$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133312e3139362e37362e302f32322d3233203d3e203238323230.roa File: 3133312e3139362e37362e302f32322d3233203d3e203238323230.roa (raw, json) Hash identifier: NhKm88UZtn/3iIMxkp+Z0TE311a5SILTfGYsQwQxwZQ= Subject key identifier: 0D:67:7A:02:25:B4:13:79:F1:99:85:F2:0A:D5:BC:B4:1F:B1:D3:55 Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 1CE09AE2E39D33E2DC10C3176737D0CA8D6AB295 Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133312e3139362e37362e302f32322d3233203d3e203238323230.roa Signing time: Sat 18 Oct 2025 23:01:03 +0000 ROA not before: Sat 18 Oct 2025 22:56:03 +0000 ROA not after: Sat 17 Oct 2026 23:01:03 +0000 asID: 28220 IP address blocks: 131.196.76.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 14:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:e0:9a:e2:e3:9d:33:e2:dc:10:c3:17:67:37:d0:ca:8d:6a:b2:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Oct 18 22:56:03 2025 GMT Not After : Oct 17 23:01:03 2026 GMT Subject: CN=0D677A0225B41379F19985F20AD5BCB41FB1D355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e9:16:90:85:e5:aa:15:e5:8a:b6:90:ad:e0: 0b:ea:3a:1d:6d:43:13:e2:95:9b:e5:e4:d0:1e:5c: b5:c0:b4:b2:b6:85:a0:c7:b5:d7:ba:d8:0d:90:98: 96:df:e7:f8:d5:91:f7:da:03:3f:b4:2b:13:49:15: 90:b2:b5:32:2d:3c:e3:94:b3:68:58:a6:86:bf:ec: 19:90:24:f0:53:34:b9:35:27:b2:28:dc:29:76:1e: e1:98:22:35:ca:72:e1:c3:31:78:ba:28:11:4e:92: 00:3c:da:f9:87:99:79:ca:e8:7b:28:40:46:a0:7f: 3b:6c:d5:26:e1:00:11:b9:01:2d:8d:ce:86:8c:38: 74:f7:18:c4:0e:ea:d8:f1:c7:dd:ca:c2:e8:7c:0a: 00:18:e8:2a:0f:24:9d:b2:02:ea:2e:f8:ae:14:e8: c7:e7:68:90:c6:d5:f6:0d:9e:23:3b:b4:8c:24:55: f7:a8:77:ff:4d:9d:4e:b1:25:e4:fa:e6:67:77:4f: 6f:29:8b:00:48:10:f5:a7:db:2d:11:78:c8:64:35: 1d:7c:6f:2a:da:b8:aa:ec:eb:3a:94:4d:7c:db:c0: 46:cb:ce:9e:4f:8d:38:d6:2e:49:b0:a2:63:80:ec: 73:ff:9e:19:c6:b5:5c:b3:d4:bd:12:80:88:e6:62: 37:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:67:7A:02:25:B4:13:79:F1:99:85:F2:0A:D5:BC:B4:1F:B1:D3:55 X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133312e3139362e37362e302f32322d3233203d3e203238323230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.196.76.0/22 Signature Algorithm: sha256WithRSAEncryption b7:a9:8d:7b:c7:b3:60:ee:17:f6:42:b2:0e:89:ab:da:ad:dd: 72:06:85:7c:22:ba:55:c5:75:75:c9:96:ae:1d:e6:1d:53:11: f1:55:a7:75:5e:2c:d3:26:6b:80:72:c5:6a:22:9c:6b:22:7c: e2:b9:0d:53:97:17:4d:a2:c7:01:72:72:8d:3b:a3:a8:a3:81: ef:8b:9f:53:57:1b:ac:59:c2:37:31:e1:fd:d5:33:47:21:97: 68:0c:b6:d4:a7:09:37:94:ef:9f:33:8b:2d:77:25:d6:4c:40: 27:e9:a0:c9:af:4f:7c:7c:7e:d9:d5:d6:75:76:b0:22:be:11: 4b:89:25:7b:d0:d0:14:e7:1f:71:d8:be:b6:3e:37:1b:eb:2f: ff:1c:8c:ef:2f:ee:78:04:5d:5f:64:63:d8:74:4e:4b:9b:bf: c3:01:a6:84:67:6b:ec:e3:bc:da:db:47:54:ef:54:f2:94:b8: e9:e5:14:4b:3d:ef:e5:e3:1d:39:52:1e:5e:92:89:64:b0:df: c0:a6:e2:80:b2:a8:7d:a1:3d:00:11:06:0f:34:7a:c3:08:9a: 08:8b:d7:6a:03:de:ea:26:fe:54:ea:a3:75:76:33:74:1b:23: d0:7e:f0:d9:16:73:63:43:de:52:2b:fd:31:21:88:7b:25:d5: 5e:78:b1:79 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUHOCa4uOdM+LcEMMXZzfQyo1qspUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTEwMTgyMjU2MDNaFw0yNjEwMTcyMzAxMDNaMDMxMTAvBgNV BAMTKDBENjc3QTAyMjVCNDEzNzlGMTk5ODVGMjBBRDVCQ0I0MUZCMUQzNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC46RaQheWqFeWKtpCt4AvqOh1t QxPilZvl5NAeXLXAtLK2haDHtde62A2QmJbf5/jVkffaAz+0KxNJFZCytTItPOOU s2hYpoa/7BmQJPBTNLk1J7Io3Cl2HuGYIjXKcuHDMXi6KBFOkgA82vmHmXnK6Hso QEagfzts1SbhABG5AS2NzoaMOHT3GMQO6tjxx93Kwuh8CgAY6CoPJJ2yAuou+K4U 6MfnaJDG1fYNniM7tIwkVfeod/9NnU6xJeT65md3T28piwBIEPWn2y0ReMhkNR18 byrauKrs6zqUTXzbwEbLzp5PjTjWLkmwomOA7HP/nhnGtVyz1L0SgIjmYjcTAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUDWd6AiW0E3nxmYXyCtW8tB+x01UwHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNaOW5FUVZjR3NWRzdzUkNUa1kyWnZ2bURIaG9FNVpnYmpES0ZxTUZ0N0RGLzAv MzEzMzMxMmUzMTM5MzYyZTM3MzYyZTMwMmYzMjMyMmQzMjMzMjAzZDNlMjAzMjM4 MzIzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCg8RMMA0GCSqGSIb3DQEBCwUAA4IBAQC3qY17x7Ng 7hf2QrIOiavard1yBoV8IrpVxXV1yZauHeYdUxHxVad1XizTJmuAcsVqIpxrInzi uQ1TlxdNoscBcnKNO6Ooo4Hvi59TVxusWcI3MeH91TNHIZdoDLbUpwk3lO+fM4st dyXWTEAn6aDJr098fH7Z1dZ1drAivhFLiSV70NAU5x9x2L62Pjcb6y//HIzvL+54 BF1fZGPYdE5Lm7/DAaaEZ2vs47za20dU71TylLjp5RRLPe/l4x05Uh5ekolksN/A puKAsqh9oT0AEQYPNHrDCJoIi9dqA97qJv5U6qN1djN0GyPQfvDZFnNjQ95SK/0x IYh7JdVeeLF5 -----END CERTIFICATE-----Generated at Mon Oct 20 16:58:25 2025 by rpki-client