$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32342d3234203d3e20323635303738.roa File: 3137302e3233332e3131322e302f32342d3234203d3e20323635303738.roa (raw, json) Hash identifier: bIU81f9YCjQGqnLEEAw17fgvcftmD8QjkFeC4s20MKQ= Subject key identifier: EE:30:1D:F8:2E:A0:D5:10:C4:73:D8:FF:AF:98:85:A1:6A:8A:0A:F3 Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Certificate serial: 3D6072EDEC609797D63CF7D495CBF6ACC3A7B0E1 Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32342d3234203d3e20323635303738.roa Signing time: Mon 23 Mar 2026 14:14:57 +0000 ROA not before: Mon 23 Mar 2026 14:09:57 +0000 ROA not after: Mon 22 Mar 2027 14:14:57 +0000 asID: 265078 IP address blocks: 170.233.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 27 Mar 2026 16:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:60:72:ed:ec:60:97:97:d6:3c:f7:d4:95:cb:f6:ac:c3:a7:b0:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Validity Not Before: Mar 23 14:09:57 2026 GMT Not After : Mar 22 14:14:57 2027 GMT Subject: CN=EE301DF82EA0D510C473D8FFAF9885A16A8A0AF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:24:ca:87:98:8f:a7:9e:c8:24:14:0f:17:fd: dc:e4:25:f5:2b:1e:1d:18:6a:5b:14:6f:df:b5:ad: 56:00:06:37:de:45:e2:b7:35:a2:4a:05:be:ea:07: 2d:ea:29:ad:7d:47:c3:8f:db:c9:ae:62:3f:f6:80: 9d:79:a2:d6:54:67:9a:1d:01:21:82:4e:dc:80:e1: d4:44:a9:30:7f:aa:2c:5e:18:5a:7f:8b:c8:fe:52: 7c:ba:62:47:ec:8e:45:60:54:77:45:13:b7:d0:d1: 92:d1:dd:2b:2d:8b:c6:30:10:e7:12:f9:70:e2:88: e9:60:1b:87:26:b7:46:32:0d:a3:6f:ad:6b:97:81: 87:c3:df:99:80:51:ac:b0:07:cd:5b:60:e1:75:fb: 4b:89:4c:cf:ea:19:00:24:50:e0:d4:c1:7f:25:19: 9c:6a:d4:01:88:4f:b8:89:1d:bc:00:ec:b1:f8:d0: fd:5b:44:1b:1e:e3:f3:7e:aa:7c:4e:30:9b:2f:27: 29:29:08:1a:ef:8f:b3:14:5b:7d:f1:b4:92:ea:cf: 09:ab:70:ac:ad:b9:63:63:0a:c2:5f:be:47:65:8d: db:16:24:ca:f4:bd:c2:15:f1:6d:05:71:e9:00:cb: 36:80:6c:75:e5:3c:44:95:0e:73:e6:2e:b0:ae:e9: e1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:30:1D:F8:2E:A0:D5:10:C4:73:D8:FF:AF:98:85:A1:6A:8A:0A:F3 X509v3 Authority Key Identifier: keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32342d3234203d3e20323635303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.112.0/24 Signature Algorithm: sha256WithRSAEncryption 10:95:99:eb:cc:9f:e9:8c:56:5a:e0:7b:3b:0b:20:30:95:ae: a8:ed:6c:b6:41:bc:58:90:41:d9:7f:9a:4d:bd:27:4d:21:4a: 14:28:be:d6:22:35:ea:23:40:7a:41:78:5c:63:da:2d:b6:86: 80:5c:58:24:6d:dc:fd:93:45:31:3f:bd:f4:75:be:66:bd:79: 4b:1c:f6:36:f2:6f:ab:20:91:9c:e5:96:0b:5a:a4:ac:ae:3f: 99:e7:c9:ec:0a:aa:29:49:b4:3f:9a:bb:3d:d0:06:f1:e2:af: 9c:46:e3:d4:02:a2:0b:db:00:5b:78:13:77:7a:41:f4:ae:ef: 32:43:82:9d:5d:7b:84:d9:a2:bd:59:fb:12:2b:96:3c:1c:af: 1b:6c:52:39:32:7d:36:71:a7:02:98:96:2a:fe:c1:25:b6:82: b7:76:e2:12:2b:c1:d1:a3:a7:31:f7:f4:fd:3a:44:79:70:98: 7c:ba:a8:98:41:ee:42:b3:e5:08:8f:06:00:3f:10:7d:2f:12: db:93:e1:63:e0:db:49:24:1b:8a:78:dd:d2:d1:7e:b3:90:30: 4f:24:df:ad:a5:97:e9:e7:27:2c:f2:56:a0:61:99:66:ee:90: 62:cd:ab:54:84:f3:b8:22:57:66:05:da:f8:30:d4:11:7f:b8: 15:f9:e6:eb -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUPWBy7exgl5fWPPfUlcv2rMOnsOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U5RTdENEZCNjY0RTNDRjJGQzkwRTk2MDRGQUUxOThB MUEzMDJCMjAeFw0yNjAzMjMxNDA5NTdaFw0yNzAzMjIxNDE0NTdaMDMxMTAvBgNV BAMTKEVFMzAxREY4MkVBMEQ1MTBDNDczRDhGRkFGOTg4NUExNkE4QTBBRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxJMqHmI+nnsgkFA8X/dzkJfUr Hh0YalsUb9+1rVYABjfeReK3NaJKBb7qBy3qKa19R8OP28muYj/2gJ15otZUZ5od ASGCTtyA4dREqTB/qixeGFp/i8j+Uny6YkfsjkVgVHdFE7fQ0ZLR3Ssti8YwEOcS +XDiiOlgG4cmt0YyDaNvrWuXgYfD35mAUaywB81bYOF1+0uJTM/qGQAkUODUwX8l GZxq1AGIT7iJHbwA7LH40P1bRBse4/N+qnxOMJsvJykpCBrvj7MUW33xtJLqzwmr cKytuWNjCsJfvkdljdsWJMr0vcIV8W0FcekAyzaAbHXlPESVDnPmLrCu6eEhAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQU7jAd+C6g1RDEc9j/r5iFoWqKCvMwHwYDVR0j BBgwFoAUzp59T7Zk488vyQ6WBPrhmKGjArIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDZiNXRkRkt5TjQ1dzNpcGRrZFJBN0hXSnlGdTRGb0VoY1VuWVJQNVdz VHYvMS9DRTlFN0Q0RkI2NjRFM0NGMkZDOTBFOTYwNEZBRTE5OEExQTMwMkIyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFOUU3RDRGQjY2NEUzQ0Yy RkM5MEU5NjA0RkFFMTk4QTFBMzAyQjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q2YjV0ZEZLeU40NXczaXBka2RSQTdIV0p5RnU0Rm9FaGNVbllSUDVXc1R2LzEv MzEzNzMwMmUzMjMzMzMyZTMxMzEzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKrpcDANBgkqhkiG9w0BAQsFAAOCAQEAEJWZ 68yf6YxWWuB7OwsgMJWuqO1stkG8WJBB2X+aTb0nTSFKFCi+1iI16iNAekF4XGPa LbaGgFxYJG3c/ZNFMT+99HW+Zr15Sxz2NvJvqyCRnOWWC1qkrK4/mefJ7AqqKUm0 P5q7PdAG8eKvnEbj1AKiC9sAW3gTd3pB9K7vMkOCnV17hNmivVn7EiuWPByvG2xS OTJ9NnGnApiWKv7BJbaCt3biEivB0aOnMff0/TpEeXCYfLqomEHuQrPlCI8GAD8Q fS8S25PhY+DbSSQbinjd0tF+s5AwTyTfraWX6ecnLPJWoGGZZu6QYs2rVITzuCJX ZgXa+DDUEX+4Ffnm6w== -----END CERTIFICATE-----Generated at Thu Mar 26 22:38:02 2026 by rpki-client