$ rpki-client -vvf rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/3136382e3232382e3232302e302f32342d3234203d3e20323634393135.roa File: 3136382e3232382e3232302e302f32342d3234203d3e20323634393135.roa (raw, json) Hash identifier: 5laV255IHJuhWwYzF7CM2fbU79xFqNC5/O/lkLIxdSY= Subject key identifier: 2D:48:76:8F:FA:21:49:81:B4:8E:BB:0F:EB:BE:5A:FA:5A:FB:1A:A0 Certificate issuer: /CN=97A621E397E2627D02EB77E74594261CF2F5C6EC Certificate serial: 1C8B1FF6BF964D9567A387BD4C6EAB4CBAD61AAD Authority key identifier: 97:A6:21:E3:97:E2:62:7D:02:EB:77:E7:45:94:26:1C:F2:F5:C6:EC Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/97A621E397E2627D02EB77E74594261CF2F5C6EC.cer Subject info access: rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/3136382e3232382e3232302e302f32342d3234203d3e20323634393135.roa Signing time: Mon 30 Mar 2026 16:00:47 +0000 ROA not before: Mon 30 Mar 2026 15:55:47 +0000 ROA not after: Mon 29 Mar 2027 16:00:47 +0000 asID: 264915 IP address blocks: 168.228.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/97A621E397E2627D02EB77E74594261CF2F5C6EC.crl rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/97A621E397E2627D02EB77E74594261CF2F5C6EC.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/97A621E397E2627D02EB77E74594261CF2F5C6EC.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 10 Apr 2026 05:23:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:8b:1f:f6:bf:96:4d:95:67:a3:87:bd:4c:6e:ab:4c:ba:d6:1a:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97A621E397E2627D02EB77E74594261CF2F5C6EC Validity Not Before: Mar 30 15:55:47 2026 GMT Not After : Mar 29 16:00:47 2027 GMT Subject: CN=2D48768FFA214981B48EBB0FEBBE5AFA5AFB1AA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:da:dd:0d:cb:9e:63:dc:b3:1e:23:3b:8f:d7: e8:fd:bc:3d:5b:c7:4f:ed:da:b1:6a:83:33:d4:7e: ed:b3:d7:61:9f:39:39:d9:de:a5:2f:ca:6d:a8:e6: 97:ca:ec:a7:1a:46:b1:ca:1a:37:b6:df:0a:d1:af: 8e:b0:9e:5d:03:41:1f:6c:e9:7a:4e:5e:0d:32:48: 28:6a:20:d6:06:c6:27:40:92:ca:62:a7:7d:60:10: a0:cb:9d:af:9e:cc:d7:8c:ac:c7:e8:02:0f:77:95: 0c:00:4c:ff:f9:b8:32:a6:61:34:92:e4:1d:6d:30: bf:38:8d:3e:c5:6e:8e:25:51:dd:79:e2:b1:ef:88: ee:76:f1:97:10:f9:fb:0b:5d:1b:56:3f:5d:9c:6f: 78:8d:2d:77:30:5d:6f:4b:6b:43:59:5a:2f:9f:c2: ee:66:ef:1d:bf:9e:53:0b:69:53:33:c5:33:6d:43: d7:76:cb:d6:ef:f5:69:90:22:3b:87:d7:5a:b1:95: 6a:b9:ae:a2:55:d0:dd:37:94:f5:4e:55:52:7a:6e: 7c:68:62:76:bc:41:ba:c2:6d:d9:ec:85:f7:88:b5: 5c:86:10:6a:e6:10:89:75:7c:2b:c7:2f:b8:a0:59: 3f:6d:7d:5b:a5:ca:a9:44:f0:e8:86:69:e4:b8:d8: bc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:48:76:8F:FA:21:49:81:B4:8E:BB:0F:EB:BE:5A:FA:5A:FB:1A:A0 X509v3 Authority Key Identifier: keyid:97:A6:21:E3:97:E2:62:7D:02:EB:77:E7:45:94:26:1C:F2:F5:C6:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/97A621E397E2627D02EB77E74594261CF2F5C6EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/97A621E397E2627D02EB77E74594261CF2F5C6EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/5CzER6wAgRwvETMZkorbqLxMjXRycFMYLmpeGKtCK7kc/0/3136382e3232382e3232302e302f32342d3234203d3e20323634393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.228.220.0/24 Signature Algorithm: sha256WithRSAEncryption 14:ac:b2:1a:9b:15:44:82:01:b2:85:e2:c8:35:f2:79:3c:53: f6:50:e7:d9:fd:6e:56:99:30:05:47:31:0d:cf:0d:f1:d5:33: 65:0a:d2:71:06:5c:34:77:cd:01:1e:89:15:6e:ff:af:e9:e5: 87:ee:25:a4:f9:5d:4a:0d:99:af:14:f2:16:ef:54:d9:b0:56: d7:7f:ef:50:09:3f:af:92:a6:11:6c:17:25:1d:2f:6d:ae:ca: 67:bf:6d:95:bc:56:5b:bd:f5:07:cc:6e:10:6a:d2:3d:f2:ed: 27:3d:44:40:51:99:a2:3e:78:5a:d6:1e:a9:14:7f:71:25:5e: e8:b1:91:cb:3a:b3:f7:21:90:f0:23:79:8a:db:01:31:07:5a: 82:e8:c5:33:a8:5d:95:00:9a:c9:8c:25:df:a3:0b:57:d3:f9: 12:b2:b1:55:e7:12:f0:ad:8f:01:b0:ad:f1:49:fe:1d:92:59: ac:c7:98:4d:1d:6e:a5:db:3f:4b:5f:82:40:8f:b7:5f:5d:d8: c2:b6:86:2e:02:04:8e:09:cb:c7:38:88:c5:d0:37:b3:48:7f: 53:b0:fd:f2:d4:8b:02:99:93:a2:41:5b:7d:c8:ef:25:87:b3: ca:fd:d7:46:4c:75:be:0c:5e:4f:92:ec:d0:b8:e4:24:1b:c4: 9b:e2:c9:f1 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUHIsf9r+WTZVno4e9TG6rTLrWGq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTdBNjIxRTM5N0UyNjI3RDAyRUI3N0U3NDU5NDI2MUNG MkY1QzZFQzAeFw0yNjAzMzAxNTU1NDdaFw0yNzAzMjkxNjAwNDdaMDMxMTAvBgNV BAMTKDJENDg3NjhGRkEyMTQ5ODFCNDhFQkIwRkVCQkU1QUZBNUFGQjFBQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC72t0Ny55j3LMeIzuP1+j9vD1b x0/t2rFqgzPUfu2z12GfOTnZ3qUvym2o5pfK7KcaRrHKGje23wrRr46wnl0DQR9s 6XpOXg0ySChqINYGxidAkspip31gEKDLna+ezNeMrMfoAg93lQwATP/5uDKmYTSS 5B1tML84jT7Fbo4lUd154rHviO528ZcQ+fsLXRtWP12cb3iNLXcwXW9La0NZWi+f wu5m7x2/nlMLaVMzxTNtQ9d2y9bv9WmQIjuH11qxlWq5rqJV0N03lPVOVVJ6bnxo Yna8QbrCbdnshfeItVyGEGrmEIl1fCvHL7igWT9tfVulyqlE8OiGaeS42LxbAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQULUh2j/ohSYG0jrsP675a+lr7GqAwHwYDVR0j BBgwFoAUl6Yh45fiYn0C63fnRZQmHPL1xuwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNUN6RVI2d0FnUnd2RVRNWmtvcmJxTHhNalhSeWNGTVlMbXBlR0t0Q0s3 a2MvMC85N0E2MjFFMzk3RTI2MjdEMDJFQjc3RTc0NTk0MjYxQ0YyRjVDNkVDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzk3QTYyMUUzOTdFMjYyN0Qw MkVCNzdFNzQ1OTQyNjFDRjJGNUM2RUMuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzVDekVSNndBZ1J3dkVUTVprb3JicUx4TWpYUnljRk1ZTG1wZUdLdENLN2tjLzAv MzEzNjM4MmUzMjMyMzgyZTMyMzIzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNDM5MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKjk3DANBgkqhkiG9w0BAQsFAAOCAQEAFKyy GpsVRIIBsoXiyDXyeTxT9lDn2f1uVpkwBUcxDc8N8dUzZQrScQZcNHfNAR6JFW7/ r+nlh+4lpPldSg2ZrxTyFu9U2bBW13/vUAk/r5KmEWwXJR0vba7KZ79tlbxWW731 B8xuEGrSPfLtJz1EQFGZoj54WtYeqRR/cSVe6LGRyzqz9yGQ8CN5itsBMQdagujF M6hdlQCayYwl36MLV9P5ErKxVecS8K2PAbCt8Un+HZJZrMeYTR1upds/S1+CQI+3 X13YwraGLgIEjgnLxziIxdA3s0h/U7D98tSLApmTokFbfcjvJYezyv3XRkx1vgxe T5Ls0LjkJBvEm+LJ8Q== -----END CERTIFICATE-----Generated at Thu Apr 9 16:44:48 2026 by rpki-client