0amZAeQzrT3Jg N+yBW4RsHOdXf34VNer4DsKNEIzhOcPqsQrM9RnnMGxon4f4KsrEZvcXHZFnKlUC Ky42+Q/vTS6nfokx3QdXxIrk2ITmHMD/Rm6v7h5Kx+8Qf82BhFitNq/olWeQDKLK 2uEOgZ/emmqRLi4= -----END CERTIFICATE-----Generated at Tue Jul 29 12:48:30 2025 by rpki-client