$ rpki-client -vvf rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/323830343a356136343a343030303a3a2f33342d3334203d3e20323638373730.roa File: 323830343a356136343a343030303a3a2f33342d3334203d3e20323638373730.roa (raw, json) Hash identifier: xSd8k7lxbQuHs1md7LODfdbYbmvchebz0hWNgaSbsq4= Subject key identifier: 26:80:CC:B5:4C:F7:4A:AF:6D:EF:5D:B7:93:F1:F6:6D:7D:5F:63:10 Certificate issuer: /CN=AA3B743EC7E4F08EBA8C201668D2374C737F8DA7 Certificate serial: 0D9D59A042CD0669F922AA28518349FF60C6181D Authority key identifier: AA:3B:74:3E:C7:E4:F0:8E:BA:8C:20:16:68:D2:37:4C:73:7F:8D:A7 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AA3B743EC7E4F08EBA8C201668D2374C737F8DA7.cer Subject info access: rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/323830343a356136343a343030303a3a2f33342d3334203d3e20323638373730.roa Signing time: Thu 21 May 2026 22:41:25 +0000 ROA not before: Thu 21 May 2026 22:36:25 +0000 ROA not after: Thu 20 May 2027 22:41:25 +0000 asID: 268770 IP address blocks: 2804:5a64:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/AA3B743EC7E4F08EBA8C201668D2374C737F8DA7.crl rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/AA3B743EC7E4F08EBA8C201668D2374C737F8DA7.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AA3B743EC7E4F08EBA8C201668D2374C737F8DA7.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 25 May 2026 05:20:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:9d:59:a0:42:cd:06:69:f9:22:aa:28:51:83:49:ff:60:c6:18:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3B743EC7E4F08EBA8C201668D2374C737F8DA7 Validity Not Before: May 21 22:36:25 2026 GMT Not After : May 20 22:41:25 2027 GMT Subject: CN=2680CCB54CF74AAF6DEF5DB793F1F66D7D5F6310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a9:6b:af:e4:e1:27:54:fb:29:cc:1f:5d:d6: 77:7d:4a:90:b3:ca:c9:4e:c3:a0:3d:81:77:36:e7: 22:79:81:4e:e9:dc:4a:0a:f0:ab:13:f5:35:1b:5c: 3c:dd:bc:0b:cc:8d:74:a3:6d:bf:04:b0:20:80:1e: e7:46:46:eb:e1:97:5c:e7:00:53:dd:ba:b8:1d:9d: 99:d5:fc:8a:22:1d:4f:f6:e1:13:7e:04:e4:20:24: ea:a9:3b:0c:73:7a:c6:aa:9d:84:8e:23:91:54:42: b5:b6:2e:df:66:4d:d1:79:04:1d:4d:e1:05:29:d8: 97:19:5f:0e:cf:02:b6:5d:92:65:78:92:ac:b6:9f: 18:b6:c2:39:d5:9f:c5:35:be:81:e3:11:68:80:2f: 6e:7c:8f:9e:b0:6e:ef:6c:8e:53:35:92:3b:21:5f: cc:22:6a:8f:0f:97:94:a4:6d:37:56:8d:cc:9f:74: d9:9f:49:ed:62:82:1d:2b:17:f8:3a:f9:51:66:2d: 7f:0c:64:e7:cd:fd:99:b2:56:7f:cc:ee:29:2b:1a: ad:cb:c1:a9:b8:68:8f:6d:cb:97:ea:12:03:b8:f7: 7a:5c:25:44:e7:8a:e1:d8:4b:0f:11:1c:d9:90:38: 2c:7b:b7:c0:8c:6c:dc:9e:e2:21:a3:05:8b:c8:a0: f5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:80:CC:B5:4C:F7:4A:AF:6D:EF:5D:B7:93:F1:F6:6D:7D:5F:63:10 X509v3 Authority Key Identifier: keyid:AA:3B:74:3E:C7:E4:F0:8E:BA:8C:20:16:68:D2:37:4C:73:7F:8D:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/AA3B743EC7E4F08EBA8C201668D2374C737F8DA7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AA3B743EC7E4F08EBA8C201668D2374C737F8DA7.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HjsbkHEGm7A7rGnEQkESYFgApErpRCYF6V2fCzJcA7Ra/0/323830343a356136343a343030303a3a2f33342d3334203d3e20323638373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5a64:4000::/34 Signature Algorithm: sha256WithRSAEncryption 82:0d:27:ba:b7:a2:8b:03:e6:c2:f7:27:23:5e:33:90:7a:69: f3:60:9a:f1:3f:d1:fd:70:93:77:7b:b9:91:35:e4:ee:73:a4: bf:fa:d9:c7:48:8e:9e:3c:5c:0c:a8:eb:14:12:db:27:f0:97: ec:42:58:e7:2c:a8:a8:37:63:1a:ea:dc:46:8a:08:ef:9e:72: 0d:43:f3:e4:eb:9c:b1:0d:1d:62:04:33:35:f2:3c:68:24:27: fe:2b:cc:9e:e8:a9:06:a4:f6:3f:43:0a:ab:cd:af:4c:65:6d: 9d:c6:c8:0c:3f:f5:e5:11:62:de:29:af:27:26:ec:ee:f7:f7: f7:af:34:81:1c:1e:ab:6c:51:e4:8d:90:ea:00:b4:14:fd:cf: 64:e1:3f:f6:75:c5:11:c6:1d:d5:64:e6:28:e0:1d:d4:cc:b8: cc:c4:c5:4f:d5:2d:c7:aa:2e:9f:19:56:b0:9c:f3:ed:0e:61: 0d:f9:04:8a:63:74:93:e1:04:0b:bd:b9:e4:fc:ae:e0:53:dd: 80:f5:5d:38:46:be:fa:01:68:7f:1e:c6:36:d0:dd:b8:15:8c: d4:f8:a8:09:6a:36:e8:eb:99:b0:87:9b:04:d6:5d:ae:4d:55: 40:68:32:f3:3a:42:96:2b:8a:9f:85:e7:62:da:6b:76:79:76: 7c:cf:20:4f -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUDZ1ZoELNBmn5IqooUYNJ/2DGGB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzQjc0M0VDN0U0RjA4RUJBOEMyMDE2NjhEMjM3NEM3 MzdGOERBNzAeFw0yNjA1MjEyMjM2MjVaFw0yNzA1MjAyMjQxMjVaMDMxMTAvBgNV BAMTKDI2ODBDQ0I1NENGNzRBQUY2REVGNURCNzkzRjFGNjZEN0Q1RjYzMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSqWuv5OEnVPspzB9d1nd9SpCz yslOw6A9gXc25yJ5gU7p3EoK8KsT9TUbXDzdvAvMjXSjbb8EsCCAHudGRuvhl1zn AFPdurgdnZnV/IoiHU/24RN+BOQgJOqpOwxzesaqnYSOI5FUQrW2Lt9mTdF5BB1N 4QUp2JcZXw7PArZdkmV4kqy2nxi2wjnVn8U1voHjEWiAL258j56wbu9sjlM1kjsh X8wiao8Pl5SkbTdWjcyfdNmfSe1igh0rF/g6+VFmLX8MZOfN/ZmyVn/M7ikrGq3L wam4aI9ty5fqEgO493pcJUTniuHYSw8RHNmQOCx7t8CMbNye4iGjBYvIoPV5AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUJoDMtUz3Sq9t7123k/H2bX1fYxAwHwYDVR0j BBgwFoAUqjt0Psfk8I66jCAWaNI3THN/jacwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSGpzYmtIRUdtN0E3ckduRVFrRVNZRmdBcEVycFJDWUY2VjJmQ3pKY0E3 UmEvMC9BQTNCNzQzRUM3RTRGMDhFQkE4QzIwMTY2OEQyMzc0QzczN0Y4REE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0FBM0I3NDNFQzdFNEYwOEVC QThDMjAxNjY4RDIzNzRDNzM3RjhEQTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hqc2JrSEVHbTdBN3JHbkVRa0VTWUZnQXBFcnBSQ1lGNlYyZkN6SmNBN1JhLzAv MzIzODMwMzQzYTM1NjEzNjM0M2EzNDMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzODM3MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEWmRAMA0GCSqGSIb3DQEBCwUA A4IBAQCCDSe6t6KLA+bC9ycjXjOQemnzYJrxP9H9cJN3e7mRNeTuc6S/+tnHSI6e PFwMqOsUEtsn8JfsQljnLKioN2Ma6txGigjvnnINQ/Pk65yxDR1iBDM18jxoJCf+ K8ye6KkGpPY/Qwqrza9MZW2dxsgMP/XlEWLeKa8nJuzu9/f3rzSBHB6rbFHkjZDq ALQU/c9k4T/2dcURxh3VZOYo4B3UzLjMxMVP1S3Hqi6fGVawnPPtDmEN+QSKY3ST 4QQLvbnk/K7gU92A9V04Rr76AWh/HsY20N24FYzU+KgJajbo65mwh5sE1l2uTVVA aDLzOkKWK4qfhedi2mt2eXZ8zyBP -----END CERTIFICATE-----Generated at Sun May 24 20:16:09 2026 by rpki-client