$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137372e38372e3134342e302f32312d3231203d3e203238323730.roa File: 3137372e38372e3134342e302f32312d3231203d3e203238323730.roa (raw, json) Hash identifier: Ax8fRIbdGneHS5aNU9HD/gRWexlbQ0O/zOB+h9xz9hY= Subject key identifier: C0:4F:35:EA:70:FE:EA:B0:98:0C:36:6B:9C:42:9E:BC:D7:D3:3B:A9 Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 7241E54981F84580421843B96BD232B334FA9B33 Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137372e38372e3134342e302f32312d3231203d3e203238323730.roa Signing time: Sat 18 Oct 2025 23:01:03 +0000 ROA not before: Sat 18 Oct 2025 22:56:03 +0000 ROA not after: Sat 17 Oct 2026 23:01:03 +0000 asID: 28270 IP address blocks: 177.87.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 14:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:41:e5:49:81:f8:45:80:42:18:43:b9:6b:d2:32:b3:34:fa:9b:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Oct 18 22:56:03 2025 GMT Not After : Oct 17 23:01:03 2026 GMT Subject: CN=C04F35EA70FEEAB0980C366B9C429EBCD7D33BA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:62:41:bd:e7:77:38:b8:f8:04:79:bf:6f:75: dd:37:43:f5:da:b1:4d:e7:48:67:29:a8:79:0b:b7: 59:47:59:86:ea:64:d7:40:3d:52:fb:22:cc:a3:37: 38:91:fc:b0:98:f7:da:53:36:f9:fb:ef:bd:b2:96: b0:d4:02:1f:83:f2:a7:d8:a0:f8:bc:c2:b2:80:2d: 47:43:67:0c:7a:01:de:97:c7:d4:01:d3:66:54:a9: 8c:bc:ab:8a:d5:da:49:01:8c:cf:51:27:71:17:10: 91:1d:72:6c:c5:31:4e:47:eb:76:15:04:48:97:4e: 69:23:1f:1d:f6:7e:c8:bd:42:3e:86:a8:01:90:c9: ad:7a:7f:f8:91:bb:52:35:26:03:9f:0c:b8:8d:bd: ae:a2:cf:0f:b0:05:7a:5b:74:b6:4d:cb:db:0d:dd: 91:e3:8f:06:1e:69:aa:7b:f0:b3:5a:d3:dd:a1:6a: bd:bc:1d:c2:b9:d4:b8:9b:5d:d6:52:35:77:e7:5a: 17:7d:bf:f3:64:97:6c:ed:0b:37:2d:2a:c0:1b:25: 75:60:c7:9f:71:4e:60:72:5a:55:5b:1c:7c:65:b8: fd:d1:18:8e:3c:bc:e1:ec:a0:0c:c5:4e:d9:3c:d6: 45:6f:1d:3b:b2:41:9e:f6:d5:c7:77:08:a2:fb:96: 72:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:4F:35:EA:70:FE:EA:B0:98:0C:36:6B:9C:42:9E:BC:D7:D3:3B:A9 X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137372e38372e3134342e302f32312d3231203d3e203238323730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.87.144.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:8d:4a:a0:aa:95:63:54:05:5c:a0:5f:97:3f:a0:24:b3:42: 08:b6:c5:bb:89:03:6a:ca:3b:54:5a:06:8a:f1:75:2e:14:0c: c3:02:74:7f:96:54:83:c5:0c:54:84:df:12:f8:28:ba:45:7f: 8a:db:a8:cb:35:b3:92:25:df:f3:b9:bc:89:e2:a0:34:31:13: 7e:62:e8:42:d8:1c:6d:0e:59:88:fc:9e:40:18:c5:cb:72:69: 99:49:8a:8b:58:33:fa:79:71:d2:7f:4e:06:50:d3:f2:93:1e: 32:83:5d:2c:18:52:62:d8:8d:fa:98:0e:00:b9:60:94:8c:8f: 2a:00:a7:0b:f2:40:0b:ef:00:3c:ab:62:5a:bb:2c:8e:81:aa: 10:b4:12:8c:aa:7b:ce:de:0e:00:9a:b8:e6:57:e0:45:2e:6c: fe:ea:64:45:63:c2:a0:2d:fa:a2:91:c9:be:7a:c4:f2:6d:f2: c5:f4:13:0d:66:f2:55:dc:9f:a3:c5:44:1e:6c:68:f1:37:ee: db:a1:ec:84:1b:de:b9:5a:b7:f0:4d:6d:f6:e0:68:48:8c:3d: 12:4c:9e:16:fe:d6:64:26:4c:ed:2b:3e:12:b1:1e:e1:10:24: 04:3c:f9:e7:2f:1a:b4:a5:3c:f4:b4:38:89:5e:76:4d:88:11: 13:16:6f:71 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUckHlSYH4RYBCGEO5a9IyszT6mzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTEwMTgyMjU2MDNaFw0yNjEwMTcyMzAxMDNaMDMxMTAvBgNV BAMTKEMwNEYzNUVBNzBGRUVBQjA5ODBDMzY2QjlDNDI5RUJDRDdEMzNCQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDYkG953c4uPgEeb9vdd03Q/Xa sU3nSGcpqHkLt1lHWYbqZNdAPVL7IsyjNziR/LCY99pTNvn7772ylrDUAh+D8qfY oPi8wrKALUdDZwx6Ad6Xx9QB02ZUqYy8q4rV2kkBjM9RJ3EXEJEdcmzFMU5H63YV BEiXTmkjHx32fsi9Qj6GqAGQya16f/iRu1I1JgOfDLiNva6izw+wBXpbdLZNy9sN 3ZHjjwYeaap78LNa092har28HcK51LibXdZSNXfnWhd9v/Nkl2ztCzctKsAbJXVg x59xTmByWlVbHHxluP3RGI48vOHsoAzFTtk81kVvHTuyQZ721cd3CKL7lnIrAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUwE816nD+6rCYDDZrnEKevNfTO6kwHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNaOW5FUVZjR3NWRzdzUkNUa1kyWnZ2bURIaG9FNVpnYmpES0ZxTUZ0N0RGLzAv MzEzNzM3MmUzODM3MmUzMTM0MzQyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzMjM4 MzIzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQDsVeQMA0GCSqGSIb3DQEBCwUAA4IBAQB8jUqgqpVj VAVcoF+XP6Aks0IItsW7iQNqyjtUWgaK8XUuFAzDAnR/llSDxQxUhN8S+Ci6RX+K 26jLNbOSJd/zubyJ4qA0MRN+YuhC2BxtDlmI/J5AGMXLcmmZSYqLWDP6eXHSf04G UNPykx4yg10sGFJi2I36mA4AuWCUjI8qAKcL8kAL7wA8q2JauyyOgaoQtBKMqnvO 3g4AmrjmV+BFLmz+6mRFY8KgLfqikcm+esTybfLF9BMNZvJV3J+jxUQebGjxN+7b oeyEG965WrfwTW324GhIjD0STJ4W/tZkJkztKz4SsR7hECQEPPnnLxq0pTz0tDiJ XnZNiBETFm9x -----END CERTIFICATE-----Generated at Mon Oct 20 19:49:30 2025 by rpki-client