$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS264299.roa File: AS264299.roa (raw, json) Hash identifier: s1qIy2xgM9DxImBRrmEjVWDTEOfKB01YiFTm7oHrGww= Subject key identifier: 40:0B:00:85:37:E2:60:4C:0C:AF:E9:32:B6:98:BA:E9:FB:C3:29:68 Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 7A44D2D282CC2ADCBA1E998E959AE64762FF1B77 Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS264299.roa Signing time: Mon 29 Sep 2025 11:46:50 +0000 ROA not before: Mon 29 Sep 2025 11:41:50 +0000 ROA not after: Mon 28 Sep 2026 11:46:50 +0000 asID: 264299 IP address blocks: 138.121.152.0/22 maxlen: 24 170.254.20.0/22 maxlen: 24 2804:25bc::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:44:d2:d2:82:cc:2a:dc:ba:1e:99:8e:95:9a:e6:47:62:ff:1b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:50 2025 GMT Not After : Sep 28 11:46:50 2026 GMT Subject: CN=400B008537E2604C0CAFE932B698BAE9FBC32968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:95:47:c2:8c:21:87:5a:d7:91:9e:52:56:ef: f7:3a:1b:64:18:b6:9e:70:d3:d9:4f:18:a5:77:f0: a7:65:81:4b:11:af:67:38:d2:ce:34:ed:92:85:00: 72:63:39:8a:50:1a:7e:ef:1e:53:3e:7f:04:1d:8c: 99:62:8c:41:85:90:67:32:b2:a2:30:11:45:80:3d: 0e:44:5d:77:0e:96:36:5c:dd:48:b2:bc:9b:d0:02: 02:0b:ca:6d:bb:b8:ae:9b:e3:89:a2:1f:28:86:90: d9:23:48:df:3f:52:d1:71:1b:53:5b:e6:a8:77:b1: 49:bf:c7:e6:38:c6:a8:40:be:c6:45:fb:42:41:5f: bd:4c:16:19:3b:28:60:7a:70:fa:36:ff:0f:0f:54: be:24:53:05:a3:95:03:b2:24:c2:1d:9c:9a:50:97: d4:84:59:80:dc:ca:d5:72:36:6c:01:99:72:c5:75: cc:76:6b:e0:86:cc:96:dd:be:95:70:ac:a9:dc:b1: 38:ef:a9:39:12:eb:c8:b6:31:29:9c:b1:b8:f9:8c: 78:5b:9f:a1:ed:25:a4:f1:aa:27:e1:8c:d3:9f:6a: 86:7d:71:8b:ec:dd:58:17:eb:cb:91:bb:e7:21:b9: ff:7d:bb:e0:80:89:ec:9e:d0:c9:dd:88:4d:61:b6: 20:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:0B:00:85:37:E2:60:4C:0C:AF:E9:32:B6:98:BA:E9:FB:C3:29:68 X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS264299.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.152.0/22 170.254.20.0/22 IPv6: 2804:25bc::/32 Signature Algorithm: sha256WithRSAEncryption 45:b1:e3:47:e4:2c:b1:ba:84:46:a9:d5:d8:db:80:64:6d:b0: 1f:33:69:fa:17:3a:21:07:98:68:f7:6e:03:cf:2e:7b:2c:56: fb:90:7f:21:e8:69:81:6b:d0:8c:32:e4:6f:1f:a1:cc:59:56: f5:8b:f6:a1:85:b8:17:d1:a2:80:e3:37:3e:f5:ae:38:49:5d: 09:a4:65:04:1d:86:e4:fb:97:3d:4e:ba:43:1b:59:8b:06:62: b3:1b:74:b3:78:7b:80:a4:ac:8d:8c:11:39:2f:89:0f:e7:ec: d9:6e:4c:8d:32:ae:2a:52:7a:80:ac:22:7e:56:c6:0d:10:29: ab:03:1c:a5:1d:04:88:4c:99:27:60:56:41:9b:cf:3a:d3:86: e3:5c:a5:a8:ac:89:1c:c0:f4:38:d1:66:fb:9a:48:4b:24:48: 90:85:bd:a0:80:28:a9:90:d2:a3:07:6b:e9:83:d8:ea:68:24: 7d:e0:b8:6e:2e:da:39:16:03:59:30:96:3e:06:33:83:ce:36: ff:23:67:24:ba:6a:e6:87:04:e4:02:06:ea:e6:0c:5d:1a:14: 3f:cf:ab:b7:8d:5a:8f:6e:c1:90:da:dd:19:07:5b:05:35:8c: 27:6e:74:b5:54:22:67:00:13:8d:2d:ad:30:5e:fa:67:47:05: ba:40:7a:63 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUekTS0oLMKty6HpmOlZrmR2L/G3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNTBaFw0yNjA5MjgxMTQ2NTBaMDMxMTAvBgNV BAMTKDQwMEIwMDg1MzdFMjYwNEMwQ0FGRTkzMkI2OThCQUU5RkJDMzI5NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0lUfCjCGHWteRnlJW7/c6G2QY tp5w09lPGKV38KdlgUsRr2c40s407ZKFAHJjOYpQGn7vHlM+fwQdjJlijEGFkGcy sqIwEUWAPQ5EXXcOljZc3UiyvJvQAgILym27uK6b44miHyiGkNkjSN8/UtFxG1Nb 5qh3sUm/x+Y4xqhAvsZF+0JBX71MFhk7KGB6cPo2/w8PVL4kUwWjlQOyJMIdnJpQ l9SEWYDcytVyNmwBmXLFdcx2a+CGzJbdvpVwrKncsTjvqTkS68i2MSmcsbj5jHhb n6HtJaTxqifhjNOfaoZ9cYvs3VgX68uRu+chuf99u+CAieye0MndiE1htiCRAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUQAsAhTfiYEwMr+kytpi66fvDKWgwHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTMjY0 Mjk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQCinmYAwQCqv4UMA0EAgACMAcDBQAoBCW8MA0GCSqGSIb3 DQEBCwUAA4IBAQBFseNH5CyxuoRGqdXY24BkbbAfM2n6FzohB5ho924Dzy57LFb7 kH8h6GmBa9CMMuRvH6HMWVb1i/ahhbgX0aKA4zc+9a44SV0JpGUEHYbk+5c9TrpD G1mLBmKzG3SzeHuApKyNjBE5L4kP5+zZbkyNMq4qUnqArCJ+VsYNECmrAxylHQSI TJknYFZBm88604bjXKWorIkcwPQ40Wb7mkhLJEiQhb2ggCipkNKjB2vpg9jqaCR9 4LhuLto5FgNZMJY+BjODzjb/I2ckumrmhwTkAgbq5gxdGhQ/z6u3jVqPbsGQ2t0Z B1sFNYwnbnS1VCJnABONLa0wXvpnRwW6QHpj -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:33 2025 by rpki-client