$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133382e3131372e3132342e302f32322d3232203d3e203238323230.roa File: 3133382e3131372e3132342e302f32322d3232203d3e203238323230.roa (raw, json) Hash identifier: kUDsuW87A+rQQfiYxbty/9Psvhm5hbdVr41zt79vdFI= Subject key identifier: 81:D9:58:11:55:2F:E4:42:76:F9:60:8B:F7:72:2E:00:58:BC:56:20 Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 060C572ACA96CBF058061319C93CECA75BFA124D Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133382e3131372e3132342e302f32322d3232203d3e203238323230.roa Signing time: Sat 18 Oct 2025 23:01:02 +0000 ROA not before: Sat 18 Oct 2025 22:56:02 +0000 ROA not after: Sat 17 Oct 2026 23:01:02 +0000 asID: 28220 IP address blocks: 138.117.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 14:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:0c:57:2a:ca:96:cb:f0:58:06:13:19:c9:3c:ec:a7:5b:fa:12:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Oct 18 22:56:02 2025 GMT Not After : Oct 17 23:01:02 2026 GMT Subject: CN=81D95811552FE44276F9608BF7722E0058BC5620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7d:30:4f:cd:48:c7:39:06:f1:89:38:55:99: 08:35:21:df:6c:23:dd:fb:76:e9:37:24:8d:41:7f: 52:b7:96:49:e6:cc:70:2a:af:f3:a3:dc:d0:60:f8: df:2f:37:84:3f:c0:4b:ef:a0:dc:83:8d:31:c7:29: 06:a5:5d:54:93:bc:15:7d:18:26:95:80:02:f8:2a: 59:58:16:f5:67:f5:c4:b2:61:92:98:10:33:ce:56: 09:07:c8:11:73:25:fb:f2:4b:7b:72:9f:1a:97:89: 5b:d7:aa:90:e1:00:29:4c:b7:df:40:6c:e9:a2:40: 86:6f:fb:59:bb:39:92:5b:a4:68:33:64:3a:55:7d: 5e:8c:bf:65:b6:2d:27:8a:e4:e3:30:af:a7:22:9c: fa:c1:42:5f:d0:81:b5:af:da:9f:4a:5c:83:a7:06: 0d:ef:ed:d0:14:72:16:8d:8f:87:e8:43:33:98:95: 35:ad:9e:87:fb:93:ae:0c:6f:77:86:d3:0f:83:60: fb:08:c8:44:79:be:b1:e8:27:f2:cd:fc:43:6c:58: 96:1c:42:fe:9b:de:dd:f3:57:66:82:23:c8:02:42: 01:38:e3:1c:3e:f9:0b:ae:75:65:b5:3f:c5:00:eb: fc:f4:0f:4d:ea:64:49:a9:c9:79:74:44:b4:79:03: a6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D9:58:11:55:2F:E4:42:76:F9:60:8B:F7:72:2E:00:58:BC:56:20 X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133382e3131372e3132342e302f32322d3232203d3e203238323230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.117.124.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:95:f7:c0:f5:6d:31:43:0f:fc:da:5e:8a:e3:7a:aa:85:eb: 48:08:32:f3:5b:7b:85:b7:d7:c5:a5:cc:a5:8c:58:48:43:8a: de:9d:1f:73:a7:48:2c:4e:76:86:fe:f3:09:74:14:1b:e2:a1: 69:59:53:3d:1d:9c:ed:b8:f3:45:77:ac:4e:79:80:5a:d4:fd: 8c:17:5c:a5:09:d5:f0:64:83:8f:22:9b:c4:3b:ce:50:c6:e0: 3d:ae:6d:cb:b6:9a:df:44:93:6d:58:7c:3d:47:c5:42:24:d5: 9d:ec:49:34:cc:08:bd:6f:15:94:43:2a:a5:8e:a3:72:e6:b3: 76:4b:7e:0f:83:b6:7e:b7:a0:2e:9f:06:84:a1:d5:62:3f:c1: a7:a6:d7:98:a2:02:20:ed:3a:4d:31:20:e7:ad:b5:8c:be:cb: be:3e:22:f2:4d:49:01:b4:7d:81:66:3e:38:1a:ba:72:7a:9c: 32:67:33:4a:ff:7d:99:64:2f:5a:ed:fa:d9:55:a2:8a:e5:b8: f8:20:57:28:50:b7:73:4c:4f:3a:98:fc:bc:82:4a:f0:a4:72: 8b:ba:4b:5d:5d:9e:02:05:66:42:3b:e9:d7:51:14:3c:46:c9: 70:f0:5a:b4:5a:80:83:81:14:63:fc:73:d6:67:be:57:ae:1d: db:bd:e8:a3 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUBgxXKsqWy/BYBhMZyTzsp1v6Ek0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTEwMTgyMjU2MDJaFw0yNjEwMTcyMzAxMDJaMDMxMTAvBgNV BAMTKDgxRDk1ODExNTUyRkU0NDI3NkY5NjA4QkY3NzIyRTAwNThCQzU2MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3fTBPzUjHOQbxiThVmQg1Id9s I937duk3JI1Bf1K3lknmzHAqr/Oj3NBg+N8vN4Q/wEvvoNyDjTHHKQalXVSTvBV9 GCaVgAL4KllYFvVn9cSyYZKYEDPOVgkHyBFzJfvyS3tynxqXiVvXqpDhAClMt99A bOmiQIZv+1m7OZJbpGgzZDpVfV6Mv2W2LSeK5OMwr6cinPrBQl/QgbWv2p9KXIOn Bg3v7dAUchaNj4foQzOYlTWtnof7k64Mb3eG0w+DYPsIyER5vrHoJ/LN/ENsWJYc Qv6b3t3zV2aCI8gCQgE44xw++QuudWW1P8UA6/z0D03qZEmpyXl0RLR5A6ZtAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUgdlYEVUv5EJ2+WCL93IuAFi8ViAwHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNaOW5FUVZjR3NWRzdzUkNUa1kyWnZ2bURIaG9FNVpnYmpES0ZxTUZ0N0RGLzAv MzEzMzM4MmUzMTMxMzcyZTMxMzIzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy MzgzMjMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKKdXwwDQYJKoZIhvcNAQELBQADggEBAHqV98D1 bTFDD/zaXorjeqqF60gIMvNbe4W318WlzKWMWEhDit6dH3OnSCxOdob+8wl0FBvi oWlZUz0dnO2480V3rE55gFrU/YwXXKUJ1fBkg48im8Q7zlDG4D2ubcu2mt9Ek21Y fD1HxUIk1Z3sSTTMCL1vFZRDKqWOo3Lms3ZLfg+Dtn63oC6fBoSh1WI/waem15ii AiDtOk0xIOettYy+y74+IvJNSQG0fYFmPjgaunJ6nDJnM0r/fZlkL1rt+tlVoorl uPggVyhQt3NMTzqY/LyCSvCkcou6S11dngIFZkI76ddRFDxGyXDwWrRagIOBFGP8 c9ZnvleuHdu96KM= -----END CERTIFICATE-----Generated at Mon Oct 20 16:58:24 2025 by rpki-client