$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS264299.roa File: AS264299.roa (raw, json) Hash identifier: DrMQKOE0sKgEuCTcTreklHf9eu1/hsGkZ7KsfLJg+CI= Subject key identifier: D4:99:BB:0A:72:A9:10:AD:79:3C:8D:91:1C:EB:67:A6:41:4F:2D:61 Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 544FEFC2B566E4D6938768B229F4021891B1DFD8 Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS264299.roa Signing time: Wed 02 Jul 2025 11:39:46 +0000 ROA not before: Wed 02 Jul 2025 11:34:46 +0000 ROA not after: Wed 01 Jul 2026 11:39:46 +0000 asID: 264299 IP address blocks: 138.121.152.0/22 maxlen: 24 170.254.20.0/22 maxlen: 24 2804:25bc::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 04 Jul 2025 00:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:4f:ef:c2:b5:66:e4:d6:93:87:68:b2:29:f4:02:18:91:b1:df:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Jul 2 11:34:46 2025 GMT Not After : Jul 1 11:39:46 2026 GMT Subject: CN=D499BB0A72A910AD793C8D911CEB67A6414F2D61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7c:93:d2:d5:03:c2:fe:aa:ad:5a:e2:0a:93: 43:06:92:d4:e4:7d:49:cb:69:c1:04:fa:d7:03:ed: 79:1c:49:6d:b8:77:59:fd:ab:a6:f4:2c:4f:7e:be: 35:c7:d7:f2:7c:30:b6:31:1e:d3:dc:c8:3d:b7:ca: 12:d2:bb:9b:23:00:a6:9b:55:ed:f5:25:a2:64:19: ed:27:f1:7a:f7:2e:05:6d:81:4f:2d:1b:9c:80:a5: de:d8:bf:b7:7f:64:47:43:36:2b:bb:d7:85:7a:57: 26:2f:38:86:d1:93:f2:21:e5:ad:7d:ed:af:93:f6: e5:92:cb:9f:29:7c:e0:7a:a5:1a:07:e5:7d:58:51: 78:19:0c:6e:73:3b:c9:da:64:af:c7:e1:63:71:a0: f9:73:dd:b2:44:f4:8c:cd:fa:32:67:e9:d2:6b:56: 22:7e:ea:55:e5:ae:05:b8:62:eb:4f:b1:f3:31:f3: 2a:bd:eb:2b:45:a6:d8:ce:82:42:86:4d:f9:92:ad: 59:c9:3f:b3:a9:e8:1c:89:20:1e:cc:5f:6c:a9:22: 8a:d8:9e:69:f3:8a:6e:8b:c1:85:fa:f9:ea:d1:4b: ea:7f:6f:d5:3a:91:d1:bd:81:89:15:f9:2d:99:a8: dd:54:ac:8b:c4:40:62:bb:39:ec:02:d1:04:a1:bb: a8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:99:BB:0A:72:A9:10:AD:79:3C:8D:91:1C:EB:67:A6:41:4F:2D:61 X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS264299.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.152.0/22 170.254.20.0/22 IPv6: 2804:25bc::/32 Signature Algorithm: sha256WithRSAEncryption 4d:b8:54:44:1f:a3:b8:18:98:2c:1b:90:52:ef:af:76:41:c8: a4:fb:6b:72:98:9d:10:3e:82:25:5d:fc:0b:83:f2:0f:02:7f: d2:f4:33:27:2d:15:23:94:94:dc:49:ef:f2:b0:93:ca:29:2a: 55:32:18:f7:a0:5f:1c:a3:70:67:91:8c:84:1c:52:d1:da:37: 0e:5d:55:1e:35:8f:10:57:94:12:29:7a:ae:20:91:c6:dd:61: eb:42:23:8c:20:6d:19:af:22:21:30:7e:a9:7d:cf:c5:24:77: b5:df:84:63:54:5f:e5:85:22:0b:db:42:78:51:10:ae:3e:83: 64:19:01:3c:1c:bf:1b:f4:9b:7e:39:58:c7:7a:0f:b2:3c:05: 41:c9:3b:cb:d6:31:f2:8e:2f:97:ff:99:c0:c5:ff:32:a9:55: 29:f9:07:be:7a:a6:29:c0:a6:f6:e9:f4:f0:0d:b6:db:6b:57: 61:ef:d5:c9:a6:e8:73:94:f7:6b:d7:e1:59:41:6b:da:b2:eb: f0:6f:b5:0d:71:dd:6a:2a:37:50:47:c5:0b:3f:c2:40:57:81: 91:2f:6f:e7:d3:e2:26:d8:59:7a:a5:be:2f:f7:d0:2f:3d:0f: 3f:4a:00:65:e5:17:17:41:92:df:67:95:f0:89:fe:9c:c0:63: ae:e3:1c:9a -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUVE/vwrVm5NaTh2iyKfQCGJGx39gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNTA3MDIxMTM0NDZaFw0yNjA3MDExMTM5NDZaMDMxMTAvBgNV BAMTKEQ0OTlCQjBBNzJBOTEwQUQ3OTNDOEQ5MTFDRUI2N0E2NDE0RjJENjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4fJPS1QPC/qqtWuIKk0MGktTk fUnLacEE+tcD7XkcSW24d1n9q6b0LE9+vjXH1/J8MLYxHtPcyD23yhLSu5sjAKab Ve31JaJkGe0n8Xr3LgVtgU8tG5yApd7Yv7d/ZEdDNiu714V6VyYvOIbRk/Ih5a19 7a+T9uWSy58pfOB6pRoH5X1YUXgZDG5zO8naZK/H4WNxoPlz3bJE9IzN+jJn6dJr ViJ+6lXlrgW4YutPsfMx8yq96ytFptjOgkKGTfmSrVnJP7Op6ByJIB7MX2ypIorY nmnzim6LwYX6+erRS+p/b9U6kdG9gYkV+S2ZqN1UrIvEQGK7OewC0QShu6g7AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU1Jm7CnKpEK15PI2RHOtnpkFPLWEwHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTMjY0 Mjk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQCinmYAwQCqv4UMA0EAgACMAcDBQAoBCW8MA0GCSqGSIb3 DQEBCwUAA4IBAQBNuFREH6O4GJgsG5BS7692Qcik+2tymJ0QPoIlXfwLg/IPAn/S 9DMnLRUjlJTcSe/ysJPKKSpVMhj3oF8co3BnkYyEHFLR2jcOXVUeNY8QV5QSKXqu IJHG3WHrQiOMIG0ZryIhMH6pfc/FJHe134RjVF/lhSIL20J4URCuPoNkGQE8HL8b 9Jt+OVjHeg+yPAVByTvL1jHyji+X/5nAxf8yqVUp+Qe+eqYpwKb26fTwDbbba1dh 79XJpuhzlPdr1+FZQWvasuvwb7UNcd1qKjdQR8ULP8JAV4GRL2/n0+Im2Fl6pb4v 99AvPQ8/SgBl5RcXQZLfZ5Xwif6cwGOu4xya -----END CERTIFICATE-----Generated at Thu Jul 3 08:09:37 2025 by rpki-client