$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32332d3233203d3e20323635303830.roa File: 3137302e3233332e3132302e302f32332d3233203d3e20323635303830.roa (raw, json) Hash identifier: kgMnQvFQZ41NmFQiiTfB9er4UvYH9awM9HsX7+MBHPU= Subject key identifier: A7:AF:12:90:32:25:A2:27:8D:69:8A:9F:D5:A3:64:C4:C9:96:B8:75 Certificate issuer: /CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E Certificate serial: 73BAD4A2C0C434DF4917A167C2516C5ACBA2F924 Authority key identifier: BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32332d3233203d3e20323635303830.roa Signing time: Tue 04 Nov 2025 12:21:20 +0000 ROA not before: Tue 04 Nov 2025 12:16:20 +0000 ROA not after: Tue 03 Nov 2026 12:21:20 +0000 asID: 265080 IP address blocks: 170.233.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.crl rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 06 Nov 2025 16:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ba:d4:a2:c0:c4:34:df:49:17:a1:67:c2:51:6c:5a:cb:a2:f9:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E Validity Not Before: Nov 4 12:16:20 2025 GMT Not After : Nov 3 12:21:20 2026 GMT Subject: CN=A7AF12903225A2278D698A9FD5A364C4C996B875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:21:66:81:bc:2b:ce:a8:ca:36:7d:26:5b:d4: cd:ba:2d:a0:4b:76:af:9e:f5:e6:82:95:5d:cb:d8: ab:df:8c:ab:7d:87:07:0e:3a:73:aa:8e:60:09:4e: 8f:02:ce:9e:87:38:97:70:0e:22:d0:c8:06:72:10: 37:2c:75:86:08:2c:03:d0:e4:78:14:51:2b:50:2f: 52:6a:a9:5c:c7:98:57:95:64:c9:2e:a5:34:87:53: 51:fc:1f:86:24:25:a8:41:31:58:25:44:bb:cf:07: 1f:1d:75:3e:eb:35:57:d3:66:f1:a4:21:aa:83:b6: d2:5e:36:8e:30:7e:2f:f4:ac:3c:70:b7:c1:ad:97: c9:6a:3a:55:1c:12:7c:43:4a:e0:ed:99:2e:c3:64: a2:3a:a4:7e:dd:8a:f6:cf:07:6d:c4:1d:39:fc:61: 85:30:61:1f:08:17:0a:ae:f2:bb:4b:d2:2f:e4:d0: e1:2b:93:fc:5a:89:eb:d1:67:08:e3:67:98:a1:aa: 7d:30:55:dc:4c:d4:24:e6:32:d4:c4:4c:c7:c5:3f: e1:ff:97:92:54:e2:dc:cd:5d:5d:87:47:78:a3:de: 1f:50:87:f5:53:d6:1f:6e:67:ab:65:cf:7c:ec:84: e9:73:46:63:ad:5f:cf:ac:10:6c:d1:0e:c3:b5:6c: 29:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:AF:12:90:32:25:A2:27:8D:69:8A:9F:D5:A3:64:C4:C9:96:B8:75 X509v3 Authority Key Identifier: keyid:BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32332d3233203d3e20323635303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.120.0/23 Signature Algorithm: sha256WithRSAEncryption 88:ad:e5:e4:22:c7:27:2d:1a:77:58:f4:b1:46:84:1d:30:d7: 9f:dd:ae:17:c2:53:13:4f:18:66:ff:3a:fa:81:90:40:be:11: d3:7f:51:3c:34:11:15:09:f5:fc:d1:5c:92:b4:ae:75:a9:53: fc:16:de:49:70:be:0f:4b:d8:da:e3:d5:f1:35:24:2b:af:2a: 9d:0b:a1:ea:33:f1:ca:e6:22:6f:58:7d:2e:a5:01:e2:74:d9: ae:ed:78:6a:de:b8:60:9f:0d:75:0d:0f:7b:3e:d1:87:b0:3a: d9:8d:2b:e9:67:55:e1:9e:66:15:32:4a:eb:d3:b6:7b:45:09: 41:92:5f:b9:6a:a4:0e:2f:4e:f5:63:b3:60:cd:d2:79:a5:98: 2e:53:d3:35:2d:b1:e2:88:d7:70:05:c5:11:be:72:f4:e2:0e: 0a:46:cc:42:4d:87:0d:97:c5:df:a2:f7:7a:f0:f2:9b:9d:26: 1b:e0:02:a5:aa:82:12:a4:f6:66:09:06:ee:10:49:c7:98:d1: 3a:24:43:af:ee:e1:5c:bb:3d:c2:89:df:d0:26:c7:ed:d9:ee: 8c:17:2e:fe:06:bd:0a:3f:3b:3c:09:91:b9:3b:bc:ee:df:54: 31:e7:14:f4:6a:b6:a9:19:94:b1:dd:58:28:12:a5:f6:e1:e6: b8:18:df:61 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUc7rUosDENN9JF6FnwlFsWsui+SQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQzQTg2MTBFQjg5ODVBM0FBOUYzODdFREUwOTczMEFB RUYwNkY0RTAeFw0yNTExMDQxMjE2MjBaFw0yNjExMDMxMjIxMjBaMDMxMTAvBgNV BAMTKEE3QUYxMjkwMzIyNUEyMjc4RDY5OEE5RkQ1QTM2NEM0Qzk5NkI4NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPIWaBvCvOqMo2fSZb1M26LaBL dq+e9eaClV3L2KvfjKt9hwcOOnOqjmAJTo8Czp6HOJdwDiLQyAZyEDcsdYYILAPQ 5HgUUStQL1JqqVzHmFeVZMkupTSHU1H8H4YkJahBMVglRLvPBx8ddT7rNVfTZvGk IaqDttJeNo4wfi/0rDxwt8Gtl8lqOlUcEnxDSuDtmS7DZKI6pH7divbPB23EHTn8 YYUwYR8IFwqu8rtL0i/k0OErk/xaievRZwjjZ5ihqn0wVdxM1CTmMtTETMfFP+H/ l5JU4tzNXV2HR3ij3h9Qh/VT1h9uZ6tlz3zshOlzRmOtX8+sEGzRDsO1bCmdAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUp68SkDIloieNaYqf1aNkxMmWuHUwHwYDVR0j BBgwFoAUvTqGEOuJhaOqnzh+3glzCq7wb04wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRkZYa0xrYUtYSGVyWExwZlVBc283MzZyUUVlbnFNcGl2NlFlaEZ3bVUx dlcvMC9CRDNBODYxMEVCODk4NUEzQUE5RjM4N0VERTA5NzMwQUFFRjA2RjRFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JEM0E4NjEwRUI4OTg1QTNB QTlGMzg3RURFMDk3MzBBQUVGMDZGNEUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZGWGtMa2FLWEhlclhMcGZVQXNvNzM2clFFZW5xTXBpdjZRZWhGd21VMXZXLzAv MzEzNzMwMmUzMjMzMzMyZTMxMzIzMDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy MzYzNTMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAarpeDANBgkqhkiG9w0BAQsFAAOCAQEAiK3l 5CLHJy0ad1j0sUaEHTDXn92uF8JTE08YZv86+oGQQL4R039RPDQRFQn1/NFckrSu dalT/BbeSXC+D0vY2uPV8TUkK68qnQuh6jPxyuYib1h9LqUB4nTZru14at64YJ8N dQ0Pez7Rh7A62Y0r6WdV4Z5mFTJK69O2e0UJQZJfuWqkDi9O9WOzYM3SeaWYLlPT NS2x4ojXcAXFEb5y9OIOCkbMQk2HDZfF36L3evDym50mG+ACpaqCEqT2ZgkG7hBJ x5jROiRDr+7hXLs9wonf0CbH7dnujBcu/ga9Cj87PAmRuTu87t9UMecU9Gq2qRmU sd1YKBKl9uHmuBjfYQ== -----END CERTIFICATE-----Generated at Wed Nov 5 17:18:19 2025 by rpki-client