$ rpki-client -vvf rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/3133382e3235352e3232392e302f32342d3234203d3e20323633393935.roa File: 3133382e3235352e3232392e302f32342d3234203d3e20323633393935.roa (raw, json) Hash identifier: kx9xaU9LSipvhTCiF4YSPbplqEKLSWIw+G9pWMfKPIs= Subject key identifier: 18:24:E1:35:E0:AC:D7:F7:0B:F8:A6:AE:58:03:9F:7C:72:8E:3A:8B Certificate issuer: /CN=98408164D264D668D190CF3DE6A09CDF1BD9915D Certificate serial: 2CF53417A18BF57FED76BC45925C528CA5474C37 Authority key identifier: 98:40:81:64:D2:64:D6:68:D1:90:CF:3D:E6:A0:9C:DF:1B:D9:91:5D Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/98408164D264D668D190CF3DE6A09CDF1BD9915D.cer Subject info access: rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/3133382e3235352e3232392e302f32342d3234203d3e20323633393935.roa Signing time: Tue 28 Oct 2025 19:35:33 +0000 ROA not before: Tue 28 Oct 2025 19:30:33 +0000 ROA not after: Tue 27 Oct 2026 19:35:33 +0000 asID: 263995 IP address blocks: 138.255.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/98408164D264D668D190CF3DE6A09CDF1BD9915D.crl rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/98408164D264D668D190CF3DE6A09CDF1BD9915D.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/98408164D264D668D190CF3DE6A09CDF1BD9915D.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 04 Nov 2025 14:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:f5:34:17:a1:8b:f5:7f:ed:76:bc:45:92:5c:52:8c:a5:47:4c:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98408164D264D668D190CF3DE6A09CDF1BD9915D Validity Not Before: Oct 28 19:30:33 2025 GMT Not After : Oct 27 19:35:33 2026 GMT Subject: CN=1824E135E0ACD7F70BF8A6AE58039F7C728E3A8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:27:07:3e:38:2e:99:0b:d4:f4:05:14:8a:47: 19:f3:10:f2:27:5c:31:65:58:2e:67:d0:1b:76:90: 5e:7a:13:8a:4a:b1:c7:b2:fb:f3:9d:8a:42:0d:57: 4a:a2:14:dd:97:08:eb:39:75:cc:a9:c5:a5:15:22: 5e:52:68:22:9d:40:f9:03:56:2e:ee:27:2e:77:47: f5:cd:f7:0e:37:ae:75:92:24:7b:bf:c3:5f:fa:17: 78:34:72:a4:cb:11:1f:b5:89:89:df:fe:42:47:33: d9:31:94:00:f6:76:96:f6:f7:0b:0b:12:fd:64:b4: 7f:8f:93:c1:38:d2:eb:54:39:c9:2c:26:72:a6:38: a9:52:5e:11:7c:14:8d:8f:a3:8d:63:3f:1b:19:88: e6:89:f9:af:8c:ac:38:63:d2:8f:51:c9:1e:47:00: 8a:17:4f:f2:50:9a:0c:94:3c:97:70:e9:2a:10:b2: 3e:c0:08:e5:3a:72:73:d5:29:68:c9:0c:81:34:c1: 55:7e:88:67:f4:db:06:70:26:64:5c:a6:87:d3:c1: 3d:88:b6:f7:ab:08:cb:1d:f3:e2:6c:6a:58:2c:a6: b6:0b:0b:86:02:11:69:28:a1:c2:26:3c:a3:a1:55: 5d:a9:e8:46:9c:f8:90:45:95:b1:8b:7e:e2:10:4e: d2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:24:E1:35:E0:AC:D7:F7:0B:F8:A6:AE:58:03:9F:7C:72:8E:3A:8B X509v3 Authority Key Identifier: keyid:98:40:81:64:D2:64:D6:68:D1:90:CF:3D:E6:A0:9C:DF:1B:D9:91:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/98408164D264D668D190CF3DE6A09CDF1BD9915D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/98408164D264D668D190CF3DE6A09CDF1BD9915D.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/3133382e3235352e3232392e302f32342d3234203d3e20323633393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.255.229.0/24 Signature Algorithm: sha256WithRSAEncryption 17:52:d0:79:63:47:da:12:d2:d1:12:04:b0:27:1c:c2:c1:f6: e3:25:f9:19:3b:ec:37:c2:66:77:a4:b7:e5:b4:de:40:2f:70: 3d:7b:64:fe:91:e0:a2:70:0b:a2:c9:9e:4e:2c:3f:c1:dd:29: ca:d0:3a:f4:dd:32:70:59:1e:ac:2f:99:c4:a5:0a:91:16:e8: e7:94:72:24:9b:cd:d8:a2:17:83:da:92:fc:c0:07:fb:7a:64: 44:f2:cb:a4:e4:98:b8:78:fe:18:a2:a6:66:5f:35:99:0c:20: 12:ac:bd:c1:c5:7d:1a:06:72:ba:23:cb:6b:0f:8f:38:8b:5b: f8:7f:2e:a3:24:37:7a:a2:eb:63:57:24:15:aa:29:b8:b1:2d: 51:2c:d3:71:00:8f:8f:41:7f:69:2c:a4:87:ca:41:5c:50:33: 3d:ee:51:ea:e6:61:a8:90:32:83:db:b6:54:9c:75:51:45:4a: bd:35:0c:6d:7c:41:62:97:81:c2:37:f7:f1:f7:df:4a:5f:33: 88:8f:97:0b:4f:a1:e3:f4:53:29:d7:4b:66:51:4b:5d:f8:f5: 42:fd:de:cd:f3:2a:d8:2b:e2:9e:0d:8f:4f:48:19:62:04:ae: 58:12:08:ca:ec:16:5f:75:7e:98:ca:39:d3:a7:2e:52:7d:f2: a5:62:62:23 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIULPU0F6GL9X/tdrxFklxSjKVHTDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg0MDgxNjREMjY0RDY2OEQxOTBDRjNERTZBMDlDREYx QkQ5OTE1RDAeFw0yNTEwMjgxOTMwMzNaFw0yNjEwMjcxOTM1MzNaMDMxMTAvBgNV BAMTKDE4MjRFMTM1RTBBQ0Q3RjcwQkY4QTZBRTU4MDM5RjdDNzI4RTNBOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVJwc+OC6ZC9T0BRSKRxnzEPIn XDFlWC5n0Bt2kF56E4pKscey+/OdikINV0qiFN2XCOs5dcypxaUVIl5SaCKdQPkD Vi7uJy53R/XN9w43rnWSJHu/w1/6F3g0cqTLER+1iYnf/kJHM9kxlAD2dpb29wsL Ev1ktH+Pk8E40utUOcksJnKmOKlSXhF8FI2Po41jPxsZiOaJ+a+MrDhj0o9RyR5H AIoXT/JQmgyUPJdw6SoQsj7ACOU6cnPVKWjJDIE0wVV+iGf02wZwJmRcpofTwT2I tverCMsd8+JsalgsprYLC4YCEWkoocImPKOhVV2p6Eac+JBFlbGLfuIQTtJFAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUGCThNeCs1/cL+KauWAOffHKOOoswHwYDVR0j BBgwFoAUmECBZNJk1mjRkM895qCc3xvZkV0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQUZoVHBHQnBvV0FMZHBGeUpWcXRTTW91a0VBOXRxOUhZaVd3SFBFakNV SFMvMC85ODQwODE2NEQyNjRENjY4RDE5MENGM0RFNkEwOUNERjFCRDk5MTVELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzk4NDA4MTY0RDI2NEQ2NjhE MTkwQ0YzREU2QTA5Q0RGMUJEOTkxNUQuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0FGaFRwR0Jwb1dBTGRwRnlKVnF0U01vdWtFQTl0cTlIWWlXd0hQRWpDVUhTLzAv MzEzMzM4MmUzMjM1MzUyZTMyMzIzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzMzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAIr/5TANBgkqhkiG9w0BAQsFAAOCAQEAF1LQ eWNH2hLS0RIEsCccwsH24yX5GTvsN8Jmd6S35bTeQC9wPXtk/pHgonALosmeTiw/ wd0pytA69N0ycFkerC+ZxKUKkRbo55RyJJvN2KIXg9qS/MAH+3pkRPLLpOSYuHj+ GKKmZl81mQwgEqy9wcV9GgZyuiPLaw+POItb+H8uoyQ3eqLrY1ckFaopuLEtUSzT cQCPj0F/aSykh8pBXFAzPe5R6uZhqJAyg9u2VJx1UUVKvTUMbXxBYpeBwjf38fff Sl8ziI+XC0+h4/RTKddLZlFLXfj1Qv3ezfMq2Cving2PT0gZYgSuWBIIyuwWX3V+ mMo506cuUn3ypWJiIw== -----END CERTIFICATE-----Generated at Tue Nov 4 01:30:17 2025 by rpki-client