$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa File: 3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa (raw, json) Hash identifier: /a2y4aWHo28lvVRWC/abKo7CnvEkblWEARGoZ2mTN+4= Subject key identifier: 51:CE:9D:D6:AF:07:57:D3:4C:1D:C4:50:09:A3:3D:29:A7:86:AF:25 Certificate issuer: /CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E Certificate serial: 212CA36941475154D4BA4E785F0D93516F27C552 Authority key identifier: BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa Signing time: Tue 04 Nov 2025 12:21:23 +0000 ROA not before: Tue 04 Nov 2025 12:16:23 +0000 ROA not after: Tue 03 Nov 2026 12:21:23 +0000 asID: 265080 IP address blocks: 170.233.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.crl rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 06 Nov 2025 16:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2c:a3:69:41:47:51:54:d4:ba:4e:78:5f:0d:93:51:6f:27:c5:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E Validity Not Before: Nov 4 12:16:23 2025 GMT Not After : Nov 3 12:21:23 2026 GMT Subject: CN=51CE9DD6AF0757D34C1DC45009A33D29A786AF25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0a:52:b9:c6:10:59:da:87:d3:be:25:38:13: 7c:b2:8e:49:fb:ee:80:6d:20:59:44:28:b6:e4:e6: 13:52:7d:c0:5a:a8:22:5f:f7:67:d0:4d:59:85:0b: 20:cc:b0:51:3c:11:b1:e1:ee:19:d2:b4:bd:7d:d9: 86:08:61:66:0e:04:e7:0a:b6:cc:a6:43:10:d2:a8: 3a:e9:4d:b1:5c:6f:6d:42:e9:89:f4:da:9a:0f:1a: 9d:af:b9:02:8c:44:1d:7b:a1:9c:b2:a0:cc:e3:2b: a0:06:ab:31:71:1d:c2:1a:2d:5b:e4:2e:94:e7:d2: 76:e4:d6:59:ad:08:33:ad:fc:a0:40:4c:5b:d3:a3: c0:75:bd:78:95:2b:35:2b:00:a1:4f:fa:d8:e2:a3: df:53:46:e1:de:fb:56:77:5c:07:4c:43:15:fc:5a: 2d:73:93:c3:39:71:fa:40:f1:2f:22:e9:0e:5e:a9: d2:c0:ce:8a:15:4d:75:3c:b4:b1:f8:da:9f:92:77: d9:d1:c3:2a:5c:d6:11:5c:56:ae:39:82:af:91:95: 34:e3:ec:96:59:47:04:76:87:6c:51:60:f9:f3:11: 03:73:9f:a5:dd:7a:a3:63:4e:ff:99:56:02:79:df: c8:39:b6:b0:cc:22:5b:d4:d8:b1:05:74:6f:b9:73: db:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CE:9D:D6:AF:07:57:D3:4C:1D:C4:50:09:A3:3D:29:A7:86:AF:25 X509v3 Authority Key Identifier: keyid:BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.120.0/22 Signature Algorithm: sha256WithRSAEncryption 15:f7:49:de:81:7b:7f:95:92:6b:c7:63:77:dd:c3:fa:ea:4e: 72:4b:bd:a8:06:c5:49:09:e9:80:fc:11:54:77:57:57:96:c1: 08:8f:f1:32:f8:84:bc:4c:d3:57:1c:ae:b1:96:da:34:70:db: 01:4e:d0:29:a1:41:d0:d4:25:03:9b:72:b3:6f:0e:cd:37:a4: 3a:57:8b:f1:a5:b2:40:7a:29:58:ec:a9:a0:2e:05:1f:81:b4: 18:3f:2b:a3:bc:95:99:b3:7b:0b:74:2b:67:5d:6f:56:07:51: db:b1:53:4c:c0:00:01:d7:99:2f:5d:bf:2c:22:41:17:8b:51: ea:14:bd:be:2e:16:5b:eb:f3:a9:7f:c3:35:4a:bd:b3:83:c5: 55:3f:3c:fa:f4:f4:b7:b4:0c:f8:cb:fd:32:37:05:30:30:56: 1f:96:01:35:df:15:81:b7:cb:45:dd:46:41:cf:cc:8e:dd:a6: 53:6a:f9:12:f4:ad:99:37:c1:e5:8c:05:c5:6e:9d:3c:d5:19: 24:a4:12:eb:84:fa:b2:18:a3:1e:26:23:dc:5e:c7:f2:b3:19: b5:9e:2d:b2:32:94:bc:31:74:dc:3b:14:c5:ff:de:3a:b1:35: 92:25:02:12:49:ad:d4:da:c1:7a:e6:b8:39:e3:d4:77:a2:eb: f8:e7:08:12 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUISyjaUFHUVTUuk54Xw2TUW8nxVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQzQTg2MTBFQjg5ODVBM0FBOUYzODdFREUwOTczMEFB RUYwNkY0RTAeFw0yNTExMDQxMjE2MjNaFw0yNjExMDMxMjIxMjNaMDMxMTAvBgNV BAMTKDUxQ0U5REQ2QUYwNzU3RDM0QzFEQzQ1MDA5QTMzRDI5QTc4NkFGMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHClK5xhBZ2ofTviU4E3yyjkn7 7oBtIFlEKLbk5hNSfcBaqCJf92fQTVmFCyDMsFE8EbHh7hnStL192YYIYWYOBOcK tsymQxDSqDrpTbFcb21C6Yn02poPGp2vuQKMRB17oZyyoMzjK6AGqzFxHcIaLVvk LpTn0nbk1lmtCDOt/KBATFvTo8B1vXiVKzUrAKFP+tjio99TRuHe+1Z3XAdMQxX8 Wi1zk8M5cfpA8S8i6Q5eqdLAzooVTXU8tLH42p+Sd9nRwypc1hFcVq45gq+RlTTj 7JZZRwR2h2xRYPnzEQNzn6XdeqNjTv+ZVgJ538g5trDMIlvU2LEFdG+5c9spAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUUc6d1q8HV9NMHcRQCaM9KaeGryUwHwYDVR0j BBgwFoAUvTqGEOuJhaOqnzh+3glzCq7wb04wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRkZYa0xrYUtYSGVyWExwZlVBc283MzZyUUVlbnFNcGl2NlFlaEZ3bVUx dlcvMC9CRDNBODYxMEVCODk4NUEzQUE5RjM4N0VERTA5NzMwQUFFRjA2RjRFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JEM0E4NjEwRUI4OTg1QTNB QTlGMzg3RURFMDk3MzBBQUVGMDZGNEUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZGWGtMa2FLWEhlclhMcGZVQXNvNzM2clFFZW5xTXBpdjZRZWhGd21VMXZXLzAv MzEzNzMwMmUzMjMzMzMyZTMxMzIzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy MzYzNTMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqrpeDANBgkqhkiG9w0BAQsFAAOCAQEAFfdJ 3oF7f5WSa8djd93D+upOcku9qAbFSQnpgPwRVHdXV5bBCI/xMviEvEzTVxyusZba NHDbAU7QKaFB0NQlA5tys28OzTekOleL8aWyQHopWOypoC4FH4G0GD8ro7yVmbN7 C3QrZ11vVgdR27FTTMAAAdeZL12/LCJBF4tR6hS9vi4WW+vzqX/DNUq9s4PFVT88 +vT0t7QM+Mv9MjcFMDBWH5YBNd8VgbfLRd1GQc/Mjt2mU2r5EvStmTfB5YwFxW6d PNUZJKQS64T6shijHiYj3F7H8rMZtZ4tsjKUvDF03DsUxf/eOrE1kiUCEkmt1NrB eua4OePUd6Lr+OcIEg== -----END CERTIFICATE-----Generated at Wed Nov 5 17:03:29 2025 by rpki-client