$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133382e3132322e3233372e302f32342d3234203d3e203238323730.roa File: 3133382e3132322e3233372e302f32342d3234203d3e203238323730.roa (raw, json) Hash identifier: vrZKXuMusznRkSQzN3FCqGYi6GFkCfpAKDi0A05V9oQ= Subject key identifier: 31:78:D3:06:B2:9C:90:FB:FC:57:29:76:2B:B9:25:F7:55:EF:4D:8A Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 5E040F87B9A1A3573BB57FD5780CA948036E85C4 Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133382e3132322e3233372e302f32342d3234203d3e203238323730.roa Signing time: Sat 18 Oct 2025 23:01:06 +0000 ROA not before: Sat 18 Oct 2025 22:56:06 +0000 ROA not after: Sat 17 Oct 2026 23:01:06 +0000 asID: 28270 IP address blocks: 138.122.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 05 Nov 2025 16:20:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:04:0f:87:b9:a1:a3:57:3b:b5:7f:d5:78:0c:a9:48:03:6e:85:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Oct 18 22:56:06 2025 GMT Not After : Oct 17 23:01:06 2026 GMT Subject: CN=3178D306B29C90FBFC5729762BB925F755EF4D8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:56:bc:bb:c7:27:6d:de:02:f2:40:09:64:f8: 8d:8a:90:ac:49:8d:58:6e:37:65:97:3e:6a:8b:cd: 5c:2d:77:04:78:b2:40:e6:3b:58:33:2c:bb:48:c6: ce:4f:a2:84:4e:b1:4e:45:44:70:fc:46:f9:28:b8: e6:42:eb:f6:84:33:32:d4:12:30:6d:9e:c8:35:78: be:b6:c5:4a:e7:37:da:7b:b0:1c:7f:af:96:cb:00: 86:a7:c9:6e:29:55:df:4e:57:da:b6:3b:d5:90:7f: b5:5d:4d:89:83:21:15:0e:4f:56:01:85:4e:0e:68: be:7c:91:32:0a:07:3a:90:0a:54:95:4a:19:ee:34: 46:49:98:e6:34:97:0a:f3:2d:41:60:f3:ba:2c:ea: 1b:c4:90:69:00:28:f8:bc:fb:23:57:4a:0b:99:ed: ed:48:77:65:20:d9:47:32:d5:72:6c:b2:80:0c:db: a1:bc:f3:e3:f9:2a:86:7f:f5:06:e3:e6:4f:7b:2b: 93:8d:fe:55:7e:7b:df:21:fb:42:69:68:19:91:23: a9:e2:dc:31:4b:24:08:74:fb:d9:07:48:de:8d:26: ac:03:76:b4:17:35:ac:e3:8d:9d:66:b0:8b:86:66: d3:98:77:0c:29:c2:35:16:7f:6a:86:cb:94:a4:f5: bf:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:78:D3:06:B2:9C:90:FB:FC:57:29:76:2B:B9:25:F7:55:EF:4D:8A X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3133382e3132322e3233372e302f32342d3234203d3e203238323730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.122.237.0/24 Signature Algorithm: sha256WithRSAEncryption 63:31:45:db:af:0e:67:4b:11:04:94:61:f7:a7:48:75:a5:6d: f8:18:9b:95:ad:be:3c:58:4e:9c:0b:fe:03:ca:64:07:32:42: 01:86:bb:46:f4:dd:ab:ea:70:c2:cc:f0:1f:52:9a:fc:40:73: 2a:7f:9b:9f:f9:87:db:7d:d0:de:09:7f:94:03:a5:f3:d2:2b: a5:06:6a:20:6f:d1:9f:ca:9a:51:36:59:ed:2d:97:e2:df:32: 5c:e5:d7:9e:d0:70:33:79:e6:72:a0:46:e1:d1:3c:34:ca:11: bb:43:c4:c7:c8:cc:7c:02:bf:40:42:17:ad:84:b6:34:52:30: ed:ca:d2:72:be:21:f7:1a:dd:23:58:50:37:e5:cd:57:83:55: 09:aa:f2:6e:d1:92:7e:ee:36:a5:ed:dc:29:4b:17:86:ef:18: c8:86:dc:ab:d8:2a:c2:3a:98:10:0e:c2:17:18:cb:84:af:8d: 02:43:e0:89:b2:e2:9e:29:8d:3e:e5:16:e0:df:ac:29:8e:07: 95:81:29:22:5b:50:fa:3a:c4:60:17:65:06:8e:96:6e:b3:6a: 1c:8e:8f:f6:71:68:bb:92:88:d6:6d:8b:db:1b:d7:02:2b:f3: 96:61:93:0d:31:7f:26:10:6b:69:10:04:ea:60:02:bc:f8:95: 49:1b:9b:33 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUXgQPh7mho1c7tX/VeAypSANuhcQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTEwMTgyMjU2MDZaFw0yNjEwMTcyMzAxMDZaMDMxMTAvBgNV BAMTKDMxNzhEMzA2QjI5QzkwRkJGQzU3Mjk3NjJCQjkyNUY3NTVFRjREOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNVry7xydt3gLyQAlk+I2KkKxJ jVhuN2WXPmqLzVwtdwR4skDmO1gzLLtIxs5PooROsU5FRHD8RvkouOZC6/aEMzLU EjBtnsg1eL62xUrnN9p7sBx/r5bLAIanyW4pVd9OV9q2O9WQf7VdTYmDIRUOT1YB hU4OaL58kTIKBzqQClSVShnuNEZJmOY0lwrzLUFg87os6hvEkGkAKPi8+yNXSguZ 7e1Id2Ug2Ucy1XJssoAM26G88+P5KoZ/9Qbj5k97K5ON/lV+e98h+0JpaBmRI6ni 3DFLJAh0+9kHSN6NJqwDdrQXNazjjZ1msIuGZtOYdwwpwjUWf2qGy5Sk9b/FAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUMXjTBrKckPv8Vyl2K7kl91XvTYowHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNaOW5FUVZjR3NWRzdzUkNUa1kyWnZ2bURIaG9FNVpnYmpES0ZxTUZ0N0RGLzAv MzEzMzM4MmUzMTMyMzIyZTMyMzMzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzgzMjM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBACKeu0wDQYJKoZIhvcNAQELBQADggEBAGMxRduv DmdLEQSUYfenSHWlbfgYm5WtvjxYTpwL/gPKZAcyQgGGu0b03avqcMLM8B9SmvxA cyp/m5/5h9t90N4Jf5QDpfPSK6UGaiBv0Z/KmlE2We0tl+LfMlzl157QcDN55nKg RuHRPDTKEbtDxMfIzHwCv0BCF62EtjRSMO3K0nK+Ifca3SNYUDflzVeDVQmq8m7R kn7uNqXt3ClLF4bvGMiG3KvYKsI6mBAOwhcYy4SvjQJD4Imy4p4pjT7lFuDfrCmO B5WBKSJbUPo6xGAXZQaOlm6zahyOj/ZxaLuSiNZti9sb1wIr85Zhkw0xfyYQa2kQ BOpgArz4lUkbmzM= -----END CERTIFICATE-----Generated at Tue Nov 4 19:03:44 2025 by rpki-client