$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS267404.roa File: AS267404.roa (raw, json) Hash identifier: Uh7iZQ2v+SH1dNnsGZVYKOgEVrz+MF5gq0br5Jbyj1g= Subject key identifier: 02:9C:B0:B7:27:08:37:09:FF:E6:88:53:C7:7B:7B:C4:2A:6C:3F:B8 Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 54F43DFFBCBE9342C4807EEFC24433F0DF6A1077 Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS267404.roa Signing time: Mon 29 Sep 2025 11:46:42 +0000 ROA not before: Mon 29 Sep 2025 11:41:42 +0000 ROA not after: Mon 28 Sep 2026 11:46:42 +0000 asID: 267404 IP address blocks: 45.234.240.0/22 maxlen: 24 2804:4cf8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f4:3d:ff:bc:be:93:42:c4:80:7e:ef:c2:44:33:f0:df:6a:10:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:42 2025 GMT Not After : Sep 28 11:46:42 2026 GMT Subject: CN=029CB0B727083709FFE68853C77B7BC42A6C3FB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6a:27:aa:c1:83:cc:f6:b2:0f:0d:5a:45:03: 60:5c:5b:f2:c1:9a:57:bd:10:93:46:9b:f4:d9:34: 14:90:53:77:c1:b5:b7:a5:34:50:34:e0:00:0f:60: 14:39:40:f2:cf:e9:40:e1:f6:9f:36:ad:69:bc:10: 4f:b6:b7:6f:bb:86:81:8d:9d:89:f2:9b:2a:b5:50: e5:1f:6e:bd:a1:91:f9:c3:80:4c:86:65:39:82:fe: 80:db:68:9d:29:82:27:46:2e:14:b7:97:ab:4e:e6: fc:12:2f:82:a7:b7:5b:61:13:ea:00:91:9e:e6:34: 8c:41:ec:d2:f1:55:59:5e:da:49:9d:2c:4e:d3:22: 15:d5:99:c0:44:4a:85:ff:28:f8:ac:15:b2:fa:ae: 09:f7:f7:24:c8:fa:87:48:09:61:8a:50:18:b1:47: 4b:fa:b0:ff:0a:7d:6a:78:d3:b5:88:7c:5a:70:70: 28:b4:e4:c5:6b:4b:3b:8e:b2:55:06:1a:d3:31:69: 52:00:82:5e:83:14:5f:16:9e:58:36:52:37:d2:15: a2:49:3d:21:16:ed:e1:31:de:c2:71:80:37:b7:5b: 88:9a:a4:56:55:67:35:f3:9e:a9:f2:15:13:46:4b: cc:8e:cc:9d:d4:10:d1:69:70:05:70:93:b9:00:8e: 24:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:9C:B0:B7:27:08:37:09:FF:E6:88:53:C7:7B:7B:C4:2A:6C:3F:B8 X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS267404.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.234.240.0/22 IPv6: 2804:4cf8::/32 Signature Algorithm: sha256WithRSAEncryption 86:60:0c:e0:0e:80:9f:a7:95:e1:08:75:b4:4f:61:91:96:7d: e5:6d:52:99:01:4c:bc:e1:75:30:ff:0c:ee:fb:98:b8:0a:81: a2:14:b8:f6:68:50:80:4b:2d:b3:c6:48:48:ac:aa:d1:3a:0a: ee:96:f4:8d:62:1b:74:28:d0:3b:ac:05:90:f7:3f:c4:38:72: bf:97:28:bf:79:22:c3:fb:ce:94:bc:34:c5:6b:2a:ef:ee:6f: 8a:29:86:00:83:54:65:33:4b:67:d9:d0:be:36:b7:a5:1b:0b: 76:ea:c9:3e:66:58:23:b0:56:e5:da:89:7c:48:83:bd:a9:17: bf:98:19:11:54:4a:7f:1a:eb:30:cb:75:cb:0f:a4:b8:8c:43: d7:26:a5:ae:53:1c:6d:50:e0:9a:d0:b8:b8:11:ab:71:c8:a4: 61:b8:c3:8e:04:16:f3:1d:a5:87:a5:c2:74:65:0c:85:59:b5: ec:17:69:36:f9:af:73:fc:99:71:6b:e4:2c:dc:b6:c3:ce:1f: 2a:f6:a1:f2:1f:ad:f2:c8:5e:9f:75:49:a5:10:05:a6:48:5b: 8e:49:0e:13:c2:0b:03:ae:b1:6e:77:1c:92:09:16:7d:9f:54: e3:e5:54:a9:07:7f:06:4a:8c:28:d9:a6:3f:53:37:70:47:db: ea:71:7e:ec -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUVPQ9/7y+k0LEgH7vwkQz8N9qEHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNDJaFw0yNjA5MjgxMTQ2NDJaMDMxMTAvBgNV BAMTKDAyOUNCMEI3MjcwODM3MDlGRkU2ODg1M0M3N0I3QkM0MkE2QzNGQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcaieqwYPM9rIPDVpFA2BcW/LB mle9EJNGm/TZNBSQU3fBtbelNFA04AAPYBQ5QPLP6UDh9p82rWm8EE+2t2+7hoGN nYnymyq1UOUfbr2hkfnDgEyGZTmC/oDbaJ0pgidGLhS3l6tO5vwSL4Knt1thE+oA kZ7mNIxB7NLxVVle2kmdLE7TIhXVmcBESoX/KPisFbL6rgn39yTI+odICWGKUBix R0v6sP8KfWp407WIfFpwcCi05MVrSzuOslUGGtMxaVIAgl6DFF8Wnlg2UjfSFaJJ PSEW7eEx3sJxgDe3W4iapFZVZzXznqnyFRNGS8yOzJ3UENFpcAVwk7kAjiR3AgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUApywtycINwn/5ohTx3t7xCpsP7gwHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTMjY3 NDA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQCLerwMA0EAgACMAcDBQAoBEz4MA0GCSqGSIb3DQEBCwUA A4IBAQCGYAzgDoCfp5XhCHW0T2GRln3lbVKZAUy84XUw/wzu+5i4CoGiFLj2aFCA Sy2zxkhIrKrROgrulvSNYht0KNA7rAWQ9z/EOHK/lyi/eSLD+86UvDTFayrv7m+K KYYAg1RlM0tn2dC+NrelGwt26sk+ZlgjsFbl2ol8SIO9qRe/mBkRVEp/Guswy3XL D6S4jEPXJqWuUxxtUOCa0Li4EatxyKRhuMOOBBbzHaWHpcJ0ZQyFWbXsF2k2+a9z /Jlxa+Qs3LbDzh8q9qHyH63yyF6fdUmlEAWmSFuOSQ4TwgsDrrFudxySCRZ9n1Tj 5VSpB38GSowo2aY/UzdwR9vqcX7s -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:43 2025 by rpki-client