$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e302e3230342e302f32322d3232203d3e20323731373234.roa File: 3137302e302e3230342e302f32322d3232203d3e20323731373234.roa (raw, json) Hash identifier: 66Qpmgcu7l87a6IvHeqfu/fcLmVqb14Kp/QkFKWu1jk= Subject key identifier: 16:39:ED:8F:8F:5E:2B:50:AB:FC:AE:AB:0E:0E:05:A3:31:40:D8:18 Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 07987F75A8A855BC29D28DB8A20631D5A8B3D12A Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e302e3230342e302f32322d3232203d3e20323731373234.roa Signing time: Sat 18 Oct 2025 23:01:06 +0000 ROA not before: Sat 18 Oct 2025 22:56:06 +0000 ROA not after: Sat 17 Oct 2026 23:01:06 +0000 asID: 271724 IP address blocks: 170.0.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 14:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:98:7f:75:a8:a8:55:bc:29:d2:8d:b8:a2:06:31:d5:a8:b3:d1:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Oct 18 22:56:06 2025 GMT Not After : Oct 17 23:01:06 2026 GMT Subject: CN=1639ED8F8F5E2B50ABFCAEAB0E0E05A33140D818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:43:d3:bc:8f:3f:2a:03:04:cf:98:71:d9:13: 8b:f1:73:1a:7b:75:b0:2e:99:6b:08:9f:00:37:4e: 71:b0:b6:74:55:bb:2f:87:ba:a0:8b:73:14:e1:ee: 10:23:a6:fa:30:fd:7d:c9:6a:40:b6:13:94:0d:78: f6:d0:cf:56:10:16:d2:01:ec:d5:9e:22:6f:91:4d: b9:8c:ac:43:f1:a7:e6:08:c5:8a:63:f1:64:83:89: eb:99:3c:34:8b:47:ae:52:6c:82:c8:d0:c9:ed:8e: 78:7d:3d:45:e7:02:ec:ba:7b:3f:60:90:d0:6e:75: ff:0f:d7:ed:84:1b:f0:dc:56:d8:7b:6f:0e:89:17: 15:3b:4b:f0:2c:37:31:b9:39:cb:49:33:7a:04:27: 30:10:c7:20:8c:fd:d2:01:fb:0d:e2:24:46:a7:6b: 90:ea:8f:ac:d7:ea:b1:a3:58:2e:a4:5a:3f:aa:8a: 1b:32:45:16:f6:70:1b:cc:ae:5c:e0:2f:25:11:0c: 63:fc:7b:e7:3a:50:4c:11:63:33:58:8b:18:8b:09: c1:0f:9d:2c:c9:29:d6:13:2a:be:76:88:d7:df:39: 11:e6:92:49:b8:5e:35:9d:ef:d0:77:02:6c:fb:db: ac:d9:3c:49:da:a6:41:3a:6c:a4:16:6b:f8:44:cf: 33:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:39:ED:8F:8F:5E:2B:50:AB:FC:AE:AB:0E:0E:05:A3:31:40:D8:18 X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e302e3230342e302f32322d3232203d3e20323731373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.0.204.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:ae:f2:87:ee:42:e0:0d:70:1d:bd:a4:7e:17:fd:22:68:a9: d8:b0:1b:14:82:57:4b:d2:a4:12:e3:9f:05:f0:1d:d1:64:d6: c5:44:45:ec:83:80:5f:3a:29:b5:0a:15:4b:23:5e:72:a2:34: f9:49:a0:67:3b:99:f5:92:3d:fe:6d:90:d8:e4:ff:9d:4c:d5: 9d:18:e5:ca:87:0e:fb:f3:ce:2a:7a:a0:2f:ea:80:25:21:4b: 95:15:37:f1:7c:58:bf:04:50:7d:f9:79:75:8b:f8:7c:19:0a: 0b:ea:db:f8:55:1b:8e:79:d9:bc:d4:ea:ab:65:da:a2:42:ed: 8c:6b:7d:81:8c:f3:f4:c4:dc:fc:8d:31:1c:1c:4b:16:46:c0: 1e:64:b2:2d:51:76:60:8a:b9:20:fe:5d:60:12:31:25:4b:c0: 34:e8:87:21:b7:8a:20:ca:ba:f4:0b:ba:d3:ab:83:ae:83:86: 52:f5:d2:6d:80:b1:c1:6d:03:a2:6e:f9:7b:df:7b:f8:ec:2c: aa:de:90:7b:e3:15:66:36:55:9f:21:00:bc:d1:82:c7:3a:da: c6:ef:c0:61:9e:9a:55:94:fb:10:ce:a4:e2:ea:f6:06:b9:5b: b1:b5:dc:80:b5:18:2e:c5:0f:a1:9b:28:ca:9e:a0:dd:1c:bc: a7:29:9b:22 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUB5h/daioVbwp0o24ogYx1aiz0SowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTEwMTgyMjU2MDZaFw0yNjEwMTcyMzAxMDZaMDMxMTAvBgNV BAMTKDE2MzlFRDhGOEY1RTJCNTBBQkZDQUVBQjBFMEUwNUEzMzE0MEQ4MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Q9O8jz8qAwTPmHHZE4vxcxp7 dbAumWsInwA3TnGwtnRVuy+HuqCLcxTh7hAjpvow/X3JakC2E5QNePbQz1YQFtIB 7NWeIm+RTbmMrEPxp+YIxYpj8WSDieuZPDSLR65SbILI0Mntjnh9PUXnAuy6ez9g kNBudf8P1+2EG/DcVth7bw6JFxU7S/AsNzG5OctJM3oEJzAQxyCM/dIB+w3iJEan a5Dqj6zX6rGjWC6kWj+qihsyRRb2cBvMrlzgLyURDGP8e+c6UEwRYzNYixiLCcEP nSzJKdYTKr52iNffORHmkkm4XjWd79B3Amz726zZPEnapkE6bKQWa/hEzzNVAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUFjntj49eK1Cr/K6rDg4FozFA2BgwHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNaOW5FUVZjR3NWRzdzUkNUa1kyWnZ2bURIaG9FNVpnYmpES0ZxTUZ0N0RGLzAv MzEzNzMwMmUzMDJlMzIzMDM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNzMx MzczMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCqgDMMA0GCSqGSIb3DQEBCwUAA4IBAQBKrvKH7kLg DXAdvaR+F/0iaKnYsBsUgldL0qQS458F8B3RZNbFREXsg4BfOim1ChVLI15yojT5 SaBnO5n1kj3+bZDY5P+dTNWdGOXKhw77884qeqAv6oAlIUuVFTfxfFi/BFB9+Xl1 i/h8GQoL6tv4VRuOedm81OqrZdqiQu2Ma32BjPP0xNz8jTEcHEsWRsAeZLItUXZg irkg/l1gEjElS8A06Icht4ogyrr0C7rTq4Oug4ZS9dJtgLHBbQOibvl733v47Cyq 3pB74xVmNlWfIQC80YLHOtrG78BhnppVlPsQzqTi6vYGuVuxtdyAtRguxQ+hmyjK nqDdHLynKZsi -----END CERTIFICATE-----Generated at Mon Oct 20 17:00:13 2025 by rpki-client