$ rpki-client -vvf rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3133382e3230342e3232302e302f32322d3232203d3e203533313533.roa File: 3133382e3230342e3232302e302f32322d3232203d3e203533313533.roa (raw, json) Hash identifier: UrLToF0hqIAYGz28DN0bDbn6BeD06elfZf5Wwv+ukRs= Subject key identifier: D0:DB:61:69:C5:FA:22:F6:F1:54:3D:14:70:19:07:8F:88:B1:C6:2B Certificate issuer: /CN=85CB838E34B41EAF2AA18ECCB28128B775E7DF08 Certificate serial: 21F29986B93E887E0D70594F6A8848421BB96B74 Authority key identifier: 85:CB:83:8E:34:B4:1E:AF:2A:A1:8E:CC:B2:81:28:B7:75:E7:DF:08 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.cer Subject info access: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3133382e3230342e3232302e302f32322d3232203d3e203533313533.roa Signing time: Wed 20 Aug 2025 01:24:34 +0000 ROA not before: Wed 20 Aug 2025 01:19:34 +0000 ROA not after: Wed 19 Aug 2026 01:24:34 +0000 asID: 53153 IP address blocks: 138.204.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.crl rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 21 Aug 2025 16:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f2:99:86:b9:3e:88:7e:0d:70:59:4f:6a:88:48:42:1b:b9:6b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85CB838E34B41EAF2AA18ECCB28128B775E7DF08 Validity Not Before: Aug 20 01:19:34 2025 GMT Not After : Aug 19 01:24:34 2026 GMT Subject: CN=D0DB6169C5FA22F6F1543D147019078F88B1C62B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6e:b9:2e:4e:64:70:11:01:b1:22:1d:2d:2e: a2:83:3f:57:d0:73:36:de:cc:1e:52:5f:db:3e:0f: ff:16:3f:96:88:d7:4a:f0:f8:2c:c9:87:8e:8c:de: cd:9b:2b:42:ea:1a:34:2b:6a:83:ac:c9:ab:2b:fa: de:9a:5b:d8:d8:00:85:ad:57:a9:dc:40:db:16:44: 8c:15:04:3e:79:e5:04:74:cf:f9:83:34:cf:68:4e: 1b:70:ac:f5:b4:27:c4:ff:09:26:c1:43:25:24:4e: fa:31:f4:a6:5c:67:1b:d9:dc:46:01:32:fc:02:c4: 58:a1:30:f4:2c:6d:2d:48:39:30:88:a6:5c:45:e0: 89:b7:94:2e:75:b7:24:84:5b:52:57:0a:e9:d2:5b: 4f:8b:27:9a:63:25:a4:03:5e:07:2a:c3:74:02:e4: be:a1:bc:9a:21:2e:3c:e9:cf:34:8a:77:be:47:56: 9b:6f:d9:d2:5f:d0:81:06:57:7b:4b:bf:65:91:66: 1e:b4:65:2c:5d:86:f7:c1:19:f7:e2:53:d8:a5:27: b6:6a:7f:f2:a6:37:1b:1c:f8:52:ac:fc:26:71:da: d2:a6:65:80:66:35:bd:a6:cf:14:5e:e4:f0:cb:c4: fd:cc:69:8a:61:2d:03:5c:bf:cb:49:82:9a:cb:7c: 0e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:DB:61:69:C5:FA:22:F6:F1:54:3D:14:70:19:07:8F:88:B1:C6:2B X509v3 Authority Key Identifier: keyid:85:CB:83:8E:34:B4:1E:AF:2A:A1:8E:CC:B2:81:28:B7:75:E7:DF:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3133382e3230342e3232302e302f32322d3232203d3e203533313533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.204.220.0/22 Signature Algorithm: sha256WithRSAEncryption 70:47:9d:a2:a5:41:7e:41:53:67:d5:62:7b:88:41:20:58:9b: 28:45:89:11:76:9d:7c:db:b7:42:0d:64:16:bc:8b:5a:44:73: d8:21:32:cb:af:48:2e:11:bc:d5:76:8c:b7:91:f2:7b:4c:f5: 26:2f:f9:d6:0d:cc:f5:39:c4:15:90:73:7a:1c:35:70:aa:49: ac:b3:47:c7:77:71:90:68:54:ec:03:65:25:f9:cc:0a:47:b0: 22:9f:ae:89:fa:8f:67:2f:e5:2d:5a:e7:e0:b6:29:c9:d4:aa: f5:b4:1f:a2:ab:76:14:14:80:aa:2b:d3:4f:54:c8:da:e1:d1: 43:75:e1:d2:5f:1b:97:d6:f3:0e:ac:a4:c1:b5:c0:3c:11:bf: b4:9f:dc:46:3f:cf:14:4d:42:4c:45:a6:2e:21:b0:1c:26:99: fa:cf:c5:19:cd:a9:ba:87:1a:30:52:a6:2f:a6:9e:be:b8:be: 62:5d:bb:c5:e5:9b:3c:ef:9d:88:48:4e:45:1d:17:61:80:8e: b0:04:78:d4:d6:83:e8:51:07:bc:1f:71:71:bb:2d:8b:c4:f7: 2c:f4:47:92:08:c8:08:f5:de:8f:f8:4b:d6:8b:48:0d:4a:0d: 93:e3:d7:2d:99:31:b3:a8:18:fc:7c:99:a8:c6:69:8f:c9:e4: 07:eb:db:a0 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUIfKZhrk+iH4NcFlPaohIQhu5a3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVDQjgzOEUzNEI0MUVBRjJBQTE4RUNDQjI4MTI4Qjc3 NUU3REYwODAeFw0yNTA4MjAwMTE5MzRaFw0yNjA4MTkwMTI0MzRaMDMxMTAvBgNV BAMTKEQwREI2MTY5QzVGQTIyRjZGMTU0M0QxNDcwMTkwNzhGODhCMUM2MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqbrkuTmRwEQGxIh0tLqKDP1fQ czbezB5SX9s+D/8WP5aI10rw+CzJh46M3s2bK0LqGjQraoOsyasr+t6aW9jYAIWt V6ncQNsWRIwVBD555QR0z/mDNM9oThtwrPW0J8T/CSbBQyUkTvox9KZcZxvZ3EYB MvwCxFihMPQsbS1IOTCIplxF4Im3lC51tySEW1JXCunSW0+LJ5pjJaQDXgcqw3QC 5L6hvJohLjzpzzSKd75HVptv2dJf0IEGV3tLv2WRZh60ZSxdhvfBGffiU9ilJ7Zq f/KmNxsc+FKs/CZx2tKmZYBmNb2mzxRe5PDLxP3MaYphLQNcv8tJgprLfA7FAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQU0NthacX6IvbxVD0UcBkHj4ixxiswHwYDVR0j BBgwFoAUhcuDjjS0Hq8qoY7MsoEot3Xn3wgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMm5zZHRMdG1xcEgzUFBtYnJzTHNIWGhtN2p4a1ByVHNkSnJudmdOelJC SmgvMC84NUNCODM4RTM0QjQxRUFGMkFBMThFQ0NCMjgxMjhCNzc1RTdERjA4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg1Q0I4MzhFMzRCNDFFQUYy QUExOEVDQ0IyODEyOEI3NzVFN0RGMDguY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJuc2R0THRtcXBIM1BQbWJyc0xzSFhobTdqeGtQclRzZEpybnZnTnpSQkpoLzAv MzEzMzM4MmUzMjMwMzQyZTMyMzIzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDM1 MzMzMTM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKKzNwwDQYJKoZIhvcNAQELBQADggEBAHBHnaKl QX5BU2fVYnuIQSBYmyhFiRF2nXzbt0INZBa8i1pEc9ghMsuvSC4RvNV2jLeR8ntM 9SYv+dYNzPU5xBWQc3ocNXCqSayzR8d3cZBoVOwDZSX5zApHsCKfron6j2cv5S1a 5+C2KcnUqvW0H6KrdhQUgKor009UyNrh0UN14dJfG5fW8w6spMG1wDwRv7Sf3EY/ zxRNQkxFpi4hsBwmmfrPxRnNqbqHGjBSpi+mnr64vmJdu8XlmzzvnYhITkUdF2GA jrAEeNTWg+hRB7wfcXG7LYvE9yz0R5IIyAj13o/4S9aLSA1KDZPj1y2ZMbOoGPx8 majGaY/J5Afr26A= -----END CERTIFICATE-----Generated at Wed Aug 20 23:55:04 2025 by rpki-client