$ rpki-client -vvf rpki-repo.registro.br/repo/HMB57AGjN59A311ttLmEW5ScpaqYnK7rdRq3PVW3WqqY/0/34352e3137302e39362e302f32322d3332203d3e20323638313537.roa File: 34352e3137302e39362e302f32322d3332203d3e20323638313537.roa (raw, json) Hash identifier: zs+KuQfJd3T3y/9YiYoDfIeOsZqly1mg5CZ1YfbPTFM= Subject key identifier: 3C:BB:A0:FC:E3:BE:AB:C4:56:17:BF:28:A1:B0:56:75:F4:A3:C2:6B Certificate issuer: /CN=3DE9D8C57469B4D2B91B678EECD854A7725F242D Certificate serial: 4E8F37E85C858DE85824541677A5388C4F154B Authority key identifier: 3D:E9:D8:C5:74:69:B4:D2:B9:1B:67:8E:EC:D8:54:A7:72:5F:24:2D Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DE9D8C57469B4D2B91B678EECD854A7725F242D.cer Subject info access: rsync://rpki-repo.registro.br/repo/HMB57AGjN59A311ttLmEW5ScpaqYnK7rdRq3PVW3WqqY/0/34352e3137302e39362e302f32322d3332203d3e20323638313537.roa Signing time: Mon 06 Apr 2026 14:14:59 +0000 ROA not before: Mon 06 Apr 2026 14:09:59 +0000 ROA not after: Mon 05 Apr 2027 14:14:59 +0000 asID: 268157 IP address blocks: 45.170.96.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HMB57AGjN59A311ttLmEW5ScpaqYnK7rdRq3PVW3WqqY/0/3DE9D8C57469B4D2B91B678EECD854A7725F242D.crl rsync://rpki-repo.registro.br/repo/HMB57AGjN59A311ttLmEW5ScpaqYnK7rdRq3PVW3WqqY/0/3DE9D8C57469B4D2B91B678EECD854A7725F242D.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DE9D8C57469B4D2B91B678EECD854A7725F242D.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 10 Apr 2026 13:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:8f:37:e8:5c:85:8d:e8:58:24:54:16:77:a5:38:8c:4f:15:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DE9D8C57469B4D2B91B678EECD854A7725F242D Validity Not Before: Apr 6 14:09:59 2026 GMT Not After : Apr 5 14:14:59 2027 GMT Subject: CN=3CBBA0FCE3BEABC45617BF28A1B05675F4A3C26B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:67:b8:31:01:cd:ab:68:8e:d5:cb:46:0c:7a: 07:d8:7a:68:9f:50:7f:0f:21:8a:89:af:46:4c:f4: 21:cc:9d:f1:ae:18:a8:e7:e2:35:36:46:f2:fa:0f: c8:89:a8:09:d0:3a:22:cd:fe:c8:e0:50:90:b9:32: 1a:73:2d:20:ce:22:7a:1c:dc:a6:28:2e:4d:f9:2e: c2:9b:35:da:ef:47:68:21:91:cc:6d:a3:be:00:dd: 06:98:fc:f1:a3:49:15:53:75:14:ff:54:fa:a8:e6: 17:9e:f4:5b:04:4c:8c:a1:c9:be:0e:39:a6:95:95: 95:7f:0d:ea:ff:cf:e1:cf:de:97:80:0f:f8:eb:b0: 57:33:e8:4b:8d:7a:f7:10:92:32:05:86:06:3f:0a: 8a:88:0d:74:ce:7c:70:0c:b4:bc:2c:78:15:90:60: 2a:c7:7b:fd:ba:dd:c5:24:60:ff:b4:ae:79:e7:01: f3:57:24:1a:b2:c7:0d:34:73:70:9a:e1:a2:7b:57: 79:3f:54:0f:47:09:c9:63:4e:12:39:f6:71:a5:bf: 26:e4:00:e9:d0:ff:67:8a:73:ce:55:9d:05:41:b3: ed:25:96:7f:d0:99:85:75:4d:5b:6a:1e:fe:4b:6a: ca:c0:d0:a6:a3:94:6b:0f:c1:6e:dc:35:10:69:90: c6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BB:A0:FC:E3:BE:AB:C4:56:17:BF:28:A1:B0:56:75:F4:A3:C2:6B X509v3 Authority Key Identifier: keyid:3D:E9:D8:C5:74:69:B4:D2:B9:1B:67:8E:EC:D8:54:A7:72:5F:24:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HMB57AGjN59A311ttLmEW5ScpaqYnK7rdRq3PVW3WqqY/0/3DE9D8C57469B4D2B91B678EECD854A7725F242D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DE9D8C57469B4D2B91B678EECD854A7725F242D.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HMB57AGjN59A311ttLmEW5ScpaqYnK7rdRq3PVW3WqqY/0/34352e3137302e39362e302f32322d3332203d3e20323638313537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.170.96.0/22 Signature Algorithm: sha256WithRSAEncryption 52:00:03:b6:61:1f:bd:1b:60:a6:bf:7b:f4:ec:6e:e6:a3:9d: a5:86:73:ee:16:3e:3b:3d:ab:ea:3e:1c:34:91:e7:ab:d8:e9: 59:0c:79:30:e9:12:6a:5e:61:f9:eb:d0:db:10:c8:1a:e0:6f: 8b:3a:c2:a3:f6:45:05:a2:7d:1e:c4:30:ad:f2:15:f9:42:58: dc:d0:1e:3b:4f:f0:b7:ee:43:31:4a:f6:c1:79:1f:d3:d5:d7: 24:f1:3a:b8:20:12:a9:17:a3:64:c7:86:b7:9d:b2:5b:62:04: 98:03:64:00:b8:30:7e:db:50:06:a9:49:d3:e2:c3:53:39:85: 04:93:c6:98:fc:a1:df:94:3a:95:60:a5:ae:a7:95:46:d5:9a: a4:37:d3:3d:71:83:95:f4:6c:ad:48:27:2a:ab:4e:d6:e1:41: 26:40:04:f2:85:c4:9d:1c:81:ab:54:ca:2e:0e:5e:41:c3:e3: b0:ff:30:37:fe:05:ff:54:ac:96:e6:99:2a:88:b0:45:e8:4e: 06:9f:99:6c:62:b1:2d:38:16:a7:2f:3d:d7:28:e5:27:37:6a: 1e:5b:3d:30:79:45:20:72:2a:55:10:11:3d:2b:01:39:14:d5: 86:2f:e6:67:e9:fb:81:61:75:b5:ee:cf:4c:50:db:c7:f2:0d: 1e:4d:8c:53 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgITTo836FyFjehYJFQWd6U4jE8VSzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygzREU5RDhDNTc0NjlCNEQyQjkxQjY3OEVFQ0Q4NTRBNzcy NUYyNDJEMB4XDTI2MDQwNjE0MDk1OVoXDTI3MDQwNTE0MTQ1OVowMzExMC8GA1UE AxMoM0NCQkEwRkNFM0JFQUJDNDU2MTdCRjI4QTFCMDU2NzVGNEEzQzI2QjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKVnuDEBzatojtXLRgx6B9h6aJ9Q fw8hiomvRkz0Icyd8a4YqOfiNTZG8voPyImoCdA6Is3+yOBQkLkyGnMtIM4iehzc piguTfkuwps12u9HaCGRzG2jvgDdBpj88aNJFVN1FP9U+qjmF570WwRMjKHJvg45 ppWVlX8N6v/P4c/el4AP+OuwVzPoS4169xCSMgWGBj8KiogNdM58cAy0vCx4FZBg Ksd7/brdxSRg/7SueecB81ckGrLHDTRzcJrhontXeT9UD0cJyWNOEjn2caW/JuQA 6dD/Z4pzzlWdBUGz7SWWf9CZhXVNW2oe/ktqysDQpqOUaw/Bbtw1EGmQxi8CAwEA AaOCAk8wggJLMB0GA1UdDgQWBBQ8u6D8476rxFYXvyihsFZ19KPCazAfBgNVHSME GDAWgBQ96djFdGm00rkbZ47s2FSncl8kLTAOBgNVHQ8BAf8EBAMCB4AwgZQGA1Ud HwSBjDCBiTCBhqCBg6CBgIZ+cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv cmVwby9ITUI1N0FHak41OUEzMTF0dExtRVc1U2NwYXFZbks3cmRScTNQVlczV3Fx WS8wLzNERTlEOEM1NzQ2OUI0RDJCOTFCNjc4RUVDRDg1NEE3NzI1RjI0MkQuY3Js MHgGCCsGAQUFBwEBBGwwajBoBggrBgEFBQcwAoZccnN5bmM6Ly9ycGtpLXJlcG8u cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzEvM0RFOUQ4QzU3NDY5QjREMkI5 MUI2NzhFRUNEODU0QTc3MjVGMjQyRC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZ BggrBgEFBQcwC4aBjHJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8v SE1CNTdBR2pONTlBMzExdHRMbUVXNVNjcGFxWW5LN3JkUnEzUFZXM1dxcVkvMC8z NDM1MmUzMTM3MzAyZTM5MzYyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMjM2Mzgz MTM1Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB Af8EEDAOMAwEAgABMAYDBAItqmAwDQYJKoZIhvcNAQELBQADggEBAFIAA7ZhH70b YKa/e/TsbuajnaWGc+4WPjs9q+o+HDSR56vY6VkMeTDpEmpeYfnr0NsQyBrgb4s6 wqP2RQWifR7EMK3yFflCWNzQHjtP8LfuQzFK9sF5H9PV1yTxOrggEqkXo2THhred sltiBJgDZAC4MH7bUAapSdPiw1M5hQSTxpj8od+UOpVgpa6nlUbVmqQ30z1xg5X0 bK1IJyqrTtbhQSZABPKFxJ0cgatUyi4OXkHD47D/MDf+Bf9UrJbmmSqIsEXoTgaf mWxisS04FqcvPdco5Sc3ah5bPTB5RSByKlUQET0rATkU1YYv5mfp+4FhdbXuz0xQ 28fyDR5NjFM= -----END CERTIFICATE-----Generated at Thu Apr 9 16:54:31 2026 by rpki-client