$ rpki-client -vvf rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/323830343a363532633a343030303a3a2f33342d3334203d3e20323639343733.roa File: 323830343a363532633a343030303a3a2f33342d3334203d3e20323639343733.roa (raw, json) Hash identifier: QYuarhhb51IIJNcMd8PqyCgbNMJp1l2Brpl4eGszn1Q= Subject key identifier: 22:E8:FA:BD:AB:E1:EF:4D:FB:60:DB:FD:F4:36:B8:C7:F5:24:3D:80 Certificate issuer: /CN=BAA91B8729924B4E8155B81952688BEC004DD0B7 Certificate serial: 3F8B8A7CB6CB04E86F74235B51CD1AA42686B5CC Authority key identifier: BA:A9:1B:87:29:92:4B:4E:81:55:B8:19:52:68:8B:EC:00:4D:D0:B7 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.cer Subject info access: rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/323830343a363532633a343030303a3a2f33342d3334203d3e20323639343733.roa Signing time: Mon 16 Mar 2026 22:03:05 +0000 ROA not before: Mon 16 Mar 2026 21:58:05 +0000 ROA not after: Mon 15 Mar 2027 22:03:05 +0000 asID: 269473 IP address blocks: 2804:652c:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.crl rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 27 Mar 2026 23:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:8b:8a:7c:b6:cb:04:e8:6f:74:23:5b:51:cd:1a:a4:26:86:b5:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAA91B8729924B4E8155B81952688BEC004DD0B7 Validity Not Before: Mar 16 21:58:05 2026 GMT Not After : Mar 15 22:03:05 2027 GMT Subject: CN=22E8FABDABE1EF4DFB60DBFDF436B8C7F5243D80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2c:6d:11:18:32:34:36:d8:e4:1d:66:23:bc: 3d:4b:51:ae:0f:75:cb:0e:9b:1a:80:f3:fb:3e:01: d0:01:2b:c1:5a:72:e4:f5:c0:85:dd:ff:c3:6a:6b: d2:7b:10:4e:69:51:f1:65:85:3a:73:1d:d5:d5:0c: 2e:78:a0:52:d6:97:b4:04:0a:06:05:94:7f:91:dd: 59:8c:9d:d3:ce:5b:f8:0e:a3:31:20:6d:1a:e4:a8: 3b:4a:20:8f:80:66:2a:10:4c:f7:cf:c5:04:d2:d4: 0c:e6:dc:52:04:cc:59:29:ef:bc:f8:45:bd:ea:7f: 87:cf:19:4f:74:a3:b2:c6:cb:be:7e:92:c9:d7:53: a6:27:75:44:1a:17:df:f9:81:02:21:49:9e:7b:fc: 4c:1d:7d:2a:3d:c7:1d:67:3a:67:c0:7b:93:4e:4b: 77:b4:fc:4a:1c:36:1c:72:0e:73:1d:7c:32:9f:48: b8:65:32:65:cd:1e:67:c9:14:85:a3:cb:d3:1c:eb: cf:0f:59:db:46:54:da:e7:e4:7c:11:67:b5:11:f1: 19:8e:b5:d7:c6:fb:a6:7a:f6:ff:2a:d4:87:31:af: 9a:8f:97:e6:bd:b0:50:b6:a2:01:73:f9:f8:ae:2b: 78:04:ef:0e:0d:a8:e0:3e:ee:81:44:df:b6:1c:0c: 53:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E8:FA:BD:AB:E1:EF:4D:FB:60:DB:FD:F4:36:B8:C7:F5:24:3D:80 X509v3 Authority Key Identifier: keyid:BA:A9:1B:87:29:92:4B:4E:81:55:B8:19:52:68:8B:EC:00:4D:D0:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/323830343a363532633a343030303a3a2f33342d3334203d3e20323639343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:652c:4000::/34 Signature Algorithm: sha256WithRSAEncryption 3f:61:09:d4:14:ef:cc:1d:9e:c4:76:2c:83:99:09:a8:db:b9: ea:8e:e6:fa:d9:ec:0b:7c:ec:93:ce:06:04:21:3a:ca:b5:37: 40:60:8d:41:67:ac:19:97:21:f7:87:97:98:a0:b2:ef:be:fa: 5b:35:17:28:7e:bb:a4:e0:7a:9a:a6:d7:9e:94:c2:4a:3b:38: af:f4:57:76:ac:7d:7d:8d:b0:b1:47:c8:b4:8a:da:39:39:cc: ed:41:e9:25:d7:5f:7d:3c:06:a4:83:64:07:2d:1b:27:70:49: fa:5b:dc:3c:d7:dc:8d:98:14:1b:a7:7e:48:1d:30:7d:aa:7e: ea:a0:a1:7b:9e:7c:c1:72:6b:f1:01:0d:c2:40:3e:10:07:7d: 64:b7:a4:f4:73:0a:15:c6:c1:0d:f2:92:82:25:05:d8:4c:ee: 35:10:5b:db:fa:bd:99:19:71:2d:28:d6:fe:20:94:25:19:10: 0c:c9:dc:9d:c4:e3:6f:20:b8:1a:37:71:2e:cb:d1:48:8c:21: 90:1b:0c:2f:a3:57:9e:db:51:1d:fa:cd:33:15:8a:e8:18:1b: 3e:f4:66:83:82:51:f3:16:f0:a0:cd:78:1e:e1:01:46:ce:78: c0:0f:90:ee:37:ef:90:04:a6:6f:ee:5b:a8:3f:40:a3:dc:1a: 7d:82:21:60 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUP4uKfLbLBOhvdCNbUc0apCaGtcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFBOTFCODcyOTkyNEI0RTgxNTVCODE5NTI2ODhCRUMw MDRERDBCNzAeFw0yNjAzMTYyMTU4MDVaFw0yNzAzMTUyMjAzMDVaMDMxMTAvBgNV BAMTKDIyRThGQUJEQUJFMUVGNERGQjYwREJGREY0MzZCOEM3RjUyNDNEODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcLG0RGDI0NtjkHWYjvD1LUa4P dcsOmxqA8/s+AdABK8FacuT1wIXd/8Nqa9J7EE5pUfFlhTpzHdXVDC54oFLWl7QE CgYFlH+R3VmMndPOW/gOozEgbRrkqDtKII+AZioQTPfPxQTS1Azm3FIEzFkp77z4 Rb3qf4fPGU90o7LGy75+ksnXU6YndUQaF9/5gQIhSZ57/EwdfSo9xx1nOmfAe5NO S3e0/EocNhxyDnMdfDKfSLhlMmXNHmfJFIWjy9Mc688PWdtGVNrn5HwRZ7UR8RmO tdfG+6Z69v8q1Icxr5qPl+a9sFC2ogFz+fiuK3gE7w4NqOA+7oFE37YcDFPfAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUIuj6vavh7037YNv99Da4x/UkPYAwHwYDVR0j BBgwFoAUuqkbhymSS06BVbgZUmiL7ABN0LcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSHJ2VHhhMllOeFl5UHAzYzVQcTUxdW8zV0duanhNaG5NakhzQnZkN2VY RjkvMS9CQUE5MUI4NzI5OTI0QjRFODE1NUI4MTk1MjY4OEJFQzAwNEREMEI3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JBQTkxQjg3Mjk5MjRCNEU4 MTU1QjgxOTUyNjg4QkVDMDA0REQwQjcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hydlR4YTJZTnhZeVBwM2M1UHE1MXVvM1dHbmp4TWhuTWpIc0J2ZDdlWEY5LzEv MzIzODMwMzQzYTM2MzUzMjYzM2EzNDMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzOTM0MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEZSxAMA0GCSqGSIb3DQEBCwUA A4IBAQA/YQnUFO/MHZ7EdiyDmQmo27nqjub62ewLfOyTzgYEITrKtTdAYI1BZ6wZ lyH3h5eYoLLvvvpbNRcofruk4HqapteelMJKOziv9Fd2rH19jbCxR8i0ito5Oczt Qekl1199PAakg2QHLRsncEn6W9w819yNmBQbp35IHTB9qn7qoKF7nnzBcmvxAQ3C QD4QB31kt6T0cwoVxsEN8pKCJQXYTO41EFvb+r2ZGXEtKNb+IJQlGRAMydydxONv ILgaN3Euy9FIjCGQGwwvo1ee21Ed+s0zFYroGBs+9GaDglHzFvCgzXge4QFGznjA D5DuN++QBKZv7luoP0Cj3Bp9giFg -----END CERTIFICATE-----Generated at Thu Mar 26 23:31:20 2026 by rpki-client