$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32322d3233203d3e20323635303738.roa File: 3137302e3233332e3131322e302f32322d3233203d3e20323635303738.roa (raw, json) Hash identifier: tCHeehAWk6SX2/rRTD0d6RSK+ulyfAmwIQ9PX6N9nqk= Subject key identifier: 55:AD:34:7D:4B:92:46:89:E9:42:63:08:3C:F3:07:2B:71:92:F9:98 Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Certificate serial: 33CD5DDF2BAA88D3C57903C28190E78D333B1742 Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32322d3233203d3e20323635303738.roa Signing time: Mon 23 Mar 2026 14:14:58 +0000 ROA not before: Mon 23 Mar 2026 14:09:58 +0000 ROA not after: Mon 22 Mar 2027 14:14:58 +0000 asID: 265078 IP address blocks: 170.233.112.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 27 Mar 2026 16:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:cd:5d:df:2b:aa:88:d3:c5:79:03:c2:81:90:e7:8d:33:3b:17:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Validity Not Before: Mar 23 14:09:58 2026 GMT Not After : Mar 22 14:14:58 2027 GMT Subject: CN=55AD347D4B924689E94263083CF3072B7192F998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:82:58:c0:32:ba:34:09:fd:6a:f4:d6:f5:e3: de:20:b6:d2:69:1f:f3:2b:60:8f:15:eb:77:52:32: 1f:80:b3:85:f2:01:1c:01:50:73:e0:a0:71:2c:e8: 8a:8c:a7:54:14:58:eb:6f:5a:b1:4a:ed:1c:f0:dc: df:66:96:01:ec:c3:1c:1c:8c:e5:c9:1d:62:a1:f8: 6d:5c:e7:dd:f0:10:b4:1f:44:0a:f8:e5:d7:3b:46: aa:87:bd:95:12:f7:64:13:4e:e8:aa:b6:6d:68:59: 8e:12:28:44:d1:df:fe:e3:d1:b1:49:08:8c:2c:32: f2:59:f6:16:3a:23:d1:6c:b1:69:e7:4f:67:94:74: 81:2a:ed:c7:7a:88:f9:f7:79:66:9d:2e:7f:b4:fc: 64:d2:b6:cb:00:05:9b:38:4c:72:7f:b8:1f:b9:b1: 6f:b7:72:fe:8e:9f:10:00:19:b6:6d:cd:05:2c:ba: 5e:3f:61:7b:33:c8:f8:47:73:43:4b:52:3d:7c:b6: ac:fd:64:ff:f6:ab:a3:b1:3d:c7:53:f7:4b:cd:c7: f6:fb:d8:e2:12:f7:68:3d:cd:ae:00:95:aa:2a:74: 89:6a:e6:13:9e:65:d7:9f:34:89:a3:69:b1:0d:4c: c3:55:87:cb:05:61:a6:3d:ef:15:ce:88:e1:a8:3d: a3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:AD:34:7D:4B:92:46:89:E9:42:63:08:3C:F3:07:2B:71:92:F9:98 X509v3 Authority Key Identifier: keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32322d3233203d3e20323635303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.112.0/22 Signature Algorithm: sha256WithRSAEncryption 04:a9:76:58:66:f2:76:c7:d2:e9:6b:cb:cc:8c:b6:79:7c:97: e1:07:f7:44:66:53:24:a0:95:10:29:dc:4f:71:2b:0a:8f:1e: 32:c1:a8:d9:8b:8e:b7:29:db:33:84:3a:ff:d4:57:42:1e:03: 26:e8:e8:4a:95:fa:84:27:74:d1:ce:1a:af:8d:ce:c4:5f:db: 79:56:64:49:cd:86:1f:84:2a:a2:6c:c7:3c:02:92:b8:97:78: 62:aa:a3:be:56:f4:61:0f:3d:aa:ac:d3:9a:5e:b6:46:d3:b5: bf:64:f3:03:82:0c:62:b7:27:26:e9:a6:e0:b0:a3:ab:c4:59: 50:10:b8:92:65:fc:7d:3f:bf:f3:cd:a3:9d:7b:8a:c6:ee:86: 55:15:d0:da:73:39:bc:ca:75:32:5a:8f:b9:db:87:f0:b9:88: 6a:c6:86:1d:5e:44:ba:e9:cc:12:fb:f2:cd:b9:0e:8a:e1:38: ae:39:a9:a1:d8:bb:53:3d:9b:f7:45:02:01:24:85:7c:11:5c: 3e:f7:9c:af:a4:c2:1b:82:4e:4b:3f:33:05:f0:f9:17:9f:5e: a7:6d:5a:ce:de:8d:03:7f:d3:7b:7b:88:80:12:82:19:f7:dc: ad:42:bc:2d:9b:29:59:65:16:82:68:d6:f1:ad:fe:37:f0:28: 3d:72:c3:bd -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUM81d3yuqiNPFeQPCgZDnjTM7F0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U5RTdENEZCNjY0RTNDRjJGQzkwRTk2MDRGQUUxOThB MUEzMDJCMjAeFw0yNjAzMjMxNDA5NThaFw0yNzAzMjIxNDE0NThaMDMxMTAvBgNV BAMTKDU1QUQzNDdENEI5MjQ2ODlFOTQyNjMwODNDRjMwNzJCNzE5MkY5OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCgljAMro0Cf1q9Nb1494gttJp H/MrYI8V63dSMh+As4XyARwBUHPgoHEs6IqMp1QUWOtvWrFK7Rzw3N9mlgHswxwc jOXJHWKh+G1c593wELQfRAr45dc7RqqHvZUS92QTTuiqtm1oWY4SKETR3/7j0bFJ CIwsMvJZ9hY6I9FssWnnT2eUdIEq7cd6iPn3eWadLn+0/GTStssABZs4THJ/uB+5 sW+3cv6OnxAAGbZtzQUsul4/YXszyPhHc0NLUj18tqz9ZP/2q6OxPcdT90vNx/b7 2OIS92g9za4AlaoqdIlq5hOeZdefNImjabENTMNVh8sFYaY97xXOiOGoPaNVAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUVa00fUuSRonpQmMIPPMHK3GS+ZgwHwYDVR0j BBgwFoAUzp59T7Zk488vyQ6WBPrhmKGjArIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDZiNXRkRkt5TjQ1dzNpcGRrZFJBN0hXSnlGdTRGb0VoY1VuWVJQNVdz VHYvMS9DRTlFN0Q0RkI2NjRFM0NGMkZDOTBFOTYwNEZBRTE5OEExQTMwMkIyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFOUU3RDRGQjY2NEUzQ0Yy RkM5MEU5NjA0RkFFMTk4QTFBMzAyQjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q2YjV0ZEZLeU40NXczaXBka2RSQTdIV0p5RnU0Rm9FaGNVbllSUDVXc1R2LzEv MzEzNzMwMmUzMjMzMzMyZTMxMzEzMjJlMzAyZjMyMzIyZDMyMzMyMDNkM2UyMDMy MzYzNTMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqrpcDANBgkqhkiG9w0BAQsFAAOCAQEABKl2 WGbydsfS6WvLzIy2eXyX4Qf3RGZTJKCVECncT3ErCo8eMsGo2YuOtynbM4Q6/9RX Qh4DJujoSpX6hCd00c4ar43OxF/beVZkSc2GH4QqomzHPAKSuJd4Yqqjvlb0YQ89 qqzTml62RtO1v2TzA4IMYrcnJumm4LCjq8RZUBC4kmX8fT+/882jnXuKxu6GVRXQ 2nM5vMp1MlqPuduH8LmIasaGHV5EuunMEvvyzbkOiuE4rjmpodi7Uz2b90UCASSF fBFcPvecr6TCG4JOSz8zBfD5F59ep21azt6NA3/Te3uIgBKCGffcrUK8LZspWWUW gmjW8a3+N/AoPXLDvQ== -----END CERTIFICATE-----Generated at Thu Mar 26 22:38:07 2026 by rpki-client