$ rpki-client -vvf rpki-repo.registro.br/repo/ApPpXRRcuG9Q1mXqxzQxHKo3up8WUt3t4V4EmyxtDnJj/0/3139312e3234302e3135322e302f32342d3234203d3e203238313635.roa File: 3139312e3234302e3135322e302f32342d3234203d3e203238313635.roa (raw, json) Hash identifier: x7/PoLghRJ/6vxbPA2AxYc8DMEcqha+U6oIKke8P7s4= Subject key identifier: 86:4D:C5:1A:C0:31:B1:CA:D0:EC:FD:78:86:F7:10:F9:A6:26:BE:FB Certificate issuer: /CN=91601A9EF5E0DA5D0C152ECB7FE23C8755CBC207 Certificate serial: 0DF82AFC2CA3F8AA3230A7682BEAF573C40C4913 Authority key identifier: 91:60:1A:9E:F5:E0:DA:5D:0C:15:2E:CB:7F:E2:3C:87:55:CB:C2:07 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/91601A9EF5E0DA5D0C152ECB7FE23C8755CBC207.cer Subject info access: rsync://rpki-repo.registro.br/repo/ApPpXRRcuG9Q1mXqxzQxHKo3up8WUt3t4V4EmyxtDnJj/0/3139312e3234302e3135322e302f32342d3234203d3e203238313635.roa Signing time: Mon 28 Jul 2025 12:31:34 +0000 ROA not before: Mon 28 Jul 2025 12:26:34 +0000 ROA not after: Mon 27 Jul 2026 12:31:34 +0000 asID: 28165 IP address blocks: 191.240.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/ApPpXRRcuG9Q1mXqxzQxHKo3up8WUt3t4V4EmyxtDnJj/0/91601A9EF5E0DA5D0C152ECB7FE23C8755CBC207.crl rsync://rpki-repo.registro.br/repo/ApPpXRRcuG9Q1mXqxzQxHKo3up8WUt3t4V4EmyxtDnJj/0/91601A9EF5E0DA5D0C152ECB7FE23C8755CBC207.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/91601A9EF5E0DA5D0C152ECB7FE23C8755CBC207.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 11 Aug 2025 13:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f8:2a:fc:2c:a3:f8:aa:32:30:a7:68:2b:ea:f5:73:c4:0c:49:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91601A9EF5E0DA5D0C152ECB7FE23C8755CBC207 Validity Not Before: Jul 28 12:26:34 2025 GMT Not After : Jul 27 12:31:34 2026 GMT Subject: CN=864DC51AC031B1CAD0ECFD7886F710F9A626BEFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:82:69:76:84:1d:d4:92:c0:94:e2:fd:c0: d5:0d:26:e7:fb:8e:e9:e8:31:f6:6b:9e:30:da:15: f7:1a:a8:be:65:52:ce:8f:fb:a7:d6:7e:78:03:2b: 1f:54:f2:1c:38:7c:c9:b4:ce:68:91:ab:d2:b0:9d: 78:9d:13:f6:5e:f8:49:d1:55:e9:e7:ed:eb:7f:4c: bf:2c:0e:85:a0:c5:4e:f2:d4:dd:3c:ff:40:57:cc: 0b:54:b4:75:bf:52:c0:1a:70:a1:e0:7f:c1:c3:4d: 90:6a:82:03:89:a3:d6:3a:58:90:db:eb:40:85:b0: ea:78:64:45:87:2a:d8:fb:32:d5:d2:6a:2d:28:07: 9f:de:4a:01:28:e9:25:00:ad:ed:f6:17:30:c1:5c: 2f:d0:b2:dd:55:96:ee:5a:80:81:1a:93:80:eb:ad: 58:bf:49:ba:ac:56:57:61:8f:a2:e5:67:95:45:32: c3:ca:e4:45:27:29:d5:51:5a:9c:99:5d:54:a0:bd: ec:58:65:63:5a:c6:04:7d:03:b4:8c:29:2f:69:8b: 4a:7c:3a:22:32:08:ac:70:72:cb:2b:92:dd:86:f0: ea:d2:21:5f:93:07:e2:6f:0a:f0:3e:df:d3:2e:1b: f9:d0:76:d5:ab:cd:44:cd:65:b0:0a:8a:2e:30:ae: aa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4D:C5:1A:C0:31:B1:CA:D0:EC:FD:78:86:F7:10:F9:A6:26:BE:FB X509v3 Authority Key Identifier: keyid:91:60:1A:9E:F5:E0:DA:5D:0C:15:2E:CB:7F:E2:3C:87:55:CB:C2:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/ApPpXRRcuG9Q1mXqxzQxHKo3up8WUt3t4V4EmyxtDnJj/0/91601A9EF5E0DA5D0C152ECB7FE23C8755CBC207.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/91601A9EF5E0DA5D0C152ECB7FE23C8755CBC207.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/ApPpXRRcuG9Q1mXqxzQxHKo3up8WUt3t4V4EmyxtDnJj/0/3139312e3234302e3135322e302f32342d3234203d3e203238313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 191.240.152.0/24 Signature Algorithm: sha256WithRSAEncryption a1:b6:00:bd:7c:d6:d7:65:2c:f1:0a:c7:39:aa:3b:62:59:f6: 0b:1b:ab:6d:aa:2d:48:66:e5:de:93:b0:25:18:94:fe:a8:7f: 78:44:97:e8:b3:8f:a0:a8:e8:cf:2b:bd:78:3f:5c:da:5b:f5: 60:8a:67:26:71:e9:74:ae:a9:4b:45:8b:66:df:8c:1d:86:4e: 36:a3:36:71:1a:34:d0:20:23:a8:4e:eb:18:39:3d:65:73:92: 04:70:e4:24:27:24:1d:ea:42:6c:ec:fe:5f:07:57:ec:8c:a2: 7a:91:98:df:29:81:3a:1c:d0:64:e3:0b:31:a6:98:a6:82:27: 33:d9:43:b4:1d:0c:65:77:81:15:16:4b:fb:f8:19:d9:b1:ce: ee:8a:8e:66:4c:36:27:fc:06:d6:c6:3b:25:c6:0e:87:2d:11: db:b2:34:ff:6c:f7:f0:9c:46:1e:07:73:f3:6e:a7:4b:e1:20: 5e:ec:1b:d0:b4:a9:c7:18:9d:be:01:9d:09:9f:a2:c5:52:c6: b1:10:1d:85:16:b6:d1:04:8a:79:df:ef:85:fe:64:3f:3b:c7: 88:bd:b3:52:47:39:62:38:f6:fe:2c:d7:af:9b:b8:e5:d3:8f: 30:2b:70:4d:0a:76:8c:f5:f0:20:b7:04:82:51:b3:dd:6c:61: 3d:f1:10:e4 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUDfgq/Cyj+KoyMKdoK+r1c8QMSRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE2MDFBOUVGNUUwREE1RDBDMTUyRUNCN0ZFMjNDODc1 NUNCQzIwNzAeFw0yNTA3MjgxMjI2MzRaFw0yNjA3MjcxMjMxMzRaMDMxMTAvBgNV BAMTKDg2NERDNTFBQzAzMUIxQ0FEMEVDRkQ3ODg2RjcxMEY5QTYyNkJFRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoZYJpdoQd1JLAlOL9wNUNJuf7 junoMfZrnjDaFfcaqL5lUs6P+6fWfngDKx9U8hw4fMm0zmiRq9KwnXidE/Ze+EnR Venn7et/TL8sDoWgxU7y1N08/0BXzAtUtHW/UsAacKHgf8HDTZBqggOJo9Y6WJDb 60CFsOp4ZEWHKtj7MtXSai0oB5/eSgEo6SUAre32FzDBXC/Qst1Vlu5agIEak4Dr rVi/SbqsVldhj6LlZ5VFMsPK5EUnKdVRWpyZXVSgvexYZWNaxgR9A7SMKS9pi0p8 OiIyCKxwcssrkt2G8OrSIV+TB+JvCvA+39MuG/nQdtWrzUTNZbAKii4wrqqfAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUhk3FGsAxscrQ7P14hvcQ+aYmvvswHwYDVR0j BBgwFoAUkWAanvXg2l0MFS7Lf+I8h1XLwgcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQXBQcFhSUmN1RzlRMW1YcXh6UXhIS28zdXA4V1V0M3Q0VjRFbXl4dERu SmovMC85MTYwMUE5RUY1RTBEQTVEMEMxNTJFQ0I3RkUyM0M4NzU1Q0JDMjA3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzkxNjAxQTlFRjVFMERBNUQw QzE1MkVDQjdGRTIzQzg3NTVDQkMyMDcuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0FwUHBYUlJjdUc5UTFtWHF4elF4SEtvM3VwOFdVdDN0NFY0RW15eHREbkpqLzAv MzEzOTMxMmUzMjM0MzAyZTMxMzUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAC/8JgwDQYJKoZIhvcNAQELBQADggEBAKG2AL18 1tdlLPEKxzmqO2JZ9gsbq22qLUhm5d6TsCUYlP6of3hEl+izj6Co6M8rvXg/XNpb 9WCKZyZx6XSuqUtFi2bfjB2GTjajNnEaNNAgI6hO6xg5PWVzkgRw5CQnJB3qQmzs /l8HV+yMonqRmN8pgToc0GTjCzGmmKaCJzPZQ7QdDGV3gRUWS/v4Gdmxzu6KjmZM Nif8BtbGOyXGDoctEduyNP9s9/CcRh4Hc/Nup0vhIF7sG9C0qccYnb4BnQmfosVS xrEQHYUWttEEinnf74X+ZD87x4i9s1JHOWI49v4s16+buOXTjzArcE0Kdoz18CC3 BIJRs91sYT3xEOQ= -----END CERTIFICATE-----Generated at Sun Aug 10 18:16:48 2025 by rpki-client