$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136302e3233382e3232302e302f32322d3232203d3e203238323730.roa File: 3136302e3233382e3232302e302f32322d3232203d3e203238323730.roa (raw, json) Hash identifier: uEgLOybtSj9IaeEirzi7uyIGA5437Dhl2z9YO8KWaQA= Subject key identifier: 71:8C:88:FA:3A:40:98:12:58:18:EE:F7:88:26:12:FC:5F:FB:89:D9 Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 2C26C698F32D8E28CD15082D1B03414F059B8738 Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136302e3233382e3232302e302f32322d3232203d3e203238323730.roa Signing time: Sat 18 Oct 2025 23:01:06 +0000 ROA not before: Sat 18 Oct 2025 22:56:06 +0000 ROA not after: Sat 17 Oct 2026 23:01:06 +0000 asID: 28270 IP address blocks: 160.238.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 14:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:26:c6:98:f3:2d:8e:28:cd:15:08:2d:1b:03:41:4f:05:9b:87:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Oct 18 22:56:06 2025 GMT Not After : Oct 17 23:01:06 2026 GMT Subject: CN=718C88FA3A4098125818EEF7882612FC5FFB89D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:ee:62:98:24:3a:00:4d:0f:a2:2b:6e:d9: 2f:46:37:d6:44:ab:22:59:2a:74:73:af:ad:e9:c1: 97:9f:1d:63:a5:1e:b6:19:ee:f8:06:19:35:5f:92: 9b:bc:e7:32:be:0b:fb:00:68:f7:f8:10:11:89:4f: db:f5:a7:91:af:94:29:b4:69:ec:37:5f:b7:c4:dd: 4f:7e:28:c9:7e:35:15:55:a5:1e:d0:17:1e:54:60: 40:36:66:cb:76:f0:df:fd:ff:4d:93:42:63:7b:98: 22:96:1a:28:19:4e:6b:3a:e7:21:00:42:dd:87:ba: b0:60:71:8e:64:58:6a:90:8d:fe:5f:9a:e9:4e:0d: ca:87:b5:b5:86:11:48:3f:8f:7d:34:73:2d:75:cf: 60:21:a2:d5:88:15:02:da:08:44:a8:4b:c8:19:1e: 9c:90:2f:0d:8f:e1:1d:71:de:c1:df:d2:cb:40:80: 22:d0:b6:78:fb:e2:17:05:d3:09:5f:80:73:3b:5c: 13:12:9a:40:84:9e:d3:33:9f:da:b5:02:b9:6c:43: c4:0c:5e:ee:8a:c6:a3:21:01:3e:8f:7e:26:ec:77: f7:f7:1b:c2:17:2d:c9:3f:77:f5:43:c1:f3:e2:18: e9:03:88:ba:f1:65:e5:96:81:39:d9:d9:13:b1:7e: c6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8C:88:FA:3A:40:98:12:58:18:EE:F7:88:26:12:FC:5F:FB:89:D9 X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136302e3233382e3232302e302f32322d3232203d3e203238323730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.238.220.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:60:6b:ea:6a:b2:e8:1a:7a:73:43:34:fb:f6:01:f1:ea:9e: 91:5c:2c:cf:75:e0:29:63:5b:c6:89:db:0b:6c:30:b5:be:c5: b2:5a:cb:e0:3b:de:9a:c9:19:55:e2:df:f8:8d:ed:a8:27:c5: 2a:5b:33:76:87:b5:04:7f:75:1d:da:47:c3:ec:ed:d8:54:20: 05:a0:2d:fe:93:4b:9d:3f:81:e6:9c:8c:f6:48:b3:b8:60:42: d2:07:4a:37:07:f3:ca:db:d6:76:af:bf:ff:5e:2b:1b:e6:7a: 03:08:ef:d5:d1:ab:1c:ee:7a:99:49:fc:ba:69:92:79:c9:a8: f2:1e:30:f4:52:3d:96:81:c8:7b:05:0f:31:84:93:dc:a2:9b: 18:75:04:61:fe:c8:7d:ae:8e:59:95:18:27:c1:99:3d:fc:e9: 00:7f:9c:c8:02:24:80:66:84:3f:5c:98:2e:18:a6:c7:88:38: a6:77:17:da:ad:83:c8:13:8d:59:d4:32:00:ec:d1:d8:9d:9a: 81:cd:87:8d:61:9b:1d:b5:8f:c8:8c:ee:83:87:e2:82:1a:ce: 8f:df:26:1d:11:4b:e0:5e:71:12:9c:89:bf:87:44:32:1b:b6: ba:1f:71:c5:d3:16:01:a6:a3:fc:28:04:ac:81:77:9f:a1:0a: b4:24:54:fb -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIULCbGmPMtjijNFQgtGwNBTwWbhzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTEwMTgyMjU2MDZaFw0yNjEwMTcyMzAxMDZaMDMxMTAvBgNV BAMTKDcxOEM4OEZBM0E0MDk4MTI1ODE4RUVGNzg4MjYxMkZDNUZGQjg5RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHYu5imCQ6AE0Poitu2S9GN9ZE qyJZKnRzr63pwZefHWOlHrYZ7vgGGTVfkpu85zK+C/sAaPf4EBGJT9v1p5GvlCm0 aew3X7fE3U9+KMl+NRVVpR7QFx5UYEA2Zst28N/9/02TQmN7mCKWGigZTms65yEA Qt2HurBgcY5kWGqQjf5fmulODcqHtbWGEUg/j300cy11z2AhotWIFQLaCESoS8gZ HpyQLw2P4R1x3sHf0stAgCLQtnj74hcF0wlfgHM7XBMSmkCEntMzn9q1ArlsQ8QM Xu6KxqMhAT6Pfibsd/f3G8IXLck/d/VDwfPiGOkDiLrxZeWWgTnZ2ROxfsaNAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUcYyI+jpAmBJYGO73iCYS/F/7idkwHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNaOW5FUVZjR3NWRzdzUkNUa1kyWnZ2bURIaG9FNVpnYmpES0ZxTUZ0N0RGLzAv MzEzNjMwMmUzMjMzMzgyZTMyMzIzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy MzgzMjM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKg7twwDQYJKoZIhvcNAQELBQADggEBACxga+pq sugaenNDNPv2AfHqnpFcLM914CljW8aJ2wtsMLW+xbJay+A73prJGVXi3/iN7agn xSpbM3aHtQR/dR3aR8Ps7dhUIAWgLf6TS50/geacjPZIs7hgQtIHSjcH88rb1nav v/9eKxvmegMI79XRqxzueplJ/LppknnJqPIeMPRSPZaByHsFDzGEk9yimxh1BGH+ yH2ujlmVGCfBmT386QB/nMgCJIBmhD9cmC4YpseIOKZ3F9qtg8gTjVnUMgDs0did moHNh41hmx21j8iM7oOH4oIazo/fJh0RS+BecRKcib+HRDIbtrofccXTFgGmo/wo BKyBd5+hCrQkVPs= -----END CERTIFICATE-----Generated at Mon Oct 20 17:00:03 2025 by rpki-client