$ rpki-client -vvf rpki-repo.registro.br/repo/3xEzHhnAZeadzR8kYfVsGmVZtfXKVpGQRdNYdT7XDjRK/0/34352e3233362e32302e302f32322d3234203d3e20323638323232.roa File: 34352e3233362e32302e302f32322d3234203d3e20323638323232.roa (raw, json) Hash identifier: Mldlh0F+qMneZfStPjBLuID03ag4mGBsrq4TGfN1eaU= Subject key identifier: 40:D4:A6:9A:EF:CC:4A:70:48:23:27:6F:D2:B2:A6:01:9A:E2:75:38 Certificate issuer: /CN=DDA1EC4A0E48B5C09FB746327F05F51EB5F8E570 Certificate serial: 5C0F1116F7DAE5799E4A274227A6BDCC35148599 Authority key identifier: DD:A1:EC:4A:0E:48:B5:C0:9F:B7:46:32:7F:05:F5:1E:B5:F8:E5:70 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDA1EC4A0E48B5C09FB746327F05F51EB5F8E570.cer Subject info access: rsync://rpki-repo.registro.br/repo/3xEzHhnAZeadzR8kYfVsGmVZtfXKVpGQRdNYdT7XDjRK/0/34352e3233362e32302e302f32322d3234203d3e20323638323232.roa Signing time: Tue 24 Mar 2026 13:10:10 +0000 ROA not before: Tue 24 Mar 2026 13:05:10 +0000 ROA not after: Tue 23 Mar 2027 13:10:10 +0000 asID: 268222 IP address blocks: 45.236.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3xEzHhnAZeadzR8kYfVsGmVZtfXKVpGQRdNYdT7XDjRK/0/DDA1EC4A0E48B5C09FB746327F05F51EB5F8E570.crl rsync://rpki-repo.registro.br/repo/3xEzHhnAZeadzR8kYfVsGmVZtfXKVpGQRdNYdT7XDjRK/0/DDA1EC4A0E48B5C09FB746327F05F51EB5F8E570.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDA1EC4A0E48B5C09FB746327F05F51EB5F8E570.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 27 Mar 2026 23:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:0f:11:16:f7:da:e5:79:9e:4a:27:42:27:a6:bd:cc:35:14:85:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDA1EC4A0E48B5C09FB746327F05F51EB5F8E570 Validity Not Before: Mar 24 13:05:10 2026 GMT Not After : Mar 23 13:10:10 2027 GMT Subject: CN=40D4A69AEFCC4A704823276FD2B2A6019AE27538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a1:59:92:60:e9:ef:a0:56:64:ac:8f:7f:61: 60:4f:a8:05:2f:63:63:ed:d0:40:d9:21:30:12:27: 94:f1:7c:f1:d2:9f:6c:58:9b:3b:82:8b:ca:54:47: a2:61:09:fb:a6:51:5a:ff:06:9a:3c:6a:a4:47:1f: 4c:73:cb:45:7a:1f:73:45:9e:ae:28:d4:b3:20:17: 87:27:8a:05:5c:b9:1d:c7:e4:3b:a2:f6:76:24:88: 52:28:32:1b:29:4a:30:3a:4f:91:f0:bc:40:0c:b6: 9c:86:01:5f:19:d0:57:7b:b5:ed:6a:64:42:a3:5b: a8:c5:e0:21:b5:c3:5f:70:61:cd:ef:1e:4e:a9:35: 37:e0:53:68:4d:42:80:30:d7:e8:a7:ab:db:19:2c: 17:49:16:41:54:ac:c0:f3:fe:74:ac:3d:f7:0f:38: 87:aa:61:32:05:ee:81:1f:ff:68:82:9c:c2:0a:fc: 79:e1:03:4a:1d:73:15:26:60:64:ae:25:5c:03:ea: f0:92:74:20:65:0c:8f:55:b0:1e:ee:b4:89:24:9c: 52:e8:ca:41:34:7b:73:6f:f3:d8:2f:8a:27:a0:80: 96:e3:c9:e0:f2:fb:df:0c:65:90:b2:63:ed:e1:f6: 28:4e:94:27:e9:13:c5:45:7b:8f:bb:49:f9:5a:5b: d9:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D4:A6:9A:EF:CC:4A:70:48:23:27:6F:D2:B2:A6:01:9A:E2:75:38 X509v3 Authority Key Identifier: keyid:DD:A1:EC:4A:0E:48:B5:C0:9F:B7:46:32:7F:05:F5:1E:B5:F8:E5:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3xEzHhnAZeadzR8kYfVsGmVZtfXKVpGQRdNYdT7XDjRK/0/DDA1EC4A0E48B5C09FB746327F05F51EB5F8E570.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDA1EC4A0E48B5C09FB746327F05F51EB5F8E570.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3xEzHhnAZeadzR8kYfVsGmVZtfXKVpGQRdNYdT7XDjRK/0/34352e3233362e32302e302f32322d3234203d3e20323638323232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.236.20.0/22 Signature Algorithm: sha256WithRSAEncryption 92:50:35:cb:3f:3b:bf:e5:25:1b:30:e6:78:a3:11:16:62:b7: a0:6f:8b:03:fc:18:c6:8e:a5:5a:06:31:be:4f:a3:9e:f7:d8: b5:91:9b:2a:06:5c:a4:ec:1c:67:d3:7b:f7:70:3a:e7:e0:78: 35:a6:f7:78:21:52:bd:b3:8e:76:ac:ea:36:3c:d2:4e:b1:02: 9e:23:68:4f:0f:b3:d3:51:39:48:7b:8d:92:eb:2f:07:99:82: bc:9c:98:c1:f3:0d:6e:19:59:29:2b:be:ee:4d:7d:75:e5:97: 10:25:ae:b9:57:32:f6:3b:cb:59:31:38:eb:e9:6c:69:3d:41: d0:7d:58:35:fd:37:9c:41:83:9a:85:31:05:cf:c9:d7:21:b9: bd:1e:d1:13:68:a5:01:53:62:37:20:88:43:af:21:14:28:3f: f4:8c:49:19:10:97:6d:cb:be:95:f2:98:81:26:8a:df:3b:e8: 11:fb:1f:e9:52:76:37:70:00:7a:7f:24:ae:6a:d9:95:e8:cc: 2a:01:e1:4b:bb:9a:04:51:16:3e:50:79:4f:0d:9d:66:5c:61: 25:85:b3:fe:35:89:21:00:aa:fb:da:58:55:a3:c0:4e:7a:63: 52:6a:0f:0f:be:b9:f9:67:6f:0b:a5:f2:10:ff:3d:a5:67:0a: c7:0e:ac:cf -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUXA8RFvfa5XmeSidCJ6a9zDUUhZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERBMUVDNEEwRTQ4QjVDMDlGQjc0NjMyN0YwNUY1MUVC NUY4RTU3MDAeFw0yNjAzMjQxMzA1MTBaFw0yNzAzMjMxMzEwMTBaMDMxMTAvBgNV BAMTKDQwRDRBNjlBRUZDQzRBNzA0ODIzMjc2RkQyQjJBNjAxOUFFMjc1MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZoVmSYOnvoFZkrI9/YWBPqAUv Y2Pt0EDZITASJ5TxfPHSn2xYmzuCi8pUR6JhCfumUVr/Bpo8aqRHH0xzy0V6H3NF nq4o1LMgF4cnigVcuR3H5Dui9nYkiFIoMhspSjA6T5HwvEAMtpyGAV8Z0Fd7te1q ZEKjW6jF4CG1w19wYc3vHk6pNTfgU2hNQoAw1+inq9sZLBdJFkFUrMDz/nSsPfcP OIeqYTIF7oEf/2iCnMIK/HnhA0odcxUmYGSuJVwD6vCSdCBlDI9VsB7utIkknFLo ykE0e3Nv89gviieggJbjyeDy+98MZZCyY+3h9ihOlCfpE8VFe4+7SflaW9mVAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUQNSmmu/MSnBIIydv0rKmAZridTgwHwYDVR0j BBgwFoAU3aHsSg5ItcCft0YyfwX1HrX45XAwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM3hFekhobkFaZWFkelI4a1lmVnNHbVZadGZYS1ZwR1FSZE5ZZFQ3WERq UksvMC9EREExRUM0QTBFNDhCNUMwOUZCNzQ2MzI3RjA1RjUxRUI1RjhFNTcwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0REQTFFQzRBMEU0OEI1QzA5 RkI3NDYzMjdGMDVGNTFFQjVGOEU1NzAuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzN4RXpIaG5BWmVhZHpSOGtZZlZzR21WWnRmWEtWcEdRUmROWWRUN1hEalJLLzAv MzQzNTJlMzIzMzM2MmUzMjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM4 MzIzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCLewUMA0GCSqGSIb3DQEBCwUAA4IBAQCSUDXLPzu/ 5SUbMOZ4oxEWYregb4sD/BjGjqVaBjG+T6Oe99i1kZsqBlyk7Bxn03v3cDrn4Hg1 pvd4IVK9s452rOo2PNJOsQKeI2hPD7PTUTlIe42S6y8HmYK8nJjB8w1uGVkpK77u TX115ZcQJa65VzL2O8tZMTjr6WxpPUHQfVg1/TecQYOahTEFz8nXIbm9HtETaKUB U2I3IIhDryEUKD/0jEkZEJdty76V8piBJorfO+gR+x/pUnY3cAB6fySuatmV6Mwq AeFLu5oEURY+UHlPDZ1mXGElhbP+NYkhAKr72lhVo8BOemNSag8Pvrn5Z28LpfIQ /z2lZwrHDqzP -----END CERTIFICATE-----Generated at Fri Mar 27 05:46:31 2026 by rpki-client