$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa File: 3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa (raw, json) Hash identifier: O74Dl+n7kgxIX7fp6e+Rx21Kwb0KGKe4Rd/oFvpRadw= Subject key identifier: 12:9B:44:02:98:9C:D0:BB:21:08:A0:0C:38:F5:27:FD:A4:DB:37:F2 Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Certificate serial: 5E437D698348C50A05307A62EB9EBCE4EB0269A6 Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa Signing time: Mon 23 Mar 2026 14:14:57 +0000 ROA not before: Mon 23 Mar 2026 14:09:57 +0000 ROA not after: Mon 22 Mar 2027 14:14:57 +0000 asID: 265078 IP address blocks: 170.233.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 27 Mar 2026 16:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:43:7d:69:83:48:c5:0a:05:30:7a:62:eb:9e:bc:e4:eb:02:69:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Validity Not Before: Mar 23 14:09:57 2026 GMT Not After : Mar 22 14:14:57 2027 GMT Subject: CN=129B4402989CD0BB2108A00C38F527FDA4DB37F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:66:e2:9f:9c:95:ec:44:de:42:f8:bb:ab:13: 8c:27:ea:e9:dd:08:9d:df:2e:38:af:04:b0:ec:ce: 8d:94:cd:73:68:54:c5:95:ac:6e:e4:6a:ba:c1:f8: a5:30:95:2c:88:87:c8:7a:a5:e4:94:6f:f4:fd:10: fb:2a:ba:66:01:d7:eb:b7:3e:de:d4:45:bd:93:34: 6b:51:f1:05:7c:40:38:9e:5d:0b:ed:e4:86:ff:7f: 4e:e4:10:31:0e:a6:f5:65:79:e7:ef:fb:fc:34:17: 76:4f:a8:61:92:75:47:96:31:25:d9:80:97:a4:99: 12:a8:c1:29:96:25:33:d1:66:65:e4:62:dc:98:16: d4:ea:a1:0c:f6:5a:4a:ae:87:b2:7b:70:71:cc:4f: d8:d5:0c:9a:f8:39:b7:c4:c2:67:02:f1:0a:b3:b6: be:54:6b:75:df:56:a1:e7:f7:40:af:e0:42:52:d2: bd:a7:7e:8a:ca:59:6e:b9:e6:39:51:ca:7d:8c:e5: 8f:3a:af:07:0a:d8:f8:81:ea:bc:16:96:bb:29:3a: 18:7d:57:b3:1f:ea:45:ba:5e:9a:33:8b:b1:1a:08: 75:e7:d0:37:8c:30:4a:33:94:c1:fb:e9:f4:0d:85: 7a:f1:bf:ca:6a:36:62:97:b6:98:a3:42:6c:06:17: f1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:9B:44:02:98:9C:D0:BB:21:08:A0:0C:38:F5:27:FD:A4:DB:37:F2 X509v3 Authority Key Identifier: keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.114.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:c7:af:75:63:bd:a5:7d:80:d8:5e:be:dc:bb:69:32:6e:ad: 76:69:27:e5:e5:dc:a9:81:39:44:26:ac:8d:b2:5a:b1:82:a8: dc:9d:7d:0e:80:26:e3:a8:7b:4b:f3:8c:7b:3b:9f:3f:ea:2f: b0:a7:fe:78:c8:51:63:f9:ae:60:d4:18:a5:a5:c7:2c:a9:e8: 08:78:95:b8:80:4a:38:23:25:5a:df:b9:93:99:74:53:cd:03: 81:61:a7:56:f6:1a:15:f8:fd:9b:63:2e:d6:d6:1a:72:c4:77: dc:0f:5b:f3:ea:84:55:bf:a6:c2:89:43:58:72:1a:18:a0:73: da:ef:90:0a:4f:56:26:1d:16:7d:d3:38:ef:7e:7a:db:2d:30: bb:6e:fd:cf:7d:d9:8a:68:46:5d:4f:fd:a5:34:71:9a:d4:39: bf:46:44:54:e6:95:8c:2d:36:00:0d:a0:69:9a:06:dc:67:d4: 60:e9:c0:77:2b:8e:83:61:05:24:ad:db:7f:3f:6b:27:3c:3f: 24:36:f8:d7:50:7b:90:d9:c3:98:a6:5a:31:6f:ac:68:cd:97: 38:5c:8a:9f:99:9a:91:de:5e:39:e1:a6:3d:a7:16:3c:66:45: bc:81:56:84:33:86:6b:f6:91:e8:30:de:3a:dc:07:ed:55:1b: 21:ae:e5:f2 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUXkN9aYNIxQoFMHpi65685OsCaaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U5RTdENEZCNjY0RTNDRjJGQzkwRTk2MDRGQUUxOThB MUEzMDJCMjAeFw0yNjAzMjMxNDA5NTdaFw0yNzAzMjIxNDE0NTdaMDMxMTAvBgNV BAMTKDEyOUI0NDAyOTg5Q0QwQkIyMTA4QTAwQzM4RjUyN0ZEQTREQjM3RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjZuKfnJXsRN5C+LurE4wn6und CJ3fLjivBLDszo2UzXNoVMWVrG7karrB+KUwlSyIh8h6peSUb/T9EPsqumYB1+u3 Pt7URb2TNGtR8QV8QDieXQvt5Ib/f07kEDEOpvVleefv+/w0F3ZPqGGSdUeWMSXZ gJekmRKowSmWJTPRZmXkYtyYFtTqoQz2Wkquh7J7cHHMT9jVDJr4ObfEwmcC8Qqz tr5Ua3XfVqHn90Cv4EJS0r2nforKWW655jlRyn2M5Y86rwcK2PiB6rwWlrspOhh9 V7Mf6kW6Xpozi7EaCHXn0DeMMEozlMH76fQNhXrxv8pqNmKXtpijQmwGF/FhAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUEptEApic0LshCKAMOPUn/aTbN/IwHwYDVR0j BBgwFoAUzp59T7Zk488vyQ6WBPrhmKGjArIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDZiNXRkRkt5TjQ1dzNpcGRrZFJBN0hXSnlGdTRGb0VoY1VuWVJQNVdz VHYvMS9DRTlFN0Q0RkI2NjRFM0NGMkZDOTBFOTYwNEZBRTE5OEExQTMwMkIyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFOUU3RDRGQjY2NEUzQ0Yy RkM5MEU5NjA0RkFFMTk4QTFBMzAyQjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q2YjV0ZEZLeU40NXczaXBka2RSQTdIV0p5RnU0Rm9FaGNVbllSUDVXc1R2LzEv MzEzNzMwMmUzMjMzMzMyZTMxMzEzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKrpcjANBgkqhkiG9w0BAQsFAAOCAQEAbMev dWO9pX2A2F6+3LtpMm6tdmkn5eXcqYE5RCasjbJasYKo3J19DoAm46h7S/OMezuf P+ovsKf+eMhRY/muYNQYpaXHLKnoCHiVuIBKOCMlWt+5k5l0U80DgWGnVvYaFfj9 m2Mu1tYacsR33A9b8+qEVb+mwolDWHIaGKBz2u+QCk9WJh0WfdM473562y0wu279 z33ZimhGXU/9pTRxmtQ5v0ZEVOaVjC02AA2gaZoG3GfUYOnAdyuOg2EFJK3bfz9r Jzw/JDb411B7kNnDmKZaMW+saM2XOFyKn5makd5eOeGmPacWPGZFvIFWhDOGa/aR 6DDeOtwH7VUbIa7l8g== -----END CERTIFICATE-----Generated at Thu Mar 26 22:37:00 2026 by rpki-client