$ rpki-client -vvf rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa File: AS53059.roa (raw, json) Hash identifier: M28GC4ofNnSo8QiMQZR6KO3DoqyaTk8W0zY82t6hjDk= Subject key identifier: 03:97:35:35:6B:FE:DB:82:5D:C6:00:4A:CB:7A:64:33:DD:8D:A1:78 Certificate issuer: /CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E Certificate serial: 605543E88327BB8D3B9A0804BA383DC411E68DBD Authority key identifier: F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer Subject info access: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa Signing time: Thu 09 Oct 2025 21:02:30 +0000 ROA not before: Thu 09 Oct 2025 20:57:30 +0000 ROA not after: Thu 08 Oct 2026 21:02:30 +0000 asID: 53059 IP address blocks: 138.0.100.0/22 maxlen: 22 168.228.68.0/22 maxlen: 22 177.137.193.0/24 maxlen: 24 177.137.194.0/24 maxlen: 24 177.137.195.0/24 maxlen: 24 177.137.196.0/24 maxlen: 24 177.137.197.0/24 maxlen: 24 177.137.198.0/24 maxlen: 24 177.137.199.0/24 maxlen: 24 177.137.200.0/24 maxlen: 24 177.137.201.0/24 maxlen: 24 177.137.202.0/24 maxlen: 24 177.137.203.0/24 maxlen: 24 177.137.204.0/24 maxlen: 24 177.137.205.0/24 maxlen: 24 177.137.206.0/24 maxlen: 24 177.137.207.0/24 maxlen: 24 179.96.240.0/20 maxlen: 20 186.193.96.0/20 maxlen: 20 186.208.213.0/24 maxlen: 24 186.208.214.0/24 maxlen: 24 186.208.215.0/24 maxlen: 24 186.251.113.0/24 maxlen: 24 186.251.116.0/24 maxlen: 24 186.251.117.0/24 maxlen: 24 187.49.192.0/20 maxlen: 20 187.87.112.0/20 maxlen: 20 200.233.80.0/20 maxlen: 20 2804:2140:100c::/48 maxlen: 48 2804:2140:1016::/48 maxlen: 48 2804:2140:1020::/46 maxlen: 46 2804:2140:1801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 10:12:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:55:43:e8:83:27:bb:8d:3b:9a:08:04:ba:38:3d:c4:11:e6:8d:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E Validity Not Before: Oct 9 20:57:30 2025 GMT Not After : Oct 8 21:02:30 2026 GMT Subject: CN=039735356BFEDB825DC6004ACB7A6433DD8DA178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b2:44:6a:1e:c9:74:08:09:6d:2a:8e:3f:4c: 9e:e6:8a:42:51:33:19:cc:d3:ed:bb:a0:29:9b:8a: 08:2c:76:da:b3:6b:da:bf:f1:11:25:8e:ed:eb:6f: 83:f7:f2:a6:25:3f:1c:23:23:b2:db:71:d2:57:f7: 41:5a:57:c1:0e:2b:d2:78:07:a1:cc:29:d3:2c:1b: 6c:bc:d7:f7:d3:04:01:6b:b4:a2:43:39:c2:a9:73: 27:a6:ac:1e:a0:aa:be:10:89:a9:2c:48:31:db:23: ad:f2:aa:3a:a8:c1:5b:98:31:a1:fd:58:cf:3b:80: 20:9f:1d:e5:1f:61:02:01:63:88:33:92:07:d0:4c: 7b:49:58:78:f7:4f:12:c7:e0:bf:0e:05:33:d4:da: 86:84:1d:c2:04:4a:f7:c1:63:0a:69:4f:f9:8b:2b: 74:7a:cc:db:51:68:76:13:43:d8:79:a8:a6:65:72: a2:35:65:4f:36:92:b1:ab:e9:6a:68:e9:5b:54:7b: 70:ed:2b:6c:a4:17:55:1f:16:fd:1a:c4:79:af:93: 59:ed:1c:76:90:52:b6:d5:50:68:33:8a:16:76:10: 01:0e:37:d8:6d:ab:ff:d9:ed:a7:ae:be:5d:b5:25: 73:07:10:31:de:80:ef:01:32:a4:f6:b6:ee:e2:aa: 8d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:97:35:35:6B:FE:DB:82:5D:C6:00:4A:CB:7A:64:33:DD:8D:A1:78 X509v3 Authority Key Identifier: keyid:F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.0.100.0/22 168.228.68.0/22 177.137.193.0-177.137.207.255 179.96.240.0/20 186.193.96.0/20 186.208.213.0-186.208.215.255 186.251.113.0/24 186.251.116.0/23 187.49.192.0/20 187.87.112.0/20 200.233.80.0/20 IPv6: 2804:2140:100c::/48 2804:2140:1016::/48 2804:2140:1020::/46 2804:2140:1801::/48 Signature Algorithm: sha256WithRSAEncryption 3c:ad:68:ad:29:30:0b:17:c0:f1:98:6a:ab:0e:5c:5b:84:78: 18:a0:67:5c:07:da:38:38:92:8a:5c:44:ac:32:e6:67:6c:f9: 8b:40:c9:15:f7:53:2c:7d:56:bc:13:b1:e6:dc:6f:cf:be:6b: dd:ad:62:c5:19:d4:ce:c6:c5:51:f9:c8:9c:75:ff:ba:47:4f: 76:88:b2:da:fc:96:56:0f:fb:46:d7:1e:f2:5e:c1:29:cb:8e: 1a:8c:c0:65:f3:e5:f0:cb:26:64:24:e6:c4:11:df:2a:63:87: 4c:6a:5e:fa:f6:73:8c:5f:8c:10:f8:39:1f:2d:ed:26:21:38: 1c:ad:bf:60:f1:db:87:b2:0b:ee:d7:c0:40:54:ce:a8:54:c3: f0:89:b6:82:13:b1:e2:f2:29:c5:0d:c0:eb:dd:53:91:3d:f8: 3c:0b:96:ad:bd:af:1f:af:15:b1:26:2a:5e:1b:d1:c4:5a:f7: ae:7e:ac:b4:0f:5b:98:9c:b2:61:2c:16:73:5d:20:18:06:c2: 59:a2:55:27:eb:49:54:73:2b:c9:3d:4f:b0:cb:0c:db:0a:3a: 3b:3e:f4:67:24:f6:56:d0:e8:d5:15:b6:5f:64:5c:80:b7:dd: a1:73:ef:03:c2:38:88:91:68:fc:be:16:24:04:58:2b:67:a7: db:78:65:84 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgIUYFVD6IMnu407mggEujg9xBHmjb0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjYyRkE1NDBFNTlCODU3MDIwQzRCMjA5NTQyMzBFMEMw QUU4Q0EwRTAeFw0yNTEwMDkyMDU3MzBaFw0yNjEwMDgyMTAyMzBaMDMxMTAvBgNV BAMTKDAzOTczNTM1NkJGRURCODI1REM2MDA0QUNCN0E2NDMzREQ4REExNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5skRqHsl0CAltKo4/TJ7mikJR MxnM0+27oCmbiggsdtqza9q/8RElju3rb4P38qYlPxwjI7LbcdJX90FaV8EOK9J4 B6HMKdMsG2y81/fTBAFrtKJDOcKpcyemrB6gqr4QiaksSDHbI63yqjqowVuYMaH9 WM87gCCfHeUfYQIBY4gzkgfQTHtJWHj3TxLH4L8OBTPU2oaEHcIESvfBYwppT/mL K3R6zNtRaHYTQ9h5qKZlcqI1ZU82krGr6Wpo6VtUe3DtK2ykF1UfFv0axHmvk1nt HHaQUrbVUGgzihZ2EAEON9htq//Z7aeuvl21JXMHEDHegO8BMqT2tu7iqo2jAgMB AAGjggKWMIICkjAdBgNVHQ4EFgQUA5c1NWv+24JdxgBKy3pkM92NoXgwHwYDVR0j BBgwFoAU9i+lQOWbhXAgxLIJVCMODAroyg4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMmRHQVBKUDY1ZWZlQ1RVYTg0aHc1UkdSYlpHUFcycVJ5VHZnYWhnanhF ZUIvMC9GNjJGQTU0MEU1OUI4NTcwMjBDNEIyMDk1NDIzMEUwQzBBRThDQTBFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Y2MkZBNTQwRTU5Qjg1NzAy MEM0QjIwOTU0MjMwRTBDMEFFOENBMEUuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8yZEdB UEpQNjVlZmVDVFVhODRodzVSR1JiWkdQVzJxUnlUdmdhaGdqeEVlQi8wL0FTNTMw NTkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwgZkGCCsGAQUFBwEHAQH/ BIGJMIGGMFgEAgABMFIDBAKKAGQDBAKo5EQwDAMEALGJwQMEBLGJwAMEBLNg8AME BLrBYDAMAwQAutDVAwQDutDQAwQAuvtxAwQBuvt0AwQEuzHAAwQEu1dwAwQEyOlQ MCoEAgACMCQDBwAoBCFAEAwDBwAoBCFAEBYDBwIoBCFAECADBwAoBCFAGAEwDQYJ KoZIhvcNAQELBQADggEBADytaK0pMAsXwPGYaqsOXFuEeBigZ1wH2jg4kopcRKwy 5mds+YtAyRX3Uyx9VrwTsebcb8++a92tYsUZ1M7GxVH5yJx1/7pHT3aIstr8llYP +0bXHvJewSnLjhqMwGXz5fDLJmQk5sQR3ypjh0xqXvr2c4xfjBD4OR8t7SYhOByt v2Dx24eyC+7XwEBUzqhUw/CJtoITseLyKcUNwOvdU5E9+DwLlq29rx+vFbEmKl4b 0cRa965+rLQPW5icsmEsFnNdIBgGwlmiVSfrSVRzK8k9T7DLDNsKOjs+9Gck9lbQ 6NUVtl9kXIC33aFz7wPCOIiRaPy+FiQEWCtnp9t4ZYQ= -----END CERTIFICATE-----Generated at Mon Oct 20 14:41:24 2025 by rpki-client