$ rpki-client -vvf rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/3230312e34392e3232342e302f32342d3234203d3e20323634383836.roa File: 3230312e34392e3232342e302f32342d3234203d3e20323634383836.roa (raw, json) Hash identifier: aAcskGlGmP8AQ7qs2cBaT1+bvYjC59f6aR7MspSUM2s= Subject key identifier: F5:D5:DF:64:D1:48:68:F2:20:EC:65:7C:1F:C0:E2:FF:3F:32:AB:46 Certificate issuer: /CN=2C1CC943537E72AA599BC9B940FB180BA89C2D1A Certificate serial: 37B0E9E7151FBB6BDE1848B774E1879AD77A5DC7 Authority key identifier: 2C:1C:C9:43:53:7E:72:AA:59:9B:C9:B9:40:FB:18:0B:A8:9C:2D:1A Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.cer Subject info access: rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/3230312e34392e3232342e302f32342d3234203d3e20323634383836.roa Signing time: Wed 12 Feb 2025 12:59:50 +0000 ROA not before: Wed 12 Feb 2025 12:54:50 +0000 ROA not after: Wed 11 Feb 2026 12:59:50 +0000 asID: 264886 IP address blocks: 201.49.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.crl rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 04 Nov 2025 09:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:b0:e9:e7:15:1f:bb:6b:de:18:48:b7:74:e1:87:9a:d7:7a:5d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C1CC943537E72AA599BC9B940FB180BA89C2D1A Validity Not Before: Feb 12 12:54:50 2025 GMT Not After : Feb 11 12:59:50 2026 GMT Subject: CN=F5D5DF64D14868F220EC657C1FC0E2FF3F32AB46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3f:30:8a:88:26:8a:62:e8:f7:76:db:c0:89: 86:e1:0e:ac:9a:78:d6:c1:3c:00:37:7a:e9:2b:8c: 35:9b:4c:47:12:1d:13:14:cf:f5:a4:0e:3d:82:4d: b1:09:a6:45:3e:a8:29:84:db:7f:c6:18:19:b2:f5: fc:f1:0c:a7:f9:87:5f:68:d2:d8:9b:50:38:50:55: f5:da:45:8a:af:1c:69:df:76:ba:7c:89:64:e5:ff: ef:06:c2:cd:54:f9:18:dd:c2:78:26:91:5a:00:22: c1:7f:e8:06:64:20:21:f4:af:03:43:7a:bd:dd:af: a5:f7:6c:b8:eb:82:8b:ae:52:ea:e6:5b:42:79:9f: b9:b9:86:98:39:71:cd:9d:d5:43:8b:4b:37:4a:1e: 9d:23:4e:28:8a:80:81:85:5b:e7:c2:76:7b:7d:38: ef:ab:21:8c:41:01:34:fa:fb:55:0d:c6:b2:66:27: 1e:d6:5b:29:21:f3:c9:89:20:e5:a9:8b:46:15:49: 40:df:41:20:40:50:23:3c:48:34:b5:95:6e:8e:50: 42:2c:82:5f:6e:c3:c9:ee:85:31:b6:74:bf:08:42: 73:25:29:c6:ee:54:3e:3c:1d:4a:61:ce:3f:cc:21: f0:31:25:60:51:fe:05:fe:8e:fd:dd:4a:b1:fd:b2: fa:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D5:DF:64:D1:48:68:F2:20:EC:65:7C:1F:C0:E2:FF:3F:32:AB:46 X509v3 Authority Key Identifier: keyid:2C:1C:C9:43:53:7E:72:AA:59:9B:C9:B9:40:FB:18:0B:A8:9C:2D:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/3230312e34392e3232342e302f32342d3234203d3e20323634383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 201.49.224.0/24 Signature Algorithm: sha256WithRSAEncryption a0:0a:38:f2:72:6a:02:06:e7:ee:68:30:84:f6:84:0a:7d:cf: b9:20:c6:11:ab:d1:96:03:ef:b0:e3:ff:63:29:c8:d9:00:a6: f9:30:20:bb:2d:f0:9d:e5:a4:36:3e:a0:15:bf:79:4e:55:8b: 60:c3:76:82:ef:82:75:1f:0a:73:3f:45:84:70:ba:a6:85:58: 8f:35:a1:97:33:5d:bd:dd:a3:69:15:95:b7:30:e0:50:cf:06: 4c:d8:70:f3:fd:5f:dc:6d:55:55:e3:de:ea:79:44:c1:d8:80: c3:0d:23:aa:91:35:8a:98:f9:6c:0a:59:f1:2b:16:f9:cf:4e: 3d:ec:20:ae:92:17:7e:dc:b3:5e:39:df:ab:dc:9f:74:cc:33: 90:ad:7b:46:f8:89:e9:e8:d8:7d:e1:d4:3c:8e:b7:c3:02:34: e3:6d:50:d7:0e:e5:f8:06:38:a4:9c:d6:ad:98:8e:e5:b3:98: a8:34:b2:84:93:9a:6b:4e:44:68:13:ca:54:5a:1a:0c:58:88: 9d:3b:d2:ff:8c:24:6c:5b:1d:dc:e1:11:20:3b:fd:bd:9b:b2: ec:c0:fd:47:7e:30:53:97:e4:7d:cf:e0:f1:b7:ac:0e:6d:c2: 3c:f9:f7:72:dc:0a:ad:ba:7a:97:f6:24:e6:dd:3f:3b:ed:52: d1:b1:74:1c -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUN7Dp5xUfu2veGEi3dOGHmtd6XccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkMxQ0M5NDM1MzdFNzJBQTU5OUJDOUI5NDBGQjE4MEJB ODlDMkQxQTAeFw0yNTAyMTIxMjU0NTBaFw0yNjAyMTExMjU5NTBaMDMxMTAvBgNV BAMTKEY1RDVERjY0RDE0ODY4RjIyMEVDNjU3QzFGQzBFMkZGM0YzMkFCNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEPzCKiCaKYuj3dtvAiYbhDqya eNbBPAA3eukrjDWbTEcSHRMUz/WkDj2CTbEJpkU+qCmE23/GGBmy9fzxDKf5h19o 0tibUDhQVfXaRYqvHGnfdrp8iWTl/+8Gws1U+RjdwngmkVoAIsF/6AZkICH0rwND er3dr6X3bLjrgouuUurmW0J5n7m5hpg5cc2d1UOLSzdKHp0jTiiKgIGFW+fCdnt9 OO+rIYxBATT6+1UNxrJmJx7WWykh88mJIOWpi0YVSUDfQSBAUCM8SDS1lW6OUEIs gl9uw8nuhTG2dL8IQnMlKcbuVD48HUphzj/MIfAxJWBR/gX+jv3dSrH9svqdAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQU9dXfZNFIaPIg7GV8H8Di/z8yq0YwHwYDVR0j BBgwFoAULBzJQ1N+cqpZm8m5QPsYC6icLRowDgYDVR0PAQH/BAQDAgeAMIGSBgNV HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv cmVwby9hZlhGTWtReXBKamFTYVV6dDNFUVFvSk5jVnV6aGhtZEJOdTFXNFhFbzNp LzEvMkMxQ0M5NDM1MzdFNzJBQTU5OUJDOUI5NDBGQjE4MEJBODlDMkQxQS5jcmww eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS8yQzFDQzk0MzUzN0U3MkFBNTk5 QkM5Qjk0MEZCMTgwQkE4OUMyRDFBLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoG CCsGAQUFBzALhoGNcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9h ZlhGTWtReXBKamFTYVV6dDNFUVFvSk5jVnV6aGhtZEJOdTFXNFhFbzNpLzEvMzIz MDMxMmUzNDM5MmUzMjMyMzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2MzQz ODM4MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB Af8EEDAOMAwEAgABMAYDBADJMeAwDQYJKoZIhvcNAQELBQADggEBAKAKOPJyagIG 5+5oMIT2hAp9z7kgxhGr0ZYD77Dj/2MpyNkApvkwILst8J3lpDY+oBW/eU5Vi2DD doLvgnUfCnM/RYRwuqaFWI81oZczXb3do2kVlbcw4FDPBkzYcPP9X9xtVVXj3up5 RMHYgMMNI6qRNYqY+WwKWfErFvnPTj3sIK6SF37cs14536vcn3TMM5Cte0b4ieno 2H3h1DyOt8MCNONtUNcO5fgGOKSc1q2YjuWzmKg0soSTmmtORGgTylRaGgxYiJ07 0v+MJGxbHdzhESA7/b2bsuzA/Ud+MFOX5H3P4PG3rA5twjz593LcCq26epf2JObd PzvtUtGxdBw= -----END CERTIFICATE-----Generated at Mon Nov 3 12:33:47 2025 by rpki-client