$ rpki-client -vvf rpki-repo.registro.br/repo/2z8THJ36D6PjmDSZrKDsw85CgCnrH7nskjzYhbxfgGM9/0/34352e37302e3132382e302f32322d3234203d3e20323637353633.roa File: 34352e37302e3132382e302f32322d3234203d3e20323637353633.roa (raw, json) Hash identifier: WNywvlvXljse7AjHRs4abLsKQQbN7xfFK1PvG1ChbNM= Subject key identifier: CE:8E:98:62:EB:24:E1:E8:62:5E:6A:5C:F5:86:83:DD:ED:E8:36:5B Certificate issuer: /CN=D158C3BF05B29EB9F5393618B97CD510D1DA2355 Certificate serial: 5095124C5A100B86D81C0CBE311B55858CD82C5B Authority key identifier: D1:58:C3:BF:05:B2:9E:B9:F5:39:36:18:B9:7C:D5:10:D1:DA:23:55 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D158C3BF05B29EB9F5393618B97CD510D1DA2355.cer Subject info access: rsync://rpki-repo.registro.br/repo/2z8THJ36D6PjmDSZrKDsw85CgCnrH7nskjzYhbxfgGM9/0/34352e37302e3132382e302f32322d3234203d3e20323637353633.roa Signing time: Mon 08 Sep 2025 21:08:39 +0000 ROA not before: Mon 08 Sep 2025 21:03:39 +0000 ROA not after: Mon 07 Sep 2026 21:08:39 +0000 asID: 267563 IP address blocks: 45.70.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2z8THJ36D6PjmDSZrKDsw85CgCnrH7nskjzYhbxfgGM9/0/D158C3BF05B29EB9F5393618B97CD510D1DA2355.crl rsync://rpki-repo.registro.br/repo/2z8THJ36D6PjmDSZrKDsw85CgCnrH7nskjzYhbxfgGM9/0/D158C3BF05B29EB9F5393618B97CD510D1DA2355.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D158C3BF05B29EB9F5393618B97CD510D1DA2355.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 20 Sep 2025 01:45:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:95:12:4c:5a:10:0b:86:d8:1c:0c:be:31:1b:55:85:8c:d8:2c:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D158C3BF05B29EB9F5393618B97CD510D1DA2355 Validity Not Before: Sep 8 21:03:39 2025 GMT Not After : Sep 7 21:08:39 2026 GMT Subject: CN=CE8E9862EB24E1E8625E6A5CF58683DDEDE8365B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:80:55:b2:83:26:90:b6:a4:43:55:96:4d:5e: 91:53:63:cd:8c:6f:dd:ae:93:bc:fc:64:79:5d:80: 2c:63:a9:72:be:b8:31:e0:7a:b8:c1:e9:d7:55:0d: 84:ff:0f:93:bf:dd:3a:1d:c2:8f:bb:94:e1:39:93: ae:0f:d5:c6:79:5e:7f:cd:3c:0f:bd:f4:87:8f:33: 75:c0:d9:09:36:2f:18:6d:59:09:f0:10:a1:b2:f3: c9:23:ac:d7:06:ac:dc:38:4e:6c:c3:e8:62:b9:de: bb:a3:26:3a:87:42:d8:ea:f7:c9:e7:fb:5c:c8:c9: ce:6a:44:d0:a5:02:03:d0:e1:87:ec:82:01:a8:05: b0:c7:36:81:a9:32:c8:20:3a:22:8c:90:f8:e6:d0: 86:23:fb:92:d9:b3:81:3c:a5:31:d7:f9:31:15:4f: 8f:76:7d:16:1a:48:e8:bb:58:4f:ab:5e:27:b7:cc: cb:34:d0:e9:93:f8:df:41:ab:8c:91:c2:7c:25:4e: 7e:60:4d:27:b1:10:b6:db:1a:95:03:33:86:a0:76: ab:ba:30:22:27:ae:96:f6:39:44:1d:0c:ba:32:18: a8:b1:39:3d:dc:9f:36:6f:4c:7b:d6:78:89:6e:08: 4a:9d:c7:87:cc:b6:5c:55:a9:3d:a4:b9:65:f6:55: 5f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:8E:98:62:EB:24:E1:E8:62:5E:6A:5C:F5:86:83:DD:ED:E8:36:5B X509v3 Authority Key Identifier: keyid:D1:58:C3:BF:05:B2:9E:B9:F5:39:36:18:B9:7C:D5:10:D1:DA:23:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2z8THJ36D6PjmDSZrKDsw85CgCnrH7nskjzYhbxfgGM9/0/D158C3BF05B29EB9F5393618B97CD510D1DA2355.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D158C3BF05B29EB9F5393618B97CD510D1DA2355.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2z8THJ36D6PjmDSZrKDsw85CgCnrH7nskjzYhbxfgGM9/0/34352e37302e3132382e302f32322d3234203d3e20323637353633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.70.128.0/22 Signature Algorithm: sha256WithRSAEncryption 59:aa:b7:ea:0d:5b:00:9b:3c:e6:cc:af:c7:d9:a7:a9:d1:1d: cf:25:07:56:a5:ef:c1:c1:d0:77:c7:ab:55:4a:50:46:72:59: 2f:5a:03:91:fd:17:c3:3f:23:38:ad:a9:1b:a4:dc:60:cf:11: d7:d9:e8:ca:cb:cd:33:3f:bc:87:f8:29:25:90:5e:84:4f:af: 4d:b7:6d:55:de:94:d8:16:09:bd:c2:7c:1c:01:60:7f:13:1d: 33:4e:c0:f6:3c:57:02:dc:e9:8a:af:e9:3f:ef:9a:9a:1c:ef: ed:f7:ae:8f:c2:de:d3:d6:de:53:b6:e2:aa:7f:dd:e9:fe:4a: 2f:59:5a:00:11:b4:b3:f1:f2:e1:c2:11:35:d4:04:52:c0:a3: c5:90:cc:8f:1a:d3:eb:6e:93:08:b3:b4:71:88:86:c0:81:8b: 43:49:eb:7a:7b:67:0c:67:4f:47:9f:e7:fa:73:68:bf:4c:b2: 9a:9e:45:a4:8a:e1:04:8f:b1:fe:58:32:d7:73:f0:c7:d4:ea: a7:3c:9c:46:e5:9c:b9:91:64:14:07:29:e2:67:ed:35:44:63: 35:0a:92:af:f4:31:8e:1d:83:b8:cf:dd:9b:5a:7a:48:2e:44: 77:65:e4:3d:8e:21:b1:f9:d3:96:6a:10:f1:29:b1:65:c3:a4: be:b3:60:81 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUUJUSTFoQC4bYHAy+MRtVhYzYLFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE1OEMzQkYwNUIyOUVCOUY1MzkzNjE4Qjk3Q0Q1MTBE MURBMjM1NTAeFw0yNTA5MDgyMTAzMzlaFw0yNjA5MDcyMTA4MzlaMDMxMTAvBgNV BAMTKENFOEU5ODYyRUIyNEUxRTg2MjVFNkE1Q0Y1ODY4M0RERURFODM2NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2gFWygyaQtqRDVZZNXpFTY82M b92uk7z8ZHldgCxjqXK+uDHgerjB6ddVDYT/D5O/3Todwo+7lOE5k64P1cZ5Xn/N PA+99IePM3XA2Qk2LxhtWQnwEKGy88kjrNcGrNw4TmzD6GK53rujJjqHQtjq98nn +1zIyc5qRNClAgPQ4YfsggGoBbDHNoGpMsggOiKMkPjm0IYj+5LZs4E8pTHX+TEV T492fRYaSOi7WE+rXie3zMs00OmT+N9Bq4yRwnwlTn5gTSexELbbGpUDM4agdqu6 MCInrpb2OUQdDLoyGKixOT3cnzZvTHvWeIluCEqdx4fMtlxVqT2kuWX2VV9bAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUzo6YYusk4ehiXmpc9YaD3e3oNlswHwYDVR0j BBgwFoAU0VjDvwWynrn1OTYYuXzVENHaI1UwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMno4VEhKMzZENlBqbURTWnJLRHN3ODVDZ0Nuckg3bnNranpZaGJ4ZmdH TTkvMC9EMTU4QzNCRjA1QjI5RUI5RjUzOTM2MThCOTdDRDUxMEQxREEyMzU1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QxNThDM0JGMDVCMjlFQjlG NTM5MzYxOEI5N0NENTEwRDFEQTIzNTUuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJ6OFRISjM2RDZQam1EU1pyS0Rzdzg1Q2dDbnJIN25za2p6WWhieGZnR005LzAv MzQzNTJlMzczMDJlMzEzMjM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM3 MzUzNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCLUaAMA0GCSqGSIb3DQEBCwUAA4IBAQBZqrfqDVsA mzzmzK/H2aep0R3PJQdWpe/BwdB3x6tVSlBGclkvWgOR/RfDPyM4rakbpNxgzxHX 2ejKy80zP7yH+CklkF6ET69Nt21V3pTYFgm9wnwcAWB/Ex0zTsD2PFcC3OmKr+k/ 75qaHO/t966Pwt7T1t5TtuKqf93p/kovWVoAEbSz8fLhwhE11ARSwKPFkMyPGtPr bpMIs7RxiIbAgYtDSet6e2cMZ09Hn+f6c2i/TLKankWkiuEEj7H+WDLXc/DH1Oqn PJxG5Zy5kWQUByniZ+01RGM1CpKv9DGOHYO4z92bWnpILkR3ZeQ9jiGx+dOWahDx KbFlw6S+s2CB -----END CERTIFICATE-----Generated at Fri Sep 19 02:18:57 2025 by rpki-client