$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28287.roa File: AS28287.roa (raw, json) Hash identifier: 4FbA/IOzAHj3qudtvFfY4xg4Qh7HALKqzjuWFZrXWxw= Subject key identifier: D3:CD:FB:5D:CE:00:5D:25:59:F1:52:04:AA:CC:6D:6F:56:C0:05:33 Certificate issuer: /CN=135830443F9F0628207359060862957206FBE517 Certificate serial: 6E9FCD47AE8DA2BDD2853027852A076D79534FB3 Authority key identifier: 13:58:30:44:3F:9F:06:28:20:73:59:06:08:62:95:72:06:FB:E5:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/135830443F9F0628207359060862957206FBE517.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28287.roa Signing time: Wed 29 Apr 2026 19:45:01 +0000 ROA not before: Wed 29 Apr 2026 19:40:01 +0000 ROA not after: Wed 28 Apr 2027 19:45:01 +0000 asID: 28287 IP address blocks: 138.118.120.0/22 maxlen: 24 167.249.176.0/22 maxlen: 24 168.194.60.0/22 maxlen: 24 177.130.96.0/20 maxlen: 24 179.127.64.0/21 maxlen: 24 189.124.80.0/20 maxlen: 24 201.49.192.0/20 maxlen: 24 2804:1080::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/135830443F9F0628207359060862957206FBE517.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/135830443F9F0628207359060862957206FBE517.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/135830443F9F0628207359060862957206FBE517.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 14 May 2026 05:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:9f:cd:47:ae:8d:a2:bd:d2:85:30:27:85:2a:07:6d:79:53:4f:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=135830443F9F0628207359060862957206FBE517 Validity Not Before: Apr 29 19:40:01 2026 GMT Not After : Apr 28 19:45:01 2027 GMT Subject: CN=D3CDFB5DCE005D2559F15204AACC6D6F56C00533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3a:ab:6b:5c:66:b5:8b:5a:b9:b0:03:92:81: 7c:c7:45:1d:a1:a4:6e:da:e1:81:aa:57:aa:ac:a1: ba:3e:e0:10:0e:86:4d:99:41:c1:7c:d8:0c:48:c6: 66:8b:c4:3f:b0:17:43:a4:a8:cf:24:09:9e:6d:5a: 95:8b:39:e8:05:e6:58:fe:65:2a:9a:3c:10:2c:17: 36:93:ae:55:33:7c:41:64:af:16:d4:fd:63:87:f9: 59:89:81:55:0a:44:97:39:bd:f8:38:35:64:82:a7: 52:58:63:f2:cc:53:7e:4f:05:46:3a:49:a8:d2:c4: 29:7b:f3:77:9f:19:e1:03:57:05:ef:14:d2:c6:8d: 3e:32:7b:78:6a:62:0e:0e:b1:ec:7d:4b:3b:5b:ed: f1:f8:af:65:6b:28:66:c7:bc:b8:39:ad:13:23:25: 3d:f0:f6:57:41:62:31:37:ad:38:58:78:43:78:9c: 9b:c3:3b:a3:68:21:cb:14:bb:1a:0c:d2:03:3f:1b: fd:d3:95:ee:fe:10:0e:cd:76:ac:49:e5:9e:a8:f1: 9e:31:c6:13:87:8f:d0:5b:0a:aa:a1:37:44:f7:c8: ef:93:de:ac:a6:98:2f:d7:82:32:5c:53:c9:55:e6: 5c:9d:bd:44:8e:ee:0a:f5:23:88:26:11:d2:5f:3d: f0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:CD:FB:5D:CE:00:5D:25:59:F1:52:04:AA:CC:6D:6F:56:C0:05:33 X509v3 Authority Key Identifier: keyid:13:58:30:44:3F:9F:06:28:20:73:59:06:08:62:95:72:06:FB:E5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/135830443F9F0628207359060862957206FBE517.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/135830443F9F0628207359060862957206FBE517.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28287.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.118.120.0/22 167.249.176.0/22 168.194.60.0/22 177.130.96.0/20 179.127.64.0/21 189.124.80.0/20 201.49.192.0/20 IPv6: 2804:1080::/32 Signature Algorithm: sha256WithRSAEncryption 3c:e3:9b:f4:51:d8:35:98:47:6d:35:36:21:15:69:41:f0:dc: 47:32:36:bf:9f:7d:5c:c6:ad:83:d3:0f:67:c2:f4:89:2f:24: 3b:5d:dd:a6:83:85:7a:bc:bb:1f:21:82:f9:57:5a:ed:d1:40: 06:8b:60:d6:6f:b7:df:dd:16:fa:8b:28:48:6c:70:56:07:37: 98:2a:17:f2:57:eb:77:20:40:c8:2f:32:ec:d4:ee:f9:22:cf: e2:23:00:b8:6f:fe:ba:a7:c3:52:77:54:f0:e8:ef:9d:e7:a5: f6:40:a3:7f:d0:ab:85:10:5f:52:f2:b5:bd:d4:3e:4c:cc:aa: 17:ef:55:b1:11:0a:55:9a:1c:95:1e:49:70:f6:0e:77:3c:d4: bd:88:bb:f7:9a:24:64:51:62:6f:75:9a:9e:82:0e:54:60:48: ce:70:0b:5b:dc:3d:90:f1:4b:e3:7b:2e:85:99:77:e5:72:21: dc:5e:0e:61:b9:83:c3:14:f5:e7:b2:65:bb:7d:5e:ff:45:67: ea:44:31:24:65:4c:18:91:07:16:24:96:e9:43:97:6f:3f:1a: 27:37:23:16:3c:83:91:59:cd:e5:ff:87:93:a9:e3:18:1d:d3: 01:8e:82:ae:5d:a2:36:3d:36:8b:08:a9:56:17:d5:7c:95:c7: a9:b3:5a:27 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUbp/NR66Nor3ShTAnhSoHbXlTT7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM1ODMwNDQzRjlGMDYyODIwNzM1OTA2MDg2Mjk1NzIw NkZCRTUxNzAeFw0yNjA0MjkxOTQwMDFaFw0yNzA0MjgxOTQ1MDFaMDMxMTAvBgNV BAMTKEQzQ0RGQjVEQ0UwMDVEMjU1OUYxNTIwNEFBQ0M2RDZGNTZDMDA1MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnOqtrXGa1i1q5sAOSgXzHRR2h pG7a4YGqV6qsobo+4BAOhk2ZQcF82AxIxmaLxD+wF0OkqM8kCZ5tWpWLOegF5lj+ ZSqaPBAsFzaTrlUzfEFkrxbU/WOH+VmJgVUKRJc5vfg4NWSCp1JYY/LMU35PBUY6 SajSxCl783efGeEDVwXvFNLGjT4ye3hqYg4Osex9Sztb7fH4r2VrKGbHvLg5rRMj JT3w9ldBYjE3rThYeEN4nJvDO6NoIcsUuxoM0gM/G/3Tle7+EA7NdqxJ5Z6o8Z4x xhOHj9BbCqqhN0T3yO+T3qymmC/XgjJcU8lV5lydvUSO7gr1I4gmEdJfPfAnAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQU0837Xc4AXSVZ8VIEqsxtb1bABTMwHwYDVR0j BBgwFoAUE1gwRD+fBiggc1kGCGKVcgb75RcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMC8xMzU4MzA0NDNGOUYwNjI4MjA3MzU5MDYwODYyOTU3MjA2RkJFNTE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzEzNTgzMDQ0M0Y5RjA2Mjgy MDczNTkwNjA4NjI5NTcyMDZGQkU1MTcuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8wL0FTMjgy ODcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAKKdngDBAKn+bADBAKowjwDBASxgmADBAOzf0ADBAS9fFAD BATJMcAwDQQCAAIwBwMFACgEEIAwDQYJKoZIhvcNAQELBQADggEBADzjm/RR2DWY R201NiEVaUHw3EcyNr+ffVzGrYPTD2fC9IkvJDtd3aaDhXq8ux8hgvlXWu3RQAaL YNZvt9/dFvqLKEhscFYHN5gqF/JX63cgQMgvMuzU7vkiz+IjALhv/rqnw1J3VPDo 753npfZAo3/Qq4UQX1Lytb3UPkzMqhfvVbERClWaHJUeSXD2Dnc81L2Iu/eaJGRR Ym91mp6CDlRgSM5wC1vcPZDxS+N7LoWZd+VyIdxeDmG5g8MU9eeyZbt9Xv9FZ+pE MSRlTBiRBxYklulDl28/Gic3IxY8g5FZzeX/h5Op4xgd0wGOgq5dojY9NosIqVYX 1XyVx6mzWic= -----END CERTIFICATE-----Generated at Wed May 13 17:32:38 2026 by rpki-client