$ rpki-client -vvf rpki-repo.registro.br/repo/HzfQzKjgp417yqoEdUdCf7qEw9jZiovXM3XKPiaszaLR/0/3133382e3132312e302e302f32332d3233203d3e20323634323834.roa File: 3133382e3132312e302e302f32332d3233203d3e20323634323834.roa (raw, json) Hash identifier: pYqgbspgiVfrwe8evrGQHoF0+dLIUiAQaTuS+NMvJZI= Subject key identifier: FB:9C:1C:DD:E8:43:0B:E4:5D:51:E8:64:12:73:B8:5A:60:29:53:F1 Certificate issuer: /CN=D3674BC62244757D82BD45C85C9511AD511807E1 Certificate serial: 3271C53A9B3BAB1B5E1E7173DC093A3A7FE812DF Authority key identifier: D3:67:4B:C6:22:44:75:7D:82:BD:45:C8:5C:95:11:AD:51:18:07:E1 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D3674BC62244757D82BD45C85C9511AD511807E1.cer Subject info access: rsync://rpki-repo.registro.br/repo/HzfQzKjgp417yqoEdUdCf7qEw9jZiovXM3XKPiaszaLR/0/3133382e3132312e302e302f32332d3233203d3e20323634323834.roa Signing time: Mon 02 Mar 2026 22:48:02 +0000 ROA not before: Mon 02 Mar 2026 22:43:02 +0000 ROA not after: Mon 01 Mar 2027 22:48:02 +0000 asID: 264284 IP address blocks: 138.121.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HzfQzKjgp417yqoEdUdCf7qEw9jZiovXM3XKPiaszaLR/0/D3674BC62244757D82BD45C85C9511AD511807E1.crl rsync://rpki-repo.registro.br/repo/HzfQzKjgp417yqoEdUdCf7qEw9jZiovXM3XKPiaszaLR/0/D3674BC62244757D82BD45C85C9511AD511807E1.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D3674BC62244757D82BD45C85C9511AD511807E1.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 26 Mar 2026 21:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:71:c5:3a:9b:3b:ab:1b:5e:1e:71:73:dc:09:3a:3a:7f:e8:12:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3674BC62244757D82BD45C85C9511AD511807E1 Validity Not Before: Mar 2 22:43:02 2026 GMT Not After : Mar 1 22:48:02 2027 GMT Subject: CN=FB9C1CDDE8430BE45D51E8641273B85A602953F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dd:bc:36:53:db:fd:f4:ea:9e:8a:fe:97:fd: 1b:5d:19:22:9f:f2:a9:81:39:0e:26:4b:dc:20:0b: ae:89:ae:e1:a3:6e:59:da:ac:a7:6b:1c:0f:fa:97: 7f:72:0a:98:fa:4c:c2:4e:eb:33:da:8f:3c:53:1d: 81:38:a7:06:e5:e4:97:5d:3b:05:6c:dd:99:5a:fc: b3:4a:53:39:95:2c:64:c9:17:e5:59:68:0e:5d:aa: 1d:0e:3e:74:e3:ba:13:78:e3:94:78:e1:50:25:c4: 72:52:48:24:d1:b7:b3:21:6c:b1:bf:d7:88:b4:fe: 26:65:fa:1e:46:44:ea:db:50:18:cb:da:65:34:bf: 6c:cb:98:24:32:b2:34:bb:8f:b8:85:62:49:34:e3: 35:10:5a:5d:d5:bf:2f:eb:a0:77:17:aa:76:db:3c: 08:75:8a:a6:15:82:5e:fc:95:a4:c2:00:e3:06:98: 23:e0:78:a9:1c:83:94:41:e8:9c:f8:59:69:f1:f6: 02:de:a1:26:cc:df:e6:c2:45:26:e8:35:ba:fd:74: 52:35:42:6b:f5:19:b4:90:13:cf:15:c7:a0:51:0f: 99:fa:00:ce:2f:7b:32:44:f0:b3:ca:5d:9f:65:37: 75:51:e6:bb:3d:68:48:b0:83:9e:75:8e:c5:2a:2c: 61:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:9C:1C:DD:E8:43:0B:E4:5D:51:E8:64:12:73:B8:5A:60:29:53:F1 X509v3 Authority Key Identifier: keyid:D3:67:4B:C6:22:44:75:7D:82:BD:45:C8:5C:95:11:AD:51:18:07:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HzfQzKjgp417yqoEdUdCf7qEw9jZiovXM3XKPiaszaLR/0/D3674BC62244757D82BD45C85C9511AD511807E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D3674BC62244757D82BD45C85C9511AD511807E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HzfQzKjgp417yqoEdUdCf7qEw9jZiovXM3XKPiaszaLR/0/3133382e3132312e302e302f32332d3233203d3e20323634323834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.0.0/23 Signature Algorithm: sha256WithRSAEncryption 88:8c:4f:fb:02:ad:5b:49:cf:f8:a3:da:11:e9:07:3d:cb:a2: 18:cb:0e:d6:85:ae:05:d0:f6:70:d1:27:4f:ba:2a:12:c6:27: 1b:66:90:33:15:31:ca:30:f8:45:ec:50:b4:af:e8:8b:d7:09: e7:1f:44:15:03:ac:1b:3f:f0:6a:d0:20:72:25:8d:98:a1:4b: 1c:4c:a4:19:3a:08:62:f4:af:fa:3b:ec:58:4d:30:23:56:8f: 00:7e:cd:8b:49:79:39:a3:9d:ef:34:bc:77:ee:aa:bd:f6:ff: e9:13:83:ab:dd:72:ea:e5:ee:65:9c:2a:02:c8:a7:af:f0:fe: 29:16:85:d7:59:dc:1b:f8:5f:d1:be:f6:b8:b3:78:aa:88:d4: cb:1c:82:20:8e:a4:d2:ef:6d:85:fa:1e:23:84:38:e5:ed:71: e8:33:60:1c:6d:dd:e7:8a:88:a7:7e:f2:7c:0f:14:4b:b3:01: 4b:cb:26:a3:da:c7:e3:53:cb:63:ff:b2:1a:f9:9e:db:d5:00: 98:0b:c2:a2:a6:8f:80:49:cb:c0:c0:42:46:f7:f5:40:83:55: 65:6c:6f:d2:3d:af:5b:78:b8:4d:44:bd:c5:36:ca:3c:4f:d1: ed:f3:2b:47:42:23:fc:9a:70:e5:7d:22:84:57:fd:2d:48:0f: 0f:5f:c8:91 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUMnHFOps7qxteHnFz3Ak6On/oEt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM2NzRCQzYyMjQ0NzU3RDgyQkQ0NUM4NUM5NTExQUQ1 MTE4MDdFMTAeFw0yNjAzMDIyMjQzMDJaFw0yNzAzMDEyMjQ4MDJaMDMxMTAvBgNV BAMTKEZCOUMxQ0RERTg0MzBCRTQ1RDUxRTg2NDEyNzNCODVBNjAyOTUzRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO3bw2U9v99Oqeiv6X/RtdGSKf 8qmBOQ4mS9wgC66JruGjblnarKdrHA/6l39yCpj6TMJO6zPajzxTHYE4pwbl5Jdd OwVs3Zla/LNKUzmVLGTJF+VZaA5dqh0OPnTjuhN445R44VAlxHJSSCTRt7MhbLG/ 14i0/iZl+h5GROrbUBjL2mU0v2zLmCQysjS7j7iFYkk04zUQWl3Vvy/roHcXqnbb PAh1iqYVgl78laTCAOMGmCPgeKkcg5RB6Jz4WWnx9gLeoSbM3+bCRSboNbr9dFI1 Qmv1GbSQE88Vx6BRD5n6AM4vezJE8LPKXZ9lN3VR5rs9aEiwg551jsUqLGHnAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQU+5wc3ehDC+RdUehkEnO4WmApU/EwHwYDVR0j BBgwFoAU02dLxiJEdX2CvUXIXJURrVEYB+EwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSHpmUXpLamdwNDE3eXFvRWRVZENmN3FFdzlqWmlvdlhNM1hLUGlhc3ph TFIvMC9EMzY3NEJDNjIyNDQ3NTdEODJCRDQ1Qzg1Qzk1MTFBRDUxMTgwN0UxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QzNjc0QkM2MjI0NDc1N0Q4 MkJENDVDODVDOTUxMUFENTExODA3RTEuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0h6ZlF6S2pncDQxN3lxb0VkVWRDZjdxRXc5alppb3ZYTTNYS1BpYXN6YUxSLzAv MzEzMzM4MmUzMTMyMzEyZTMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIzNjM0 MzIzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQBinkAMA0GCSqGSIb3DQEBCwUAA4IBAQCIjE/7Aq1b Sc/4o9oR6Qc9y6IYyw7Wha4F0PZw0SdPuioSxicbZpAzFTHKMPhF7FC0r+iL1wnn H0QVA6wbP/Bq0CByJY2YoUscTKQZOghi9K/6O+xYTTAjVo8Afs2LSXk5o53vNLx3 7qq99v/pE4Or3XLq5e5lnCoCyKev8P4pFoXXWdwb+F/Rvva4s3iqiNTLHIIgjqTS 722F+h4jhDjl7XHoM2Acbd3nioinfvJ8DxRLswFLyyaj2sfjU8tj/7Ia+Z7b1QCY C8Kipo+AScvAwEJG9/VAg1VlbG/SPa9beLhNRL3FNso8T9Ht8ytHQiP8mnDlfSKE V/0tSA8PX8iR -----END CERTIFICATE-----Generated at Thu Mar 26 02:56:22 2026 by rpki-client