$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53085.roa File: AS53085.roa (raw, json) Hash identifier: GKpnIY+Ni08FCHrD0Go9f4MV+610BDs1RjllmXeew6E= Subject key identifier: 39:DA:D9:12:6E:83:B3:45:79:29:C4:9A:8B:3B:B4:61:1F:12:E1:D7 Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 70C0F665E95A6C578BC22212F03D1D84C0693655 Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53085.roa Signing time: Mon 29 Sep 2025 11:46:51 +0000 ROA not before: Mon 29 Sep 2025 11:41:51 +0000 ROA not after: Mon 28 Sep 2026 11:46:51 +0000 asID: 53085 IP address blocks: 132.255.148.0/22 maxlen: 24 187.33.160.0/20 maxlen: 24 191.5.144.0/20 maxlen: 24 2804:1790::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:c0:f6:65:e9:5a:6c:57:8b:c2:22:12:f0:3d:1d:84:c0:69:36:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:51 2025 GMT Not After : Sep 28 11:46:51 2026 GMT Subject: CN=39DAD9126E83B3457929C49A8B3BB4611F12E1D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:08:a8:ac:7b:2e:d0:f3:f6:d2:2d:12:73:8c: b1:18:d1:b4:03:f8:8b:f3:95:96:6f:36:8a:1d:7a: 8f:b9:cc:a3:c2:e8:1c:45:58:8f:0c:12:b8:5d:2a: 70:15:18:a0:8a:04:2f:55:ee:d1:d2:6d:77:7b:74: 30:33:7a:74:d2:ad:8c:07:2f:6d:66:84:71:d4:73: 56:af:cf:36:52:0c:b4:84:02:df:73:7f:6c:bf:4f: e2:ee:31:36:6f:ed:f8:b6:9a:e7:5c:89:ed:65:3d: 4c:64:82:a0:13:1d:86:9e:a7:64:7a:3c:60:4e:88: 3d:4a:cd:85:f6:da:1f:a4:0c:68:dd:08:78:79:c1: 9d:ad:80:2b:17:32:9d:b6:19:a4:40:f9:f1:6e:bb: 0b:1d:4c:6a:d9:b7:9d:8a:b1:d6:11:f5:ca:6c:e1: 67:4d:74:f4:4f:0f:b2:23:aa:16:ab:c8:2d:12:37: 08:77:bc:83:ed:1e:8a:fa:07:37:9b:fa:7d:74:33: ef:7c:04:00:c8:69:fc:0d:26:51:83:4e:af:a7:65: ef:6d:06:b3:46:eb:25:f8:d6:c4:5f:d6:84:db:d1: 76:df:21:83:60:c0:db:92:a3:8b:b9:42:a3:df:d2: 7b:83:e9:02:41:60:ff:52:3f:b4:e8:22:ad:43:ff: 4c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:DA:D9:12:6E:83:B3:45:79:29:C4:9A:8B:3B:B4:61:1F:12:E1:D7 X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53085.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.255.148.0/22 187.33.160.0/20 191.5.144.0/20 IPv6: 2804:1790::/32 Signature Algorithm: sha256WithRSAEncryption 16:0b:b7:f2:7a:35:21:ee:4f:00:8d:fb:ca:02:ad:3a:ea:ef: e1:02:a0:95:17:aa:47:d8:86:64:2f:88:18:45:a1:67:a1:56: 71:57:5a:b8:30:4e:d6:32:d3:1c:71:97:f4:d6:6f:0a:43:93: 22:c8:98:72:46:ab:ac:22:8f:94:38:5b:cd:01:a4:d8:a0:fe: bd:19:23:a7:f1:5e:f6:4c:37:36:36:04:cb:f3:28:d7:06:de: f5:cd:80:ab:f6:a3:18:13:6d:d9:ba:34:61:26:bd:be:b5:d5: 0a:26:85:b3:52:54:1a:26:fa:83:2d:98:8d:f7:a6:a4:06:96: 78:1a:f9:1d:02:8f:c1:df:42:9b:54:37:7a:e2:1c:ca:01:51: 4b:4a:ce:86:a9:c3:88:49:6b:90:96:a4:3f:48:c0:1f:02:07: be:c9:52:ff:21:0a:ac:7e:d6:c4:68:2e:16:a6:0d:ec:c2:60: 0d:7f:8a:ef:af:4d:ef:d3:e9:ef:47:ab:aa:0e:45:77:ba:e8: 27:63:4b:c4:5b:74:2b:c5:66:d3:c4:de:8a:7e:ac:e2:f3:08: e6:94:be:e8:da:c0:fa:f8:6a:95:69:7e:9e:74:8c:bf:62:87: 7e:55:62:fe:6c:70:5f:09:3f:04:af:00:10:1d:33:f9:da:c2: 8f:d9:10:c4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcMD2ZelabFeLwiIS8D0dhMBpNlUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNTFaFw0yNjA5MjgxMTQ2NTFaMDMxMTAvBgNV BAMTKDM5REFEOTEyNkU4M0IzNDU3OTI5QzQ5QThCM0JCNDYxMUYxMkUxRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtCKisey7Q8/bSLRJzjLEY0bQD +IvzlZZvNoodeo+5zKPC6BxFWI8MErhdKnAVGKCKBC9V7tHSbXd7dDAzenTSrYwH L21mhHHUc1avzzZSDLSEAt9zf2y/T+LuMTZv7fi2mudcie1lPUxkgqATHYaep2R6 PGBOiD1KzYX22h+kDGjdCHh5wZ2tgCsXMp22GaRA+fFuuwsdTGrZt52KsdYR9cps 4WdNdPRPD7IjqharyC0SNwh3vIPtHor6Bzeb+n10M+98BADIafwNJlGDTq+nZe9t BrNG6yX41sRf1oTb0XbfIYNgwNuSo4u5QqPf0nuD6QJBYP9SP7ToIq1D/0yfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOdrZEm6Ds0V5KcSaizu0YR8S4dcwHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTNTMw ODUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAKE/5QDBAS7IaADBAS/BZAwDQQCAAIwBwMFACgEF5AwDQYJ KoZIhvcNAQELBQADggEBABYLt/J6NSHuTwCN+8oCrTrq7+ECoJUXqkfYhmQviBhF oWehVnFXWrgwTtYy0xxxl/TWbwpDkyLImHJGq6wij5Q4W80BpNig/r0ZI6fxXvZM NzY2BMvzKNcG3vXNgKv2oxgTbdm6NGEmvb611QomhbNSVBom+oMtmI33pqQGlnga +R0Cj8HfQptUN3riHMoBUUtKzoapw4hJa5CWpD9IwB8CB77JUv8hCqx+1sRoLham DezCYA1/iu+vTe/T6e9Hq6oORXe66CdjS8RbdCvFZtPE3op+rOLzCOaUvujawPr4 apVpfp50jL9ih35VYv5scF8JPwSvABAdM/nawo/ZEMQ= -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:23 2025 by rpki-client