$ rpki-client -vvf rpki-repo.registro.br/repo/Heh5dSWN61zTkpXgLw8nNNAh53gSD7b9HYARiVzz4NHS/0/323830343a383232343a633030303a3a2f33342d3334203d3e20323732353031.roa File: 323830343a383232343a633030303a3a2f33342d3334203d3e20323732353031.roa (raw, json) Hash identifier: lvS+PpChyK+GSXbzlI+LlQ5M3M6sJTIQRlOSnaqvVlk= Subject key identifier: 07:AA:74:13:AF:A1:01:6B:15:08:70:29:BE:D1:51:61:51:7D:DE:90 Certificate issuer: /CN=E59CBBF18FC7A79DC8328BADE16AC712C99CFFBF Certificate serial: 01607505116C319D2F5B009E6DF935D5749DB14F Authority key identifier: E5:9C:BB:F1:8F:C7:A7:9D:C8:32:8B:AD:E1:6A:C7:12:C9:9C:FF:BF Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E59CBBF18FC7A79DC8328BADE16AC712C99CFFBF.cer Subject info access: rsync://rpki-repo.registro.br/repo/Heh5dSWN61zTkpXgLw8nNNAh53gSD7b9HYARiVzz4NHS/0/323830343a383232343a633030303a3a2f33342d3334203d3e20323732353031.roa Signing time: Tue 24 Feb 2026 23:20:57 +0000 ROA not before: Tue 24 Feb 2026 23:15:57 +0000 ROA not after: Tue 23 Feb 2027 23:20:57 +0000 asID: 272501 IP address blocks: 2804:8224:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/Heh5dSWN61zTkpXgLw8nNNAh53gSD7b9HYARiVzz4NHS/0/E59CBBF18FC7A79DC8328BADE16AC712C99CFFBF.crl rsync://rpki-repo.registro.br/repo/Heh5dSWN61zTkpXgLw8nNNAh53gSD7b9HYARiVzz4NHS/0/E59CBBF18FC7A79DC8328BADE16AC712C99CFFBF.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E59CBBF18FC7A79DC8328BADE16AC712C99CFFBF.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 03 Mar 2026 14:39:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:60:75:05:11:6c:31:9d:2f:5b:00:9e:6d:f9:35:d5:74:9d:b1:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E59CBBF18FC7A79DC8328BADE16AC712C99CFFBF Validity Not Before: Feb 24 23:15:57 2026 GMT Not After : Feb 23 23:20:57 2027 GMT Subject: CN=07AA7413AFA1016B15087029BED15161517DDE90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:42:47:ae:5c:15:5a:6e:f6:09:1f:f2:e3:6b: c5:f0:f8:fc:f5:76:24:92:44:c6:b6:6f:70:64:36: 0b:4a:21:9d:14:96:55:fd:5f:d7:ed:be:85:da:95: 7a:df:7b:e2:2f:99:0e:40:89:a1:e4:ea:dc:3b:21: 9d:78:dd:66:4e:8e:fe:e4:34:7c:02:f7:8c:b4:5b: 34:41:fd:ca:3a:d9:7a:98:96:c9:fc:9a:97:4e:9c: 63:22:94:75:0d:8a:d3:00:e7:eb:df:fc:cc:82:13: c2:1b:7f:fc:bf:5f:d5:81:6f:03:cf:ed:35:ae:b9: 61:04:2a:72:6f:5b:48:c9:49:06:c4:95:f4:86:85: 5f:8b:04:67:0b:8b:96:96:e8:88:98:7b:9b:fb:c7: 80:d2:75:bf:12:c9:36:45:0c:ed:be:42:fa:a8:d6: b5:a0:6d:9d:76:68:10:ba:19:ec:7e:c5:ed:d9:6a: 9b:5e:d3:27:74:fd:16:79:cd:5a:39:36:7a:1b:8d: d5:c2:0e:58:4a:1a:4b:ca:4a:98:26:7f:91:6e:9c: 4f:94:95:0d:af:85:c9:77:bc:12:80:df:04:6d:b5: 3d:59:de:5a:7f:04:9e:80:19:5f:da:ae:cd:f9:af: 0b:09:03:dc:4b:18:4d:32:9e:6d:3a:43:53:f3:45: 24:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AA:74:13:AF:A1:01:6B:15:08:70:29:BE:D1:51:61:51:7D:DE:90 X509v3 Authority Key Identifier: keyid:E5:9C:BB:F1:8F:C7:A7:9D:C8:32:8B:AD:E1:6A:C7:12:C9:9C:FF:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/Heh5dSWN61zTkpXgLw8nNNAh53gSD7b9HYARiVzz4NHS/0/E59CBBF18FC7A79DC8328BADE16AC712C99CFFBF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E59CBBF18FC7A79DC8328BADE16AC712C99CFFBF.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/Heh5dSWN61zTkpXgLw8nNNAh53gSD7b9HYARiVzz4NHS/0/323830343a383232343a633030303a3a2f33342d3334203d3e20323732353031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8224:c000::/34 Signature Algorithm: sha256WithRSAEncryption 7e:e9:ec:de:00:bf:e8:21:b9:da:3a:f0:ba:68:ea:25:40:91: 0c:2f:06:94:5f:ca:d1:49:49:79:2a:a1:1a:3a:a3:8e:e8:ff: f0:5f:76:d7:31:ac:58:c3:48:ea:f7:81:b5:59:0a:88:32:b3: bf:1f:6e:09:68:8e:c8:02:f4:9d:89:fb:64:8f:e9:82:c8:71: 01:11:cd:2b:e9:34:3c:9a:c0:c6:ba:b8:72:30:af:48:2d:10: c6:16:27:23:5d:26:07:b5:cd:03:44:d8:98:4d:f4:aa:89:ff: 7c:c4:05:6a:86:72:51:39:c4:66:af:b9:99:92:aa:5a:31:fa: f0:4f:5e:5c:be:e7:55:0d:91:d9:30:38:7c:5e:f5:ea:e4:da: 32:19:3a:17:d9:ca:74:c7:e0:54:00:f0:dc:3b:52:60:1f:09: 92:92:e1:31:72:69:13:71:9b:ed:9c:8a:36:c9:9c:32:e3:9a: 3b:99:25:1a:21:42:e2:ed:16:ae:3f:08:ea:01:22:1f:73:2a: 1e:da:0d:55:e4:1f:42:73:fb:21:af:8d:d9:ac:04:f1:d6:35: 26:ce:68:6e:b6:22:a0:fe:83:90:4f:82:7c:9d:9a:f4:0a:ca: e6:29:af:61:9c:9f:0b:ca:9b:31:86:eb:38:05:e9:0b:2a:5c: fd:4a:59:db -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUAWB1BRFsMZ0vWwCebfk11XSdsU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTU5Q0JCRjE4RkM3QTc5REM4MzI4QkFERTE2QUM3MTJD OTlDRkZCRjAeFw0yNjAyMjQyMzE1NTdaFw0yNzAyMjMyMzIwNTdaMDMxMTAvBgNV BAMTKDA3QUE3NDEzQUZBMTAxNkIxNTA4NzAyOUJFRDE1MTYxNTE3RERFOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQkeuXBVabvYJH/Lja8Xw+Pz1 diSSRMa2b3BkNgtKIZ0UllX9X9ftvoXalXrfe+IvmQ5AiaHk6tw7IZ143WZOjv7k NHwC94y0WzRB/co62XqYlsn8mpdOnGMilHUNitMA5+vf/MyCE8Ibf/y/X9WBbwPP 7TWuuWEEKnJvW0jJSQbElfSGhV+LBGcLi5aW6IiYe5v7x4DSdb8SyTZFDO2+Qvqo 1rWgbZ12aBC6Gex+xe3Zapte0yd0/RZ5zVo5NnobjdXCDlhKGkvKSpgmf5FunE+U lQ2vhcl3vBKA3wRttT1Z3lp/BJ6AGV/ars35rwsJA9xLGE0ynm06Q1PzRSSxAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUB6p0E6+hAWsVCHApvtFRYVF93pAwHwYDVR0j BBgwFoAU5Zy78Y/Hp53IMout4WrHEsmc/78wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSGVoNWRTV042MXpUa3BYZ0x3OG5OTkFoNTNnU0Q3YjlIWUFSaVZ6ejRO SFMvMC9FNTlDQkJGMThGQzdBNzlEQzgzMjhCQURFMTZBQzcxMkM5OUNGRkJGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0U1OUNCQkYxOEZDN0E3OURD ODMyOEJBREUxNkFDNzEyQzk5Q0ZGQkYuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hlaDVkU1dONjF6VGtwWGdMdzhuTk5BaDUzZ1NEN2I5SFlBUmlWeno0TkhTLzAv MzIzODMwMzQzYTM4MzIzMjM0M2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzczMjM1MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEgiTAMA0GCSqGSIb3DQEBCwUA A4IBAQB+6ezeAL/oIbnaOvC6aOolQJEMLwaUX8rRSUl5KqEaOqOO6P/wX3bXMaxY w0jq94G1WQqIMrO/H24JaI7IAvSdiftkj+mCyHEBEc0r6TQ8msDGurhyMK9ILRDG FicjXSYHtc0DRNiYTfSqif98xAVqhnJROcRmr7mZkqpaMfrwT15cvudVDZHZMDh8 XvXq5NoyGToX2cp0x+BUAPDcO1JgHwmSkuExcmkTcZvtnIo2yZwy45o7mSUaIULi 7RauPwjqASIfcyoe2g1V5B9Cc/shr43ZrATx1jUmzmhutiKg/oOQT4J8nZr0Csrm Ka9hnJ8Lypsxhus4BekLKlz9Slnb -----END CERTIFICATE-----Generated at Mon Mar 2 21:59:47 2026 by rpki-client