$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53171.roa File: AS53171.roa (raw, json) Hash identifier: vKouHuBPiQ2GXKY0IG35+BuRH+ikwGSNuR325EGjoYo= Subject key identifier: BC:D4:A6:EA:D1:35:B5:8F:A0:47:19:B6:B9:3F:82:60:07:D8:C2:52 Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 4703A8E82DEB99D00A39C18A963DF7595AF5C86B Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53171.roa Signing time: Mon 29 Sep 2025 11:46:52 +0000 ROA not before: Mon 29 Sep 2025 11:41:52 +0000 ROA not after: Mon 28 Sep 2026 11:46:52 +0000 asID: 53171 IP address blocks: 138.118.92.0/22 maxlen: 24 177.87.16.0/21 maxlen: 24 186.224.224.0/20 maxlen: 24 2804:24e8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:03:a8:e8:2d:eb:99:d0:0a:39:c1:8a:96:3d:f7:59:5a:f5:c8:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:52 2025 GMT Not After : Sep 28 11:46:52 2026 GMT Subject: CN=BCD4A6EAD135B58FA04719B6B93F826007D8C252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:80:af:a4:4f:83:e3:c7:12:2a:3e:6d:e2:df: dc:44:23:91:73:70:3f:33:59:04:0f:05:bf:84:1c: ed:50:46:90:8e:db:6e:c5:17:b1:e5:88:aa:26:c9: 5a:83:58:27:d1:02:a1:21:6d:84:5a:fb:18:89:42: c0:7e:db:3c:68:b7:04:0a:de:01:1a:3e:13:57:e7: c9:d0:3c:3b:63:47:37:fe:a5:87:05:03:6a:e8:21: 01:2b:f7:fe:62:b0:0c:81:7b:a5:21:b6:a7:23:e7: 0c:50:1b:6c:a5:03:28:a6:eb:6e:26:47:ec:85:84: c9:38:5a:72:d2:6f:e2:6b:34:c7:28:e9:4d:76:df: 57:5c:a3:92:80:61:d0:b9:ba:3d:b3:19:19:88:42: ac:5d:33:22:3b:b6:ca:e1:7c:40:6a:88:6e:a0:3f: b3:59:3f:34:b4:71:5b:52:33:5f:b7:0c:e3:1d:ef: 4b:b4:d7:26:48:e7:38:84:32:17:ea:e4:cb:63:f0: 89:48:c8:91:f9:26:75:22:a1:e5:df:37:74:71:78: 33:91:71:d0:57:56:e5:b5:f1:fb:c1:c8:8d:69:ba: a0:76:0d:01:f4:f0:dd:cd:ab:35:d7:a6:b6:32:24: 0c:22:a3:98:7b:8d:c0:2c:2f:91:6a:9f:19:a6:4d: 48:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D4:A6:EA:D1:35:B5:8F:A0:47:19:B6:B9:3F:82:60:07:D8:C2:52 X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53171.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.118.92.0/22 177.87.16.0/21 186.224.224.0/20 IPv6: 2804:24e8::/32 Signature Algorithm: sha256WithRSAEncryption 84:fb:b5:15:a5:29:b1:aa:f9:87:e1:ce:1e:67:bd:78:21:6e: 18:68:f0:60:a8:14:33:6c:ac:98:00:e7:ce:88:87:55:71:53: fe:68:73:9f:e3:11:7a:3b:d4:fd:43:9e:b1:ac:d1:fc:03:2b: e3:4a:c8:e5:58:24:f1:3a:38:6b:31:5d:f2:48:9d:8a:cf:aa: ef:b0:5c:81:d5:07:cf:8a:e1:3b:9c:f9:ab:a4:f2:5b:21:7f: 26:8d:a6:86:e8:ae:0a:9c:25:1e:8c:1a:69:90:93:4f:f0:65: 2c:e6:26:cd:a7:09:7f:08:92:10:fa:f6:e0:03:e0:71:f6:32: 10:c7:89:4c:d2:64:d4:f5:33:72:5e:1e:b2:d3:e3:5c:06:a1: 08:a8:a7:8b:01:80:f5:94:32:c1:17:db:89:46:8f:c6:bd:71: de:b1:4f:05:b5:22:86:bf:58:66:a9:6a:59:fe:c1:40:52:77: 1d:3c:1c:e0:e8:db:38:a9:20:10:b3:fc:46:4a:84:aa:e9:d9: 38:32:59:0c:b8:9e:50:c6:17:45:43:0d:76:b2:6b:b4:38:a9: 58:da:f4:42:52:43:4b:75:1a:ab:c6:06:83:5a:4d:21:a0:07: 27:25:3f:ef:88:fb:d0:f3:ab:88:32:16:6c:a7:6a:c2:9b:88: 5a:42:62:3d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURwOo6C3rmdAKOcGKlj33WVr1yGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNTJaFw0yNjA5MjgxMTQ2NTJaMDMxMTAvBgNV BAMTKEJDRDRBNkVBRDEzNUI1OEZBMDQ3MTlCNkI5M0Y4MjYwMDdEOEMyNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcgK+kT4PjxxIqPm3i39xEI5Fz cD8zWQQPBb+EHO1QRpCO227FF7HliKomyVqDWCfRAqEhbYRa+xiJQsB+2zxotwQK 3gEaPhNX58nQPDtjRzf+pYcFA2roIQEr9/5isAyBe6Uhtqcj5wxQG2ylAyim624m R+yFhMk4WnLSb+JrNMco6U1231dco5KAYdC5uj2zGRmIQqxdMyI7tsrhfEBqiG6g P7NZPzS0cVtSM1+3DOMd70u01yZI5ziEMhfq5Mtj8IlIyJH5JnUioeXfN3RxeDOR cdBXVuW18fvByI1puqB2DQH08N3NqzXXprYyJAwio5h7jcAsL5FqnxmmTUgpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvNSm6tE1tY+gRxm2uT+CYAfYwlIwHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTNTMx NzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAKKdlwDBAOxVxADBAS64OAwDQQCAAIwBwMFACgEJOgwDQYJ KoZIhvcNAQELBQADggEBAIT7tRWlKbGq+Yfhzh5nvXghbhho8GCoFDNsrJgA586I h1VxU/5oc5/jEXo71P1DnrGs0fwDK+NKyOVYJPE6OGsxXfJInYrPqu+wXIHVB8+K 4Tuc+auk8lshfyaNpoborgqcJR6MGmmQk0/wZSzmJs2nCX8IkhD69uAD4HH2MhDH iUzSZNT1M3JeHrLT41wGoQiop4sBgPWUMsEX24lGj8a9cd6xTwW1Ioa/WGapaln+ wUBSdx08HODo2zipIBCz/EZKhKrp2TgyWQy4nlDGF0VDDXaya7Q4qVja9EJSQ0t1 GqvGBoNaTSGgByclP++I+9Dzq4gyFmynasKbiFpCYj0= -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:38 2025 by rpki-client