$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32342d3234203d3e20323635303738.roa File: 3137302e3233332e3131322e302f32342d3234203d3e20323635303738.roa (raw, json) Hash identifier: pWacx1NTt02D42bFq04vbBmqRB/XXWUQOecty6CnIa0= Subject key identifier: 59:35:EE:D8:C7:3A:F1:34:55:F1:B3:65:5D:B2:2B:A5:B6:B7:D5:2C Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Certificate serial: 7A23C8552F74B042E340B1961799E5CD52206D62 Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32342d3234203d3e20323635303738.roa Signing time: Mon 21 Apr 2025 13:26:45 +0000 ROA not before: Mon 21 Apr 2025 13:21:45 +0000 ROA not after: Mon 20 Apr 2026 13:26:45 +0000 asID: 265078 IP address blocks: 170.233.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 05 Nov 2025 22:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:23:c8:55:2f:74:b0:42:e3:40:b1:96:17:99:e5:cd:52:20:6d:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Validity Not Before: Apr 21 13:21:45 2025 GMT Not After : Apr 20 13:26:45 2026 GMT Subject: CN=5935EED8C73AF13455F1B3655DB22BA5B6B7D52C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d8:73:73:e3:ad:de:03:c5:37:3b:bb:0e:04: b1:72:da:53:30:be:ee:4d:77:8a:ee:e8:61:1e:03: 5c:12:c2:98:7c:a9:d3:3b:c4:9e:3a:fe:b5:59:56: 14:96:1b:6e:9f:ed:89:52:10:be:ae:1a:d7:c2:c2: 76:07:d2:52:7c:98:19:3d:c6:22:d9:8e:e8:64:a3: 2b:55:82:eb:de:f4:26:35:44:4f:be:d3:42:6f:e1: 48:8c:f4:9a:fd:63:a8:0b:e7:c0:76:c8:5c:c1:67: 97:fc:d5:af:23:56:89:51:51:a8:1f:51:0d:d3:67: a5:39:a0:2f:80:70:1c:71:5b:80:8c:48:20:53:57: e5:3d:e9:82:28:ae:1d:78:75:c1:17:cc:f9:c9:2b: 81:4b:e9:7a:e1:26:4a:57:b1:e0:62:90:2d:96:98: 81:ab:f1:91:86:6f:60:30:53:73:ef:e5:17:7d:ab: 2c:6a:27:e0:63:46:ab:c1:7c:f6:46:ef:f8:1b:59: be:91:d9:17:de:f3:cc:08:f0:5e:78:a5:c3:21:4b: 30:ee:c6:7b:7f:a6:c1:6e:a4:d7:64:d2:dc:f0:8b: 3d:17:d9:06:97:7a:68:27:6c:61:73:f8:c5:44:d6: 58:ca:e8:1e:6b:d2:40:5b:a5:d0:50:b2:d3:9e:34: 73:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:35:EE:D8:C7:3A:F1:34:55:F1:B3:65:5D:B2:2B:A5:B6:B7:D5:2C X509v3 Authority Key Identifier: keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32342d3234203d3e20323635303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.112.0/24 Signature Algorithm: sha256WithRSAEncryption 78:85:61:2c:77:6b:71:40:2c:23:1c:75:45:b1:39:1a:c4:aa: 32:26:70:3a:28:ef:b7:51:af:4d:ec:ed:10:16:0d:aa:99:73: ee:03:64:ce:9b:d5:e3:a8:3a:35:41:38:2c:1f:cf:d5:cc:50: 84:1a:e4:b8:80:73:52:1a:57:e2:4e:92:aa:76:42:b5:e3:93: 98:29:5c:a6:10:32:83:5c:2e:9b:66:d0:2a:67:c3:bb:da:e8: 5d:c6:5d:1c:22:43:48:62:d5:4e:e6:a0:30:90:5e:5d:a0:0f: 71:9e:2b:e4:f1:bf:e9:f1:bb:e3:3a:a5:ea:38:78:b1:3e:d4: a8:f1:82:3e:c2:1f:09:55:ce:80:ff:b1:14:52:67:b9:a1:f6: 1a:c2:db:a1:3c:dc:b7:88:3a:55:9b:cb:05:73:bf:9b:a0:c1: f0:6a:7c:8a:1b:73:be:58:4e:b0:3c:15:4d:37:09:7b:53:70: be:82:e7:a1:93:4d:3e:80:b7:71:1e:99:04:ae:eb:d0:42:f9: c0:9d:01:9a:46:4a:0d:96:f0:c9:74:05:bc:b9:3b:bb:e1:7e: 88:e7:70:2f:c0:83:a8:a0:93:16:d7:0a:40:23:ea:f3:7a:91: 74:24:33:72:4d:2f:36:02:43:55:f8:fa:8c:2e:81:8e:23:31: f9:4e:05:f5 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUeiPIVS90sELjQLGWF5nlzVIgbWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U5RTdENEZCNjY0RTNDRjJGQzkwRTk2MDRGQUUxOThB MUEzMDJCMjAeFw0yNTA0MjExMzIxNDVaFw0yNjA0MjAxMzI2NDVaMDMxMTAvBgNV BAMTKDU5MzVFRUQ4QzczQUYxMzQ1NUYxQjM2NTVEQjIyQkE1QjZCN0Q1MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr2HNz463eA8U3O7sOBLFy2lMw vu5Nd4ru6GEeA1wSwph8qdM7xJ46/rVZVhSWG26f7YlSEL6uGtfCwnYH0lJ8mBk9 xiLZjuhkoytVguve9CY1RE++00Jv4UiM9Jr9Y6gL58B2yFzBZ5f81a8jVolRUagf UQ3TZ6U5oC+AcBxxW4CMSCBTV+U96YIorh14dcEXzPnJK4FL6XrhJkpXseBikC2W mIGr8ZGGb2AwU3Pv5Rd9qyxqJ+BjRqvBfPZG7/gbWb6R2Rfe88wI8F54pcMhSzDu xnt/psFupNdk0tzwiz0X2QaXemgnbGFz+MVE1ljK6B5r0kBbpdBQstOeNHMZAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUWTXu2Mc68TRV8bNlXbIrpba31SwwHwYDVR0j BBgwFoAUzp59T7Zk488vyQ6WBPrhmKGjArIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDZiNXRkRkt5TjQ1dzNpcGRrZFJBN0hXSnlGdTRGb0VoY1VuWVJQNVdz VHYvMS9DRTlFN0Q0RkI2NjRFM0NGMkZDOTBFOTYwNEZBRTE5OEExQTMwMkIyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFOUU3RDRGQjY2NEUzQ0Yy RkM5MEU5NjA0RkFFMTk4QTFBMzAyQjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q2YjV0ZEZLeU40NXczaXBka2RSQTdIV0p5RnU0Rm9FaGNVbllSUDVXc1R2LzEv MzEzNzMwMmUzMjMzMzMyZTMxMzEzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKrpcDANBgkqhkiG9w0BAQsFAAOCAQEAeIVh LHdrcUAsIxx1RbE5GsSqMiZwOijvt1GvTeztEBYNqplz7gNkzpvV46g6NUE4LB/P 1cxQhBrkuIBzUhpX4k6SqnZCteOTmClcphAyg1wum2bQKmfDu9roXcZdHCJDSGLV TuagMJBeXaAPcZ4r5PG/6fG74zql6jh4sT7UqPGCPsIfCVXOgP+xFFJnuaH2GsLb oTzct4g6VZvLBXO/m6DB8Gp8ihtzvlhOsDwVTTcJe1NwvoLnoZNNPoC3cR6ZBK7r 0EL5wJ0BmkZKDZbwyXQFvLk7u+F+iOdwL8CDqKCTFtcKQCPq83qRdCQzck0vNgJD Vfj6jC6BjiMx+U4F9Q== -----END CERTIFICATE-----Generated at Wed Nov 5 05:40:45 2025 by rpki-client