$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132322e302f32342d3234203d3e20323635303830.roa File: 3137302e3233332e3132322e302f32342d3234203d3e20323635303830.roa (raw, json) Hash identifier: J+2cGeedQSkQuUMX8IRAr/pw89GMZTOHvWopcXCptdg= Subject key identifier: BD:1A:61:A8:E0:2F:DE:E4:B4:D3:4B:34:DF:BE:B1:AF:AF:78:2A:13 Certificate issuer: /CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E Certificate serial: 794279655C77B262A2FA0A2DF26B15E0EB8443AE Authority key identifier: BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132322e302f32342d3234203d3e20323635303830.roa Signing time: Tue 04 Nov 2025 12:21:22 +0000 ROA not before: Tue 04 Nov 2025 12:16:22 +0000 ROA not after: Tue 03 Nov 2026 12:21:22 +0000 asID: 265080 IP address blocks: 170.233.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.crl rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 06 Nov 2025 16:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:42:79:65:5c:77:b2:62:a2:fa:0a:2d:f2:6b:15:e0:eb:84:43:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E Validity Not Before: Nov 4 12:16:22 2025 GMT Not After : Nov 3 12:21:22 2026 GMT Subject: CN=BD1A61A8E02FDEE4B4D34B34DFBEB1AFAF782A13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5e:18:7a:b4:92:60:d1:86:b2:e0:4e:03:22: f9:ad:5e:8d:2b:bc:fd:9e:e9:b3:89:08:b6:e2:93: f4:c5:4e:2b:61:fe:33:47:85:3c:51:a0:90:1b:e2: 85:2e:fb:05:73:1e:d4:a5:52:ab:e3:67:01:6f:f8: 59:1e:7f:11:2a:4f:ac:b7:ee:7a:46:10:9e:28:d1: fd:92:55:7e:b2:f9:ef:5a:66:76:25:68:96:a9:6e: 22:d0:4c:47:f1:b5:83:31:fc:ac:f5:bf:af:4d:2c: 0a:e1:25:73:49:44:dd:b1:d9:67:a1:9a:b0:2a:dd: 55:be:11:e1:66:cb:cd:de:33:5d:d9:a1:ef:16:0e: fd:df:ff:50:6a:ab:0c:af:dd:70:10:95:bb:f9:c2: 01:c2:93:24:96:99:ac:ed:dd:9c:4f:a4:a0:bd:8d: a1:fc:a6:d6:92:13:f9:55:98:4b:85:ee:e8:f1:fb: f9:7d:fd:68:11:79:00:8e:d2:27:ca:44:dd:91:a0: ba:ce:86:42:63:26:19:73:d1:c3:72:50:08:85:de: a4:c6:2a:89:57:25:8a:d6:b2:2b:ab:c2:b9:aa:2b: 3b:2a:0f:b7:26:99:fd:a5:bd:d8:42:dd:16:e7:b1: 37:99:e7:df:74:72:d5:65:40:b0:3d:4d:47:50:09: c5:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1A:61:A8:E0:2F:DE:E4:B4:D3:4B:34:DF:BE:B1:AF:AF:78:2A:13 X509v3 Authority Key Identifier: keyid:BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132322e302f32342d3234203d3e20323635303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.122.0/24 Signature Algorithm: sha256WithRSAEncryption 42:8c:62:95:c7:8d:2c:a1:7f:e8:c7:c5:b7:3d:08:5b:b7:65: d5:3a:fd:47:16:00:2a:68:c5:ab:c6:f6:b3:7c:d8:b1:06:63: 72:2c:57:e2:72:82:41:62:29:b2:ff:aa:d9:f8:7f:62:1d:a3: a4:45:12:9b:a0:70:60:1c:65:42:80:50:60:62:f7:13:61:cc: 26:d9:72:cb:82:bb:3e:9d:e5:2b:e8:94:8c:66:e7:9d:e1:e0: dc:44:85:03:73:c9:4e:ab:6e:8e:ff:e6:e6:e4:94:cf:bf:12: 39:c2:e3:d9:78:aa:e6:20:32:14:e8:80:49:60:7c:ad:ec:e1: f5:26:83:20:67:b3:30:9a:ac:5e:97:3b:28:68:9d:d1:0c:fa: 4a:51:bd:aa:67:d9:61:16:15:1d:02:04:e5:6b:95:e5:d0:03: 72:80:5b:28:11:4f:d4:98:21:a4:53:2f:19:8e:a6:4c:5c:ab: f2:70:97:35:ab:39:7a:7f:76:9e:a9:5f:00:3e:9c:88:2d:54: aa:8d:18:cd:d0:55:c4:f5:67:12:3c:20:a9:c1:dd:08:ff:99: be:5c:ea:8e:28:bc:59:81:fb:9f:e3:d0:fc:d6:90:df:fb:ad: 3d:04:58:af:2a:3b:a9:04:99:a2:9a:19:1b:14:33:b0:e7:fb: 17:d9:67:e8 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUeUJ5ZVx3smKi+got8msV4OuEQ64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQzQTg2MTBFQjg5ODVBM0FBOUYzODdFREUwOTczMEFB RUYwNkY0RTAeFw0yNTExMDQxMjE2MjJaFw0yNjExMDMxMjIxMjJaMDMxMTAvBgNV BAMTKEJEMUE2MUE4RTAyRkRFRTRCNEQzNEIzNERGQkVCMUFGQUY3ODJBMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaXhh6tJJg0Yay4E4DIvmtXo0r vP2e6bOJCLbik/TFTith/jNHhTxRoJAb4oUu+wVzHtSlUqvjZwFv+FkefxEqT6y3 7npGEJ4o0f2SVX6y+e9aZnYlaJapbiLQTEfxtYMx/Kz1v69NLArhJXNJRN2x2Weh mrAq3VW+EeFmy83eM13Zoe8WDv3f/1Bqqwyv3XAQlbv5wgHCkySWmazt3ZxPpKC9 jaH8ptaSE/lVmEuF7ujx+/l9/WgReQCO0ifKRN2RoLrOhkJjJhlz0cNyUAiF3qTG KolXJYrWsiurwrmqKzsqD7cmmf2lvdhC3RbnsTeZ5990ctVlQLA9TUdQCcVjAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUvRphqOAv3uS000s0376xr694KhMwHwYDVR0j BBgwFoAUvTqGEOuJhaOqnzh+3glzCq7wb04wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRkZYa0xrYUtYSGVyWExwZlVBc283MzZyUUVlbnFNcGl2NlFlaEZ3bVUx dlcvMC9CRDNBODYxMEVCODk4NUEzQUE5RjM4N0VERTA5NzMwQUFFRjA2RjRFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JEM0E4NjEwRUI4OTg1QTNB QTlGMzg3RURFMDk3MzBBQUVGMDZGNEUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZGWGtMa2FLWEhlclhMcGZVQXNvNzM2clFFZW5xTXBpdjZRZWhGd21VMXZXLzAv MzEzNzMwMmUzMjMzMzMyZTMxMzIzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKrpejANBgkqhkiG9w0BAQsFAAOCAQEAQoxi lceNLKF/6MfFtz0IW7dl1Tr9RxYAKmjFq8b2s3zYsQZjcixX4nKCQWIpsv+q2fh/ Yh2jpEUSm6BwYBxlQoBQYGL3E2HMJtlyy4K7Pp3lK+iUjGbnneHg3ESFA3PJTqtu jv/m5uSUz78SOcLj2Xiq5iAyFOiASWB8rezh9SaDIGezMJqsXpc7KGid0Qz6SlG9 qmfZYRYVHQIE5WuV5dADcoBbKBFP1JghpFMvGY6mTFyr8nCXNas5en92nqlfAD6c iC1Uqo0YzdBVxPVnEjwgqcHdCP+Zvlzqjii8WYH7n+PQ/NaQ3/utPQRYryo7qQSZ opoZGxQzsOf7F9ln6A== -----END CERTIFICATE-----Generated at Wed Nov 5 21:41:56 2025 by rpki-client