$ rpki-client -vvf rpki-repo.registro.br/repo/BvGzH6Pqd79p339G3eD22s9RTKUygLoNXNEhvNZqzv93/0/3138372e31372e34302e302f32312d3231203d3e20323639303733.roa File: 3138372e31372e34302e302f32312d3231203d3e20323639303733.roa (raw, json) Hash identifier: IJUj+FqsSmp2Dzs4+0+akz91FKPXbot85b8ayVLaK24= Subject key identifier: B8:5B:8F:AF:BA:40:2C:D8:B4:CD:F4:D3:BA:37:63:43:25:18:BD:37 Certificate issuer: /CN=3FF96820195E6A66E38F9102B4B56F0E4EB31831 Certificate serial: 33BD695C8A6DF5E37782A1232ABC3086E4B38A55 Authority key identifier: 3F:F9:68:20:19:5E:6A:66:E3:8F:91:02:B4:B5:6F:0E:4E:B3:18:31 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3FF96820195E6A66E38F9102B4B56F0E4EB31831.cer Subject info access: rsync://rpki-repo.registro.br/repo/BvGzH6Pqd79p339G3eD22s9RTKUygLoNXNEhvNZqzv93/0/3138372e31372e34302e302f32312d3231203d3e20323639303733.roa Signing time: Tue 23 Sep 2025 15:19:31 +0000 ROA not before: Tue 23 Sep 2025 15:14:31 +0000 ROA not after: Tue 22 Sep 2026 15:19:31 +0000 asID: 269073 IP address blocks: 187.17.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BvGzH6Pqd79p339G3eD22s9RTKUygLoNXNEhvNZqzv93/0/3FF96820195E6A66E38F9102B4B56F0E4EB31831.crl rsync://rpki-repo.registro.br/repo/BvGzH6Pqd79p339G3eD22s9RTKUygLoNXNEhvNZqzv93/0/3FF96820195E6A66E38F9102B4B56F0E4EB31831.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3FF96820195E6A66E38F9102B4B56F0E4EB31831.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 05:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:bd:69:5c:8a:6d:f5:e3:77:82:a1:23:2a:bc:30:86:e4:b3:8a:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FF96820195E6A66E38F9102B4B56F0E4EB31831 Validity Not Before: Sep 23 15:14:31 2025 GMT Not After : Sep 22 15:19:31 2026 GMT Subject: CN=B85B8FAFBA402CD8B4CDF4D3BA3763432518BD37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d9:0f:f6:7e:12:12:7b:de:d0:32:28:da:ad: e2:dd:92:75:29:3e:60:0d:a2:ea:7a:8a:f5:4f:f9: d7:c3:1f:62:97:d5:ec:65:cb:f6:c0:c6:f6:d2:01: c8:47:24:e4:e7:ca:f0:bb:0c:72:cc:00:3c:9c:4b: e2:c6:8a:2f:83:32:59:a9:a2:4b:43:23:2c:a1:88: fe:81:0f:b2:10:cc:75:58:ff:f4:d0:2c:3b:ed:e6: 20:e6:bd:f8:7b:80:34:52:1f:5c:47:5b:e6:78:c9: 0b:d1:22:79:60:2f:79:aa:15:45:be:2e:3e:b2:0b: 1c:ec:37:ec:78:c5:18:70:71:2d:b3:f2:9d:7e:c8: 23:29:9d:e4:41:2e:58:a4:67:76:5b:e3:b0:8e:6f: 06:aa:81:51:40:89:ea:26:48:7c:db:c5:bd:de:42: f1:39:be:97:98:36:24:3e:6f:fb:e9:38:ee:1b:10: 77:d3:eb:07:3a:04:74:4d:08:ac:73:1d:94:89:ec: eb:3b:5d:00:78:2c:56:e9:5a:15:7c:3d:1f:cc:41: 0e:05:3b:8a:f8:d9:47:68:ea:e5:f8:e2:ce:e6:31: 00:91:88:b0:ba:bb:8b:2d:d7:35:01:c6:91:05:15: f8:3f:73:46:03:35:3e:65:ab:65:d9:7f:aa:2e:e9: f8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:5B:8F:AF:BA:40:2C:D8:B4:CD:F4:D3:BA:37:63:43:25:18:BD:37 X509v3 Authority Key Identifier: keyid:3F:F9:68:20:19:5E:6A:66:E3:8F:91:02:B4:B5:6F:0E:4E:B3:18:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BvGzH6Pqd79p339G3eD22s9RTKUygLoNXNEhvNZqzv93/0/3FF96820195E6A66E38F9102B4B56F0E4EB31831.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3FF96820195E6A66E38F9102B4B56F0E4EB31831.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BvGzH6Pqd79p339G3eD22s9RTKUygLoNXNEhvNZqzv93/0/3138372e31372e34302e302f32312d3231203d3e20323639303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 187.17.40.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:42:88:bc:ef:ff:c9:81:7a:73:9d:a1:16:29:70:24:db:bb: 3d:09:da:00:fb:fe:91:12:38:cc:e9:4b:79:5a:20:bb:2d:a4: 21:56:90:d1:fe:c0:67:bf:31:33:5e:b3:8f:df:44:1f:8e:26: af:9b:0a:1f:f7:10:70:8b:6e:13:a9:ca:00:5a:6b:9d:c3:5e: a0:6c:7d:a5:c8:d8:17:1c:bc:67:4b:d6:6d:a9:43:65:92:58: 36:48:44:2f:08:2e:b7:45:1f:70:0a:54:f8:84:26:10:3c:38: 20:a5:47:c6:2e:93:4a:cd:4a:d9:94:d5:81:9b:d8:b0:88:53: b8:11:d3:e3:82:b1:46:98:21:36:7a:e9:37:47:2d:97:ad:b4: 65:49:2f:ac:29:a8:eb:2e:60:ba:27:cb:fa:15:8f:f8:29:2a: e9:55:e7:cc:40:b6:39:56:b6:4d:fe:89:1a:92:35:69:3e:0a: ce:40:65:31:12:4b:d8:4e:98:a8:d8:b2:e6:7f:af:ae:72:4e: db:17:cc:4c:a0:bf:90:50:1a:73:96:c3:af:1a:e2:f1:ac:bb: 2f:ad:72:df:1a:52:18:55:63:a9:3b:d5:2b:89:04:8c:2d:05: 84:b6:45:12:00:9c:b6:22:19:0e:c5:37:07:cd:eb:a4:4c:79: 20:73:a4:39 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUM71pXIpt9eN3gqEjKrwwhuSzilUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGOTY4MjAxOTVFNkE2NkUzOEY5MTAyQjRCNTZGMEU0 RUIzMTgzMTAeFw0yNTA5MjMxNTE0MzFaFw0yNjA5MjIxNTE5MzFaMDMxMTAvBgNV BAMTKEI4NUI4RkFGQkE0MDJDRDhCNENERjREM0JBMzc2MzQzMjUxOEJEMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg2Q/2fhISe97QMijareLdknUp PmANoup6ivVP+dfDH2KX1exly/bAxvbSAchHJOTnyvC7DHLMADycS+LGii+DMlmp oktDIyyhiP6BD7IQzHVY//TQLDvt5iDmvfh7gDRSH1xHW+Z4yQvRInlgL3mqFUW+ Lj6yCxzsN+x4xRhwcS2z8p1+yCMpneRBLlikZ3Zb47CObwaqgVFAieomSHzbxb3e QvE5vpeYNiQ+b/vpOO4bEHfT6wc6BHRNCKxzHZSJ7Os7XQB4LFbpWhV8PR/MQQ4F O4r42Udo6uX44s7mMQCRiLC6u4st1zUBxpEFFfg/c0YDNT5lq2XZf6ou6fjJAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUuFuPr7pALNi0zfTTujdjQyUYvTcwHwYDVR0j BBgwFoAUP/loIBleambjj5ECtLVvDk6zGDEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQnZHekg2UHFkNzlwMzM5RzNlRDIyczlSVEtVeWdMb05YTkVodk5acXp2 OTMvMC8zRkY5NjgyMDE5NUU2QTY2RTM4RjkxMDJCNEI1NkYwRTRFQjMxODMxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzNGRjk2ODIwMTk1RTZBNjZF MzhGOTEwMkI0QjU2RjBFNEVCMzE4MzEuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0J2R3pINlBxZDc5cDMzOUczZUQyMnM5UlRLVXlnTG9OWE5FaHZOWnF6djkzLzAv MzEzODM3MmUzMTM3MmUzNDMwMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzIzNjM5 MzAzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQDuxEoMA0GCSqGSIb3DQEBCwUAA4IBAQB8Qoi87//J gXpznaEWKXAk27s9CdoA+/6REjjM6Ut5WiC7LaQhVpDR/sBnvzEzXrOP30Qfjiav mwof9xBwi24TqcoAWmudw16gbH2lyNgXHLxnS9ZtqUNlklg2SEQvCC63RR9wClT4 hCYQPDggpUfGLpNKzUrZlNWBm9iwiFO4EdPjgrFGmCE2euk3Ry2XrbRlSS+sKajr LmC6J8v6FY/4KSrpVefMQLY5VrZN/okakjVpPgrOQGUxEkvYTpio2LLmf6+uck7b F8xMoL+QUBpzlsOvGuLxrLsvrXLfGlIYVWOpO9UriQSMLQWEtkUSAJy2IhkOxTcH zeukTHkgc6Q5 -----END CERTIFICATE-----Generated at Mon Oct 20 19:05:02 2025 by rpki-client