$ rpki-client -vvf rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/3136382e3139372e3232352e302f32342d3234203d3e20323632373239.roa File: 3136382e3139372e3232352e302f32342d3234203d3e20323632373239.roa (raw, json) Hash identifier: F3XTpQ7OLAYOdjv7jO0W/XjYGvDrVyhC5PHm6YE3I4k= Subject key identifier: 57:5C:22:00:A9:76:39:51:46:CE:FA:99:40:70:05:9C:7D:4B:D0:A9 Certificate issuer: /CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Certificate serial: 3FB1A91AD9109130CF360517AA04F0F86D2592F6 Authority key identifier: B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject info access: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/3136382e3139372e3232352e302f32342d3234203d3e20323632373239.roa Signing time: Tue 02 Sep 2025 20:11:57 +0000 ROA not before: Tue 02 Sep 2025 20:06:57 +0000 ROA not after: Tue 01 Sep 2026 20:11:57 +0000 asID: 262729 IP address blocks: 168.197.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 19 Sep 2025 20:03:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b1:a9:1a:d9:10:91:30:cf:36:05:17:aa:04:f0:f8:6d:25:92:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Validity Not Before: Sep 2 20:06:57 2025 GMT Not After : Sep 1 20:11:57 2026 GMT Subject: CN=575C2200A976395146CEFA994070059C7D4BD0A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b3:db:98:8d:20:d0:31:82:06:f7:5a:09:f7: 71:18:29:4e:fc:06:bc:bf:12:5a:d2:f9:e2:f2:a8: 65:6b:a0:ee:ea:89:0b:a6:75:d6:2c:04:5c:f7:05: 15:68:58:0b:91:e4:c7:94:2e:1d:96:ce:74:44:e8: 12:e8:71:63:a8:04:74:bd:70:d0:86:6b:e5:b8:e9: 24:f0:ef:35:93:68:50:ef:93:72:72:fe:78:49:71: da:5e:59:49:dc:75:60:2c:4b:cb:e7:00:3d:c6:66: d7:86:58:75:50:67:23:66:9a:f5:63:9e:ff:f9:6b: be:5b:e1:3d:27:eb:4f:bc:2d:24:c4:a8:56:02:c1: ad:b7:cf:d8:89:ef:54:d4:a1:c2:22:9f:cc:b0:8f: a6:4d:8b:99:fb:f2:c0:08:bf:b3:fe:d9:92:0e:0e: 97:64:bd:20:ed:c3:72:2c:fb:2c:db:aa:31:c6:4a: 41:91:c0:e5:27:ee:fd:6f:51:df:fd:4b:c5:4e:a6: 0f:7b:b0:83:87:d5:73:3b:da:78:e5:95:43:ff:61: c3:29:71:f6:3d:16:ff:c3:05:80:6a:1e:91:82:0d: e6:a7:21:f0:1b:27:8c:44:f3:81:f7:1a:66:c8:07: 45:75:0d:91:0a:4f:59:b5:d9:9f:d0:bd:e7:99:c8: c8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:5C:22:00:A9:76:39:51:46:CE:FA:99:40:70:05:9C:7D:4B:D0:A9 X509v3 Authority Key Identifier: keyid:B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/3136382e3139372e3232352e302f32342d3234203d3e20323632373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.197.225.0/24 Signature Algorithm: sha256WithRSAEncryption 50:3d:73:c9:c3:82:bf:4e:4d:bb:bc:86:7d:5b:83:6d:4e:b5: 04:13:45:b6:ad:6d:07:54:98:51:70:a5:20:c2:fe:32:39:79: 24:63:9c:06:46:41:05:af:ce:1f:11:a1:87:0d:99:0c:9c:3f: 4e:94:27:06:5e:eb:6d:6d:73:93:af:e2:e1:ab:dd:b4:cd:54: 41:e3:17:6b:17:16:db:2a:8a:51:d8:72:c5:85:d7:af:48:c5: fa:42:cb:d1:a5:9e:b1:c5:45:a6:7d:4d:e6:4e:90:85:49:64: 7b:72:25:74:7e:9c:16:07:4b:4c:86:25:86:88:4b:5a:df:1b: cd:04:fc:70:5f:1d:a3:63:81:23:4d:79:07:14:33:8f:14:c6: 9e:c6:e2:cd:7c:e4:b7:21:24:ff:b6:24:b1:03:6b:1e:f0:17: 98:e1:2a:3c:3b:e8:85:af:f8:0e:2c:38:02:40:33:c8:e9:85: df:62:0d:f6:3e:1d:86:c1:68:ce:55:83:b3:27:11:b1:7c:93: 10:15:ae:ee:15:38:85:9d:b8:44:91:bf:9c:1d:19:fa:dc:b4: c7:1d:8d:30:b2:65:14:1c:b1:a5:83:90:32:3a:99:f3:38:6a: 97:48:0f:34:80:f9:fd:55:1a:da:d9:49:7a:19:6f:0f:73:6b: aa:ea:6a:e2 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUP7GpGtkQkTDPNgUXqgTw+G0lkvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEQjFCNThEQ0Q0NkMyRTc0NkQ4RERFQUE3RjQ5ODMz MUREQjAxNzAeFw0yNTA5MDIyMDA2NTdaFw0yNjA5MDEyMDExNTdaMDMxMTAvBgNV BAMTKDU3NUMyMjAwQTk3NjM5NTE0NkNFRkE5OTQwNzAwNTlDN0Q0QkQwQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2s9uYjSDQMYIG91oJ93EYKU78 Bry/ElrS+eLyqGVroO7qiQumddYsBFz3BRVoWAuR5MeULh2WznRE6BLocWOoBHS9 cNCGa+W46STw7zWTaFDvk3Jy/nhJcdpeWUncdWAsS8vnAD3GZteGWHVQZyNmmvVj nv/5a75b4T0n60+8LSTEqFYCwa23z9iJ71TUocIin8ywj6ZNi5n78sAIv7P+2ZIO DpdkvSDtw3Is+yzbqjHGSkGRwOUn7v1vUd/9S8VOpg97sIOH1XM72njllUP/YcMp cfY9Fv/DBYBqHpGCDeanIfAbJ4xE84H3GmbIB0V1DZEKT1m12Z/QveeZyMgzAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUV1wiAKl2OVFGzvqZQHAFnH1L0KkwHwYDVR0j BBgwFoAUudsbWNzUbC50bY3eqn9JgzHdsBcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDVmUEVVcmNhM21RVW9hNVVMS3pGNVB6WTdZZExVSkdXbTRiRzF0ZUZn OWsvMC9COURCMUI1OERDRDQ2QzJFNzQ2RDhEREVBQTdGNDk4MzMxRERCMDE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5REIxQjU4RENENDZDMkU3 NDZEOERERUFBN0Y0OTgzMzFEREIwMTcuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q1ZlBFVXJjYTNtUVVvYTVVTEt6RjVQelk3WWRMVUpHV200YkcxdGVGZzlrLzAv MzEzNjM4MmUzMTM5MzcyZTMyMzIzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzMjM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKjF4TANBgkqhkiG9w0BAQsFAAOCAQEAUD1z ycOCv05Nu7yGfVuDbU61BBNFtq1tB1SYUXClIML+Mjl5JGOcBkZBBa/OHxGhhw2Z DJw/TpQnBl7rbW1zk6/i4avdtM1UQeMXaxcW2yqKUdhyxYXXr0jF+kLL0aWescVF pn1N5k6QhUlke3IldH6cFgdLTIYlhohLWt8bzQT8cF8do2OBI015BxQzjxTGnsbi zXzktyEk/7YksQNrHvAXmOEqPDvoha/4Diw4AkAzyOmF32IN9j4dhsFozlWDsycR sXyTEBWu7hU4hZ24RJG/nB0Z+ty0xx2NMLJlFByxpYOQMjqZ8zhql0gPNID5/VUa 2tlJehlvD3Nrqupq4g== -----END CERTIFICATE-----Generated at Fri Sep 19 00:11:03 2025 by rpki-client