$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32342d3234203d3e20323635303830.roa File: 3137302e3233332e3132302e302f32342d3234203d3e20323635303830.roa (raw, json) Hash identifier: UQXu2hQXHRN2je3euhZZyn9PUypsZVOOhjs5UK8A/bM= Subject key identifier: 46:A3:04:F1:EF:84:2C:1F:20:7F:CB:7E:69:A4:CE:B3:FF:77:F7:50 Certificate issuer: /CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E Certificate serial: 064924A0B0CBB477FC07290DD8BFA4496B45D71E Authority key identifier: BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32342d3234203d3e20323635303830.roa Signing time: Tue 04 Nov 2025 12:21:22 +0000 ROA not before: Tue 04 Nov 2025 12:16:22 +0000 ROA not after: Tue 03 Nov 2026 12:21:22 +0000 asID: 265080 IP address blocks: 170.233.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.crl rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 05 Nov 2025 13:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:49:24:a0:b0:cb:b4:77:fc:07:29:0d:d8:bf:a4:49:6b:45:d7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E Validity Not Before: Nov 4 12:16:22 2025 GMT Not After : Nov 3 12:21:22 2026 GMT Subject: CN=46A304F1EF842C1F207FCB7E69A4CEB3FF77F750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:2a:b4:24:39:73:08:e6:89:02:21:c4:4a:d5: 52:b8:6b:ca:61:0a:e9:b0:6a:bb:d6:1d:7e:d1:29: 1b:0d:9d:46:76:2c:5c:6b:da:67:f5:68:f7:55:ad: 8e:8b:dd:10:60:d3:5a:ca:48:89:a1:2e:89:6e:a2: 78:79:47:51:18:6f:1a:50:b0:ad:aa:91:81:1c:4c: ce:8d:e1:66:17:04:60:ea:f4:75:50:db:6c:70:61: 62:02:38:c2:a6:37:ed:24:c4:91:7f:02:9d:e9:c9: 9c:74:60:3c:d6:6f:0e:c0:9f:c6:81:06:2b:42:1f: 5b:ed:18:59:f0:3d:8d:51:60:6e:00:1e:89:d3:6b: 23:7d:aa:52:d0:a4:e4:94:0f:36:74:b6:30:5a:34: 6a:12:3f:20:1a:11:40:a8:6c:05:a6:d6:f2:c7:4e: 27:47:a8:a4:09:ea:83:50:ce:ac:cb:13:2e:b3:b3: 89:04:df:22:5b:f3:30:b4:6b:a0:24:eb:5f:07:6d: ec:9f:dd:4e:11:9d:93:86:b7:be:df:c1:cc:15:ed: 27:78:78:fa:c7:ab:87:8c:09:11:40:c6:18:a5:1f: b9:0d:42:47:0e:46:fd:32:a8:e8:e8:58:b2:77:e5: 8f:74:99:e3:73:69:9b:52:a5:f9:c6:21:22:03:9e: 4f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A3:04:F1:EF:84:2C:1F:20:7F:CB:7E:69:A4:CE:B3:FF:77:F7:50 X509v3 Authority Key Identifier: keyid:BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132302e302f32342d3234203d3e20323635303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.120.0/24 Signature Algorithm: sha256WithRSAEncryption 72:ef:ac:32:c6:29:ce:cb:6f:05:e2:69:d1:65:09:03:67:8e: f2:40:39:25:36:65:08:2c:6b:45:c3:0a:06:d7:61:6b:c9:22: e0:04:90:79:a3:3c:0c:f8:40:4d:82:3a:87:c4:e3:8e:4b:96: a8:d1:a2:62:44:10:fd:4a:45:f9:39:84:88:26:84:b3:55:9e: 4b:d9:4f:90:c3:d0:92:9a:e4:83:6c:c3:40:74:2b:f7:db:62: 62:c5:1a:70:a4:36:22:54:46:d1:bd:64:f3:ac:ee:4a:75:05: 65:f2:2a:b0:86:57:82:d3:8e:36:d8:b2:74:b9:b3:8d:28:72: f1:a0:30:ed:2e:c3:b2:b8:85:b1:ea:8a:e5:65:71:18:31:ec: c5:68:d2:9d:a2:d5:60:74:96:71:f0:ea:74:b8:d8:17:9f:58: cb:67:d3:f4:92:d4:dc:e4:0e:48:e4:31:4a:4f:6c:55:fd:71: d2:21:e1:8a:80:43:82:c7:32:31:40:9c:96:25:79:70:37:d6: 4e:c3:05:ee:93:e9:64:ff:46:0d:44:c2:0f:b9:6b:31:ad:84: e9:7d:c6:e4:91:47:6e:c2:f5:b9:23:d5:d0:9b:42:25:9d:f4: f6:2d:7f:ec:9e:78:92:0b:ba:b4:37:30:40:f9:0f:3e:53:fb: fa:28:d7:12 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUBkkkoLDLtHf8BykN2L+kSWtF1x4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQzQTg2MTBFQjg5ODVBM0FBOUYzODdFREUwOTczMEFB RUYwNkY0RTAeFw0yNTExMDQxMjE2MjJaFw0yNjExMDMxMjIxMjJaMDMxMTAvBgNV BAMTKDQ2QTMwNEYxRUY4NDJDMUYyMDdGQ0I3RTY5QTRDRUIzRkY3N0Y3NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQKrQkOXMI5okCIcRK1VK4a8ph CumwarvWHX7RKRsNnUZ2LFxr2mf1aPdVrY6L3RBg01rKSImhLoluonh5R1EYbxpQ sK2qkYEcTM6N4WYXBGDq9HVQ22xwYWICOMKmN+0kxJF/Ap3pyZx0YDzWbw7An8aB BitCH1vtGFnwPY1RYG4AHonTayN9qlLQpOSUDzZ0tjBaNGoSPyAaEUCobAWm1vLH TidHqKQJ6oNQzqzLEy6zs4kE3yJb8zC0a6Ak618Hbeyf3U4RnZOGt77fwcwV7Sd4 ePrHq4eMCRFAxhilH7kNQkcORv0yqOjoWLJ35Y90meNzaZtSpfnGISIDnk/JAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQURqME8e+ELB8gf8t+aaTOs/9391AwHwYDVR0j BBgwFoAUvTqGEOuJhaOqnzh+3glzCq7wb04wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRkZYa0xrYUtYSGVyWExwZlVBc283MzZyUUVlbnFNcGl2NlFlaEZ3bVUx dlcvMC9CRDNBODYxMEVCODk4NUEzQUE5RjM4N0VERTA5NzMwQUFFRjA2RjRFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JEM0E4NjEwRUI4OTg1QTNB QTlGMzg3RURFMDk3MzBBQUVGMDZGNEUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZGWGtMa2FLWEhlclhMcGZVQXNvNzM2clFFZW5xTXBpdjZRZWhGd21VMXZXLzAv MzEzNzMwMmUzMjMzMzMyZTMxMzIzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKrpeDANBgkqhkiG9w0BAQsFAAOCAQEAcu+s MsYpzstvBeJp0WUJA2eO8kA5JTZlCCxrRcMKBtdha8ki4ASQeaM8DPhATYI6h8Tj jkuWqNGiYkQQ/UpF+TmEiCaEs1WeS9lPkMPQkprkg2zDQHQr99tiYsUacKQ2IlRG 0b1k86zuSnUFZfIqsIZXgtOONtiydLmzjShy8aAw7S7DsriFseqK5WVxGDHsxWjS naLVYHSWcfDqdLjYF59Yy2fT9JLU3OQOSOQxSk9sVf1x0iHhioBDgscyMUCcliV5 cDfWTsMF7pPpZP9GDUTCD7lrMa2E6X3G5JFHbsL1uSPV0JtCJZ309i1/7J54kgu6 tDcwQPkPPlP7+ijXEg== -----END CERTIFICATE-----Generated at Wed Nov 5 13:08:21 2025 by rpki-client