$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133312e3232312e36382e302f32322d3232203d3e203238323230.roa File: 3133312e3232312e36382e302f32322d3232203d3e203238323230.roa (raw, json) Hash identifier: KSkstmIs7SGCM30Pr5OBn1OHY9mn9YipaT+cRBbPEkU= Subject key identifier: CA:C6:8C:16:29:52:37:61:BB:6F:18:6E:B6:D2:F1:82:74:0D:EF:4B Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 18508693B398EB4F9C53D5EE2C2CF3552D9466A2 Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133312e3232312e36382e302f32322d3232203d3e203238323230.roa Signing time: Sat 18 Oct 2025 23:01:04 +0000 ROA not before: Sat 18 Oct 2025 22:56:04 +0000 ROA not after: Sat 17 Oct 2026 23:01:04 +0000 asID: 28220 IP address blocks: 131.221.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 14:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:50:86:93:b3:98:eb:4f:9c:53:d5:ee:2c:2c:f3:55:2d:94:66:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Oct 18 22:56:04 2025 GMT Not After : Oct 17 23:01:04 2026 GMT Subject: CN=CAC68C1629523761BB6F186EB6D2F182740DEF4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:81:89:3c:3e:ef:05:e3:b1:69:23:6c:70:8e: a4:74:9a:b5:73:51:73:5c:0a:b6:69:53:a5:97:a1: 8e:da:99:e5:22:7b:0d:5b:e6:48:28:d0:08:e4:5f: 5d:aa:5b:e5:a8:91:71:de:f5:ad:60:7e:db:72:95: 3c:c6:43:cd:69:1f:b3:d2:0c:b0:4d:ba:86:62:1c: ad:5e:f3:7e:a4:f5:49:6f:50:e8:6c:61:16:42:55: d5:88:06:44:bd:2d:3c:29:66:67:2c:16:6b:1f:b7: 9d:07:be:12:d2:ea:8b:ad:14:9e:58:de:4b:29:9b: 62:5f:5b:45:68:4b:1a:c7:94:32:2c:1a:96:6b:07: 9c:b8:e9:1a:c3:78:3d:e7:2d:c2:44:95:3d:63:97: bb:ec:7a:d0:01:e4:c0:d0:8f:c0:b9:2b:27:9e:d3: 67:5f:bd:f4:b3:1a:6b:0b:de:ca:2f:0b:fa:99:e1: c2:c6:71:9f:30:b6:f6:04:3d:64:9d:53:86:92:b4: 3f:1f:68:61:ba:94:c3:e0:38:62:4b:68:1d:06:e0: 20:a4:85:37:57:b0:02:39:aa:44:0c:62:ee:9a:55: cc:9c:72:0e:40:67:b6:69:fc:4c:92:94:6c:36:54: d3:e4:6b:3c:57:92:ce:0c:59:55:28:bb:61:cb:f4: 84:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C6:8C:16:29:52:37:61:BB:6F:18:6E:B6:D2:F1:82:74:0D:EF:4B X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133312e3232312e36382e302f32322d3232203d3e203238323230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.221.68.0/22 Signature Algorithm: sha256WithRSAEncryption 98:97:91:f1:e0:f6:89:ea:95:ba:92:e4:d8:a2:aa:2c:96:19: 70:d0:dc:90:27:63:11:5c:5a:65:d1:4f:2c:e3:31:40:cd:28: b3:5e:b4:3d:60:d5:1f:4c:4c:6b:50:0a:41:c6:ff:94:9b:df: 71:b5:c9:64:d8:a0:72:10:fd:c2:75:23:91:48:ee:01:8a:a9: d7:3b:04:27:64:3c:c4:ac:9c:5b:87:e9:bf:05:f2:b4:f8:d7: 78:c2:3c:b0:f0:c4:82:92:4e:ea:8e:1d:26:30:05:e9:2a:ba: ea:0e:50:1f:a8:89:47:cd:65:2a:eb:7f:bb:0c:0f:0b:65:79: 81:56:c3:79:2c:05:b1:39:ca:92:a9:4a:59:0b:38:dd:9a:4a: 81:1a:68:ba:bc:be:ea:08:8b:0a:b6:2b:15:07:42:21:0f:e3: 28:29:66:8f:fa:38:02:00:8a:fb:3e:e4:dd:9a:1b:c5:7a:9f: af:7a:d0:ab:78:cb:d3:1f:30:a1:f4:71:35:10:bf:ae:30:75: d3:84:16:71:7b:1b:18:12:da:e6:50:56:9e:a8:c6:38:13:8d: 87:89:06:01:cb:a0:c1:93:bb:91:2d:a1:bf:5c:70:70:36:6d: 07:6e:42:93:8a:1e:0b:18:ac:7d:aa:34:fd:3f:49:ee:4d:42: 09:84:26:01 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUGFCGk7OY60+cU9XuLCzzVS2UZqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTEwMTgyMjU2MDRaFw0yNjEwMTcyMzAxMDRaMDMxMTAvBgNV BAMTKENBQzY4QzE2Mjk1MjM3NjFCQjZGMTg2RUI2RDJGMTgyNzQwREVGNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHgYk8Pu8F47FpI2xwjqR0mrVz UXNcCrZpU6WXoY7ameUiew1b5kgo0AjkX12qW+WokXHe9a1gfttylTzGQ81pH7PS DLBNuoZiHK1e836k9UlvUOhsYRZCVdWIBkS9LTwpZmcsFmsft50HvhLS6outFJ5Y 3kspm2JfW0VoSxrHlDIsGpZrB5y46RrDeD3nLcJElT1jl7vsetAB5MDQj8C5Kyee 02dfvfSzGmsL3sovC/qZ4cLGcZ8wtvYEPWSdU4aStD8faGG6lMPgOGJLaB0G4CCk hTdXsAI5qkQMYu6aVcyccg5AZ7Zp/EySlGw2VNPkazxXks4MWVUou2HL9ISjAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUysaMFilSN2G7bxhuttLxgnQN70swHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNaOW5FUVZjR3NWRzdzUkNUa1kyWnZ2bURIaG9FNVpnYmpES0ZxTUZ0N0RGLzAv MzEzMzMxMmUzMjMyMzEyZTM2MzgyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMjM4 MzIzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCg91EMA0GCSqGSIb3DQEBCwUAA4IBAQCYl5Hx4PaJ 6pW6kuTYoqoslhlw0NyQJ2MRXFpl0U8s4zFAzSizXrQ9YNUfTExrUApBxv+Um99x tclk2KByEP3CdSORSO4BiqnXOwQnZDzErJxbh+m/BfK0+Nd4wjyw8MSCkk7qjh0m MAXpKrrqDlAfqIlHzWUq63+7DA8LZXmBVsN5LAWxOcqSqUpZCzjdmkqBGmi6vL7q CIsKtisVB0IhD+MoKWaP+jgCAIr7PuTdmhvFep+vetCreMvTHzCh9HE1EL+uMHXT hBZxexsYEtrmUFaeqMY4E42HiQYBy6DBk7uRLaG/XHBwNm0HbkKTih4LGKx9qjT9 P0nuTUIJhCYB -----END CERTIFICATE-----Generated at Mon Oct 20 16:58:25 2025 by rpki-client