$ rpki-client -vvf rpki-repo.registro.br/repo/HuXR5ApuXpTaxFzzG5GTUpBBs4TuUSU9vEP3zfVtZX4d/0/3133382e35392e3230382e302f32322d3234203d3e20323634313136.roa File: 3133382e35392e3230382e302f32322d3234203d3e20323634313136.roa (raw, json) Hash identifier: YpT0L4Sm5/tZ5mTWSpjQG22KyiCEdHTHtu5hCT7g2L4= Subject key identifier: 39:95:33:94:DD:4E:CA:15:E5:67:86:37:C0:37:B3:24:9C:DE:F9:D7 Certificate issuer: /CN=22DEB3D2A14F98972753CAF8B7BC5C5E2027F7FB Certificate serial: 2AAB30B8FB63066026EDDE51004A5718460C49E4 Authority key identifier: 22:DE:B3:D2:A1:4F:98:97:27:53:CA:F8:B7:BC:5C:5E:20:27:F7:FB Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/22DEB3D2A14F98972753CAF8B7BC5C5E2027F7FB.cer Subject info access: rsync://rpki-repo.registro.br/repo/HuXR5ApuXpTaxFzzG5GTUpBBs4TuUSU9vEP3zfVtZX4d/0/3133382e35392e3230382e302f32322d3234203d3e20323634313136.roa Signing time: Wed 01 Apr 2026 14:48:21 +0000 ROA not before: Wed 01 Apr 2026 14:43:21 +0000 ROA not after: Wed 31 Mar 2027 14:48:21 +0000 asID: 264116 IP address blocks: 138.59.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HuXR5ApuXpTaxFzzG5GTUpBBs4TuUSU9vEP3zfVtZX4d/0/22DEB3D2A14F98972753CAF8B7BC5C5E2027F7FB.crl rsync://rpki-repo.registro.br/repo/HuXR5ApuXpTaxFzzG5GTUpBBs4TuUSU9vEP3zfVtZX4d/0/22DEB3D2A14F98972753CAF8B7BC5C5E2027F7FB.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/22DEB3D2A14F98972753CAF8B7BC5C5E2027F7FB.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 09 Apr 2026 23:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:ab:30:b8:fb:63:06:60:26:ed:de:51:00:4a:57:18:46:0c:49:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22DEB3D2A14F98972753CAF8B7BC5C5E2027F7FB Validity Not Before: Apr 1 14:43:21 2026 GMT Not After : Mar 31 14:48:21 2027 GMT Subject: CN=39953394DD4ECA15E5678637C037B3249CDEF9D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:05:d3:c4:4a:28:e7:bb:3a:57:88:9e:08:f3: 81:82:11:6d:b4:99:12:74:7d:10:c9:61:85:5d:70: ad:fa:49:cc:a9:59:0c:b1:9f:8f:d8:7d:64:74:0f: 84:42:e7:0f:f8:05:e1:c3:72:8a:f6:f0:05:fe:da: 38:bb:91:93:51:d1:79:38:1a:c6:44:86:59:5f:92: 55:0e:de:06:07:07:0a:0d:62:fc:a2:25:2a:e4:c9: 4a:72:47:9e:fd:79:32:55:d7:9b:cd:53:26:0c:49: 35:7d:42:02:b4:17:17:83:7b:55:50:7a:6e:4c:12: 76:c5:a0:f8:0c:c3:e0:b9:fc:f6:b9:9b:5f:f5:a2: 27:81:e5:c5:f6:b8:08:57:bd:1b:a0:00:55:fb:fb: 1d:2c:a7:95:26:19:30:fb:0a:26:ac:f4:95:88:82: 78:20:e6:fa:b3:e5:83:16:8d:f8:34:45:47:ec:fe: 4c:c9:50:5b:68:34:45:c1:55:05:82:1d:5b:0c:ee: 83:f5:4e:09:d7:db:a4:12:f4:a5:38:cd:24:15:82: c3:cf:ec:8b:83:da:a2:bd:74:dd:60:25:25:a4:a3: 40:01:f8:1f:cf:e3:4a:8a:61:f3:30:b1:6d:6f:9d: 99:de:76:80:e7:09:15:7f:9b:ec:11:b5:a1:ee:dc: 09:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:95:33:94:DD:4E:CA:15:E5:67:86:37:C0:37:B3:24:9C:DE:F9:D7 X509v3 Authority Key Identifier: keyid:22:DE:B3:D2:A1:4F:98:97:27:53:CA:F8:B7:BC:5C:5E:20:27:F7:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HuXR5ApuXpTaxFzzG5GTUpBBs4TuUSU9vEP3zfVtZX4d/0/22DEB3D2A14F98972753CAF8B7BC5C5E2027F7FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/22DEB3D2A14F98972753CAF8B7BC5C5E2027F7FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HuXR5ApuXpTaxFzzG5GTUpBBs4TuUSU9vEP3zfVtZX4d/0/3133382e35392e3230382e302f32322d3234203d3e20323634313136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.59.208.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:67:e7:d9:04:a8:1d:21:c0:23:07:a4:0d:b0:c0:cf:85:dd: b2:aa:d6:71:e4:b1:39:33:79:d9:3a:73:6c:54:f2:17:39:31: d4:74:2b:0a:29:a9:29:b1:7d:22:13:4d:82:ab:95:03:26:3c: be:36:48:af:36:e0:3d:7b:b4:88:87:a1:e0:87:7e:7e:61:39: e9:cc:fb:be:5d:65:d2:08:4f:e7:b4:3a:15:83:ea:08:d4:c7: 16:15:46:96:f4:67:14:7c:e9:00:b4:64:6d:94:f6:db:04:ee: 0e:a3:8b:d9:f4:19:3e:cd:f0:53:f9:23:8b:2e:09:e2:e2:00: 50:d9:a4:e6:b9:7f:33:26:26:77:71:5b:c8:88:b4:3a:2e:17: 8e:ee:76:f6:c2:8e:f2:6b:a0:93:9d:a8:9d:5c:01:84:05:35: 4c:25:38:a2:5f:3f:ed:7a:97:62:b8:f2:d1:c8:a5:d7:c5:27: 24:4f:66:e4:95:6a:04:c6:00:9a:66:89:8c:2b:57:ad:4d:61: d1:01:8c:64:a2:7f:ff:cd:7e:a3:5f:3c:91:4e:26:85:22:65: 82:11:d4:e3:3b:a1:83:e3:7b:50:19:ec:1c:e9:f0:f6:fe:30: 80:34:6e:dd:97:e1:d2:2f:24:5d:1f:34:0d:f3:93:94:76:2c: ea:0a:93:18 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUKqswuPtjBmAm7d5RAEpXGEYMSeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjJERUIzRDJBMTRGOTg5NzI3NTNDQUY4QjdCQzVDNUUy MDI3RjdGQjAeFw0yNjA0MDExNDQzMjFaFw0yNzAzMzExNDQ4MjFaMDMxMTAvBgNV BAMTKDM5OTUzMzk0REQ0RUNBMTVFNTY3ODYzN0MwMzdCMzI0OUNERUY5RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfBdPESijnuzpXiJ4I84GCEW20 mRJ0fRDJYYVdcK36ScypWQyxn4/YfWR0D4RC5w/4BeHDcor28AX+2ji7kZNR0Xk4 GsZEhllfklUO3gYHBwoNYvyiJSrkyUpyR579eTJV15vNUyYMSTV9QgK0FxeDe1VQ em5MEnbFoPgMw+C5/Pa5m1/1oieB5cX2uAhXvRugAFX7+x0sp5UmGTD7Cias9JWI gngg5vqz5YMWjfg0RUfs/kzJUFtoNEXBVQWCHVsM7oP1TgnX26QS9KU4zSQVgsPP 7IuD2qK9dN1gJSWko0AB+B/P40qKYfMwsW1vnZnedoDnCRV/m+wRtaHu3AnBAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUOZUzlN1OyhXlZ4Y3wDezJJze+dcwHwYDVR0j BBgwFoAUIt6z0qFPmJcnU8r4t7xcXiAn9/swDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSHVYUjVBcHVYcFRheEZ6ekc1R1RVcEJCczRUdVVTVTl2RVAzemZWdFpY NGQvMC8yMkRFQjNEMkExNEY5ODk3Mjc1M0NBRjhCN0JDNUM1RTIwMjdGN0ZCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIyREVCM0QyQTE0Rjk4OTcy NzUzQ0FGOEI3QkM1QzVFMjAyN0Y3RkIuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0h1WFI1QXB1WHBUYXhGenpHNUdUVXBCQnM0VHVVU1U5dkVQM3pmVnRaWDRkLzAv MzEzMzM4MmUzNTM5MmUzMjMwMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2 MzQzMTMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKKO9AwDQYJKoZIhvcNAQELBQADggEBAE9n59kE qB0hwCMHpA2wwM+F3bKq1nHksTkzedk6c2xU8hc5MdR0KwopqSmxfSITTYKrlQMm PL42SK824D17tIiHoeCHfn5hOenM+75dZdIIT+e0OhWD6gjUxxYVRpb0ZxR86QC0 ZG2U9tsE7g6ji9n0GT7N8FP5I4suCeLiAFDZpOa5fzMmJndxW8iItDouF47udvbC jvJroJOdqJ1cAYQFNUwlOKJfP+16l2K48tHIpdfFJyRPZuSVagTGAJpmiYwrV61N YdEBjGSif//NfqNfPJFOJoUiZYIR1OM7oYPje1AZ7Bzp8Pb+MIA0bt2X4dIvJF0f NA3zk5R2LOoKkxg= -----END CERTIFICATE-----Generated at Thu Apr 9 14:50:26 2026 by rpki-client