$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS52940.roa File: AS52940.roa (raw, json) Hash identifier: hKwwj2vwz4E3cVjltFQ1gabJZJJGheY0OkjVvf2OWIE= Subject key identifier: 69:81:68:34:99:DD:2D:F8:C7:44:AA:1F:45:F7:1D:31:CA:A8:2A:1E Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 7681F336AD9E31C8AABA7F4B6A956E967667C6D0 Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS52940.roa Signing time: Mon 29 Sep 2025 11:46:46 +0000 ROA not before: Mon 29 Sep 2025 11:41:46 +0000 ROA not after: Mon 28 Sep 2026 11:46:46 +0000 asID: 52940 IP address blocks: 168.227.76.0/22 maxlen: 24 170.244.164.0/22 maxlen: 24 177.11.92.0/22 maxlen: 24 191.7.28.0/22 maxlen: 24 2804:1424::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:81:f3:36:ad:9e:31:c8:aa:ba:7f:4b:6a:95:6e:96:76:67:c6:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:46 2025 GMT Not After : Sep 28 11:46:46 2026 GMT Subject: CN=6981683499DD2DF8C744AA1F45F71D31CAA82A1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:47:e0:4c:ae:a8:f5:a6:8f:b6:e6:02:f5:3e: f2:64:62:f5:08:1f:87:68:74:d9:8d:64:28:db:87: 14:26:0a:3f:63:f5:ff:f9:a7:95:5a:4e:5f:ca:a7: b7:49:49:01:6b:03:7c:5a:b2:cd:dd:9d:ba:64:23: 94:a7:e6:13:61:ae:4f:65:b0:0b:b1:82:62:4b:14: 7d:31:bf:1c:4e:b9:5a:f8:2c:9b:a7:75:d1:99:05: a5:85:0b:54:a6:13:f0:39:8f:bb:08:1b:7c:f2:95: f8:40:16:05:80:87:07:3a:85:47:f3:cc:9f:6f:79: bd:5c:d5:45:3a:e8:48:2e:57:b8:64:3a:1a:ea:fb: f1:81:22:5a:9c:7d:b7:e7:20:f1:12:a5:62:50:4e: 91:d2:ff:dc:cd:63:2b:2c:d3:ba:78:59:d5:68:8b: 1c:c0:86:7e:30:e3:8d:54:b0:72:11:a3:8b:da:b3: 6c:37:2b:bc:7b:bc:1a:9a:dd:e4:fd:de:32:52:5c: 6c:b6:71:0b:43:b8:79:ef:38:cc:63:84:8f:2f:76: 19:e6:23:c9:90:bb:19:d0:e7:05:2a:25:7d:82:8a: ff:e4:fd:c7:89:82:a3:a7:67:2c:b5:6d:04:67:28: 97:91:19:45:24:8b:ad:75:c9:1c:d5:ee:97:f0:9e: 5e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:81:68:34:99:DD:2D:F8:C7:44:AA:1F:45:F7:1D:31:CA:A8:2A:1E X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS52940.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.227.76.0/22 170.244.164.0/22 177.11.92.0/22 191.7.28.0/22 IPv6: 2804:1424::/32 Signature Algorithm: sha256WithRSAEncryption 9b:bf:35:8d:d1:45:6c:da:c5:8a:2d:c8:2f:ab:a0:0f:d1:50: d7:82:9c:9b:e0:a4:4c:59:1d:91:8c:16:37:54:98:d5:b5:a6: 7d:0b:6f:f9:69:04:a8:ca:66:76:be:a4:c3:ce:23:6f:21:2d: 26:fe:17:02:d2:76:ff:22:2a:68:0a:35:e4:e7:77:00:dc:44: 02:1e:22:9b:34:97:2a:84:5c:f1:ae:ed:df:79:ae:8d:ca:57: 83:3e:26:ff:e2:6d:4d:1b:a2:4c:d0:d1:f9:ee:04:3a:35:a4: c8:48:c1:06:a5:7a:cf:d0:53:14:a3:d2:c4:73:e3:2b:f3:47: 9b:7a:70:17:07:17:ad:81:38:0b:d8:79:a1:3b:3e:52:4b:b2: 95:77:0d:00:c0:05:44:1e:78:dc:1b:95:45:fb:23:f4:d3:d1: eb:d5:04:46:64:4f:b1:75:1b:bb:21:d7:68:a4:b3:07:f4:cc: 1a:3e:24:fb:0b:f7:e9:2d:0a:f8:18:da:9e:44:c0:cb:90:9f: 12:da:3e:68:d5:12:66:ce:2d:dc:96:84:76:02:2d:2a:da:a7: 54:86:d9:c1:9c:a9:99:4b:f5:1a:de:fe:3a:dc:0e:9a:f6:4f: e3:41:89:e0:c4:11:9c:d1:07:cc:85:e4:bc:64:93:56:82:c3: b4:98:bd:b8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdoHzNq2eMciqun9LapVulnZnxtAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNDZaFw0yNjA5MjgxMTQ2NDZaMDMxMTAvBgNV BAMTKDY5ODE2ODM0OTlERDJERjhDNzQ0QUExRjQ1RjcxRDMxQ0FBODJBMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/R+BMrqj1po+25gL1PvJkYvUI H4dodNmNZCjbhxQmCj9j9f/5p5VaTl/Kp7dJSQFrA3xass3dnbpkI5Sn5hNhrk9l sAuxgmJLFH0xvxxOuVr4LJunddGZBaWFC1SmE/A5j7sIG3zylfhAFgWAhwc6hUfz zJ9veb1c1UU66EguV7hkOhrq+/GBIlqcfbfnIPESpWJQTpHS/9zNYyss07p4WdVo ixzAhn4w441UsHIRo4vas2w3K7x7vBqa3eT93jJSXGy2cQtDuHnvOMxjhI8vdhnm I8mQuxnQ5wUqJX2Civ/k/ceJgqOnZyy1bQRnKJeRGUUki611yRzV7pfwnl5BAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaYFoNJndLfjHRKofRfcdMcqoKh4wHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTNTI5 NDAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAKo40wDBAKq9KQDBAKxC1wDBAK/BxwwDQQCAAIwBwMFACgE FCQwDQYJKoZIhvcNAQELBQADggEBAJu/NY3RRWzaxYotyC+roA/RUNeCnJvgpExZ HZGMFjdUmNW1pn0Lb/lpBKjKZna+pMPOI28hLSb+FwLSdv8iKmgKNeTndwDcRAIe Ips0lyqEXPGu7d95ro3KV4M+Jv/ibU0bokzQ0fnuBDo1pMhIwQales/QUxSj0sRz 4yvzR5t6cBcHF62BOAvYeaE7PlJLspV3DQDABUQeeNwblUX7I/TT0evVBEZkT7F1 G7sh12ikswf0zBo+JPsL9+ktCvgY2p5EwMuQnxLaPmjVEmbOLdyWhHYCLSrap1SG 2cGcqZlL9Rre/jrcDpr2T+NBieDEEZzRB8yF5Lxkk1aCw7SYvbg= -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:37 2025 by rpki-client