$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS263032.roa File: AS263032.roa (raw, json) Hash identifier: W3SsxcnHllwr4VJNYx1DE81OxfluJFO1u++FT5Gafjw= Subject key identifier: 9B:B0:D2:A7:E1:44:AB:AA:B6:D2:AF:AB:34:34:DC:39:9E:AB:D0:67 Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 36ED31D87CDF673BEA7E11A3FC8A425CC5198DA4 Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS263032.roa Signing time: Mon 29 Sep 2025 11:46:47 +0000 ROA not before: Mon 29 Sep 2025 11:41:47 +0000 ROA not after: Mon 28 Sep 2026 11:46:47 +0000 asID: 263032 IP address blocks: 168.90.44.0/22 maxlen: 24 170.238.192.0/22 maxlen: 24 177.137.56.0/21 maxlen: 24 186.250.36.0/22 maxlen: 24 2804:2d24::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ed:31:d8:7c:df:67:3b:ea:7e:11:a3:fc:8a:42:5c:c5:19:8d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:47 2025 GMT Not After : Sep 28 11:46:47 2026 GMT Subject: CN=9BB0D2A7E144ABAAB6D2AFAB3434DC399EABD067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:61:dd:16:57:ac:57:b6:69:f7:48:69:b3:6f: 05:da:30:5d:d5:e8:b2:e7:2a:23:35:33:ee:1c:72: 25:e3:3c:0f:97:17:71:3e:8f:2b:62:f1:36:f9:8a: e8:80:0c:eb:11:22:47:af:04:e5:fb:73:01:9c:5e: 22:53:77:29:b7:74:76:f9:ee:29:6d:bc:a3:34:b4: ee:2e:3a:38:4c:ad:74:74:7f:22:4a:e6:ea:b0:33: 08:e6:16:56:f0:30:f4:39:4e:2a:a6:10:ce:17:92: 8c:2a:79:8b:3c:b8:10:1f:f3:6f:2d:2d:29:fe:2e: 8a:d6:32:17:5b:36:79:69:dc:de:d8:c1:fe:7d:82: 44:51:c0:78:91:3b:6a:7c:45:1d:db:8f:e9:51:8a: 6f:69:63:63:03:5a:df:d3:61:17:7a:36:c1:38:93: d3:90:89:25:53:92:e7:40:0c:bf:b2:54:11:f5:bf: 0d:f8:59:66:b6:3e:b2:b9:33:1d:4c:b4:d5:4d:66: 25:fb:a1:ca:4c:cd:28:c9:27:22:c6:9a:b1:a6:ba: cb:7d:5e:fd:52:cd:6b:48:02:ee:b6:08:a7:ba:c3: bd:6a:f8:82:2d:69:32:7e:99:c6:98:2e:70:8c:6e: 60:cd:2e:4a:9c:0e:5b:49:16:90:c8:de:fa:1e:85: f2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B0:D2:A7:E1:44:AB:AA:B6:D2:AF:AB:34:34:DC:39:9E:AB:D0:67 X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS263032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.90.44.0/22 170.238.192.0/22 177.137.56.0/21 186.250.36.0/22 IPv6: 2804:2d24::/32 Signature Algorithm: sha256WithRSAEncryption af:10:0a:84:b2:48:76:4a:62:f9:e8:d2:4b:d1:47:41:cc:5c: 67:b7:16:4e:ea:b9:15:e1:92:02:a7:95:ca:b0:2d:34:80:e6: 76:c7:af:a7:84:48:50:24:65:21:91:c2:9f:01:10:6f:7b:06: 5b:c7:93:3f:d6:f9:2e:d5:e4:7b:4c:6e:89:83:8b:39:35:6b: d3:cc:e4:e6:9c:fe:10:fe:5f:9f:e3:4d:cd:bc:21:95:d8:2b: 8a:a5:3d:a5:c1:d5:0d:05:3c:85:a3:99:cb:66:75:84:f6:e1: 8f:7a:fe:3d:61:59:d7:31:fa:49:26:0b:ad:42:3f:0f:63:78: 88:67:4a:6f:2a:82:e3:3b:38:00:35:43:94:52:b2:24:d7:dd: 33:b6:3c:f6:dc:51:ac:c9:a1:fa:a1:42:58:09:0a:cb:01:45: 9f:91:db:ab:e7:cb:ee:41:12:34:17:eb:f3:a6:be:5b:ea:f7: a7:46:80:1a:2c:d1:bb:59:98:5e:a6:5c:9a:0a:6d:f6:da:c5: b9:d5:af:04:5b:7d:5f:1d:bd:95:30:c4:fd:a3:27:f9:02:e5: ea:7c:30:d7:5c:c1:2c:9d:4a:e9:3f:49:06:4e:b3:58:31:cf: 12:99:ae:2f:a8:c2:a3:2a:07:df:3d:df:a0:05:c5:0b:70:91: 0e:4e:5f:26 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNu0x2HzfZzvqfhGj/IpCXMUZjaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNDdaFw0yNjA5MjgxMTQ2NDdaMDMxMTAvBgNV BAMTKDlCQjBEMkE3RTE0NEFCQUFCNkQyQUZBQjM0MzREQzM5OUVBQkQwNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxYd0WV6xXtmn3SGmzbwXaMF3V 6LLnKiM1M+4cciXjPA+XF3E+jyti8Tb5iuiADOsRIkevBOX7cwGcXiJTdym3dHb5 7iltvKM0tO4uOjhMrXR0fyJK5uqwMwjmFlbwMPQ5TiqmEM4XkowqeYs8uBAf828t LSn+LorWMhdbNnlp3N7Ywf59gkRRwHiRO2p8RR3bj+lRim9pY2MDWt/TYRd6NsE4 k9OQiSVTkudADL+yVBH1vw34WWa2PrK5Mx1MtNVNZiX7ocpMzSjJJyLGmrGmust9 Xv1SzWtIAu62CKe6w71q+IItaTJ+mcaYLnCMbmDNLkqcDltJFpDI3voehfL9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUm7DSp+FEq6q20q+rNDTcOZ6r0GcwHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTMjYz MDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/ BDEwLzAeBAIAATAYAwQCqFosAwQCqu7AAwQDsYk4AwQCuvokMA0EAgACMAcDBQAo BC0kMA0GCSqGSIb3DQEBCwUAA4IBAQCvEAqEskh2SmL56NJL0UdBzFxntxZO6rkV 4ZICp5XKsC00gOZ2x6+nhEhQJGUhkcKfARBvewZbx5M/1vku1eR7TG6Jg4s5NWvT zOTmnP4Q/l+f403NvCGV2CuKpT2lwdUNBTyFo5nLZnWE9uGPev49YVnXMfpJJgut Qj8PY3iIZ0pvKoLjOzgANUOUUrIk190ztjz23FGsyaH6oUJYCQrLAUWfkdur58vu QRI0F+vzpr5b6venRoAaLNG7WZheplyaCm322sW51a8EW31fHb2VMMT9oyf5AuXq fDDXXMEsnUrpP0kGTrNYMc8Sma4vqMKjKgffPd+gBcULcJEOTl8m -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:31 2025 by rpki-client