$ rpki-client -vvf rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/323830343a313266633a333030303a3a2f34302d3430203d3e20323633353038.roa File: 323830343a313266633a333030303a3a2f34302d3430203d3e20323633353038.roa (raw, json) Hash identifier: 9aFz8Nf5tB7q/JUUfOgP9I+BjXffX1wzkEO+4ZfDT7M= Subject key identifier: FE:22:36:67:0A:12:1E:1E:75:CA:07:77:73:66:A8:E7:49:87:99:3E Certificate issuer: /CN=028CDE0E764AA87F51C83E2608B8562B72B4E204 Certificate serial: 444F292E2DA76A5E3D2FD667CE8C51FEC5C67E5C Authority key identifier: 02:8C:DE:0E:76:4A:A8:7F:51:C8:3E:26:08:B8:56:2B:72:B4:E2:04 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer Subject info access: rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/323830343a313266633a333030303a3a2f34302d3430203d3e20323633353038.roa Signing time: Thu 29 Jan 2026 16:18:13 +0000 ROA not before: Thu 29 Jan 2026 16:13:13 +0000 ROA not after: Thu 28 Jan 2027 16:18:13 +0000 asID: 263508 IP address blocks: 2804:12fc:3000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.crl rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 24 Feb 2026 03:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:4f:29:2e:2d:a7:6a:5e:3d:2f:d6:67:ce:8c:51:fe:c5:c6:7e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028CDE0E764AA87F51C83E2608B8562B72B4E204 Validity Not Before: Jan 29 16:13:13 2026 GMT Not After : Jan 28 16:18:13 2027 GMT Subject: CN=FE2236670A121E1E75CA07777366A8E74987993E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6c:b6:36:eb:59:a3:92:47:ed:42:06:65:10: db:55:73:33:13:e2:92:97:55:10:5e:fc:74:c9:c0: 8b:bf:4d:fe:dc:83:0f:2c:71:cf:93:2f:6a:12:25: 98:a8:56:1e:e2:d8:43:85:15:38:82:c1:0f:ce:0e: 52:31:ed:81:58:6e:c9:69:97:7e:4b:e7:a1:f6:da: 8e:76:31:b9:5e:2e:62:d4:2a:26:5a:1f:e8:ba:cf: 56:8b:ab:21:91:05:e2:91:ab:cb:6a:40:c0:59:b9: c3:0a:cf:9b:c4:dc:99:ba:18:b3:e1:d9:a6:5f:31: 5a:50:64:48:28:0c:be:d8:81:e7:53:65:c0:6b:60: 69:08:21:cb:d6:54:7a:64:4f:fc:b5:e7:fd:ee:9c: 36:c2:05:ad:c1:f8:5b:5b:73:0f:07:70:25:ed:1a: 86:1a:07:42:2b:35:e5:33:61:9a:6d:60:f6:63:a7: c6:79:69:a9:29:cc:38:be:5d:0a:6a:f5:a7:ae:cc: e8:b7:27:dd:5f:7a:c2:c3:1d:ae:a1:a7:00:16:cb: 2f:32:fe:5d:de:f3:7a:97:69:7f:a5:d9:cb:1a:60: 77:94:0c:60:bd:04:fa:6f:17:81:7d:30:1a:e4:68: 02:ee:75:a8:4f:e2:41:d3:f3:f1:08:e7:3a:2f:45: fe:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:22:36:67:0A:12:1E:1E:75:CA:07:77:73:66:A8:E7:49:87:99:3E X509v3 Authority Key Identifier: keyid:02:8C:DE:0E:76:4A:A8:7F:51:C8:3E:26:08:B8:56:2B:72:B4:E2:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/323830343a313266633a333030303a3a2f34302d3430203d3e20323633353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:12fc:3000::/40 Signature Algorithm: sha256WithRSAEncryption 1f:37:25:8b:91:1e:26:8b:fe:e4:f7:1d:6a:33:51:00:e2:6a: a5:9c:84:65:f7:b2:97:81:ad:54:b4:c3:c3:21:a8:84:f0:f0: ea:96:06:57:a5:32:e8:29:1e:1f:f1:a1:84:79:69:52:a4:64: 9b:b5:d0:9d:ac:1a:7b:ae:e4:97:32:92:8a:af:19:19:5b:9b: fc:64:66:b5:dd:de:0f:75:fe:63:0d:c0:43:c7:8f:1d:b8:c1: 3e:ec:be:9e:89:d3:29:c0:6a:f0:6e:19:80:9d:95:0e:4c:b6: 72:a2:41:d0:3d:8b:c8:fe:68:e2:49:d9:b2:54:c0:25:03:82: 09:9f:01:49:6c:70:6b:e2:94:34:1f:73:07:18:23:0b:98:c5: 9a:de:f4:ba:c1:1d:31:ff:a9:a3:ad:1e:30:dc:e4:fa:9d:c9: b5:b6:0b:67:df:51:d3:75:30:50:46:b5:cc:03:d4:17:20:60: 78:fc:24:3a:7c:68:a3:0f:b4:b4:4a:c1:4b:4e:c1:40:e6:5d: 7c:53:db:5b:31:59:fe:d0:d5:3c:da:2f:aa:20:97:d4:f4:75: 5e:fc:1e:72:e6:cc:38:70:9f:66:e2:cf:76:c9:80:d1:ea:f9: 44:4b:55:3e:04:26:f4:c2:15:6d:73:4b:eb:7e:85:e0:ed:6b: 08:d3:c2:c7 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIURE8pLi2nal49L9ZnzoxR/sXGflwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI4Q0RFMEU3NjRBQTg3RjUxQzgzRTI2MDhCODU2MkI3 MkI0RTIwNDAeFw0yNjAxMjkxNjEzMTNaFw0yNzAxMjgxNjE4MTNaMDMxMTAvBgNV BAMTKEZFMjIzNjY3MEExMjFFMUU3NUNBMDc3NzczNjZBOEU3NDk4Nzk5M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUbLY261mjkkftQgZlENtVczMT 4pKXVRBe/HTJwIu/Tf7cgw8scc+TL2oSJZioVh7i2EOFFTiCwQ/ODlIx7YFYbslp l35L56H22o52MbleLmLUKiZaH+i6z1aLqyGRBeKRq8tqQMBZucMKz5vE3Jm6GLPh 2aZfMVpQZEgoDL7YgedTZcBrYGkIIcvWVHpkT/y15/3unDbCBa3B+Ftbcw8HcCXt GoYaB0IrNeUzYZptYPZjp8Z5aakpzDi+XQpq9aeuzOi3J91fesLDHa6hpwAWyy8y /l3e83qXaX+l2csaYHeUDGC9BPpvF4F9MBrkaALudahP4kHT8/EI5zovRf7DAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU/iI2ZwoSHh51ygd3c2ao50mHmT4wHwYDVR0j BBgwFoAUAozeDnZKqH9RyD4mCLhWK3K04gQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vN3p0UG43emNTOURlSHlraVhQRGVSYThNNk1FWjZQM3gyNXRzWnlWRDVD Vm4vMC8wMjhDREUwRTc2NEFBODdGNTFDODNFMjYwOEI4NTYyQjcyQjRFMjA0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAyOENERTBFNzY0QUE4N0Y1 MUM4M0UyNjA4Qjg1NjJCNzJCNEUyMDQuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzd6dFBuN3pjUzlEZUh5a2lYUERlUmE4TTZNRVo2UDN4MjV0c1p5VkQ1Q1ZuLzAv MzIzODMwMzQzYTMxMzI2NjYzM2EzMzMwMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNk M2UyMDMyMzYzMzM1MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACgEEvwwMA0GCSqGSIb3DQEBCwUA A4IBAQAfNyWLkR4mi/7k9x1qM1EA4mqlnIRl97KXga1UtMPDIaiE8PDqlgZXpTLo KR4f8aGEeWlSpGSbtdCdrBp7ruSXMpKKrxkZW5v8ZGa13d4Pdf5jDcBDx48duME+ 7L6eidMpwGrwbhmAnZUOTLZyokHQPYvI/mjiSdmyVMAlA4IJnwFJbHBr4pQ0H3MH GCMLmMWa3vS6wR0x/6mjrR4w3OT6ncm1tgtn31HTdTBQRrXMA9QXIGB4/CQ6fGij D7S0SsFLTsFA5l18U9tbMVn+0NU82i+qIJfU9HVe/B5y5sw4cJ9m4s92yYDR6vlE S1U+BCb0whVtc0vrfoXg7WsI08LH -----END CERTIFICATE-----Generated at Mon Feb 23 05:44:29 2026 by rpki-client