$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS53171.roa File: AS53171.roa (raw, json) Hash identifier: 7tWlsaYDcDSRABYNAHGFzhnM/1ETPdrfTTLIgctFmf8= Subject key identifier: 23:F8:A0:4A:18:9B:72:26:EE:38:F7:45:AD:6E:F7:FD:77:7C:71:9A Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 5A49F36B22C917B6BD25BD203E7293E64F29A15A Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS53171.roa Signing time: Wed 02 Jul 2025 11:46:46 +0000 ROA not before: Wed 02 Jul 2025 11:41:46 +0000 ROA not after: Wed 01 Jul 2026 11:46:46 +0000 asID: 53171 IP address blocks: 138.118.92.0/22 maxlen: 24 177.87.16.0/21 maxlen: 24 186.224.224.0/20 maxlen: 24 2804:24e8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 04 Jul 2025 00:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:49:f3:6b:22:c9:17:b6:bd:25:bd:20:3e:72:93:e6:4f:29:a1:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Jul 2 11:41:46 2025 GMT Not After : Jul 1 11:46:46 2026 GMT Subject: CN=23F8A04A189B7226EE38F745AD6EF7FD777C719A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f0:03:cc:f7:5b:67:87:b1:cc:40:2b:d6:48: e5:ef:3e:3a:e2:7a:2e:a6:43:3f:30:77:e5:12:ed: bf:e9:02:45:ed:cc:1f:d4:e1:fa:1c:63:64:5c:c9: d3:6a:1d:7c:4e:74:cb:f2:34:9f:17:5a:83:cb:7d: 19:26:97:4f:37:8e:1c:f2:57:e4:91:36:65:5c:e4: 22:dd:f9:1e:00:eb:37:d2:d7:84:c3:15:72:a7:0b: 93:77:7e:03:25:f7:f6:fa:e8:32:22:51:07:7c:be: b6:fb:48:de:de:ab:51:58:eb:b0:20:ae:88:46:69: e0:09:fc:28:f7:b3:25:5b:87:71:69:0d:cf:7e:db: fc:10:f3:f3:42:fe:88:b5:09:1e:de:04:7e:73:f7: 4f:67:8a:bb:51:d9:f1:64:0f:8c:b4:ec:aa:75:8c: be:66:8c:57:09:8e:ae:06:58:9b:e3:71:42:ff:85: b4:08:67:0c:3b:19:6c:61:82:d4:a7:a9:c6:89:ca: 10:1a:8e:47:36:b7:34:55:f7:6a:7f:58:0c:2f:28: 79:ff:06:4d:1f:3b:95:a7:c5:7f:a5:c6:bc:5c:c7: 50:4f:68:1b:ec:ef:a7:0f:41:95:61:17:b5:a8:16: 27:06:6c:06:0f:90:38:cf:28:ce:02:23:a0:98:72: ec:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F8:A0:4A:18:9B:72:26:EE:38:F7:45:AD:6E:F7:FD:77:7C:71:9A X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS53171.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.118.92.0/22 177.87.16.0/21 186.224.224.0/20 IPv6: 2804:24e8::/32 Signature Algorithm: sha256WithRSAEncryption 22:92:a4:4a:72:45:0a:47:cf:99:90:65:10:74:17:6d:4d:f5: e7:b0:55:95:ea:cc:fc:48:5d:1a:88:e2:a1:fe:ac:82:b2:cc: fc:0e:04:7e:10:eb:da:fc:e5:b3:ec:e1:be:e9:cb:73:e5:d4: 32:4c:34:c0:75:27:62:e0:fd:95:35:25:25:d4:50:d4:1d:1e: f2:21:aa:5d:10:16:ae:7d:27:15:2a:ec:73:3d:13:8e:38:aa: a5:b3:f5:7c:c0:7e:1f:2a:ec:73:48:cb:d2:50:1b:6f:7c:8e: 8e:bd:d4:88:9b:95:68:ea:7d:5a:f9:2a:94:c6:59:c0:11:3b: d3:00:49:ff:75:ec:91:1b:d9:6d:34:12:2b:76:53:ea:ff:b8: 76:96:a1:8a:41:01:02:f5:20:7e:ee:96:0c:82:3a:c3:ee:62: 51:e4:0e:9f:f7:a6:08:11:23:da:58:5a:72:7a:7f:2f:23:14: d8:63:54:5b:9a:db:3d:9d:26:f4:45:14:a7:a8:94:c2:57:86: 64:30:94:3a:11:86:d3:c8:7c:07:a6:a5:95:88:0f:e2:2a:87: e4:55:c9:6e:74:44:8e:c1:c1:65:bc:ae:83:f9:5e:b6:a1:99: a1:7f:1d:45:c4:4a:6a:a3:58:ac:fe:25:e7:c3:7d:5a:56:df: a4:92:4e:5e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWknzayLJF7a9Jb0gPnKT5k8poVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNTA3MDIxMTQxNDZaFw0yNjA3MDExMTQ2NDZaMDMxMTAvBgNV BAMTKDIzRjhBMDRBMTg5QjcyMjZFRTM4Rjc0NUFENkVGN0ZENzc3QzcxOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg8APM91tnh7HMQCvWSOXvPjri ei6mQz8wd+US7b/pAkXtzB/U4focY2RcydNqHXxOdMvyNJ8XWoPLfRkml083jhzy V+SRNmVc5CLd+R4A6zfS14TDFXKnC5N3fgMl9/b66DIiUQd8vrb7SN7eq1FY67Ag rohGaeAJ/Cj3syVbh3FpDc9+2/wQ8/NC/oi1CR7eBH5z909nirtR2fFkD4y07Kp1 jL5mjFcJjq4GWJvjcUL/hbQIZww7GWxhgtSnqcaJyhAajkc2tzRV92p/WAwvKHn/ Bk0fO5WnxX+lxrxcx1BPaBvs76cPQZVhF7WoFicGbAYPkDjPKM4CI6CYcuy1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUI/igShibcibuOPdFrW73/Xd8cZowHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTNTMx NzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAKKdlwDBAOxVxADBAS64OAwDQQCAAIwBwMFACgEJOgwDQYJ KoZIhvcNAQELBQADggEBACKSpEpyRQpHz5mQZRB0F21N9eewVZXqzPxIXRqI4qH+ rIKyzPwOBH4Q69r85bPs4b7py3Pl1DJMNMB1J2Lg/ZU1JSXUUNQdHvIhql0QFq59 JxUq7HM9E444qqWz9XzAfh8q7HNIy9JQG298jo691IiblWjqfVr5KpTGWcARO9MA Sf917JEb2W00Eit2U+r/uHaWoYpBAQL1IH7ulgyCOsPuYlHkDp/3pggRI9pYWnJ6 fy8jFNhjVFua2z2dJvRFFKeolMJXhmQwlDoRhtPIfAempZWID+Iqh+RVyW50RI7B wWW8roP5XrahmaF/HUXESmqjWKz+JefDfVpW36SSTl4= -----END CERTIFICATE-----Generated at Thu Jul 3 08:06:06 2025 by rpki-client