$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28258.roa File: AS28258.roa (raw, json) Hash identifier: EqwhLcMbfGNeKIfwqJxgJgMphfr2N8KPv1iP6bDvdHQ= Subject key identifier: 10:A0:11:55:9A:20:EB:AD:21:C1:2E:EB:7A:17:C0:2C:99:42:90:B3 Certificate issuer: /CN=135830443F9F0628207359060862957206FBE517 Certificate serial: 5877FD0A653E3717B6CDFD3851C8C8499A0DA6A9 Authority key identifier: 13:58:30:44:3F:9F:06:28:20:73:59:06:08:62:95:72:06:FB:E5:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/135830443F9F0628207359060862957206FBE517.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28258.roa Signing time: Wed 29 Apr 2026 19:45:00 +0000 ROA not before: Wed 29 Apr 2026 19:40:00 +0000 ROA not after: Wed 28 Apr 2027 19:45:00 +0000 asID: 28258 IP address blocks: 138.117.72.0/22 maxlen: 24 168.227.196.0/22 maxlen: 24 170.246.208.0/22 maxlen: 24 177.104.64.0/19 maxlen: 24 177.126.224.0/20 maxlen: 24 186.235.96.0/20 maxlen: 24 187.16.176.0/20 maxlen: 24 187.85.80.0/20 maxlen: 24 190.108.96.0/19 maxlen: 24 2804:2484::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/135830443F9F0628207359060862957206FBE517.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/135830443F9F0628207359060862957206FBE517.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/135830443F9F0628207359060862957206FBE517.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 14 May 2026 05:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:77:fd:0a:65:3e:37:17:b6:cd:fd:38:51:c8:c8:49:9a:0d:a6:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=135830443F9F0628207359060862957206FBE517 Validity Not Before: Apr 29 19:40:00 2026 GMT Not After : Apr 28 19:45:00 2027 GMT Subject: CN=10A011559A20EBAD21C12EEB7A17C02C994290B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bc:c6:cc:7a:26:20:49:ff:b2:41:68:24:04: 34:f5:a3:b5:e7:f6:2a:37:9c:67:96:0a:6d:38:32: d0:0f:3f:47:ea:5c:b7:67:1e:6e:30:00:a5:31:5a: ca:0f:06:dc:6e:84:31:10:2b:dd:c5:d7:29:dc:00: 44:a4:a3:80:8a:60:e3:e8:75:a5:78:ff:d0:55:99: cd:91:f8:68:e1:c4:a2:0e:1c:4e:55:c4:b0:26:38: 95:ec:23:2a:22:28:32:dc:ac:a6:20:40:0a:36:ba: d6:b4:09:61:b1:c0:cc:b6:a0:34:3c:64:b2:90:bc: 42:8f:b2:05:3d:2e:46:ca:d3:a8:bc:98:f3:43:98: 40:36:83:a8:63:34:04:b8:21:d6:c0:e6:20:6b:a8: 01:d3:38:6f:c2:4b:5e:ce:82:63:d6:af:e9:c7:e7: 2e:39:6b:1a:a3:bc:5e:1b:50:09:21:5c:48:8a:d6: cf:65:29:3f:f9:2e:bd:c0:17:27:5c:f2:3f:d9:a3: 68:54:16:bc:96:6d:3f:8c:45:22:ca:9a:1e:8f:28: a6:36:52:49:87:c0:ba:25:10:18:d4:92:6a:bb:2c: e9:d8:88:d1:e7:00:56:79:b4:7b:59:19:a7:e3:c6: 8e:99:ec:5f:63:ed:ea:c3:bd:5f:7a:0c:e2:2b:20: 3c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A0:11:55:9A:20:EB:AD:21:C1:2E:EB:7A:17:C0:2C:99:42:90:B3 X509v3 Authority Key Identifier: keyid:13:58:30:44:3F:9F:06:28:20:73:59:06:08:62:95:72:06:FB:E5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/135830443F9F0628207359060862957206FBE517.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/135830443F9F0628207359060862957206FBE517.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28258.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.117.72.0/22 168.227.196.0/22 170.246.208.0/22 177.104.64.0/19 177.126.224.0/20 186.235.96.0/20 187.16.176.0/20 187.85.80.0/20 190.108.96.0/19 IPv6: 2804:2484::/32 Signature Algorithm: sha256WithRSAEncryption 4c:85:60:cb:25:bd:40:25:9c:72:54:c9:73:56:25:21:d3:00: 2f:92:ce:9d:0e:57:bd:e5:6a:31:07:7d:39:19:d7:3e:ba:a0: bb:0c:a1:7e:dc:04:9e:f3:3c:23:73:f3:ea:e6:d2:c7:fc:16: c0:94:8d:59:6f:75:20:a4:8b:1a:62:c2:60:28:86:44:fe:04: 27:5e:8d:19:e3:f5:4f:b7:af:de:b5:f5:10:f0:9f:dc:38:9b: d5:5e:47:8c:bc:c8:aa:68:1d:9e:31:6e:36:d6:a1:b7:e8:4a: 98:73:11:24:06:bf:d6:5d:53:e8:63:b6:e4:36:5f:cd:02:fc: 05:00:79:81:36:00:c1:ec:f1:be:98:84:eb:ab:eb:b4:95:4c: f5:ba:dc:9e:ab:d8:1d:3d:8b:75:57:29:ba:90:b7:53:46:91: 62:5c:11:6c:80:42:81:81:c1:07:b7:1d:01:f8:6c:f7:53:16: e2:5a:f9:6e:dc:a5:36:93:f3:60:b3:fb:3f:41:be:22:fb:55: 5e:5b:7f:20:47:fc:e6:ff:79:27:1a:8b:e9:96:0b:7e:d7:02: 64:17:d1:f3:05:59:a8:7b:e1:f2:30:68:5f:36:d2:25:7a:78: f1:3d:e0:43:10:1a:35:99:1e:e8:a0:63:29:27:b6:bb:d1:1f: 83:a2:b6:f4 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIUWHf9CmU+Nxe2zf04UcjISZoNpqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM1ODMwNDQzRjlGMDYyODIwNzM1OTA2MDg2Mjk1NzIw NkZCRTUxNzAeFw0yNjA0MjkxOTQwMDBaFw0yNzA0MjgxOTQ1MDBaMDMxMTAvBgNV BAMTKDEwQTAxMTU1OUEyMEVCQUQyMUMxMkVFQjdBMTdDMDJDOTk0MjkwQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEvMbMeiYgSf+yQWgkBDT1o7Xn 9io3nGeWCm04MtAPP0fqXLdnHm4wAKUxWsoPBtxuhDEQK93F1yncAESko4CKYOPo daV4/9BVmc2R+GjhxKIOHE5VxLAmOJXsIyoiKDLcrKYgQAo2uta0CWGxwMy2oDQ8 ZLKQvEKPsgU9LkbK06i8mPNDmEA2g6hjNAS4IdbA5iBrqAHTOG/CS17OgmPWr+nH 5y45axqjvF4bUAkhXEiK1s9lKT/5Lr3AFydc8j/Zo2hUFryWbT+MRSLKmh6PKKY2 UkmHwLolEBjUkmq7LOnYiNHnAFZ5tHtZGafjxo6Z7F9j7erDvV96DOIrIDzrAgMB AAGjggJaMIICVjAdBgNVHQ4EFgQUEKARVZog660hwS7rehfALJlCkLMwHwYDVR0j BBgwFoAUE1gwRD+fBiggc1kGCGKVcgb75RcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMC8xMzU4MzA0NDNGOUYwNjI4MjA3MzU5MDYwODYyOTU3MjA2RkJFNTE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzEzNTgzMDQ0M0Y5RjA2Mjgy MDczNTkwNjA4NjI5NTcyMDZGQkU1MTcuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8wL0FTMjgy NTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXgYIKwYBBQUHAQcBAf8E TzBNMDwEAgABMDYDBAKKdUgDBAKo48QDBAKq9tADBAWxaEADBASxfuADBAS662AD BAS7ELADBAS7VVADBAW+bGAwDQQCAAIwBwMFACgEJIQwDQYJKoZIhvcNAQELBQAD ggEBAEyFYMslvUAlnHJUyXNWJSHTAC+Szp0OV73lajEHfTkZ1z66oLsMoX7cBJ7z PCNz8+rm0sf8FsCUjVlvdSCkixpiwmAohkT+BCdejRnj9U+3r9619RDwn9w4m9Ve R4y8yKpoHZ4xbjbWobfoSphzESQGv9ZdU+hjtuQ2X80C/AUAeYE2AMHs8b6YhOur 67SVTPW63J6r2B09i3VXKbqQt1NGkWJcEWyAQoGBwQe3HQH4bPdTFuJa+W7cpTaT 82Cz+z9BviL7VV5bfyBH/Ob/eScai+mWC37XAmQX0fMFWah74fIwaF820iV6ePE9 4EMQGjWZHuigYykntrvRH4OitvQ= -----END CERTIFICATE-----Generated at Wed May 13 17:02:47 2026 by rpki-client