$ rpki-client -vvf rpki-repo.registro.br/repo/Bra7ynZxBgwvGg9EZLPZS6dp8RaRhJKUEMg2E1pXqkZc/0/37322e34342e32302e302f32322d3234203d3e20323636313636.roa File: 37322e34342e32302e302f32322d3234203d3e20323636313636.roa (raw, json) Hash identifier: hP6eDoq0nJQ6mb+7l/j+YfGBl8snWdkMklQUqwG4DsY= Subject key identifier: 0D:A8:BD:09:D3:88:A9:C3:C1:9E:16:26:82:E6:74:79:50:D8:ED:E2 Certificate issuer: /CN=A0E7817C46BAB014CC0A8EB2B6DCC3C0D72C6E63 Certificate serial: 491CD3CFD0DFA99EF67C2B810AADA7F8D42FA63D Authority key identifier: A0:E7:81:7C:46:BA:B0:14:CC:0A:8E:B2:B6:DC:C3:C0:D7:2C:6E:63 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A0E7817C46BAB014CC0A8EB2B6DCC3C0D72C6E63.cer Subject info access: rsync://rpki-repo.registro.br/repo/Bra7ynZxBgwvGg9EZLPZS6dp8RaRhJKUEMg2E1pXqkZc/0/37322e34342e32302e302f32322d3234203d3e20323636313636.roa Signing time: Thu 30 Apr 2026 17:55:59 +0000 ROA not before: Thu 30 Apr 2026 17:50:59 +0000 ROA not after: Thu 29 Apr 2027 17:55:59 +0000 asID: 266166 IP address blocks: 72.44.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/Bra7ynZxBgwvGg9EZLPZS6dp8RaRhJKUEMg2E1pXqkZc/0/A0E7817C46BAB014CC0A8EB2B6DCC3C0D72C6E63.crl rsync://rpki-repo.registro.br/repo/Bra7ynZxBgwvGg9EZLPZS6dp8RaRhJKUEMg2E1pXqkZc/0/A0E7817C46BAB014CC0A8EB2B6DCC3C0D72C6E63.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A0E7817C46BAB014CC0A8EB2B6DCC3C0D72C6E63.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 14 May 2026 04:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:1c:d3:cf:d0:df:a9:9e:f6:7c:2b:81:0a:ad:a7:f8:d4:2f:a6:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0E7817C46BAB014CC0A8EB2B6DCC3C0D72C6E63 Validity Not Before: Apr 30 17:50:59 2026 GMT Not After : Apr 29 17:55:59 2027 GMT Subject: CN=0DA8BD09D388A9C3C19E162682E6747950D8EDE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:56:b9:56:a3:fd:33:5e:b2:92:48:2b:4a:47: 9b:38:b6:51:84:09:47:6b:e7:4b:1b:8d:2d:c3:0f: e7:e7:88:97:0e:93:40:c4:8b:d2:79:3c:02:d4:4f: 71:78:dd:31:df:a5:d5:77:c0:89:eb:ce:2d:77:e7: b3:49:62:0b:d5:4c:60:6c:d4:d5:c0:c2:31:28:50: c3:0d:fc:0b:62:7c:fe:7a:ee:1c:7b:ca:08:09:eb: 37:8e:0e:99:f4:dd:61:78:11:3c:ae:33:30:32:b0: 6b:52:bc:be:2c:b3:f9:72:1d:57:0a:0c:de:f2:9a: f2:56:1a:c8:d7:6a:66:38:93:53:0b:bf:6a:76:61: 32:96:7f:d4:35:f4:63:ad:c7:76:af:e8:9b:05:95: 73:44:10:f7:1b:d7:1c:9b:74:a9:be:cf:fb:c8:20: 2c:34:d1:3a:b0:ef:17:e1:2a:a2:02:c7:29:ee:ee: 7b:84:9d:13:f0:c9:fb:52:b7:c5:e1:5d:0b:4b:4f: 96:82:8a:85:44:da:f4:35:fd:68:7c:39:fb:66:97: b0:48:0d:dc:cf:bd:d7:c9:d6:d0:69:ec:d8:9e:a8: 2e:01:0b:ec:c0:eb:0c:d8:77:37:02:e0:e1:36:9c: 0c:d3:70:e1:4c:0a:6d:96:06:aa:36:73:08:1a:4d: 67:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A8:BD:09:D3:88:A9:C3:C1:9E:16:26:82:E6:74:79:50:D8:ED:E2 X509v3 Authority Key Identifier: keyid:A0:E7:81:7C:46:BA:B0:14:CC:0A:8E:B2:B6:DC:C3:C0:D7:2C:6E:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/Bra7ynZxBgwvGg9EZLPZS6dp8RaRhJKUEMg2E1pXqkZc/0/A0E7817C46BAB014CC0A8EB2B6DCC3C0D72C6E63.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A0E7817C46BAB014CC0A8EB2B6DCC3C0D72C6E63.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/Bra7ynZxBgwvGg9EZLPZS6dp8RaRhJKUEMg2E1pXqkZc/0/37322e34342e32302e302f32322d3234203d3e20323636313636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.20.0/22 Signature Algorithm: sha256WithRSAEncryption 79:1f:af:2c:f5:7e:0e:cf:61:b1:19:d6:8c:df:7f:16:f5:5c: 54:af:a5:23:3b:f9:eb:b0:fd:b1:03:88:32:42:ac:55:69:e2: bb:45:e8:67:54:dd:ae:1f:4b:4f:26:fc:2c:c8:5a:45:ac:e3: fc:9b:15:2e:0f:b2:d3:80:53:db:ac:ee:56:56:81:fd:68:ce: c6:03:48:10:b9:d8:85:12:2f:a3:d6:71:13:ce:93:d2:fe:f0: 8f:f0:b5:fe:7e:6b:71:82:17:0d:d8:cc:83:83:83:55:c1:15: c5:d8:a8:45:3a:28:32:37:16:00:9a:3e:7a:4d:e8:3d:92:60: 3e:37:3b:e8:74:03:61:72:7e:fa:3c:d6:0f:0b:3b:78:66:12: a7:55:13:f4:79:c3:44:f2:b2:30:e3:aa:01:5a:41:7b:68:e5: bf:f0:43:a1:db:f2:6c:a0:af:21:f8:bd:55:93:01:9e:bf:e7: 9b:b6:ba:16:27:b4:6d:3d:23:3d:31:32:bc:c4:f5:33:02:d1: 51:a0:ec:8b:9e:ee:7b:f3:96:3f:82:ca:d0:37:54:61:72:f8: 8e:6a:79:99:70:ac:60:89:19:8b:05:2a:a8:05:9a:7c:9e:1b: 75:9d:40:a1:d5:05:6f:e1:bb:81:67:fc:2a:dd:96:d9:f9:c7: 5e:0e:4d:f3 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUSRzTz9DfqZ72fCuBCq2n+NQvpj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBFNzgxN0M0NkJBQjAxNENDMEE4RUIyQjZEQ0MzQzBE NzJDNkU2MzAeFw0yNjA0MzAxNzUwNTlaFw0yNzA0MjkxNzU1NTlaMDMxMTAvBgNV BAMTKDBEQThCRDA5RDM4OEE5QzNDMTlFMTYyNjgyRTY3NDc5NTBEOEVERTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNVrlWo/0zXrKSSCtKR5s4tlGE CUdr50sbjS3DD+fniJcOk0DEi9J5PALUT3F43THfpdV3wInrzi1357NJYgvVTGBs 1NXAwjEoUMMN/AtifP567hx7yggJ6zeODpn03WF4ETyuMzAysGtSvL4ss/lyHVcK DN7ymvJWGsjXamY4k1MLv2p2YTKWf9Q19GOtx3av6JsFlXNEEPcb1xybdKm+z/vI ICw00Tqw7xfhKqICxynu7nuEnRPwyftSt8XhXQtLT5aCioVE2vQ1/Wh8Oftml7BI DdzPvdfJ1tBp7NieqC4BC+zA6wzYdzcC4OE2nAzTcOFMCm2WBqo2cwgaTWe9AgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUDai9CdOIqcPBnhYmguZ0eVDY7eIwHwYDVR0j BBgwFoAUoOeBfEa6sBTMCo6yttzDwNcsbmMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQnJhN3luWnhCZ3d2R2c5RVpMUFpTNmRwOFJhUmhKS1VFTWcyRTFwWHFr WmMvMC9BMEU3ODE3QzQ2QkFCMDE0Q0MwQThFQjJCNkRDQzNDMEQ3MkM2RTYzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0EwRTc4MTdDNDZCQUIwMTRD QzBBOEVCMkI2RENDM0MwRDcyQzZFNjMuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0JyYTd5blp4Qmd3dkdnOUVaTFBaUzZkcDhSYVJoSktVRU1nMkUxcFhxa1pjLzAv MzczMjJlMzQzNDJlMzIzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzYzNjMx MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAkgsFDANBgkqhkiG9w0BAQsFAAOCAQEAeR+vLPV+Ds9h sRnWjN9/FvVcVK+lIzv567D9sQOIMkKsVWniu0XoZ1Tdrh9LTyb8LMhaRazj/JsV Lg+y04BT26zuVlaB/WjOxgNIELnYhRIvo9ZxE86T0v7wj/C1/n5rcYIXDdjMg4OD VcEVxdioRTooMjcWAJo+ek3oPZJgPjc76HQDYXJ++jzWDws7eGYSp1UT9HnDRPKy MOOqAVpBe2jlv/BDodvybKCvIfi9VZMBnr/nm7a6Fie0bT0jPTEyvMT1MwLRUaDs i57ue/OWP4LK0DdUYXL4jmp5mXCsYIkZiwUqqAWafJ4bdZ1AodUFb+G7gWf8Kt2W 2fnHXg5N8w== -----END CERTIFICATE-----Generated at Wed May 13 16:33:24 2026 by rpki-client