$ rpki-client -vvf rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/0/3133382e3131372e33322e302f32322d3233203d3e20323634343739.roa File: 3133382e3131372e33322e302f32322d3233203d3e20323634343739.roa (raw, json) Hash identifier: ParPaMGyo8SuILR8qf7hTQIX/kA7HVSx+yAx73e8RGs= Subject key identifier: 3D:90:E2:98:36:77:B1:A2:05:2A:E4:90:B3:E1:4A:97:05:18:94:97 Certificate issuer: /CN=74FA7403B361BD3A6DCE3695CF0EA21AFC15A0C5 Certificate serial: 684C462FE5B14F43D0386E1634D22863E9133477 Authority key identifier: 74:FA:74:03:B3:61:BD:3A:6D:CE:36:95:CF:0E:A2:1A:FC:15:A0:C5 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/74FA7403B361BD3A6DCE3695CF0EA21AFC15A0C5.cer Subject info access: rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/0/3133382e3131372e33322e302f32322d3233203d3e20323634343739.roa Signing time: Fri 20 Jun 2025 16:20:47 +0000 ROA not before: Fri 20 Jun 2025 16:15:47 +0000 ROA not after: Fri 19 Jun 2026 16:20:47 +0000 asID: 264479 IP address blocks: 138.117.32.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/0/74FA7403B361BD3A6DCE3695CF0EA21AFC15A0C5.crl rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/0/74FA7403B361BD3A6DCE3695CF0EA21AFC15A0C5.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/74FA7403B361BD3A6DCE3695CF0EA21AFC15A0C5.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 02 Jul 2025 08:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:4c:46:2f:e5:b1:4f:43:d0:38:6e:16:34:d2:28:63:e9:13:34:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74FA7403B361BD3A6DCE3695CF0EA21AFC15A0C5 Validity Not Before: Jun 20 16:15:47 2025 GMT Not After : Jun 19 16:20:47 2026 GMT Subject: CN=3D90E2983677B1A2052AE490B3E14A9705189497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:36:7f:77:de:72:64:b9:de:62:ba:5b:bc:9f: c3:d0:54:f4:e3:84:19:4e:f6:5a:c0:8b:83:e3:ae: 28:2b:c8:11:ef:71:af:44:f0:c6:a7:06:9e:99:47: 4e:81:8c:e7:e4:6f:e8:41:af:d5:31:2f:27:b3:3e: 6e:ab:cb:cf:f9:68:41:66:3b:42:1b:3d:4d:97:ce: 89:5f:56:dc:fa:d3:6d:8e:d8:4f:3c:78:55:85:ec: d9:70:e6:eb:fb:6e:04:60:6c:65:5a:d7:03:8c:0e: 5d:30:69:68:dd:6d:d8:7e:c2:48:14:a5:c3:3a:e8: d5:1f:c5:82:e2:c6:53:02:a3:9b:3a:46:51:81:48: 8d:f4:d6:6e:59:1f:9e:c3:96:5f:b2:54:d8:83:9d: c5:46:5d:68:51:0d:03:16:94:87:ef:90:05:0b:e2: 1d:42:4c:d3:f2:e7:5a:63:d5:42:2a:da:54:3d:39: d4:e8:c8:4e:f3:d5:b8:77:57:d2:57:e9:7d:c4:79: a0:33:4f:b0:fe:19:d5:b6:e4:51:9d:db:64:44:f9: 86:00:ab:03:60:4a:b2:e3:4e:fd:da:0a:63:a9:89: 2d:35:ab:dc:01:8d:ff:52:7b:10:5c:0f:59:3e:df: 45:89:e9:a3:79:fb:78:00:9b:6a:16:f1:c1:db:7e: 91:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:90:E2:98:36:77:B1:A2:05:2A:E4:90:B3:E1:4A:97:05:18:94:97 X509v3 Authority Key Identifier: keyid:74:FA:74:03:B3:61:BD:3A:6D:CE:36:95:CF:0E:A2:1A:FC:15:A0:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/0/74FA7403B361BD3A6DCE3695CF0EA21AFC15A0C5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/74FA7403B361BD3A6DCE3695CF0EA21AFC15A0C5.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HEAjYtdxJ3oQw6j6vUDMTXx8XxZqVMKPnryntXBiqnvd/0/3133382e3131372e33322e302f32322d3233203d3e20323634343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.117.32.0/22 Signature Algorithm: sha256WithRSAEncryption 88:a4:6b:13:23:7f:cf:80:3b:70:08:26:f9:c8:c0:1f:4d:6d: 53:e6:f8:44:48:ce:c3:e9:d2:b0:ad:0d:b2:64:5d:e9:d1:b8: 01:64:e5:55:e8:e9:be:0c:a7:b7:e6:05:8c:ec:3c:d0:dd:80: 4d:4d:4d:96:27:ac:2b:cd:d0:28:4b:60:a5:fe:f6:d1:b1:8d: 73:1c:e9:8f:5a:3d:cd:6b:42:9f:7b:20:d7:73:c4:69:17:3c: 78:5e:4c:24:89:3b:0d:64:4c:fa:1d:f4:5f:c1:0d:b4:8c:26: b2:c4:c8:91:95:31:bf:de:8d:78:d1:58:34:d0:a3:aa:c3:a5: a9:fa:a2:a7:e8:8c:b8:eb:20:a6:25:a5:e5:1f:2e:e1:8f:5b: a0:0e:56:18:47:06:43:30:c2:2e:2e:17:4f:7e:2e:36:49:0f: 9d:da:d1:0c:05:42:de:5e:8c:8e:d3:78:e2:9b:3e:7e:ed:7e: 43:3b:82:1c:a2:6d:86:c2:a1:f0:0c:e1:bf:06:8d:03:da:6e: e9:eb:6f:82:9d:08:95:3a:df:ae:8f:19:0a:43:d7:4a:ac:f5: d6:65:02:f8:99:2e:7b:75:92:50:95:38:f6:c8:b5:ea:77:ae: c5:be:27:52:83:16:b2:56:d3:45:44:14:49:34:e1:32:54:84: cb:52:03:19 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUaExGL+WxT0PQOG4WNNIoY+kTNHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzRGQTc0MDNCMzYxQkQzQTZEQ0UzNjk1Q0YwRUEyMUFG QzE1QTBDNTAeFw0yNTA2MjAxNjE1NDdaFw0yNjA2MTkxNjIwNDdaMDMxMTAvBgNV BAMTKDNEOTBFMjk4MzY3N0IxQTIwNTJBRTQ5MEIzRTE0QTk3MDUxODk0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfNn933nJkud5iulu8n8PQVPTj hBlO9lrAi4PjrigryBHvca9E8ManBp6ZR06BjOfkb+hBr9UxLyezPm6ry8/5aEFm O0IbPU2XzolfVtz6022O2E88eFWF7Nlw5uv7bgRgbGVa1wOMDl0waWjdbdh+wkgU pcM66NUfxYLixlMCo5s6RlGBSI301m5ZH57Dll+yVNiDncVGXWhRDQMWlIfvkAUL 4h1CTNPy51pj1UIq2lQ9OdToyE7z1bh3V9JX6X3EeaAzT7D+GdW25FGd22RE+YYA qwNgSrLjTv3aCmOpiS01q9wBjf9SexBcD1k+30WJ6aN5+3gAm2oW8cHbfpGVAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUPZDimDZ3saIFKuSQs+FKlwUYlJcwHwYDVR0j BBgwFoAUdPp0A7NhvTptzjaVzw6iGvwVoMUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSEVBall0ZHhKM29RdzZqNnZVRE1UWHg4WHhacVZNS1BucnludFhCaXFu dmQvMC83NEZBNzQwM0IzNjFCRDNBNkRDRTM2OTVDRjBFQTIxQUZDMTVBMEM1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzc0RkE3NDAzQjM2MUJEM0E2 RENFMzY5NUNGMEVBMjFBRkMxNUEwQzUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hFQWpZdGR4SjNvUXc2ajZ2VURNVFh4OFh4WnFWTUtQbnJ5bnRYQmlxbnZkLzAv MzEzMzM4MmUzMTMxMzcyZTMzMzIyZTMwMmYzMjMyMmQzMjMzMjAzZDNlMjAzMjM2 MzQzNDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKKdSAwDQYJKoZIhvcNAQELBQADggEBAIikaxMj f8+AO3AIJvnIwB9NbVPm+ERIzsPp0rCtDbJkXenRuAFk5VXo6b4Mp7fmBYzsPNDd gE1NTZYnrCvN0ChLYKX+9tGxjXMc6Y9aPc1rQp97INdzxGkXPHheTCSJOw1kTPod 9F/BDbSMJrLEyJGVMb/ejXjRWDTQo6rDpan6oqfojLjrIKYlpeUfLuGPW6AOVhhH BkMwwi4uF09+LjZJD53a0QwFQt5ejI7TeOKbPn7tfkM7ghyibYbCofAM4b8GjQPa bunrb4KdCJU6366PGQpD10qs9dZlAviZLnt1klCVOPbItep3rsW+J1KDFrJW00VE FEk04TJUhMtSAxk= -----END CERTIFICATE-----Generated at Tue Jul 1 21:18:53 2025 by rpki-client