$ rpki-client -vvf rpki-repo.registro.br/repo/XDvbqT8FghPBx5PLNZEP3d2wk47x7Z6doCgXV8ikfKs/0/34352e3139312e34302e302f32322d3332203d3e20323730323534.roa File: 34352e3139312e34302e302f32322d3332203d3e20323730323534.roa (raw, json) Hash identifier: j2BbIP34LD3AwqyHzMNam4Ax9HVbWL4kL5ekUjk6b/Y= Subject key identifier: 02:0B:F6:4D:89:50:DB:DC:ED:82:59:75:41:CF:B0:5D:76:3D:47:C9 Certificate issuer: /CN=4FED93D6166517B9CCA7BDF8E41D6309C8D9BCDC Certificate serial: 5A67007EF39468F4EAE3489D0565BC1C87850373 Authority key identifier: 4F:ED:93:D6:16:65:17:B9:CC:A7:BD:F8:E4:1D:63:09:C8:D9:BC:DC Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4FED93D6166517B9CCA7BDF8E41D6309C8D9BCDC.cer Subject info access: rsync://rpki-repo.registro.br/repo/XDvbqT8FghPBx5PLNZEP3d2wk47x7Z6doCgXV8ikfKs/0/34352e3139312e34302e302f32322d3332203d3e20323730323534.roa Signing time: Tue 24 Mar 2026 14:07:44 +0000 ROA not before: Tue 24 Mar 2026 14:02:44 +0000 ROA not after: Tue 23 Mar 2027 14:07:44 +0000 asID: 270254 IP address blocks: 45.191.40.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/XDvbqT8FghPBx5PLNZEP3d2wk47x7Z6doCgXV8ikfKs/0/4FED93D6166517B9CCA7BDF8E41D6309C8D9BCDC.crl rsync://rpki-repo.registro.br/repo/XDvbqT8FghPBx5PLNZEP3d2wk47x7Z6doCgXV8ikfKs/0/4FED93D6166517B9CCA7BDF8E41D6309C8D9BCDC.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4FED93D6166517B9CCA7BDF8E41D6309C8D9BCDC.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 27 Mar 2026 21:40:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:67:00:7e:f3:94:68:f4:ea:e3:48:9d:05:65:bc:1c:87:85:03:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FED93D6166517B9CCA7BDF8E41D6309C8D9BCDC Validity Not Before: Mar 24 14:02:44 2026 GMT Not After : Mar 23 14:07:44 2027 GMT Subject: CN=020BF64D8950DBDCED82597541CFB05D763D47C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:75:b7:b8:d9:86:31:98:53:ad:e8:a1:f8:73: 81:8f:ef:e9:b6:1a:46:f4:6e:d7:57:62:a0:20:52: a5:49:c9:32:62:a1:1d:31:9b:bf:78:24:25:a5:12: 03:b8:04:73:0b:8b:ae:ac:8e:f7:46:16:81:78:ba: 50:51:1c:1b:92:1a:01:34:3a:22:a5:20:85:ed:ac: b5:6b:48:03:c1:7a:b2:19:0c:1a:5b:89:dc:17:af: 57:b2:8e:b0:a8:d6:4d:69:07:dd:83:96:b2:84:ed: fd:e7:d4:42:df:d5:ce:38:f7:16:e8:17:a5:f3:d8: dd:20:56:d7:3c:1b:a4:e2:e5:30:74:24:d3:5c:de: 4c:c0:1e:b3:af:83:d6:c2:ac:33:db:6b:88:e4:c2: 96:a1:54:71:31:74:92:3a:ad:c8:16:d1:0f:e8:e2: d3:65:a9:75:b5:ef:51:c4:3c:c3:52:dd:52:ac:2c: 8f:b2:6f:04:78:03:5a:76:18:c0:0b:f2:61:df:24: d5:a7:ac:ba:1d:78:4f:ae:28:7d:55:18:2b:52:75: 86:eb:50:b5:78:1e:19:41:96:71:7f:aa:b6:5e:5e: c5:af:78:7a:8b:3b:fb:c9:27:90:de:93:52:2c:bf: 9a:18:68:53:07:e6:63:2a:e3:73:9c:a1:e5:7f:68: ec:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0B:F6:4D:89:50:DB:DC:ED:82:59:75:41:CF:B0:5D:76:3D:47:C9 X509v3 Authority Key Identifier: keyid:4F:ED:93:D6:16:65:17:B9:CC:A7:BD:F8:E4:1D:63:09:C8:D9:BC:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/XDvbqT8FghPBx5PLNZEP3d2wk47x7Z6doCgXV8ikfKs/0/4FED93D6166517B9CCA7BDF8E41D6309C8D9BCDC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4FED93D6166517B9CCA7BDF8E41D6309C8D9BCDC.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/XDvbqT8FghPBx5PLNZEP3d2wk47x7Z6doCgXV8ikfKs/0/34352e3139312e34302e302f32322d3332203d3e20323730323534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.191.40.0/22 Signature Algorithm: sha256WithRSAEncryption 55:c4:9b:56:0e:b4:0a:ab:b6:aa:81:19:a6:9e:c7:78:05:80: 51:8b:49:c5:47:97:12:56:cb:e7:11:e3:4d:f5:b6:ef:b0:59: 1e:e0:cb:e8:38:1d:40:01:18:bb:f5:8c:34:3f:35:f0:f8:4b: 49:41:bc:cc:7a:c4:3b:db:a2:a2:5e:65:8f:2e:84:85:53:bc: 70:0f:43:ab:22:09:42:b9:fe:71:fb:5d:1a:c9:85:15:63:df: 39:fe:0a:59:3a:9e:c4:31:a1:79:94:a1:35:cd:de:4f:09:fe: 5e:48:c9:a5:17:2f:73:36:85:c4:9b:2c:13:bd:3a:9e:a9:5c: f6:7b:21:f4:03:dc:29:72:02:3a:88:07:de:77:f6:38:1c:5b: 4f:ad:a8:d9:c9:9c:56:e3:b4:da:bf:fb:86:e0:2a:cc:1c:bd: 10:1b:29:3e:76:b9:ff:dc:41:86:08:f8:e3:ee:7a:02:a3:35: 23:bb:ec:16:b2:d5:e0:e7:16:68:87:b8:59:39:90:c1:bc:05: 31:77:de:44:88:fc:e3:5c:47:57:17:d9:c4:6a:74:bd:09:30: 1e:ae:a0:76:58:75:e1:59:df:61:d1:70:5c:f2:01:ff:67:85: e0:3e:db:40:21:97:cd:03:36:eb:fb:74:8e:81:3d:cf:4a:15: 5a:2a:0e:9e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUWmcAfvOUaPTq40idBWW8HIeFA3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZFRDkzRDYxNjY1MTdCOUNDQTdCREY4RTQxRDYzMDlD OEQ5QkNEQzAeFw0yNjAzMjQxNDAyNDRaFw0yNzAzMjMxNDA3NDRaMDMxMTAvBgNV BAMTKDAyMEJGNjREODk1MERCRENFRDgyNTk3NTQxQ0ZCMDVENzYzRDQ3QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1dbe42YYxmFOt6KH4c4GP7+m2 Gkb0btdXYqAgUqVJyTJioR0xm794JCWlEgO4BHMLi66sjvdGFoF4ulBRHBuSGgE0 OiKlIIXtrLVrSAPBerIZDBpbidwXr1eyjrCo1k1pB92DlrKE7f3n1ELf1c449xbo F6Xz2N0gVtc8G6Ti5TB0JNNc3kzAHrOvg9bCrDPba4jkwpahVHExdJI6rcgW0Q/o 4tNlqXW171HEPMNS3VKsLI+ybwR4A1p2GMAL8mHfJNWnrLodeE+uKH1VGCtSdYbr ULV4HhlBlnF/qrZeXsWveHqLO/vJJ5Dek1Isv5oYaFMH5mMq43OcoeV/aOx/AgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUAgv2TYlQ29ztgll1Qc+wXXY9R8kwHwYDVR0j BBgwFoAUT+2T1hZlF7nMp7345B1jCcjZvNwwDgYDVR0PAQH/BAQDAgeAMIGSBgNV HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv cmVwby9YRHZicVQ4RmdoUEJ4NVBMTlpFUDNkMndrNDd4N1o2ZG9DZ1hWOGlrZktz LzAvNEZFRDkzRDYxNjY1MTdCOUNDQTdCREY4RTQxRDYzMDlDOEQ5QkNEQy5jcmww eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS80RkVEOTNENjE2NjUxN0I5Q0NB N0JERjhFNDFENjMwOUM4RDlCQ0RDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgG CCsGAQUFBzALhoGLcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9Y RHZicVQ4RmdoUEJ4NVBMTlpFUDNkMndrNDd4N1o2ZG9DZ1hWOGlrZktzLzAvMzQz NTJlMzEzOTMxMmUzNDMwMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzIzNzMwMzIz NTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCLb8oMA0GCSqGSIb3DQEBCwUAA4IBAQBVxJtWDrQKq7aq gRmmnsd4BYBRi0nFR5cSVsvnEeNN9bbvsFke4MvoOB1AARi79Yw0PzXw+EtJQbzM esQ726KiXmWPLoSFU7xwD0OrIglCuf5x+10ayYUVY985/gpZOp7EMaF5lKE1zd5P Cf5eSMmlFy9zNoXEmywTvTqeqVz2eyH0A9wpcgI6iAfed/Y4HFtPrajZyZxW47Ta v/uG4CrMHL0QGyk+drn/3EGGCPjj7noCozUju+wWstXg5xZoh7hZOZDBvAUxd95E iPzjXEdXF9nEanS9CTAerqB2WHXhWd9h0XBc8gH/Z4XgPttAIZfNAzbr+3SOgT3P ShVaKg6e -----END CERTIFICATE-----Generated at Thu Mar 26 21:57:31 2026 by rpki-client