$ rpki-client -vvf rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/34352e3136302e3137302e302f32342d3234203d3e20323638343235.roa File: 34352e3136302e3137302e302f32342d3234203d3e20323638343235.roa (raw, json) Hash identifier: JBwbwCCGZGQd/PIJAMMZxb1ok9kX+gp8BRb2/GMyRqc= Subject key identifier: 41:DB:82:52:6D:28:26:EF:C4:B7:DA:7A:61:54:42:B8:94:03:BF:F4 Certificate issuer: /CN=E968F08C3BD0A821112BDBD86914ED5964A1FF29 Certificate serial: 3C8C4859C37C8F6CF01B9C8189694B49D0CB1CB4 Authority key identifier: E9:68:F0:8C:3B:D0:A8:21:11:2B:DB:D8:69:14:ED:59:64:A1:FF:29 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E968F08C3BD0A821112BDBD86914ED5964A1FF29.cer Subject info access: rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/34352e3136302e3137302e302f32342d3234203d3e20323638343235.roa Signing time: Tue 07 Apr 2026 19:12:17 +0000 ROA not before: Tue 07 Apr 2026 19:07:17 +0000 ROA not after: Tue 06 Apr 2027 19:12:17 +0000 asID: 268425 IP address blocks: 45.160.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/E968F08C3BD0A821112BDBD86914ED5964A1FF29.crl rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/E968F08C3BD0A821112BDBD86914ED5964A1FF29.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E968F08C3BD0A821112BDBD86914ED5964A1FF29.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 10 Apr 2026 13:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:8c:48:59:c3:7c:8f:6c:f0:1b:9c:81:89:69:4b:49:d0:cb:1c:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E968F08C3BD0A821112BDBD86914ED5964A1FF29 Validity Not Before: Apr 7 19:07:17 2026 GMT Not After : Apr 6 19:12:17 2027 GMT Subject: CN=41DB82526D2826EFC4B7DA7A615442B89403BFF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:76:f2:13:ff:64:2e:0e:22:1b:c3:a3:2b:3d: f4:d4:93:0a:d9:2e:5c:a7:d7:ce:09:49:4e:b0:5b: 41:5b:5d:be:fb:e7:60:02:00:5a:3b:b2:bb:15:6c: a0:4c:0a:35:e7:ea:21:31:9d:05:7f:4f:98:e0:23: 9d:57:ce:49:8c:df:68:02:51:71:07:6b:fc:e9:a1: 34:c0:c0:0e:ec:cf:8a:50:3a:1d:05:5f:f0:a0:51: 44:7e:b0:b3:8d:77:d3:29:8d:9e:88:7f:4b:ba:22: f5:0a:98:59:54:b3:03:05:7d:ef:e3:a7:a5:8c:fe: b7:ed:49:7a:ae:d6:15:fe:33:10:a3:78:ee:e3:2e: 31:78:33:f2:e2:f0:62:b1:04:a2:52:e8:35:d7:2a: 1a:1c:9b:79:35:50:ed:f3:b5:bb:13:90:0f:75:fb: 2b:ba:7d:46:25:26:9a:f4:9c:ee:cf:ff:d2:d1:2c: 8d:e9:e1:9c:75:51:2d:fb:4e:56:1f:cc:77:61:e8: cd:66:21:f8:7b:99:18:4c:92:cf:d1:62:47:a5:28: 6d:7f:df:48:20:7c:ad:da:0c:de:39:87:4a:f0:a7: 11:63:12:47:e0:be:3d:f7:27:d0:5c:58:46:2b:15: 09:63:7d:71:b8:63:d8:f9:b1:9d:a6:bf:5f:d8:cd: ec:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:DB:82:52:6D:28:26:EF:C4:B7:DA:7A:61:54:42:B8:94:03:BF:F4 X509v3 Authority Key Identifier: keyid:E9:68:F0:8C:3B:D0:A8:21:11:2B:DB:D8:69:14:ED:59:64:A1:FF:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/E968F08C3BD0A821112BDBD86914ED5964A1FF29.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E968F08C3BD0A821112BDBD86914ED5964A1FF29.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/34352e3136302e3137302e302f32342d3234203d3e20323638343235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.160.170.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:96:53:cd:ff:ec:19:29:29:d8:cf:99:d1:1b:3e:6c:1e:2b: 88:8f:b5:95:88:a4:ac:c8:ef:be:c2:fd:ce:aa:8f:33:93:57: bf:f6:5e:7d:a0:ea:37:83:34:3b:e3:a9:30:2e:39:1a:e4:2b: 99:d2:57:ce:c2:e5:2e:51:ab:79:f5:70:20:3f:c7:66:8e:92: 8c:fa:b6:1f:42:39:91:ab:33:a3:d6:20:f8:fe:4a:b0:38:df: 41:25:d3:a2:36:fb:db:23:9a:e3:d8:4a:45:26:02:41:b7:85: 34:cb:9d:fb:05:63:72:4a:6b:36:96:a3:01:69:38:f6:f6:de: 8c:e3:10:f9:8f:7c:06:19:36:a9:3a:31:23:36:9e:b8:75:f3: 36:2e:79:33:bb:92:ae:09:f6:f1:58:6d:c9:bf:49:0a:01:74: bc:16:0a:49:75:bf:ee:8c:b4:55:e7:56:90:67:f3:f0:bd:02: 05:da:b2:7a:e4:bb:42:4d:09:96:08:b8:42:93:96:b9:24:ba: 3a:4d:d0:7d:de:d9:3f:a6:5c:f0:de:34:29:c1:ac:a5:36:7d: a0:20:69:80:0c:26:cf:8f:f4:ae:e6:1f:ba:8d:b7:c2:73:be: 6e:1a:cb:c7:56:ec:ef:d8:89:66:e1:7d:61:fe:46:f3:25:3c: ca:f1:dc:29 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUPIxIWcN8j2zwG5yBiWlLSdDLHLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTk2OEYwOEMzQkQwQTgyMTExMkJEQkQ4NjkxNEVENTk2 NEExRkYyOTAeFw0yNjA0MDcxOTA3MTdaFw0yNzA0MDYxOTEyMTdaMDMxMTAvBgNV BAMTKDQxREI4MjUyNkQyODI2RUZDNEI3REE3QTYxNTQ0MkI4OTQwM0JGRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5dvIT/2QuDiIbw6MrPfTUkwrZ Llyn184JSU6wW0FbXb7752ACAFo7srsVbKBMCjXn6iExnQV/T5jgI51XzkmM32gC UXEHa/zpoTTAwA7sz4pQOh0FX/CgUUR+sLONd9MpjZ6If0u6IvUKmFlUswMFfe/j p6WM/rftSXqu1hX+MxCjeO7jLjF4M/Li8GKxBKJS6DXXKhocm3k1UO3ztbsTkA91 +yu6fUYlJpr0nO7P/9LRLI3p4Zx1US37TlYfzHdh6M1mIfh7mRhMks/RYkelKG1/ 30ggfK3aDN45h0rwpxFjEkfgvj33J9BcWEYrFQljfXG4Y9j5sZ2mv1/Yzex7AgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUQduCUm0oJu/Et9p6YVRCuJQDv/QwHwYDVR0j BBgwFoAU6WjwjDvQqCERK9vYaRTtWWSh/ykwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMlAyVzVUR3liU0Y3QVdXSzlBS2tBZE5Ob0JTVnVmeWp5NjMydXZYU0NN Vk4vMC9FOTY4RjA4QzNCRDBBODIxMTEyQkRCRDg2OTE0RUQ1OTY0QTFGRjI5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0U5NjhGMDhDM0JEMEE4MjEx MTJCREJEODY5MTRFRDU5NjRBMUZGMjkuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJQMlc1VEd5YlNGN0FXV0s5QUtrQWROTm9CU1Z1ZnlqeTYzMnV2WFNDTVZOLzAv MzQzNTJlMzEzNjMwMmUzMTM3MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2 MzgzNDMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAAtoKowDQYJKoZIhvcNAQELBQADggEBADyWU83/ 7BkpKdjPmdEbPmweK4iPtZWIpKzI777C/c6qjzOTV7/2Xn2g6jeDNDvjqTAuORrk K5nSV87C5S5Rq3n1cCA/x2aOkoz6th9COZGrM6PWIPj+SrA430El06I2+9sjmuPY SkUmAkG3hTTLnfsFY3JKazaWowFpOPb23ozjEPmPfAYZNqk6MSM2nrh18zYueTO7 kq4J9vFYbcm/SQoBdLwWCkl1v+6MtFXnVpBn8/C9AgXasnrku0JNCZYIuEKTlrkk ujpN0H3e2T+mXPDeNCnBrKU2faAgaYAMJs+P9K7mH7qNt8Jzvm4ay8dW7O/YiWbh fWH+RvMlPMrx3Ck= -----END CERTIFICATE-----Generated at Thu Apr 9 15:55:22 2026 by rpki-client