$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136302e3233382e3232302e302f32322d3232203d3e203238323230.roa File: 3136302e3233382e3232302e302f32322d3232203d3e203238323230.roa (raw, json) Hash identifier: BgXRtlnSD85iEDxcNnmeqiD0zXB4391Mf4FL1amR1R0= Subject key identifier: 68:DF:78:0F:A0:9C:EA:CD:17:75:0A:D4:E3:44:38:52:B2:0F:56:10 Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 28B9BB14E0190E610997E45E8FFB56D5DC80E0CF Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136302e3233382e3232302e302f32322d3232203d3e203238323230.roa Signing time: Sat 18 Oct 2025 23:01:04 +0000 ROA not before: Sat 18 Oct 2025 22:56:04 +0000 ROA not after: Sat 17 Oct 2026 23:01:04 +0000 asID: 28220 IP address blocks: 160.238.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 14:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:b9:bb:14:e0:19:0e:61:09:97:e4:5e:8f:fb:56:d5:dc:80:e0:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Oct 18 22:56:04 2025 GMT Not After : Oct 17 23:01:04 2026 GMT Subject: CN=68DF780FA09CEACD17750AD4E3443852B20F5610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:24:db:df:d2:8d:9d:01:65:37:2c:69:8b:1e: 9d:03:6a:76:59:84:37:71:51:1c:34:5e:a3:9b:d4: bf:e3:bf:4f:21:30:5e:d1:63:e7:0e:88:d9:72:94: 8d:d6:59:4b:e9:cb:c1:f0:36:4e:58:eb:19:6f:a6: e5:b1:06:72:0c:f4:b4:26:17:55:a4:f9:85:94:d9: fd:71:92:03:a9:97:c0:72:9f:45:b4:7e:1c:02:1b: 66:49:6f:d0:92:1c:b4:d6:ba:ab:7a:b6:35:16:10: 13:14:40:4d:6e:be:34:07:9b:f8:ce:c5:85:40:b3: 14:8f:e9:ec:24:58:ab:4c:93:a3:67:24:e3:c7:78: 9f:68:d8:4a:71:bc:d8:ed:97:e0:98:20:ff:29:b9: ea:87:2d:2b:85:81:90:7d:51:71:11:4b:e6:77:49: 3b:96:ea:1e:f4:55:b0:c0:c7:e3:14:24:59:77:fd: da:ae:88:23:0f:54:54:0a:f2:9a:f5:8d:11:b6:28: 7e:45:41:2a:74:cb:84:67:ce:6b:31:59:52:8c:63: 03:8b:33:ff:59:11:f7:2c:7b:a8:44:90:cf:3b:37: e9:84:65:80:66:5f:76:1c:51:0f:28:41:a3:e2:56: 57:df:7f:8c:1b:b4:d2:74:bd:4c:4e:19:62:67:19: 6b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DF:78:0F:A0:9C:EA:CD:17:75:0A:D4:E3:44:38:52:B2:0F:56:10 X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136302e3233382e3232302e302f32322d3232203d3e203238323230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.238.220.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:64:46:4f:09:ce:aa:b1:d7:12:47:48:03:e5:f1:0d:60:ad: c3:66:25:8e:c6:96:bf:f0:c7:c2:77:ca:4c:ba:36:58:05:cd: 27:c6:1c:16:c7:0a:4d:26:9a:91:f5:ba:b8:fe:e7:fe:98:d8: c4:90:b1:15:2b:c5:6e:2e:62:bd:a3:89:b4:a8:2a:e2:b2:47: 0f:0e:bc:94:2c:f2:6e:7d:9d:42:1e:57:58:2e:73:e5:3e:97: 00:75:11:72:01:41:62:9f:39:f6:52:a1:5b:76:29:d3:e1:85: dc:f2:37:16:d0:8b:18:fb:44:3a:d6:7b:ae:db:73:c6:e8:8f: 2d:08:36:4f:de:85:5d:64:77:cb:66:66:56:27:f7:6a:ad:ca: bd:a7:d3:37:e5:46:ac:cf:4a:c4:46:a1:50:be:b2:a5:86:82: 09:a4:e3:13:b9:f1:7a:99:7e:4a:45:0c:62:a3:8b:92:1f:d4: 66:a8:15:2b:7d:77:9f:84:a5:24:ad:4d:fa:80:82:88:f5:93: a3:01:39:c4:fe:a5:d8:75:06:c9:b3:1a:b4:e2:75:45:e1:71: 3a:04:21:c5:8b:91:35:50:74:ac:c3:e7:c2:5a:61:ee:07:be: 81:29:49:d3:4f:f6:25:de:6d:3a:c3:a7:5c:ec:a9:06:e8:bd: 78:a6:75:42 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUKLm7FOAZDmEJl+Rej/tW1dyA4M8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTEwMTgyMjU2MDRaFw0yNjEwMTcyMzAxMDRaMDMxMTAvBgNV BAMTKDY4REY3ODBGQTA5Q0VBQ0QxNzc1MEFENEUzNDQzODUyQjIwRjU2MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdJNvf0o2dAWU3LGmLHp0DanZZ hDdxURw0XqOb1L/jv08hMF7RY+cOiNlylI3WWUvpy8HwNk5Y6xlvpuWxBnIM9LQm F1Wk+YWU2f1xkgOpl8Byn0W0fhwCG2ZJb9CSHLTWuqt6tjUWEBMUQE1uvjQHm/jO xYVAsxSP6ewkWKtMk6NnJOPHeJ9o2EpxvNjtl+CYIP8pueqHLSuFgZB9UXERS+Z3 STuW6h70VbDAx+MUJFl3/dquiCMPVFQK8pr1jRG2KH5FQSp0y4RnzmsxWVKMYwOL M/9ZEfcse6hEkM87N+mEZYBmX3YcUQ8oQaPiVlfff4wbtNJ0vUxOGWJnGWvRAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUaN94D6Cc6s0XdQrU40Q4UrIPVhAwHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNaOW5FUVZjR3NWRzdzUkNUa1kyWnZ2bURIaG9FNVpnYmpES0ZxTUZ0N0RGLzAv MzEzNjMwMmUzMjMzMzgyZTMyMzIzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy MzgzMjMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKg7twwDQYJKoZIhvcNAQELBQADggEBAFtkRk8J zqqx1xJHSAPl8Q1grcNmJY7Glr/wx8J3yky6NlgFzSfGHBbHCk0mmpH1urj+5/6Y 2MSQsRUrxW4uYr2jibSoKuKyRw8OvJQs8m59nUIeV1guc+U+lwB1EXIBQWKfOfZS oVt2KdPhhdzyNxbQixj7RDrWe67bc8bojy0INk/ehV1kd8tmZlYn92qtyr2n0zfl RqzPSsRGoVC+sqWGggmk4xO58XqZfkpFDGKji5If1GaoFSt9d5+EpSStTfqAgoj1 k6MBOcT+pdh1BsmzGrTidUXhcToEIcWLkTVQdKzD58JaYe4HvoEpSdNP9iXebTrD p1zsqQbovXimdUI= -----END CERTIFICATE-----Generated at Mon Oct 20 16:58:34 2025 by rpki-client