$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53080.roa File: AS53080.roa (raw, json) Hash identifier: xsiFG/k+N/6tK4tpwaXob8G7b+AdM7V5VPLXeWqtX/A= Subject key identifier: 3D:51:08:C7:E0:38:E6:53:9A:5F:96:42:49:CD:EF:81:25:F4:9B:88 Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 2DCDC206464A8AC0ABB28B3EC8D50C1411D3BA30 Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53080.roa Signing time: Mon 29 Sep 2025 11:46:48 +0000 ROA not before: Mon 29 Sep 2025 11:41:48 +0000 ROA not after: Mon 28 Sep 2026 11:46:48 +0000 asID: 53080 IP address blocks: 45.175.80.0/22 maxlen: 24 138.186.36.0/22 maxlen: 24 170.82.64.0/22 maxlen: 24 170.150.4.0/22 maxlen: 24 186.194.176.0/20 maxlen: 24 187.95.0.0/20 maxlen: 24 191.253.0.0/20 maxlen: 24 201.216.100.0/22 maxlen: 24 2804:71c::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:cd:c2:06:46:4a:8a:c0:ab:b2:8b:3e:c8:d5:0c:14:11:d3:ba:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:48 2025 GMT Not After : Sep 28 11:46:48 2026 GMT Subject: CN=3D5108C7E038E6539A5F964249CDEF8125F49B88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:26:f2:81:0a:b0:9b:b4:3e:c8:39:ad:4e:2d: 92:0c:ed:13:d3:50:9a:75:05:00:27:34:a5:d0:28: 64:35:6e:f3:4e:04:e7:8a:7c:c4:a5:40:ae:57:a6: af:c8:e6:fb:26:da:36:2a:39:ca:a5:e9:c9:39:d4: c0:9f:21:64:65:ae:4c:8c:e6:42:32:53:a1:16:62: 37:ba:c7:5e:af:8a:b2:b2:67:ae:b1:78:73:83:cd: b1:2c:0d:52:83:98:e7:c5:87:01:7d:9c:92:27:23: 92:51:49:fa:25:e5:6a:c5:4c:e7:87:5e:25:61:ed: 2e:3f:e1:8a:e9:cd:d6:59:2d:1a:13:ed:34:87:fa: 67:70:28:63:4a:a7:80:6b:d0:f8:7b:be:b2:e7:a5: 94:99:2d:a8:38:35:69:57:da:10:d9:f7:f0:a5:81: cc:51:89:c3:ff:69:78:fd:6f:c0:d9:b1:2c:3c:fe: 14:3a:6a:71:3f:50:a3:14:a2:b8:f1:cf:21:b0:9c: e0:62:69:c9:95:fc:20:45:eb:92:be:a2:95:da:69: 85:b2:d6:59:e3:c9:40:99:6c:e8:71:5e:90:40:20: b7:55:1a:de:c2:5f:cb:94:1a:20:eb:74:5a:1c:09: 3a:5d:80:31:3d:5c:76:ba:b5:95:9b:d9:b2:99:9c: 90:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:51:08:C7:E0:38:E6:53:9A:5F:96:42:49:CD:EF:81:25:F4:9B:88 X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53080.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.175.80.0/22 138.186.36.0/22 170.82.64.0/22 170.150.4.0/22 186.194.176.0/20 187.95.0.0/20 191.253.0.0/20 201.216.100.0/22 IPv6: 2804:71c::/32 Signature Algorithm: sha256WithRSAEncryption 2c:6d:e9:31:99:24:7b:6b:da:01:d9:d1:07:e6:43:60:7e:c6: 5e:2a:01:9f:13:50:ac:9f:e2:5e:6a:95:9e:31:40:b8:69:2c: 5c:13:70:1f:ca:40:4c:b2:af:24:e4:37:80:5b:2e:d7:40:cc: b6:c7:59:40:b2:cc:d4:74:8c:0f:ea:90:10:22:1f:b7:16:da: 8b:d4:59:c4:7f:dc:1a:3a:67:56:ef:65:f2:49:66:e1:a2:af: c7:8a:25:77:7d:29:48:ad:49:cf:0f:f4:d7:25:9b:d0:c6:d8: cd:1c:b6:e7:99:02:c5:ef:1b:c3:67:f9:fa:4f:ee:27:f7:18: ba:29:a2:e2:41:96:be:2c:38:36:44:96:d0:67:13:50:78:f4: a3:80:81:e5:72:4a:f0:85:5d:2e:e4:bc:93:85:4f:05:bb:5d: 60:5b:84:cf:a2:3a:a5:c7:a7:c6:26:3b:66:18:48:b9:87:d7: 56:05:ca:fa:92:fe:3c:96:24:ba:0d:06:27:4f:9a:e5:26:50: 2b:de:18:af:49:af:a3:80:46:ef:fe:e2:ee:8d:c1:bd:48:47: bd:f9:02:05:f8:1d:3a:bd:b6:90:38:ea:43:b6:ac:07:cf:e6: 9f:c9:42:bf:0f:01:68:c1:f8:70:c2:8c:6a:e1:19:ce:d6:f6: ba:bd:62:8e -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIULc3CBkZKisCrsos+yNUMFBHTujAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNDhaFw0yNjA5MjgxMTQ2NDhaMDMxMTAvBgNV BAMTKDNENTEwOEM3RTAzOEU2NTM5QTVGOTY0MjQ5Q0RFRjgxMjVGNDlCODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuJvKBCrCbtD7IOa1OLZIM7RPT UJp1BQAnNKXQKGQ1bvNOBOeKfMSlQK5Xpq/I5vsm2jYqOcql6ck51MCfIWRlrkyM 5kIyU6EWYje6x16virKyZ66xeHODzbEsDVKDmOfFhwF9nJInI5JRSfol5WrFTOeH XiVh7S4/4YrpzdZZLRoT7TSH+mdwKGNKp4Br0Ph7vrLnpZSZLag4NWlX2hDZ9/Cl gcxRicP/aXj9b8DZsSw8/hQ6anE/UKMUorjxzyGwnOBiacmV/CBF65K+opXaaYWy 1lnjyUCZbOhxXpBAILdVGt7CX8uUGiDrdFocCTpdgDE9XHa6tZWb2bKZnJCdAgMB AAGjggJUMIICUDAdBgNVHQ4EFgQUPVEIx+A45lOaX5ZCSc3vgSX0m4gwHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTNTMw ODAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwWAYIKwYBBQUHAQcBAf8E STBHMDYEAgABMDADBAItr1ADBAKKuiQDBAKqUkADBAKqlgQDBAS6wrADBAS7XwAD BAS//QADBALJ2GQwDQQCAAIwBwMFACgEBxwwDQYJKoZIhvcNAQELBQADggEBACxt 6TGZJHtr2gHZ0QfmQ2B+xl4qAZ8TUKyf4l5qlZ4xQLhpLFwTcB/KQEyyryTkN4Bb LtdAzLbHWUCyzNR0jA/qkBAiH7cW2ovUWcR/3Bo6Z1bvZfJJZuGir8eKJXd9KUit Sc8P9Nclm9DG2M0ctueZAsXvG8Nn+fpP7if3GLopouJBlr4sODZEltBnE1B49KOA geVySvCFXS7kvJOFTwW7XWBbhM+iOqXHp8YmO2YYSLmH11YFyvqS/jyWJLoNBidP muUmUCveGK9Jr6OARu/+4u6Nwb1IR735AgX4HTq9tpA46kO2rAfP5p/JQr8PAWjB +HDCjGrhGc7W9rq9Yo4= -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:27 2025 by rpki-client