$ rpki-client -vvf rpki-repo.registro.br/repo/8B7YwzQXRn6vaj7DJHPqjMiQHiawVEBCJDNrt8fZMZWk/0/3137372e3132382e3136382e302f32322d3332203d3e20323632333736.roa File: 3137372e3132382e3136382e302f32322d3332203d3e20323632333736.roa (raw, json) Hash identifier: Fr1rdI1Jw5ohgOYDhkMkv5UJfOG1aFhGA1+lHNOPbNY= Subject key identifier: C2:21:DA:F6:D6:65:32:C4:5C:D5:F9:1B:B2:9A:00:76:9C:C0:E6:00 Certificate issuer: /CN=2FD3341671CEE00BE6A1E79864057B66AF83F10E Certificate serial: 52FE2B39E1398B77840FE09A810C266F48232F72 Authority key identifier: 2F:D3:34:16:71:CE:E0:0B:E6:A1:E7:98:64:05:7B:66:AF:83:F1:0E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2FD3341671CEE00BE6A1E79864057B66AF83F10E.cer Subject info access: rsync://rpki-repo.registro.br/repo/8B7YwzQXRn6vaj7DJHPqjMiQHiawVEBCJDNrt8fZMZWk/0/3137372e3132382e3136382e302f32322d3332203d3e20323632333736.roa Signing time: Tue 01 Jul 2025 23:33:14 +0000 ROA not before: Tue 01 Jul 2025 23:28:14 +0000 ROA not after: Tue 30 Jun 2026 23:33:14 +0000 asID: 262376 IP address blocks: 177.128.168.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/8B7YwzQXRn6vaj7DJHPqjMiQHiawVEBCJDNrt8fZMZWk/0/2FD3341671CEE00BE6A1E79864057B66AF83F10E.crl rsync://rpki-repo.registro.br/repo/8B7YwzQXRn6vaj7DJHPqjMiQHiawVEBCJDNrt8fZMZWk/0/2FD3341671CEE00BE6A1E79864057B66AF83F10E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2FD3341671CEE00BE6A1E79864057B66AF83F10E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 05 Jul 2025 10:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:fe:2b:39:e1:39:8b:77:84:0f:e0:9a:81:0c:26:6f:48:23:2f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD3341671CEE00BE6A1E79864057B66AF83F10E Validity Not Before: Jul 1 23:28:14 2025 GMT Not After : Jun 30 23:33:14 2026 GMT Subject: CN=C221DAF6D66532C45CD5F91BB29A00769CC0E600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:79:60:2c:58:69:f0:16:ee:4c:2c:c8:68:91: 18:0c:3b:bb:ab:c6:fe:51:eb:5b:80:ca:60:f5:e2: be:1f:2b:9d:ae:8a:34:68:da:2a:2d:a8:1d:44:10: 98:e5:5f:22:e5:f0:8f:a7:5c:e8:a1:5b:45:69:7d: 82:93:2c:4c:70:22:b4:cc:a2:c0:d6:fa:47:2a:78: bf:04:6d:f2:ac:00:85:48:af:bb:2f:40:30:f1:d3: e6:1f:7d:55:6a:e7:c3:6e:0b:2f:59:50:03:48:3b: 0c:64:d3:bb:ab:2d:3a:9f:a5:6e:65:ee:c8:81:23: 12:b0:c8:bb:02:11:aa:08:3c:b9:fd:91:34:02:ff: 7e:7b:7a:ad:78:d3:1e:69:19:b9:d9:71:21:61:0f: 7d:3f:2c:79:b4:d4:29:c6:c5:88:2e:43:ae:ef:f2: 31:43:59:8c:49:9c:0a:c8:a6:b6:58:17:b5:84:9a: be:aa:8f:e3:14:6a:2a:68:60:d0:87:64:9e:bc:16: 37:56:7a:07:b6:d6:da:83:ce:6b:26:2c:26:a4:b8: b2:7f:06:c2:9f:a7:0f:8d:da:35:cc:0f:2e:5c:b1: fc:76:b5:89:81:66:07:02:bc:52:ff:e3:e0:6d:3a: 5c:f9:92:f7:d0:e5:7c:bc:12:cc:d4:0d:84:b1:73: a6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:21:DA:F6:D6:65:32:C4:5C:D5:F9:1B:B2:9A:00:76:9C:C0:E6:00 X509v3 Authority Key Identifier: keyid:2F:D3:34:16:71:CE:E0:0B:E6:A1:E7:98:64:05:7B:66:AF:83:F1:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/8B7YwzQXRn6vaj7DJHPqjMiQHiawVEBCJDNrt8fZMZWk/0/2FD3341671CEE00BE6A1E79864057B66AF83F10E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2FD3341671CEE00BE6A1E79864057B66AF83F10E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/8B7YwzQXRn6vaj7DJHPqjMiQHiawVEBCJDNrt8fZMZWk/0/3137372e3132382e3136382e302f32322d3332203d3e20323632333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.128.168.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:47:8f:c8:49:75:45:05:68:e4:69:f5:02:43:6e:15:a0:59: c1:2a:fe:43:7e:c0:34:6b:e0:ce:0a:63:89:c6:66:cc:a9:04: 4c:83:5b:19:09:30:27:92:e4:1d:51:7f:e1:07:9c:a2:3f:a0: 87:fe:56:26:64:b6:de:97:13:af:2d:3d:b9:30:e1:f7:7a:0d: e6:6d:d0:ce:a3:5d:8a:57:50:90:2f:46:22:73:ae:d3:38:c7: fa:f7:d2:bf:d2:18:ed:35:aa:e9:24:6a:2c:a8:8c:7c:ee:4a: 7d:39:6a:a2:8c:77:9b:cb:4c:2b:1c:6a:ca:7a:35:84:cb:a5: 32:81:40:36:e9:6c:61:9f:e7:ec:2a:42:1d:6d:5a:4e:02:1b: 37:2c:09:f6:c3:08:36:fa:8e:86:58:a8:ec:3b:cf:6c:cf:73: ed:6c:72:31:ea:25:31:23:cd:3d:de:c5:47:02:da:82:46:02: 25:58:9e:86:5b:9a:95:f8:0f:ce:40:86:cf:37:b7:00:48:c6: 05:0b:16:81:b2:83:15:ca:f2:73:30:5a:db:43:42:8c:c4:76: a7:21:e6:92:4a:cd:93:a2:04:4b:35:d7:29:ef:c0:d5:b9:65: cf:ad:77:a9:74:09:f9:54:41:53:3d:90:2e:fe:c7:98:17:02: 86:2d:d0:ac -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUUv4rOeE5i3eED+CagQwmb0gjL3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMzM0MTY3MUNFRTAwQkU2QTFFNzk4NjQwNTdCNjZB RjgzRjEwRTAeFw0yNTA3MDEyMzI4MTRaFw0yNjA2MzAyMzMzMTRaMDMxMTAvBgNV BAMTKEMyMjFEQUY2RDY2NTMyQzQ1Q0Q1RjkxQkIyOUEwMDc2OUNDMEU2MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzeWAsWGnwFu5MLMhokRgMO7ur xv5R61uAymD14r4fK52uijRo2iotqB1EEJjlXyLl8I+nXOihW0VpfYKTLExwIrTM osDW+kcqeL8EbfKsAIVIr7svQDDx0+YffVVq58NuCy9ZUANIOwxk07urLTqfpW5l 7siBIxKwyLsCEaoIPLn9kTQC/357eq140x5pGbnZcSFhD30/LHm01CnGxYguQ67v 8jFDWYxJnArIprZYF7WEmr6qj+MUaipoYNCHZJ68FjdWege21tqDzmsmLCakuLJ/ BsKfpw+N2jXMDy5csfx2tYmBZgcCvFL/4+BtOlz5kvfQ5Xy8EszUDYSxc6YZAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUwiHa9tZlMsRc1fkbspoAdpzA5gAwHwYDVR0j BBgwFoAUL9M0FnHO4AvmoeeYZAV7Zq+D8Q4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOEI3WXd6UVhSbjZ2YWo3REpIUHFqTWlRSGlhd1ZFQkNKRE5ydDhmWk1a V2svMC8yRkQzMzQxNjcxQ0VFMDBCRTZBMUU3OTg2NDA1N0I2NkFGODNGMTBFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJGRDMzNDE2NzFDRUUwMEJF NkExRTc5ODY0MDU3QjY2QUY4M0YxMEUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzhCN1l3elFYUm42dmFqN0RKSFBxak1pUUhpYXdWRUJDSkROcnQ4ZlpNWldrLzAv MzEzNzM3MmUzMTMyMzgyZTMxMzYzODJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDMy MzYzMjMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEArGAqDANBgkqhkiG9w0BAQsFAAOCAQEAGkeP yEl1RQVo5Gn1AkNuFaBZwSr+Q37ANGvgzgpjicZmzKkETINbGQkwJ5LkHVF/4Qec oj+gh/5WJmS23pcTry09uTDh93oN5m3QzqNdildQkC9GInOu0zjH+vfSv9IY7TWq 6SRqLKiMfO5KfTlqoox3m8tMKxxqyno1hMulMoFANulsYZ/n7CpCHW1aTgIbNywJ 9sMINvqOhlio7DvPbM9z7WxyMeolMSPNPd7FRwLagkYCJViehlualfgPzkCGzze3 AEjGBQsWgbKDFcryczBa20NCjMR2pyHmkkrNk6IESzXXKe/A1bllz613qXQJ+VRB Uz2QLv7HmBcChi3QrA== -----END CERTIFICATE-----Generated at Fri Jul 4 19:58:54 2025 by rpki-client