$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS28211.roa File: AS28211.roa (raw, json) Hash identifier: ZzrA/82InLnmirCLhunS0Dk0leyfGeRh8yhkpUfpEWQ= Subject key identifier: 8D:50:67:FF:CA:8A:46:EE:99:5F:B1:08:51:5A:1D:85:10:CE:B9:09 Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 0E2820BB9BCD3CB2E600F90C1FD4720D2F940431 Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS28211.roa Signing time: Mon 29 Sep 2025 11:46:54 +0000 ROA not before: Mon 29 Sep 2025 11:41:54 +0000 ROA not after: Mon 28 Sep 2026 11:46:54 +0000 asID: 28211 IP address blocks: 189.113.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:28:20:bb:9b:cd:3c:b2:e6:00:f9:0c:1f:d4:72:0d:2f:94:04:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:54 2025 GMT Not After : Sep 28 11:46:54 2026 GMT Subject: CN=8D5067FFCA8A46EE995FB108515A1D8510CEB909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d2:0b:2c:31:a4:87:21:d6:bb:c1:ac:03:64: 8d:29:83:3c:a4:d3:97:64:48:4f:db:19:4a:94:4b: 36:1f:67:fa:a6:cc:ac:3a:ac:f4:1f:08:5c:3d:12: 06:c7:50:04:f6:6f:33:6d:5c:7e:a9:01:7c:46:19: e0:67:39:fd:74:1f:da:50:cf:18:10:ea:4d:db:92: 74:91:68:30:99:38:54:eb:d0:2b:ef:a7:4c:06:db: 9c:2c:b7:1a:f9:27:15:3d:1d:2f:76:d4:0c:2f:eb: d4:58:f0:bf:d7:4b:18:31:79:29:97:b5:f9:80:72: f5:3d:83:33:0d:44:28:2f:90:f0:3a:e2:ec:4c:3f: b2:92:4d:67:50:28:1c:e6:c7:46:4f:db:16:df:fe: 11:3c:b2:70:7f:42:05:0c:a7:21:9a:d4:1e:42:ae: 3b:1f:16:58:0f:0b:e6:d6:f3:34:b8:40:92:99:0c: 7d:7e:05:7c:ec:40:ff:61:e0:e5:a6:96:5b:4f:4a: 72:a7:3d:80:b5:e4:a9:7e:84:64:91:d0:cc:7c:37: 40:72:2f:02:ac:03:ec:11:7e:1e:aa:32:1c:d5:b9: 50:bd:53:31:d0:63:1e:19:b4:2c:32:30:95:fa:35: 65:6b:bf:44:2d:0f:63:f5:ec:f4:f2:8c:31:57:9c: 89:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:50:67:FF:CA:8A:46:EE:99:5F:B1:08:51:5A:1D:85:10:CE:B9:09 X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS28211.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 189.113.80.0/20 Signature Algorithm: sha256WithRSAEncryption 06:4d:6c:35:f4:5b:51:c8:c1:ba:76:16:6a:f5:53:62:7a:44: 24:67:f1:df:98:94:80:b7:1d:55:bc:12:9a:42:7c:41:a4:12: 28:80:68:fb:c3:74:e4:24:4b:5e:1f:55:5f:d1:3a:c4:58:04: f6:2e:3b:53:dd:04:63:a7:bf:c4:27:1e:cd:7a:05:a7:d2:80: d2:b3:d6:ab:a1:16:92:82:b1:1c:b8:70:70:c5:52:73:40:9d: 26:71:e2:2f:c0:b0:2f:b9:c8:a8:61:7f:ff:28:dd:9e:8c:5f: b3:54:43:bf:bf:33:1b:1e:92:f3:57:ad:2a:2d:c0:be:6e:18: e1:3e:3d:c2:3a:04:3f:f1:3f:28:8e:a5:1e:2c:a8:5e:2a:36: 79:e6:72:2c:f8:9f:0c:40:8a:d6:8b:e1:6c:c1:8c:45:15:a0: 35:2d:39:68:b1:20:a6:a5:6b:e7:c5:dc:92:24:bf:1b:9c:82: 0e:d5:05:d3:7c:08:5c:4e:19:6e:85:6d:68:f7:17:06:2f:ae: 28:ae:ff:82:4e:1a:44:21:f2:3f:ca:e1:1e:4e:50:2f:2f:0d: a3:a4:27:91:c2:c5:dc:c7:e5:e8:e7:1a:96:42:62:b2:7b:e5: 21:08:77:66:f1:b0:67:c5:3d:59:da:ee:b1:7d:ee:94:7d:3c: d9:e9:66:e1 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUDiggu5vNPLLmAPkMH9RyDS+UBDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNTRaFw0yNjA5MjgxMTQ2NTRaMDMxMTAvBgNV BAMTKDhENTA2N0ZGQ0E4QTQ2RUU5OTVGQjEwODUxNUExRDg1MTBDRUI5MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw0gssMaSHIda7wawDZI0pgzyk 05dkSE/bGUqUSzYfZ/qmzKw6rPQfCFw9EgbHUAT2bzNtXH6pAXxGGeBnOf10H9pQ zxgQ6k3bknSRaDCZOFTr0Cvvp0wG25wstxr5JxU9HS921Awv69RY8L/XSxgxeSmX tfmAcvU9gzMNRCgvkPA64uxMP7KSTWdQKBzmx0ZP2xbf/hE8snB/QgUMpyGa1B5C rjsfFlgPC+bW8zS4QJKZDH1+BXzsQP9h4OWmlltPSnKnPYC15Kl+hGSR0Mx8N0By LwKsA+wRfh6qMhzVuVC9UzHQYx4ZtCwyMJX6NWVrv0QtD2P17PTyjDFXnIkZAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUjVBn/8qKRu6ZX7EIUVodhRDOuQkwHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTMjgy MTEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAS9cVAwDQYJKoZIhvcNAQELBQADggEBAAZNbDX0W1HIwbp2 Fmr1U2J6RCRn8d+YlIC3HVW8EppCfEGkEiiAaPvDdOQkS14fVV/ROsRYBPYuO1Pd BGOnv8QnHs16BafSgNKz1quhFpKCsRy4cHDFUnNAnSZx4i/AsC+5yKhhf/8o3Z6M X7NUQ7+/MxsekvNXrSotwL5uGOE+PcI6BD/xPyiOpR4sqF4qNnnmciz4nwxAitaL 4WzBjEUVoDUtOWixIKala+fF3JIkvxucgg7VBdN8CFxOGW6FbWj3FwYvriiu/4JO GkQh8j/K4R5OUC8vDaOkJ5HCxdzH5ejnGpZCYrJ75SEId2bxsGfFPVna7rF97pR9 PNnpZuE= -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:39 2025 by rpki-client