$ rpki-client -vvf rpki-repo.registro.br/repo/9W4ohaAvwFsdA7vujKWPEpSSK5y5gMuGkYsvUXxjCPJr/0/323830343a346566633a653030303a3a2f33362d3336203d3e20323638323936.roa File: 323830343a346566633a653030303a3a2f33362d3336203d3e20323638323936.roa (raw, json) Hash identifier: C1S/pXM4oE/YitciqL2AN1QFSrJ8RJdSiHjKTIpvrfY= Subject key identifier: AA:56:2C:52:88:AF:03:7E:3D:79:DD:73:F0:AF:DE:B8:85:5F:7D:58 Certificate issuer: /CN=5F0AFA8AF3FBCB9522114C46E2ABF026200D47C2 Certificate serial: 52DDC6417D3E855EBC5E1F235B24493518C5C47F Authority key identifier: 5F:0A:FA:8A:F3:FB:CB:95:22:11:4C:46:E2:AB:F0:26:20:0D:47:C2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5F0AFA8AF3FBCB9522114C46E2ABF026200D47C2.cer Subject info access: rsync://rpki-repo.registro.br/repo/9W4ohaAvwFsdA7vujKWPEpSSK5y5gMuGkYsvUXxjCPJr/0/323830343a346566633a653030303a3a2f33362d3336203d3e20323638323936.roa Signing time: Wed 01 Apr 2026 17:40:30 +0000 ROA not before: Wed 01 Apr 2026 17:35:30 +0000 ROA not after: Wed 31 Mar 2027 17:40:30 +0000 asID: 268296 IP address blocks: 2804:4efc:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9W4ohaAvwFsdA7vujKWPEpSSK5y5gMuGkYsvUXxjCPJr/0/5F0AFA8AF3FBCB9522114C46E2ABF026200D47C2.crl rsync://rpki-repo.registro.br/repo/9W4ohaAvwFsdA7vujKWPEpSSK5y5gMuGkYsvUXxjCPJr/0/5F0AFA8AF3FBCB9522114C46E2ABF026200D47C2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5F0AFA8AF3FBCB9522114C46E2ABF026200D47C2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 08 Apr 2026 20:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:dd:c6:41:7d:3e:85:5e:bc:5e:1f:23:5b:24:49:35:18:c5:c4:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F0AFA8AF3FBCB9522114C46E2ABF026200D47C2 Validity Not Before: Apr 1 17:35:30 2026 GMT Not After : Mar 31 17:40:30 2027 GMT Subject: CN=AA562C5288AF037E3D79DD73F0AFDEB8855F7D58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:22:ff:6a:cd:1d:e6:43:08:56:34:bd:6f:0c: 07:a6:aa:40:d4:2a:7c:12:08:60:c0:c9:38:1e:a6: e2:a9:ea:5f:fb:a2:35:35:1a:f4:e0:2c:7d:98:29: ea:18:38:0f:6f:78:ef:f2:a7:93:4a:2a:16:b9:40: 45:32:f8:56:0c:f4:d6:8f:c4:2a:9c:91:e8:48:83: b2:87:e6:69:52:db:f9:26:0f:69:ba:89:62:9b:ca: 91:16:13:3a:6d:ff:d9:f6:ab:75:6a:e9:d8:be:94: 4a:a6:25:cf:91:f8:78:7c:14:5f:fd:ec:b7:72:28: 3e:91:ce:93:5d:99:5b:f9:92:05:2b:62:fb:a4:b2: b1:b3:f9:46:7c:49:02:df:94:49:e7:66:3c:0a:58: cb:8c:27:c1:51:f3:1b:48:6a:73:1e:0b:95:44:a4: 27:42:c9:d6:79:46:16:de:14:9d:0b:11:66:9e:3e: 5f:80:50:b0:dc:b7:8b:56:9a:bb:71:f7:0c:64:90: 29:31:27:80:ac:4f:f4:85:26:89:28:3e:e6:23:9f: fb:5d:1e:69:d1:64:ae:2e:08:ed:ca:b0:77:e7:d5: 63:bd:24:35:f4:c8:dc:7b:56:e8:d4:67:4e:33:55: 33:7f:22:69:69:2e:d3:fd:5b:46:f7:13:09:8d:88: 98:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:56:2C:52:88:AF:03:7E:3D:79:DD:73:F0:AF:DE:B8:85:5F:7D:58 X509v3 Authority Key Identifier: keyid:5F:0A:FA:8A:F3:FB:CB:95:22:11:4C:46:E2:AB:F0:26:20:0D:47:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9W4ohaAvwFsdA7vujKWPEpSSK5y5gMuGkYsvUXxjCPJr/0/5F0AFA8AF3FBCB9522114C46E2ABF026200D47C2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5F0AFA8AF3FBCB9522114C46E2ABF026200D47C2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9W4ohaAvwFsdA7vujKWPEpSSK5y5gMuGkYsvUXxjCPJr/0/323830343a346566633a653030303a3a2f33362d3336203d3e20323638323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:4efc:e000::/36 Signature Algorithm: sha256WithRSAEncryption 88:69:64:c4:3c:02:83:ec:a9:3b:a3:8c:fb:53:dc:28:6b:98: 94:a5:95:df:49:fe:cb:50:d6:8d:ca:a8:45:79:06:70:b4:ab: f3:50:8e:89:3c:33:5f:97:c6:84:30:15:e3:8c:e8:24:b3:e2: c8:8d:99:82:5d:1c:bd:82:89:18:2b:6e:00:f0:71:2c:04:6b: 60:70:aa:ce:68:99:c7:6c:d5:8c:df:82:cd:04:c9:18:1b:32: 7c:a8:1e:f6:21:b5:00:57:d6:4e:73:06:4a:a9:83:1b:5d:7e: b8:e5:ca:3f:d3:3c:21:e7:e6:4e:86:7c:91:a7:6d:dc:a6:2a: d9:2c:72:28:97:58:db:ea:e8:0e:42:97:f5:f1:89:03:c9:14: 90:91:e7:f9:af:92:a4:de:48:f6:5b:a4:45:9d:9c:ff:57:6e: 81:d9:68:a8:42:2b:fa:ed:8e:5f:41:ae:16:63:12:7d:51:68: 38:75:05:ac:3d:cb:6a:ba:c8:78:4d:c7:25:74:3e:8f:9e:97: 74:d4:e6:3d:73:28:ed:9e:e3:4b:6e:ad:47:7a:55:b2:79:d7: 5c:91:92:ff:aa:dc:c5:fb:66:af:d8:e2:27:1a:a1:db:21:d1: 57:14:b4:a8:39:af:d9:a6:61:99:e2:cf:cd:85:76:37:56:7e: 00:4f:ca:1b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUUt3GQX0+hV68Xh8jWyRJNRjFxH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUYwQUZBOEFGM0ZCQ0I5NTIyMTE0QzQ2RTJBQkYwMjYy MDBENDdDMjAeFw0yNjA0MDExNzM1MzBaFw0yNzAzMzExNzQwMzBaMDMxMTAvBgNV BAMTKEFBNTYyQzUyODhBRjAzN0UzRDc5REQ3M0YwQUZERUI4ODU1RjdENTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeIv9qzR3mQwhWNL1vDAemqkDU KnwSCGDAyTgepuKp6l/7ojU1GvTgLH2YKeoYOA9veO/yp5NKKha5QEUy+FYM9NaP xCqckehIg7KH5mlS2/kmD2m6iWKbypEWEzpt/9n2q3Vq6di+lEqmJc+R+Hh8FF/9 7LdyKD6RzpNdmVv5kgUrYvuksrGz+UZ8SQLflEnnZjwKWMuMJ8FR8xtIanMeC5VE pCdCydZ5RhbeFJ0LEWaePl+AULDct4tWmrtx9wxkkCkxJ4CsT/SFJokoPuYjn/td HmnRZK4uCO3KsHfn1WO9JDX0yNx7VujUZ04zVTN/ImlpLtP9W0b3EwmNiJjbAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUqlYsUoivA349ed1z8K/euIVffVgwHwYDVR0j BBgwFoAUXwr6ivP7y5UiEUxG4qvwJiANR8IwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOVc0b2hhQXZ3RnNkQTd2dWpLV1BFcFNTSzV5NWdNdUdrWXN2VVh4akNQ SnIvMC81RjBBRkE4QUYzRkJDQjk1MjIxMTRDNDZFMkFCRjAyNjIwMEQ0N0MyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVGMEFGQThBRjNGQkNCOTUy MjExNEM0NkUyQUJGMDI2MjAwRDQ3QzIuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlXNG9oYUF2d0ZzZEE3dnVqS1dQRXBTU0s1eTVnTXVHa1lzdlVYeGpDUEpyLzAv MzIzODMwMzQzYTM0NjU2NjYzM2E2NTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzODMyMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgETvzgMA0GCSqGSIb3DQEBCwUA A4IBAQCIaWTEPAKD7Kk7o4z7U9woa5iUpZXfSf7LUNaNyqhFeQZwtKvzUI6JPDNf l8aEMBXjjOgks+LIjZmCXRy9gokYK24A8HEsBGtgcKrOaJnHbNWM34LNBMkYGzJ8 qB72IbUAV9ZOcwZKqYMbXX645co/0zwh5+ZOhnyRp23cpirZLHIol1jb6ugOQpf1 8YkDyRSQkef5r5Kk3kj2W6RFnZz/V26B2WioQiv67Y5fQa4WYxJ9UWg4dQWsPctq ush4TccldD6Pnpd01OY9cyjtnuNLbq1HelWyeddckZL/qtzF+2av2OInGqHbIdFX FLSoOa/ZpmGZ4s/NhXY3Vn4AT8ob -----END CERTIFICATE-----Generated at Wed Apr 8 10:38:55 2026 by rpki-client