$ rpki-client -vvf rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a316430313a3a2f34382d3438203d3e20323632373239.roa File: 323830343a313664383a316430313a3a2f34382d3438203d3e20323632373239.roa (raw, json) Hash identifier: qnLfzACJZEmclewic9A6s0kpKB4t4qLWSrlan+HTvcE= Subject key identifier: BD:1D:47:2D:F1:12:9C:36:60:1E:EF:9D:8B:86:F2:DA:C4:5C:9B:D2 Certificate issuer: /CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Certificate serial: 2C3C9E216674F3453FBCCA0C46D8C0128F2555C0 Authority key identifier: B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject info access: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a316430313a3a2f34382d3438203d3e20323632373239.roa Signing time: Mon 18 May 2026 15:07:58 +0000 ROA not before: Mon 18 May 2026 15:02:58 +0000 ROA not after: Mon 17 May 2027 15:07:58 +0000 asID: 262729 IP address blocks: 2804:16d8:1d01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 25 May 2026 15:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:3c:9e:21:66:74:f3:45:3f:bc:ca:0c:46:d8:c0:12:8f:25:55:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Validity Not Before: May 18 15:02:58 2026 GMT Not After : May 17 15:07:58 2027 GMT Subject: CN=BD1D472DF1129C36601EEF9D8B86F2DAC45C9BD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:47:00:02:7a:1c:09:78:de:d4:cf:f4:5e:36: cf:e4:03:e1:93:03:ca:cc:42:ab:b6:18:4a:69:be: da:02:1c:45:f5:b6:d8:42:bf:02:96:1b:b8:7c:22: ac:44:f0:13:86:78:50:e3:be:2d:77:5e:6f:03:6e: 50:ee:96:ab:8e:20:74:ea:d3:e0:83:6b:d9:4d:6f: 97:a8:d4:8f:71:ed:33:3e:1a:02:f7:20:d3:04:05: 97:73:07:53:98:2d:36:bd:b0:fe:96:fc:20:27:0f: 47:50:f8:d4:d6:13:7c:31:1c:53:09:a2:45:0a:09: d9:cf:ce:04:e0:68:1b:dc:62:ce:af:0a:0b:9b:e3: 71:b6:aa:71:46:93:37:61:71:ad:51:b7:44:c7:09: 0b:76:93:68:bc:d2:40:ad:9d:6b:7f:21:5a:7e:7a: f6:79:8c:7a:d1:62:99:f3:27:ea:bc:2a:df:da:50: 33:e9:3a:7a:6b:e7:4c:84:e0:d5:76:ef:c2:f9:c0: 10:fc:f4:59:74:e6:7b:b6:06:5c:4d:2f:87:38:cb: 0d:2b:17:0d:8d:85:21:16:bd:ff:de:d9:7e:ef:9a: 2d:a0:c3:78:b5:38:73:c8:2c:a4:45:29:9a:3a:e3: c1:ee:50:e7:93:e0:65:89:9f:a0:5b:74:9e:64:dc: 36:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1D:47:2D:F1:12:9C:36:60:1E:EF:9D:8B:86:F2:DA:C4:5C:9B:D2 X509v3 Authority Key Identifier: keyid:B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a316430313a3a2f34382d3438203d3e20323632373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:16d8:1d01::/48 Signature Algorithm: sha256WithRSAEncryption 4e:7e:67:79:a7:4c:f8:05:e0:a9:b6:24:08:ec:62:fa:1e:93: de:b2:e6:88:69:b8:9b:2a:1b:17:37:29:88:da:f6:db:8b:c5: 50:c6:f9:5e:15:41:48:fb:ad:b1:82:5f:02:d8:26:d7:98:69: 41:8d:02:e8:25:18:8b:c8:8c:3a:28:9a:e3:71:11:b1:c5:89: 71:73:6d:5c:3d:bc:55:18:04:c6:29:b7:45:6c:ec:93:cf:bf: 1b:81:0e:fe:2e:5f:37:39:72:8d:b6:b0:ac:88:75:72:fa:76: a3:38:23:b5:3d:eb:d3:5e:82:dd:6f:00:d0:51:9f:de:1f:99: 08:16:1c:25:35:bc:13:c1:7b:12:4e:de:d8:30:1a:5f:4a:27: de:76:14:cc:fd:bf:c3:db:a2:93:dd:21:b3:27:4c:ec:e5:a3: 16:50:39:ef:86:bf:96:81:f5:57:0f:3f:dd:e7:0a:7a:bf:df: 8e:d2:b9:fe:22:46:39:2b:10:8c:3a:78:61:eb:66:79:1b:41: c5:82:04:0b:5e:cb:1c:17:68:51:5f:6d:2c:dd:a3:09:2f:d3: 19:8c:5b:f8:c8:26:56:e7:f4:e9:c4:8d:ea:2a:91:43:9c:cf: 5b:b1:d7:3f:cf:78:26:c2:f8:65:20:49:c0:a8:af:9b:36:e7: 3a:c8:fe:13 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIULDyeIWZ080U/vMoMRtjAEo8lVcAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEQjFCNThEQ0Q0NkMyRTc0NkQ4RERFQUE3RjQ5ODMz MUREQjAxNzAeFw0yNjA1MTgxNTAyNThaFw0yNzA1MTcxNTA3NThaMDMxMTAvBgNV BAMTKEJEMUQ0NzJERjExMjlDMzY2MDFFRUY5RDhCODZGMkRBQzQ1QzlCRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9RwACehwJeN7Uz/ReNs/kA+GT A8rMQqu2GEppvtoCHEX1tthCvwKWG7h8IqxE8BOGeFDjvi13Xm8DblDulquOIHTq 0+CDa9lNb5eo1I9x7TM+GgL3INMEBZdzB1OYLTa9sP6W/CAnD0dQ+NTWE3wxHFMJ okUKCdnPzgTgaBvcYs6vCgub43G2qnFGkzdhca1Rt0THCQt2k2i80kCtnWt/IVp+ evZ5jHrRYpnzJ+q8Kt/aUDPpOnpr50yE4NV278L5wBD89Fl05nu2BlxNL4c4yw0r Fw2NhSEWvf/e2X7vmi2gw3i1OHPILKRFKZo648HuUOeT4GWJn6BbdJ5k3DY9AgMB AAGjggJcMIICWDAdBgNVHQ4EFgQUvR1HLfESnDZgHu+di4by2sRcm9IwHwYDVR0j BBgwFoAUudsbWNzUbC50bY3eqn9JgzHdsBcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDVmUEVVcmNhM21RVW9hNVVMS3pGNVB6WTdZZExVSkdXbTRiRzF0ZUZn OWsvMC9COURCMUI1OERDRDQ2QzJFNzQ2RDhEREVBQTdGNDk4MzMxRERCMDE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5REIxQjU4RENENDZDMkU3 NDZEOERERUFBN0Y0OTgzMzFEREIwMTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q1ZlBFVXJjYTNtUVVvYTVVTEt6RjVQelk3WWRMVUpHV200YkcxdGVGZzlrLzAv MzIzODMwMzQzYTMxMzY2NDM4M2EzMTY0MzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNk M2UyMDMyMzYzMjM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACgEFtgdATANBgkqhkiG9w0BAQsF AAOCAQEATn5neadM+AXgqbYkCOxi+h6T3rLmiGm4myobFzcpiNr224vFUMb5XhVB SPutsYJfAtgm15hpQY0C6CUYi8iMOiia43ERscWJcXNtXD28VRgExim3RWzsk8+/ G4EO/i5fNzlyjbawrIh1cvp2ozgjtT3r016C3W8A0FGf3h+ZCBYcJTW8E8F7Ek7e 2DAaX0on3nYUzP2/w9uik90hsydM7OWjFlA574a/loH1Vw8/3ecKer/fjtK5/iJG OSsQjDp4YetmeRtBxYIEC17LHBdoUV9tLN2jCS/TGYxb+MgmVuf06cSN6iqRQ5zP W7HXP894JsL4ZSBJwKivmzbnOsj+Ew== -----END CERTIFICATE-----Generated at Sun May 24 17:11:39 2026 by rpki-client