$ rpki-client -vvf rpki-repo.registro.br/repo/FDaQjM2ZNghQd6kM9B1AcNsfUV4FMHZzc2u3oNvxd9g5/1/3132382e3230312e3139362e302f32322d3233203d3e20323635383937.roa File: 3132382e3230312e3139362e302f32322d3233203d3e20323635383937.roa (raw, json) Hash identifier: fywAj1bnhRJmRsgN0Mf3WPSJCCod6hqGB+vH03+KmCU= Subject key identifier: 8A:11:9C:53:24:C1:48:8A:BA:6C:78:AA:FA:99:09:07:9E:55:85:83 Certificate issuer: /CN=5A5E26B1B0F12ABA275375436239BFDD76E5189A Certificate serial: 2310F7457D666B4C8DF0BAF92F82A044AF8839F2 Authority key identifier: 5A:5E:26:B1:B0:F1:2A:BA:27:53:75:43:62:39:BF:DD:76:E5:18:9A Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A5E26B1B0F12ABA275375436239BFDD76E5189A.cer Subject info access: rsync://rpki-repo.registro.br/repo/FDaQjM2ZNghQd6kM9B1AcNsfUV4FMHZzc2u3oNvxd9g5/1/3132382e3230312e3139362e302f32322d3233203d3e20323635383937.roa Signing time: Tue 24 Jun 2025 21:39:32 +0000 ROA not before: Tue 24 Jun 2025 21:34:32 +0000 ROA not after: Tue 23 Jun 2026 21:39:32 +0000 asID: 265897 IP address blocks: 128.201.196.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FDaQjM2ZNghQd6kM9B1AcNsfUV4FMHZzc2u3oNvxd9g5/1/5A5E26B1B0F12ABA275375436239BFDD76E5189A.crl rsync://rpki-repo.registro.br/repo/FDaQjM2ZNghQd6kM9B1AcNsfUV4FMHZzc2u3oNvxd9g5/1/5A5E26B1B0F12ABA275375436239BFDD76E5189A.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A5E26B1B0F12ABA275375436239BFDD76E5189A.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 06 Nov 2025 23:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:10:f7:45:7d:66:6b:4c:8d:f0:ba:f9:2f:82:a0:44:af:88:39:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A5E26B1B0F12ABA275375436239BFDD76E5189A Validity Not Before: Jun 24 21:34:32 2025 GMT Not After : Jun 23 21:39:32 2026 GMT Subject: CN=8A119C5324C1488ABA6C78AAFA9909079E558583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d8:ab:cd:90:4c:dc:4c:8b:b1:00:5d:89:86: 95:e7:9f:92:4f:e8:c5:3d:4c:b8:25:01:87:d9:e4: 3c:e1:ef:44:d3:f1:8e:ff:a1:38:cd:5f:bc:03:20: 3a:cb:42:a4:27:02:f9:1f:7e:ff:87:6b:e1:d8:d4: 7b:b2:ad:cf:17:ae:8e:87:ab:52:d0:df:d9:cd:e2: 9c:26:0b:a3:60:44:54:6e:96:4d:f2:b8:34:c7:57: 86:69:67:70:58:5e:00:8e:be:ee:f7:fa:47:22:42: 7c:47:95:de:28:81:61:78:16:85:1d:6c:cb:de:6f: fb:fd:94:b8:bf:37:c9:58:c9:28:a1:55:68:b0:36: 85:8a:29:ff:ef:bc:33:a9:10:3f:40:7b:a8:d9:7a: 04:ae:32:0a:48:e0:05:a5:3c:6e:44:4c:11:6e:80: 25:8d:a2:53:03:e5:d1:29:29:87:89:7d:23:51:e4: 3f:69:1c:76:ed:cf:d4:65:ff:37:77:36:0d:39:6e: d5:84:44:f7:a5:cb:6e:16:27:b7:fe:87:7f:a7:6e: a6:9c:0d:25:5a:86:d1:3d:a3:77:44:fe:86:9f:18: 94:23:96:8e:07:18:59:50:3b:ce:57:58:2f:98:40: ff:da:4e:c6:bf:2d:70:ee:20:ce:7c:8e:f2:82:27: 38:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:11:9C:53:24:C1:48:8A:BA:6C:78:AA:FA:99:09:07:9E:55:85:83 X509v3 Authority Key Identifier: keyid:5A:5E:26:B1:B0:F1:2A:BA:27:53:75:43:62:39:BF:DD:76:E5:18:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FDaQjM2ZNghQd6kM9B1AcNsfUV4FMHZzc2u3oNvxd9g5/1/5A5E26B1B0F12ABA275375436239BFDD76E5189A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A5E26B1B0F12ABA275375436239BFDD76E5189A.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FDaQjM2ZNghQd6kM9B1AcNsfUV4FMHZzc2u3oNvxd9g5/1/3132382e3230312e3139362e302f32322d3233203d3e20323635383937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.201.196.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:5d:52:ff:3c:21:0a:2b:1a:68:ea:06:b7:3a:79:2b:10:5f: aa:fd:20:4b:a6:25:dc:33:0b:de:30:8d:6b:c4:aa:60:38:31: 80:d9:08:f6:68:0b:22:11:7c:2b:78:3f:10:56:04:73:c8:fb: 3f:15:df:84:7d:ed:a5:40:e1:3c:72:5a:82:18:95:d8:6d:fa: bb:90:41:be:8d:f4:15:34:68:5a:84:92:59:a1:fb:95:7d:6a: 90:81:a3:f3:4f:48:93:39:15:0c:4c:17:7d:06:b3:75:03:43: f8:ad:90:1e:28:06:a5:11:89:86:8c:e2:4d:2b:f9:04:54:74: 4a:36:bc:70:ee:fe:a9:8c:cd:04:bb:f1:6d:69:3e:5b:d7:2e: 81:63:90:9a:b4:1c:51:e7:dd:20:cc:9c:47:f5:2a:53:bf:31: 92:18:55:1c:15:be:ea:47:07:53:74:ed:51:61:40:66:24:a7: 90:83:b6:e6:98:15:57:84:44:24:47:83:6b:b4:70:98:e7:0f: 4d:13:0c:5a:80:2a:f2:4e:7e:c1:81:dd:3e:76:a5:d9:9c:08: 86:8e:1c:18:1c:0e:d8:2b:6a:b6:ab:a9:ed:94:2f:66:32:e6: dc:29:28:9b:38:21:e4:72:6c:d3:1a:f8:78:06:de:81:0d:68: 47:be:2f:40 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUIxD3RX1ma0yN8Lr5L4KgRK+IOfIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE1RTI2QjFCMEYxMkFCQTI3NTM3NTQzNjIzOUJGREQ3 NkU1MTg5QTAeFw0yNTA2MjQyMTM0MzJaFw0yNjA2MjMyMTM5MzJaMDMxMTAvBgNV BAMTKDhBMTE5QzUzMjRDMTQ4OEFCQTZDNzhBQUZBOTkwOTA3OUU1NTg1ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN2KvNkEzcTIuxAF2JhpXnn5JP 6MU9TLglAYfZ5Dzh70TT8Y7/oTjNX7wDIDrLQqQnAvkffv+Ha+HY1Huyrc8Xro6H q1LQ39nN4pwmC6NgRFRulk3yuDTHV4ZpZ3BYXgCOvu73+kciQnxHld4ogWF4FoUd bMveb/v9lLi/N8lYySihVWiwNoWKKf/vvDOpED9Ae6jZegSuMgpI4AWlPG5ETBFu gCWNolMD5dEpKYeJfSNR5D9pHHbtz9Rl/zd3Ng05btWERPely24WJ7f+h3+nbqac DSVahtE9o3dE/oafGJQjlo4HGFlQO85XWC+YQP/aTsa/LXDuIM58jvKCJzhpAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUihGcUyTBSIq6bHiq+pkJB55VhYMwHwYDVR0j BBgwFoAUWl4msbDxKronU3VDYjm/3XblGJowDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRkRhUWpNMlpOZ2hRZDZrTTlCMUFjTnNmVVY0Rk1IWnpjMnUzb052eGQ5 ZzUvMS81QTVFMjZCMUIwRjEyQUJBMjc1Mzc1NDM2MjM5QkZERDc2RTUxODlBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVBNUUyNkIxQjBGMTJBQkEy NzUzNzU0MzYyMzlCRkRENzZFNTE4OUEuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZEYVFqTTJaTmdoUWQ2a005QjFBY05zZlVWNEZNSFp6YzJ1M29OdnhkOWc1LzEv MzEzMjM4MmUzMjMwMzEyZTMxMzkzNjJlMzAyZjMyMzIyZDMyMzMyMDNkM2UyMDMy MzYzNTM4MzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAoDJxDANBgkqhkiG9w0BAQsFAAOCAQEAel1S /zwhCisaaOoGtzp5KxBfqv0gS6Yl3DML3jCNa8SqYDgxgNkI9mgLIhF8K3g/EFYE c8j7PxXfhH3tpUDhPHJaghiV2G36u5BBvo30FTRoWoSSWaH7lX1qkIGj809IkzkV DEwXfQazdQND+K2QHigGpRGJhoziTSv5BFR0Sja8cO7+qYzNBLvxbWk+W9cugWOQ mrQcUefdIMycR/UqU78xkhhVHBW+6kcHU3TtUWFAZiSnkIO25pgVV4REJEeDa7Rw mOcPTRMMWoAq8k5+wYHdPnal2ZwIho4cGBwO2Ctqtqup7ZQvZjLm3Ckomzgh5HJs 0xr4eAbegQ1oR74vQA== -----END CERTIFICATE-----Generated at Thu Nov 6 00:40:57 2025 by rpki-client