$ rpki-client -vvf rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a323030303a3a2f33362d3336203d3e20323632373239.roa File: 323830343a313664383a323030303a3a2f33362d3336203d3e20323632373239.roa (raw, json) Hash identifier: i42KyblPLPCJUae9X4jBf8yR1LATP5cYBZQCF4oPfUA= Subject key identifier: 21:8B:0C:BC:E7:B5:16:8C:51:93:87:A3:3A:C2:06:46:77:59:AD:FB Certificate issuer: /CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Certificate serial: 1CA3AC8BCD26B14EDFCE1A89E27F9F3A4DBA1926 Authority key identifier: B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject info access: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a323030303a3a2f33362d3336203d3e20323632373239.roa Signing time: Mon 18 May 2026 15:08:00 +0000 ROA not before: Mon 18 May 2026 15:03:00 +0000 ROA not after: Mon 17 May 2027 15:08:00 +0000 asID: 262729 IP address blocks: 2804:16d8:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 25 May 2026 15:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:a3:ac:8b:cd:26:b1:4e:df:ce:1a:89:e2:7f:9f:3a:4d:ba:19:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017 Validity Not Before: May 18 15:03:00 2026 GMT Not After : May 17 15:08:00 2027 GMT Subject: CN=218B0CBCE7B5168C519387A33AC206467759ADFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ee:db:1a:8d:ed:73:e9:b2:0b:ca:83:8a:44: 77:0b:f4:fe:7d:a1:62:57:de:95:75:9d:1f:35:ad: fe:b5:f8:8a:d0:71:d6:99:13:15:95:30:5f:d5:9f: f7:27:da:57:96:90:44:48:be:71:34:46:9f:e0:52: 24:10:41:34:47:58:3c:4e:66:c8:54:c9:ca:a2:5b: b9:43:16:bf:6f:ec:62:b9:9d:39:14:53:3e:4a:f7: 6c:58:b4:82:cb:65:e4:90:44:7b:9d:6d:3f:9d:92: 02:f8:b2:c5:75:34:f4:82:97:50:09:9e:7f:00:7c: a4:87:57:cd:21:5b:eb:45:b1:52:9e:6d:6b:c4:07: 34:26:4d:7f:d9:b9:ef:09:83:cf:3d:ec:11:fc:23: 51:3a:92:a8:1a:99:87:d0:4c:db:83:03:c2:5a:d0: d0:7f:db:95:2c:5f:5a:31:e6:8e:76:65:9d:b8:60: a4:f7:ed:0c:14:3c:31:12:55:53:25:80:4d:5b:f0: 1e:05:47:5d:83:26:9d:61:94:de:a5:12:46:5b:e2: bc:7d:ed:f6:72:9e:f8:e5:90:c9:89:ba:4b:b7:2b: 58:5d:29:9b:70:b0:ef:98:5c:6f:a3:c2:ff:6e:b7: 03:ee:23:31:ec:60:2c:c6:da:53:09:5b:74:19:05: f5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8B:0C:BC:E7:B5:16:8C:51:93:87:A3:3A:C2:06:46:77:59:AD:FB X509v3 Authority Key Identifier: keyid:B9:DB:1B:58:DC:D4:6C:2E:74:6D:8D:DE:AA:7F:49:83:31:DD:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB1B58DCD46C2E746D8DDEAA7F498331DDB017.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D5fPEUrca3mQUoa5ULKzF5PzY7YdLUJGWm4bG1teFg9k/0/323830343a313664383a323030303a3a2f33362d3336203d3e20323632373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:16d8:2000::/36 Signature Algorithm: sha256WithRSAEncryption 1e:0c:a4:06:5c:8d:c1:dc:ad:85:2b:17:52:53:e4:db:f1:7e: a9:ee:13:eb:fb:4d:1e:dc:c4:06:cc:80:c2:a7:fb:5e:a6:f4: 3a:b3:5e:4a:5e:a0:bd:79:e0:9a:cd:31:19:ea:f5:45:94:91: d2:94:c9:2c:2f:75:1a:d3:36:01:87:d3:f4:39:16:be:61:9b: 6f:67:bb:b6:56:8c:3d:27:03:c4:d3:d6:57:b3:8a:5e:f3:93: ea:3d:a6:ca:61:3f:18:94:ca:13:dd:2a:0f:92:f6:0e:b0:a5: b3:46:77:ba:39:2e:8e:ef:bc:ad:f6:5c:02:14:4a:69:5a:90: 0f:e1:81:d5:3f:8a:14:23:38:2d:75:1d:80:a1:d2:96:33:c3: d9:8f:ef:3c:78:4a:cf:f2:dc:b5:67:5b:77:8a:19:1f:b0:81: 32:cc:bd:d2:6f:9d:7f:40:e1:e2:6e:20:7a:06:aa:b9:39:06: 8b:9e:28:fc:97:3e:7a:1e:15:ab:6c:a1:8e:9d:bb:77:0f:e5: 8e:06:87:9e:e6:39:c8:7f:7b:40:57:4f:c1:50:63:84:61:1b: ee:82:9c:35:d5:0b:43:e7:07:cd:7d:56:05:6d:34:7d:6b:8b: da:51:cb:aa:d3:cd:06:fd:2a:4b:70:59:1e:50:f2:bd:66:8f: 46:8a:30:e0 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUHKOsi80msU7fzhqJ4n+fOk26GSYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEQjFCNThEQ0Q0NkMyRTc0NkQ4RERFQUE3RjQ5ODMz MUREQjAxNzAeFw0yNjA1MTgxNTAzMDBaFw0yNzA1MTcxNTA4MDBaMDMxMTAvBgNV BAMTKDIxOEIwQ0JDRTdCNTE2OEM1MTkzODdBMzNBQzIwNjQ2Nzc1OUFERkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY7tsaje1z6bILyoOKRHcL9P59 oWJX3pV1nR81rf61+IrQcdaZExWVMF/Vn/cn2leWkERIvnE0Rp/gUiQQQTRHWDxO ZshUycqiW7lDFr9v7GK5nTkUUz5K92xYtILLZeSQRHudbT+dkgL4ssV1NPSCl1AJ nn8AfKSHV80hW+tFsVKebWvEBzQmTX/Zue8Jg8897BH8I1E6kqgamYfQTNuDA8Ja 0NB/25UsX1ox5o52ZZ24YKT37QwUPDESVVMlgE1b8B4FR12DJp1hlN6lEkZb4rx9 7fZynvjlkMmJuku3K1hdKZtwsO+YXG+jwv9utwPuIzHsYCzG2lMJW3QZBfWVAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUIYsMvOe1FoxRk4ejOsIGRndZrfswHwYDVR0j BBgwFoAUudsbWNzUbC50bY3eqn9JgzHdsBcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDVmUEVVcmNhM21RVW9hNVVMS3pGNVB6WTdZZExVSkdXbTRiRzF0ZUZn OWsvMC9COURCMUI1OERDRDQ2QzJFNzQ2RDhEREVBQTdGNDk4MzMxRERCMDE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5REIxQjU4RENENDZDMkU3 NDZEOERERUFBN0Y0OTgzMzFEREIwMTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q1ZlBFVXJjYTNtUVVvYTVVTEt6RjVQelk3WWRMVUpHV200YkcxdGVGZzlrLzAv MzIzODMwMzQzYTMxMzY2NDM4M2EzMjMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzMjM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEFtggMA0GCSqGSIb3DQEBCwUA A4IBAQAeDKQGXI3B3K2FKxdSU+Tb8X6p7hPr+00e3MQGzIDCp/tepvQ6s15KXqC9 eeCazTEZ6vVFlJHSlMksL3Ua0zYBh9P0ORa+YZtvZ7u2Vow9JwPE09ZXs4pe85Pq PabKYT8YlMoT3SoPkvYOsKWzRne6OS6O77yt9lwCFEppWpAP4YHVP4oUIzgtdR2A odKWM8PZj+88eErP8ty1Z1t3ihkfsIEyzL3Sb51/QOHibiB6Bqq5OQaLnij8lz56 HhWrbKGOnbt3D+WOBoee5jnIf3tAV0/BUGOEYRvugpw11QtD5wfNfVYFbTR9a4va Ucuq080G/SpLcFkeUPK9Zo9GijDg -----END CERTIFICATE-----Generated at Sun May 24 17:11:11 2026 by rpki-client