$ rpki-client -vvf rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234322e302f32342d3234203d3e20323635333834.roa File: 3137302e3235342e3234322e302f32342d3234203d3e20323635333834.roa (raw, json) Hash identifier: U89zGa9ZEEuHeMg/HBut4iVrzxCseMKsIgWqXS76sKo= Subject key identifier: 42:6E:22:99:C0:F2:3B:AD:C9:27:B3:80:29:FE:C2:BD:3A:83:61:02 Certificate issuer: /CN=C9FEAA3502E80979EEEA85C8EBB252880843E762 Certificate serial: 0AC98A79C9051474A260295DCFE99BC99416C665 Authority key identifier: C9:FE:AA:35:02:E8:09:79:EE:EA:85:C8:EB:B2:52:88:08:43:E7:62 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C9FEAA3502E80979EEEA85C8EBB252880843E762.cer Subject info access: rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234322e302f32342d3234203d3e20323635333834.roa Signing time: Tue 07 Apr 2026 19:08:58 +0000 ROA not before: Tue 07 Apr 2026 19:03:58 +0000 ROA not after: Tue 06 Apr 2027 19:08:58 +0000 asID: 265384 IP address blocks: 170.254.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/C9FEAA3502E80979EEEA85C8EBB252880843E762.crl rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/C9FEAA3502E80979EEEA85C8EBB252880843E762.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C9FEAA3502E80979EEEA85C8EBB252880843E762.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 10 Apr 2026 05:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:c9:8a:79:c9:05:14:74:a2:60:29:5d:cf:e9:9b:c9:94:16:c6:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9FEAA3502E80979EEEA85C8EBB252880843E762 Validity Not Before: Apr 7 19:03:58 2026 GMT Not After : Apr 6 19:08:58 2027 GMT Subject: CN=426E2299C0F23BADC927B38029FEC2BD3A836102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:53:84:06:b0:34:8a:fa:6b:df:26:d5:c2:7e: cb:0a:91:7e:7b:2b:43:21:87:92:97:73:a0:53:5b: 69:6b:7a:72:6a:9f:bd:c9:98:3f:43:02:04:78:fd: 82:5c:82:ae:71:8e:20:e0:b2:46:45:e2:db:5b:8f: 44:01:81:c7:5a:92:51:e9:33:8a:49:f4:58:19:f7: f7:6e:8d:3b:c6:eb:b0:cc:eb:e0:52:f7:f9:11:44: 27:78:0e:fc:75:7e:4a:51:65:d7:f6:1a:43:f1:42: 86:28:16:ed:32:90:69:d4:77:a3:61:73:43:19:c5: 31:0a:7a:f3:42:f5:2b:62:11:8b:d6:f3:7e:15:96: 07:3f:2d:e8:73:ec:e7:a5:d4:98:b2:d0:84:47:9b: 8f:b7:27:b4:bd:7d:99:86:9e:d9:3b:88:ba:58:be: 39:c2:d3:04:4b:c4:91:1e:0f:7f:67:3d:80:17:f7: b4:46:b9:99:73:0c:73:46:81:c5:7c:7a:a5:8b:e3: 19:86:c6:11:22:4e:19:8f:2d:b3:0a:53:d0:7b:05: 80:9f:56:56:ee:42:2a:f6:d6:d4:8a:8c:da:7d:c5: 6d:14:60:29:91:97:cd:91:cd:ce:08:bc:02:02:2f: 2c:1f:42:b3:1d:20:ba:fa:4f:c1:3c:ee:1d:11:03: 7e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6E:22:99:C0:F2:3B:AD:C9:27:B3:80:29:FE:C2:BD:3A:83:61:02 X509v3 Authority Key Identifier: keyid:C9:FE:AA:35:02:E8:09:79:EE:EA:85:C8:EB:B2:52:88:08:43:E7:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/C9FEAA3502E80979EEEA85C8EBB252880843E762.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C9FEAA3502E80979EEEA85C8EBB252880843E762.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234322e302f32342d3234203d3e20323635333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.254.242.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:b2:52:16:6b:ee:20:ff:40:01:15:26:e7:3e:1c:80:e9:02: 3d:e9:3b:68:87:97:0a:0c:b6:58:32:06:22:92:1c:11:b0:be: a3:e7:ef:7c:2c:bf:14:63:df:47:48:d3:85:66:7f:53:80:6c: 85:31:fb:c0:2e:08:35:fa:88:86:85:d1:9c:74:71:e8:cd:55: 37:a3:71:55:bc:f8:e5:15:a7:ad:d5:16:92:c1:78:22:1f:c2: d9:fd:d9:76:e7:e9:33:17:5f:12:fa:67:b5:8e:6a:ef:0f:70: 64:67:53:77:2c:84:ae:b2:5b:fc:70:1e:fd:67:27:7c:ca:75: e3:5c:8f:c4:f1:bd:5a:fe:6b:83:99:e9:04:dc:f2:ac:e8:e9: d4:a7:78:a4:9f:3b:68:99:4a:28:42:62:22:d1:86:48:ac:ad: 66:aa:68:82:a6:21:7f:42:e8:05:95:ef:05:70:cc:44:e3:9c: 3f:da:40:5b:7b:c7:17:75:8a:15:7a:cd:9a:75:d9:f6:11:12: 7c:70:ab:f4:53:79:b0:4e:b8:5c:f1:68:bb:c8:20:18:b2:01: d1:1c:97:ae:3a:59:33:fe:0b:2d:a5:59:83:ad:e4:a1:06:6b: 34:33:c4:e2:0d:b8:43:34:3b:70:b4:27:8c:2d:e9:3f:83:56: 57:33:84:a2 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUCsmKeckFFHSiYCldz+mbyZQWxmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlGRUFBMzUwMkU4MDk3OUVFRUE4NUM4RUJCMjUyODgw ODQzRTc2MjAeFw0yNjA0MDcxOTAzNThaFw0yNzA0MDYxOTA4NThaMDMxMTAvBgNV BAMTKDQyNkUyMjk5QzBGMjNCQURDOTI3QjM4MDI5RkVDMkJEM0E4MzYxMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQU4QGsDSK+mvfJtXCfssKkX57 K0Mhh5KXc6BTW2lrenJqn73JmD9DAgR4/YJcgq5xjiDgskZF4ttbj0QBgcdaklHp M4pJ9FgZ9/dujTvG67DM6+BS9/kRRCd4Dvx1fkpRZdf2GkPxQoYoFu0ykGnUd6Nh c0MZxTEKevNC9StiEYvW834Vlgc/Lehz7Oel1Jiy0IRHm4+3J7S9fZmGntk7iLpY vjnC0wRLxJEeD39nPYAX97RGuZlzDHNGgcV8eqWL4xmGxhEiThmPLbMKU9B7BYCf VlbuQir21tSKjNp9xW0UYCmRl82Rzc4IvAICLywfQrMdILr6T8E87h0RA35zAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUQm4imcDyO63JJ7OAKf7CvTqDYQIwHwYDVR0j BBgwFoAUyf6qNQLoCXnu6oXI67JSiAhD52IwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMk5QOGNQRDQ0VGp3ZlBXUER2cFJVM3pTeGdZSjlZVkVXQ2phaWdmY2VR cHQvMC9DOUZFQUEzNTAyRTgwOTc5RUVFQTg1QzhFQkIyNTI4ODA4NDNFNzYyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0M5RkVBQTM1MDJFODA5NzlF RUVBODVDOEVCQjI1Mjg4MDg0M0U3NjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJOUDhjUEQ0NFRqd2ZQV1BEdnBSVTN6U3hnWUo5WVZFV0NqYWlnZmNlUXB0LzAv MzEzNzMwMmUzMjM1MzQyZTMyMzQzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMzMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKr+8jANBgkqhkiG9w0BAQsFAAOCAQEAHbJS FmvuIP9AARUm5z4cgOkCPek7aIeXCgy2WDIGIpIcEbC+o+fvfCy/FGPfR0jThWZ/ U4BshTH7wC4INfqIhoXRnHRx6M1VN6NxVbz45RWnrdUWksF4Ih/C2f3ZdufpMxdf EvpntY5q7w9wZGdTdyyErrJb/HAe/WcnfMp141yPxPG9Wv5rg5npBNzyrOjp1Kd4 pJ87aJlKKEJiItGGSKytZqpogqYhf0LoBZXvBXDMROOcP9pAW3vHF3WKFXrNmnXZ 9hESfHCr9FN5sE64XPFou8ggGLIB0RyXrjpZM/4LLaVZg63koQZrNDPE4g24QzQ7 cLQnjC3pP4NWVzOEog== -----END CERTIFICATE-----Generated at Thu Apr 9 22:02:45 2026 by rpki-client