$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28667.roa File: AS28667.roa (raw, json) Hash identifier: wZKK+3hGA8iRTbsbx1LdpbVmCAxSSfk10XS0wvcLMVM= Subject key identifier: FA:5E:FA:75:4B:86:80:8F:A9:97:18:84:C7:C9:57:8C:E9:AA:2F:CA Certificate issuer: /CN=135830443F9F0628207359060862957206FBE517 Certificate serial: 2F32B2F78DC635DBDC5F97FB703C825F93C98161 Authority key identifier: 13:58:30:44:3F:9F:06:28:20:73:59:06:08:62:95:72:06:FB:E5:17 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/135830443F9F0628207359060862957206FBE517.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28667.roa Signing time: Wed 29 Apr 2026 19:45:03 +0000 ROA not before: Wed 29 Apr 2026 19:40:03 +0000 ROA not after: Wed 28 Apr 2027 19:45:03 +0000 asID: 28667 IP address blocks: 132.255.64.0/22 maxlen: 24 143.202.68.0/22 maxlen: 24 168.196.108.0/22 maxlen: 24 170.82.56.0/22 maxlen: 24 177.8.208.0/21 maxlen: 24 177.21.192.0/20 maxlen: 24 177.71.0.0/20 maxlen: 24 177.107.0.0/20 maxlen: 24 177.184.240.0/21 maxlen: 24 186.193.192.0/20 maxlen: 24 186.236.96.0/19 maxlen: 24 186.250.208.0/21 maxlen: 24 187.19.80.0/20 maxlen: 24 187.110.240.0/20 maxlen: 24 187.121.192.0/19 maxlen: 24 189.1.176.0/20 maxlen: 24 189.76.128.0/20 maxlen: 24 191.242.128.0/19 maxlen: 24 2804:4::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/135830443F9F0628207359060862957206FBE517.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/135830443F9F0628207359060862957206FBE517.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/135830443F9F0628207359060862957206FBE517.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 14 May 2026 05:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:32:b2:f7:8d:c6:35:db:dc:5f:97:fb:70:3c:82:5f:93:c9:81:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=135830443F9F0628207359060862957206FBE517 Validity Not Before: Apr 29 19:40:03 2026 GMT Not After : Apr 28 19:45:03 2027 GMT Subject: CN=FA5EFA754B86808FA9971884C7C9578CE9AA2FCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4e:a4:a8:e9:28:e5:94:fe:d7:c8:af:50:fc: 1a:a4:21:4e:bc:45:00:bf:2c:a4:f5:a4:30:d6:36: 26:f0:67:d2:d6:a1:77:6d:7d:6a:60:9d:e8:31:88: cb:04:66:61:f3:b1:a2:48:79:f2:49:15:f9:df:cc: 74:68:72:c8:74:49:3e:42:48:ce:8b:f3:5f:77:82: a3:ee:59:db:a2:86:86:25:dd:c9:2e:38:b9:e5:48: 90:9e:5c:17:8e:dc:13:6c:a9:d5:27:46:1a:9a:05: 47:20:8d:84:29:7c:90:f5:1c:59:83:d1:60:19:a5: 50:80:ad:c2:9f:75:ca:8e:fa:08:09:38:cd:43:4b: 25:68:60:f9:8e:50:8a:ef:b7:49:72:f7:c7:76:85: 81:35:21:e3:23:d5:78:46:e0:e1:43:0b:e3:17:d1: 2f:bd:93:9b:39:73:bb:55:37:f2:d1:15:34:1f:2c: 2e:73:4e:13:bc:71:7a:e0:cc:f5:5c:a7:cb:99:10: ef:95:bd:49:e7:30:14:96:e7:cc:15:5d:47:08:35: 9d:e0:06:be:0d:ae:94:e8:74:74:82:be:c3:b1:38: ba:d3:b1:fe:d7:ed:67:ac:2c:12:78:8c:64:3a:e4: 79:c2:28:bd:3d:97:78:25:44:6c:cd:63:cb:62:65: 3d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5E:FA:75:4B:86:80:8F:A9:97:18:84:C7:C9:57:8C:E9:AA:2F:CA X509v3 Authority Key Identifier: keyid:13:58:30:44:3F:9F:06:28:20:73:59:06:08:62:95:72:06:FB:E5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/135830443F9F0628207359060862957206FBE517.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/135830443F9F0628207359060862957206FBE517.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.255.64.0/22 143.202.68.0/22 168.196.108.0/22 170.82.56.0/22 177.8.208.0/21 177.21.192.0/20 177.71.0.0/20 177.107.0.0/20 177.184.240.0/21 186.193.192.0/20 186.236.96.0/19 186.250.208.0/21 187.19.80.0/20 187.110.240.0/20 187.121.192.0/19 189.1.176.0/20 189.76.128.0/20 191.242.128.0/19 IPv6: 2804:4::/32 Signature Algorithm: sha256WithRSAEncryption 20:16:44:ef:db:0a:9b:2f:b5:be:6b:88:93:22:19:80:e7:87: ed:09:f1:a0:50:95:48:fd:50:73:ee:b6:2f:03:63:8c:0c:d7: ec:b5:17:a7:9a:0d:c3:f4:d0:1b:dd:3a:84:8a:72:3e:e2:20: 51:8f:fc:09:a3:ee:a9:e0:12:47:f7:e1:42:4f:7b:df:1d:36: ca:34:63:86:0d:c2:b9:8b:a9:6c:e7:da:0d:d0:e3:b1:5e:66: b0:06:40:55:b6:1d:82:c7:14:c1:7d:14:7f:77:62:d1:b7:2b: 68:c8:ac:00:42:7f:17:5b:83:a8:a6:0c:23:b2:ab:b3:d5:a7: f0:15:9c:1a:22:32:b5:dd:1b:76:35:49:f2:9f:ff:96:36:b5: 5f:c5:f7:50:71:73:b7:74:c2:ac:d8:0a:55:0e:d2:08:69:ad: 2f:0c:93:30:0d:14:3c:0d:dd:e0:ec:3a:1e:8b:14:93:e9:75: dd:ef:1f:e6:c9:79:03:c2:9f:4c:a1:58:69:93:8b:e7:aa:8b: 92:a5:9a:8f:21:cd:4b:6a:03:ff:c6:f1:3c:4a:8c:5f:31:c2: 3b:ce:c1:14:4d:ba:3b:b6:9d:a1:42:e7:d1:cb:f8:51:e1:e3: 31:9d:72:21:73:4d:b6:3b:d9:dc:8a:a8:e6:6c:38:22:5d:c7: a8:09:17:1a -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIULzKy943GNdvcX5f7cDyCX5PJgWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM1ODMwNDQzRjlGMDYyODIwNzM1OTA2MDg2Mjk1NzIw NkZCRTUxNzAeFw0yNjA0MjkxOTQwMDNaFw0yNzA0MjgxOTQ1MDNaMDMxMTAvBgNV BAMTKEZBNUVGQTc1NEI4NjgwOEZBOTk3MTg4NEM3Qzk1NzhDRTlBQTJGQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoTqSo6SjllP7XyK9Q/BqkIU68 RQC/LKT1pDDWNibwZ9LWoXdtfWpgnegxiMsEZmHzsaJIefJJFfnfzHRocsh0ST5C SM6L8193gqPuWduihoYl3ckuOLnlSJCeXBeO3BNsqdUnRhqaBUcgjYQpfJD1HFmD 0WAZpVCArcKfdcqO+ggJOM1DSyVoYPmOUIrvt0ly98d2hYE1IeMj1XhG4OFDC+MX 0S+9k5s5c7tVN/LRFTQfLC5zThO8cXrgzPVcp8uZEO+VvUnnMBSW58wVXUcINZ3g Br4NrpTodHSCvsOxOLrTsf7X7WesLBJ4jGQ65HnCKL09l3glRGzNY8tiZT2VAgMB AAGjggKTMIICjzAdBgNVHQ4EFgQU+l76dUuGgI+plxiEx8lXjOmqL8owHwYDVR0j BBgwFoAUE1gwRD+fBiggc1kGCGKVcgb75RcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMC8xMzU4MzA0NDNGOUYwNjI4MjA3MzU5MDYwODYyOTU3MjA2RkJFNTE3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzEzNTgzMDQ0M0Y5RjA2Mjgy MDczNTkwNjA4NjI5NTcyMDZGQkU1MTcuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8wL0FTMjg2 Njcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwgZYGCCsGAQUFBwEHAQH/ BIGGMIGDMHIEAgABMGwDBAKE/0ADBAKPykQDBAKoxGwDBAKqUjgDBAOxCNADBASx FcADBASxRwADBASxawADBAOxuPADBAS6wcADBAW67GADBAO6+tADBAS7E1ADBAS7 bvADBAW7ecADBAS9AbADBAS9TIADBAW/8oAwDQQCAAIwBwMFACgEAAQwDQYJKoZI hvcNAQELBQADggEBACAWRO/bCpsvtb5riJMiGYDnh+0J8aBQlUj9UHPuti8DY4wM 1+y1F6eaDcP00BvdOoSKcj7iIFGP/Amj7qngEkf34UJPe98dNso0Y4YNwrmLqWzn 2g3Q47FeZrAGQFW2HYLHFMF9FH93YtG3K2jIrABCfxdbg6imDCOyq7PVp/AVnBoi MrXdG3Y1SfKf/5Y2tV/F91Bxc7d0wqzYClUO0ghprS8MkzANFDwN3eDsOh6LFJPp dd3vH+bJeQPCn0yhWGmTi+eqi5Klmo8hzUtqA//G8TxKjF8xwjvOwRRNuju2naFC 59HL+FHh4zGdciFzTbY72dyKqOZsOCJdx6gJFxo= -----END CERTIFICATE-----Generated at Wed May 13 17:32:35 2026 by rpki-client