$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS28241.roa File: AS28241.roa (raw, json) Hash identifier: 51ZNmSug1ecnC23gpY5uSvUdSVGliWB+6D40tGwsfUE= Subject key identifier: 2D:CF:AA:32:5A:4E:C5:C2:C2:4F:9A:20:A6:DF:A7:BB:57:2C:88:95 Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 58208D07FCBC6F805A6D6327F8E0B81A18B64A10 Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS28241.roa Signing time: Mon 29 Sep 2025 11:46:45 +0000 ROA not before: Mon 29 Sep 2025 11:41:45 +0000 ROA not after: Mon 28 Sep 2026 11:46:45 +0000 asID: 28241 IP address blocks: 177.70.80.0/20 maxlen: 24 187.0.176.0/20 maxlen: 24 2804:5d0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:20:8d:07:fc:bc:6f:80:5a:6d:63:27:f8:e0:b8:1a:18:b6:4a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:45 2025 GMT Not After : Sep 28 11:46:45 2026 GMT Subject: CN=2DCFAA325A4EC5C2C24F9A20A6DFA7BB572C8895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:51:74:43:22:34:29:6b:d8:d1:16:9e:17:0c: a7:77:63:04:fe:88:7f:e3:bb:ac:19:69:cc:27:07: 96:bb:0a:3b:0d:0c:a4:1e:5f:67:67:41:05:b8:5f: 8a:49:44:9e:a1:c6:4d:6c:02:92:5a:2f:09:1b:d0: a4:b0:fd:e4:8e:bd:03:54:ba:5e:99:6c:b2:3d:1a: 39:e0:19:dd:d9:2d:58:e2:78:f1:6e:54:c8:ce:01: da:15:39:7a:dd:fc:96:77:1b:d6:e0:86:1f:99:64: ee:ba:c1:66:a7:0b:f7:66:b4:50:b7:8e:4f:48:21: 0a:37:20:c4:62:16:b6:93:ac:60:9f:37:f3:e8:b0: 97:d2:c4:52:16:7d:fa:94:5a:ed:05:17:69:7d:1f: 14:c9:c1:3c:9a:22:4e:aa:00:ff:40:9c:7f:e4:87: 69:47:de:b6:82:a3:a5:85:49:9f:aa:62:5b:41:83: 3e:0f:40:87:a6:30:07:d3:d4:df:dc:67:72:6f:a6: a4:96:5d:c4:47:f2:90:d7:39:fd:4b:bc:19:2d:54: 33:2d:94:0b:b6:02:39:91:77:c3:20:86:52:66:d3: ae:5a:d6:3a:8b:34:fc:e0:99:62:77:ba:ce:85:fa: 9d:8f:49:94:0b:0e:d1:fa:72:fb:5b:2f:4d:fa:9c: 15:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:CF:AA:32:5A:4E:C5:C2:C2:4F:9A:20:A6:DF:A7:BB:57:2C:88:95 X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS28241.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.70.80.0/20 187.0.176.0/20 IPv6: 2804:5d0::/32 Signature Algorithm: sha256WithRSAEncryption 2d:d1:c9:0e:97:c6:03:eb:90:81:6f:66:6c:83:a1:46:d9:6a: 5b:ab:39:64:12:7f:af:9d:3e:1a:3d:8c:02:76:1c:cf:fb:14: 50:a8:67:f7:76:5b:a0:59:1b:56:03:5e:6f:5d:6f:5f:ce:7b: d7:5e:31:ce:56:34:79:84:d3:3d:68:db:c8:c2:7f:46:db:ff: 1a:cd:f2:44:09:41:f5:a8:0b:2c:b0:64:5b:31:7d:88:78:3a: a7:78:b7:68:8a:e3:4c:60:77:f5:60:94:51:d8:eb:73:ad:df: 31:e8:49:8a:4b:b1:48:4e:d2:64:7d:b0:86:ac:1c:0f:08:51: d8:80:85:6e:cf:ae:fe:be:08:81:51:9d:c5:aa:8e:2c:9e:4a: 95:da:7a:b5:74:1c:ff:08:31:18:85:ea:87:2d:07:d3:91:3e: 20:84:b2:aa:45:bf:9a:8c:f3:a2:1d:3d:e8:e0:95:1f:59:a5: 70:54:52:6c:71:02:51:ad:65:db:51:3e:6b:6a:d9:bb:bf:27: f7:b7:37:e7:a9:91:74:4e:90:8a:c9:9c:ec:e9:98:f5:03:bd: 38:47:46:e2:ea:af:fc:b2:65:61:d7:6b:80:22:9f:ac:7b:2a: c3:5f:62:38:b4:d6:49:f2:3a:65:5a:d3:82:c0:a3:bd:bb:5f: 18:86:65:c1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWCCNB/y8b4BabWMn+OC4Ghi2ShAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNDVaFw0yNjA5MjgxMTQ2NDVaMDMxMTAvBgNV BAMTKDJEQ0ZBQTMyNUE0RUM1QzJDMjRGOUEyMEE2REZBN0JCNTcyQzg4OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtUXRDIjQpa9jRFp4XDKd3YwT+ iH/ju6wZacwnB5a7CjsNDKQeX2dnQQW4X4pJRJ6hxk1sApJaLwkb0KSw/eSOvQNU ul6ZbLI9GjngGd3ZLVjiePFuVMjOAdoVOXrd/JZ3G9bghh+ZZO66wWanC/dmtFC3 jk9IIQo3IMRiFraTrGCfN/PosJfSxFIWffqUWu0FF2l9HxTJwTyaIk6qAP9AnH/k h2lH3raCo6WFSZ+qYltBgz4PQIemMAfT1N/cZ3JvpqSWXcRH8pDXOf1LvBktVDMt lAu2AjmRd8MghlJm065a1jqLNPzgmWJ3us6F+p2PSZQLDtH6cvtbL036nBWnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQULc+qMlpOxcLCT5ogpt+nu1csiJUwHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTMjgy NDEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBASxRlADBAS7ALAwDQQCAAIwBwMFACgEBdAwDQYJKoZIhvcN AQELBQADggEBAC3RyQ6XxgPrkIFvZmyDoUbZalurOWQSf6+dPho9jAJ2HM/7FFCo Z/d2W6BZG1YDXm9db1/Oe9deMc5WNHmE0z1o28jCf0bb/xrN8kQJQfWoCyywZFsx fYh4Oqd4t2iK40xgd/VglFHY63Ot3zHoSYpLsUhO0mR9sIasHA8IUdiAhW7Prv6+ CIFRncWqjiyeSpXaerV0HP8IMRiF6octB9ORPiCEsqpFv5qM86IdPejglR9ZpXBU UmxxAlGtZdtRPmtq2bu/J/e3N+epkXROkIrJnOzpmPUDvThHRuLqr/yyZWHXa4Ai n6x7KsNfYji01knyOmVa04LAo727XxiGZcE= -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:35 2025 by rpki-client