$ rpki-client -vvf rpki-repo.registro.br/repo/HBhfvKgHpMehEX7DSnqKWzZh6TBWSa5ysDQKSYU3auqE/0/323830343a326263303a3a2f33322d3332203d3e20323635313733.roa File: 323830343a326263303a3a2f33322d3332203d3e20323635313733.roa (raw, json) Hash identifier: b8Wq1i8o4CPeAF9m65Zly/n5KxESsVSQEUNDFkSN5W0= Subject key identifier: 64:9C:DB:41:C3:0C:FA:64:23:32:55:86:60:84:96:D3:47:CD:29:E4 Certificate issuer: /CN=BAD4DC02B3E61BB7358C5D0CDD453BE3B40CB849 Certificate serial: 45BF5A2CA79FFE23EC05EACCF9993C694F35D55B Authority key identifier: BA:D4:DC:02:B3:E6:1B:B7:35:8C:5D:0C:DD:45:3B:E3:B4:0C:B8:49 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAD4DC02B3E61BB7358C5D0CDD453BE3B40CB849.cer Subject info access: rsync://rpki-repo.registro.br/repo/HBhfvKgHpMehEX7DSnqKWzZh6TBWSa5ysDQKSYU3auqE/0/323830343a326263303a3a2f33322d3332203d3e20323635313733.roa Signing time: Mon 02 Mar 2026 22:55:34 +0000 ROA not before: Mon 02 Mar 2026 22:50:34 +0000 ROA not after: Mon 01 Mar 2027 22:55:34 +0000 asID: 265173 IP address blocks: 2804:2bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HBhfvKgHpMehEX7DSnqKWzZh6TBWSa5ysDQKSYU3auqE/0/BAD4DC02B3E61BB7358C5D0CDD453BE3B40CB849.crl rsync://rpki-repo.registro.br/repo/HBhfvKgHpMehEX7DSnqKWzZh6TBWSa5ysDQKSYU3auqE/0/BAD4DC02B3E61BB7358C5D0CDD453BE3B40CB849.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAD4DC02B3E61BB7358C5D0CDD453BE3B40CB849.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 27 Mar 2026 13:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:bf:5a:2c:a7:9f:fe:23:ec:05:ea:cc:f9:99:3c:69:4f:35:d5:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAD4DC02B3E61BB7358C5D0CDD453BE3B40CB849 Validity Not Before: Mar 2 22:50:34 2026 GMT Not After : Mar 1 22:55:34 2027 GMT Subject: CN=649CDB41C30CFA6423325586608496D347CD29E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:03:3e:53:f3:6b:24:6f:7e:aa:1a:45:f6:8e: 82:2b:19:0f:20:b5:90:4b:7f:b0:4e:4d:16:d5:9e: 51:1d:66:26:76:67:4c:33:c9:87:c1:71:1f:39:23: ca:a3:c8:e7:ea:f0:e7:9a:20:92:bc:f7:7a:94:ea: 3e:5f:50:f4:8c:54:2b:5e:72:9c:7a:3d:1a:b1:7c: a4:2e:24:f3:e4:b4:2a:c7:c5:83:ea:06:61:f7:02: 7e:e7:fb:bf:ac:ed:f6:e0:6a:07:34:09:bd:51:6a: d8:7e:d2:0d:4b:1c:e2:1e:99:b4:f8:48:26:fc:5c: c5:2b:3b:81:3b:3e:b4:89:51:c3:73:35:78:6f:93: ad:14:5a:07:73:1f:37:a4:44:ce:e9:b6:a8:77:47: 78:c0:07:b3:69:25:a4:c9:a7:45:4e:a8:1e:28:c9: ba:20:65:a7:43:55:d6:bc:ab:fc:a9:4e:8b:1d:24: 1f:6f:60:b3:74:ed:71:b9:74:5a:98:f0:fd:2a:e3: a8:e1:ab:7d:2e:bd:07:74:07:39:3c:37:f9:23:86: ae:3a:4b:5a:bc:a1:09:ba:4c:48:46:fc:60:1a:28: 0f:de:c6:6c:c6:96:5b:c6:d4:e0:31:5a:c8:14:f2: 2a:41:9f:62:1c:2b:09:80:80:3b:45:68:7c:a0:cc: c7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9C:DB:41:C3:0C:FA:64:23:32:55:86:60:84:96:D3:47:CD:29:E4 X509v3 Authority Key Identifier: keyid:BA:D4:DC:02:B3:E6:1B:B7:35:8C:5D:0C:DD:45:3B:E3:B4:0C:B8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HBhfvKgHpMehEX7DSnqKWzZh6TBWSa5ysDQKSYU3auqE/0/BAD4DC02B3E61BB7358C5D0CDD453BE3B40CB849.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAD4DC02B3E61BB7358C5D0CDD453BE3B40CB849.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HBhfvKgHpMehEX7DSnqKWzZh6TBWSa5ysDQKSYU3auqE/0/323830343a326263303a3a2f33322d3332203d3e20323635313733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:2bc0::/32 Signature Algorithm: sha256WithRSAEncryption 1d:f6:bc:73:f6:a2:61:da:82:f3:85:96:e2:ed:02:8e:f6:38: 00:94:93:a0:9d:b5:39:f2:3b:17:d3:31:94:57:5c:f7:2a:93: ca:f0:a6:fa:bc:90:cc:66:ee:1f:b7:1f:b1:a5:36:0f:52:9f: 6f:a5:28:23:c6:48:e3:9f:8a:dd:61:b3:48:c8:49:0c:40:e9: d7:59:9b:0e:f9:cc:c1:d0:05:c4:19:8c:39:4e:96:e1:f0:ac: 26:57:e6:58:4f:8a:0b:bf:80:27:11:a5:00:37:04:b1:1d:5d: f3:c7:7f:35:e7:f5:f9:3d:81:d0:35:33:5b:22:43:26:a4:cc: f2:3c:66:a0:3a:e1:52:2d:87:29:15:83:68:ae:e7:6c:0e:e6: 2b:de:9b:8f:bc:7f:22:ce:13:eb:4f:39:a1:1c:e2:eb:ba:36: 93:9f:b8:4a:4c:e1:37:75:d7:e5:e6:ea:fa:58:c6:c7:87:19: 72:4b:27:77:d2:e2:20:fa:c5:9e:b9:09:b2:75:ba:9e:e7:ba: 00:48:7a:d1:08:9a:bd:03:06:7f:a5:00:98:b5:ac:06:23:dd: 2a:cb:7a:93:45:2a:f5:47:0b:be:4a:88:51:8b:c9:4c:a0:e9: ed:69:c5:10:e0:ac:6e:26:67:a6:19:a1:31:24:88:5b:42:50: ec:3c:63:d7 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIURb9aLKef/iPsBerM+Zk8aU811VswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFENERDMDJCM0U2MUJCNzM1OEM1RDBDREQ0NTNCRTNC NDBDQjg0OTAeFw0yNjAzMDIyMjUwMzRaFw0yNzAzMDEyMjU1MzRaMDMxMTAvBgNV BAMTKDY0OUNEQjQxQzMwQ0ZBNjQyMzMyNTU4NjYwODQ5NkQzNDdDRDI5RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrAz5T82skb36qGkX2joIrGQ8g tZBLf7BOTRbVnlEdZiZ2Z0wzyYfBcR85I8qjyOfq8OeaIJK893qU6j5fUPSMVCte cpx6PRqxfKQuJPPktCrHxYPqBmH3An7n+7+s7fbgagc0Cb1Rath+0g1LHOIembT4 SCb8XMUrO4E7PrSJUcNzNXhvk60UWgdzHzekRM7ptqh3R3jAB7NpJaTJp0VOqB4o ybogZadDVda8q/ypTosdJB9vYLN07XG5dFqY8P0q46jhq30uvQd0Bzk8N/kjhq46 S1q8oQm6TEhG/GAaKA/exmzGllvG1OAxWsgU8ipBn2IcKwmAgDtFaHygzMePAgMB AAGjggJQMIICTDAdBgNVHQ4EFgQUZJzbQcMM+mQjMlWGYISW00fNKeQwHwYDVR0j BBgwFoAUutTcArPmG7c1jF0M3UU747QMuEkwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSEJoZnZLZ0hwTWVoRVg3RFNucUtXelpoNlRCV1NhNXlzRFFLU1lVM2F1 cUUvMC9CQUQ0REMwMkIzRTYxQkI3MzU4QzVEMENERDQ1M0JFM0I0MENCODQ5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JBRDREQzAyQjNFNjFCQjcz NThDNUQwQ0RENDUzQkUzQjQwQ0I4NDkuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hCaGZ2S2dIcE1laEVYN0RTbnFLV3paaDZUQldTYTV5c0RRS1NZVTNhdXFFLzAv MzIzODMwMzQzYTMyNjI2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzNjM1 MzEzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH AQH/BBEwDzANBAIAAjAHAwUAKAQrwDANBgkqhkiG9w0BAQsFAAOCAQEAHfa8c/ai YdqC84WW4u0CjvY4AJSToJ21OfI7F9MxlFdc9yqTyvCm+ryQzGbuH7cfsaU2D1Kf b6UoI8ZI45+K3WGzSMhJDEDp11mbDvnMwdAFxBmMOU6W4fCsJlfmWE+KC7+AJxGl ADcEsR1d88d/Nef1+T2B0DUzWyJDJqTM8jxmoDrhUi2HKRWDaK7nbA7mK96bj7x/ Is4T6085oRzi67o2k5+4SkzhN3XX5ebq+ljGx4cZcksnd9LiIPrFnrkJsnW6nue6 AEh60QiavQMGf6UAmLWsBiPdKst6k0Uq9UcLvkqIUYvJTKDp7WnFEOCsbiZnphmh MSSIW0JQ7Dxj1w== -----END CERTIFICATE-----Generated at Thu Mar 26 20:32:46 2026 by rpki-client