$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53184.roa File: AS53184.roa (raw, json) Hash identifier: vzIJ7f6eZevsyktn8DCZ3ThqAsOBTL47UQWQqj/eCIU= Subject key identifier: 75:1F:6C:58:4B:0A:EE:6A:F0:06:3C:B1:29:3F:AD:AB:07:39:CC:AF Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 3AD88C653FB4134AE57036C3CA115C44E407825D Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53184.roa Signing time: Mon 29 Sep 2025 11:46:45 +0000 ROA not before: Mon 29 Sep 2025 11:41:45 +0000 ROA not after: Mon 28 Sep 2026 11:46:45 +0000 asID: 53184 IP address blocks: 138.118.84.0/22 maxlen: 24 143.0.228.0/22 maxlen: 24 168.0.148.0/22 maxlen: 24 168.196.180.0/22 maxlen: 24 170.239.232.0/22 maxlen: 24 177.39.64.0/22 maxlen: 24 177.39.68.0/22 maxlen: 24 177.73.0.0/21 maxlen: 24 177.74.120.0/21 maxlen: 24 177.87.32.0/22 maxlen: 24 177.129.24.0/22 maxlen: 24 177.155.248.0/22 maxlen: 24 186.232.48.0/22 maxlen: 24 186.232.52.0/22 maxlen: 24 2804:1c8::/32 maxlen: 48 2804:2984::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:d8:8c:65:3f:b4:13:4a:e5:70:36:c3:ca:11:5c:44:e4:07:82:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:45 2025 GMT Not After : Sep 28 11:46:45 2026 GMT Subject: CN=751F6C584B0AEE6AF0063CB1293FADAB0739CCAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1f:b8:c7:bc:23:fe:ca:3d:f3:b4:3f:d0:b9: ce:65:19:06:88:a1:b8:48:64:49:33:01:84:e9:02: 77:32:98:39:68:ba:d6:fe:0a:e2:8a:13:5b:5f:30: 70:b2:38:64:0e:00:c2:09:0c:79:93:b0:28:ef:d5: 11:60:3c:48:c3:96:b0:1b:37:aa:2d:bd:f2:0f:8d: e0:29:81:b9:8b:33:07:61:80:68:af:87:3b:7d:93: 27:6f:6e:65:58:00:03:a1:dd:da:9d:02:e9:6c:f7: 56:cf:2a:05:67:be:52:61:78:63:bb:99:e7:d2:9d: ee:c8:f6:9e:d2:31:7d:1d:65:44:25:34:f1:2b:3a: ec:53:fd:65:14:d0:56:53:28:86:f1:3d:d5:3b:f2: f9:0b:58:d8:da:53:cf:7b:f3:6a:e6:33:11:8a:55: d2:61:b6:bf:7d:76:42:92:5b:bd:99:18:84:9b:f6: 49:21:ae:da:ba:5c:2e:13:d2:6f:14:17:56:3a:2d: 46:94:3d:52:3d:95:00:61:39:76:4e:1a:dd:fb:d7: 9a:3a:18:ba:db:de:4b:dd:55:35:1c:78:c2:a9:d8: 5a:8b:e6:a4:9f:ad:d6:e6:73:25:27:44:a6:8f:92: a6:30:78:e9:f6:85:b0:20:59:55:c8:1f:bc:73:7d: f6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:1F:6C:58:4B:0A:EE:6A:F0:06:3C:B1:29:3F:AD:AB:07:39:CC:AF X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS53184.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.118.84.0/22 143.0.228.0/22 168.0.148.0/22 168.196.180.0/22 170.239.232.0/22 177.39.64.0/21 177.73.0.0/21 177.74.120.0/21 177.87.32.0/22 177.129.24.0/22 177.155.248.0/22 186.232.48.0/21 IPv6: 2804:1c8::/32 2804:2984::/32 Signature Algorithm: sha256WithRSAEncryption 66:fb:0d:c3:93:a1:68:de:25:b1:d1:0f:83:dd:1e:c0:a3:d8: da:0a:18:09:73:ff:6b:f9:39:b0:0d:44:ae:4c:23:92:84:37: f7:7b:67:c0:75:14:94:55:ab:95:c6:dd:c6:9b:ea:65:41:54: 89:db:b3:0b:ae:62:71:86:df:64:3c:17:70:5f:2b:4e:1d:64: 16:e8:a8:37:9a:15:cc:6a:4f:ee:61:92:fb:bd:6a:68:b4:56: d5:1e:7a:ff:03:da:e4:b1:14:9c:f2:85:aa:ae:f9:f6:98:75: 41:03:31:60:d2:d3:ac:62:68:ed:f6:86:b0:14:45:4c:f3:62: 1c:62:bf:19:30:24:4d:f9:d1:cf:f7:ad:14:03:7f:77:8d:a9: 1e:49:2d:dd:db:05:1b:6a:b9:c2:77:60:4c:ff:51:70:38:b5: 2c:28:80:8e:ef:34:0a:83:09:05:4b:30:4e:ec:df:b9:15:0a: cf:19:02:f8:ef:14:01:db:09:5f:ac:12:41:0f:90:ba:76:76: e0:c5:d5:f1:e0:86:6e:31:a3:db:7d:05:4f:4a:34:90:99:b0: 8f:10:b7:e6:1f:96:13:62:2e:e2:ed:9f:03:2a:b9:cd:78:1c: 7c:7d:f8:2f:bf:e1:8c:d9:6d:e4:af:6d:42:ab:de:a9:ab:90: e1:db:2c:5f -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIUOtiMZT+0E0rlcDbDyhFcROQHgl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxNDVaFw0yNjA5MjgxMTQ2NDVaMDMxMTAvBgNV BAMTKDc1MUY2QzU4NEIwQUVFNkFGMDA2M0NCMTI5M0ZBREFCMDczOUNDQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgH7jHvCP+yj3ztD/Quc5lGQaI obhIZEkzAYTpAncymDloutb+CuKKE1tfMHCyOGQOAMIJDHmTsCjv1RFgPEjDlrAb N6otvfIPjeApgbmLMwdhgGivhzt9kydvbmVYAAOh3dqdAuls91bPKgVnvlJheGO7 mefSne7I9p7SMX0dZUQlNPErOuxT/WUU0FZTKIbxPdU78vkLWNjaU89782rmMxGK VdJhtr99dkKSW72ZGISb9kkhrtq6XC4T0m8UF1Y6LUaUPVI9lQBhOXZOGt3715o6 GLrb3kvdVTUceMKp2FqL5qSfrdbmcyUnRKaPkqYweOn2hbAgWVXIH7xzffaLAgMB AAGjggJzMIICbzAdBgNVHQ4EFgQUdR9sWEsK7mrwBjyxKT+tqwc5zK8wHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTNTMx ODQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwdwYIKwYBBQUHAQcBAf8E aDBmME4EAgABMEgDBAKKdlQDBAKPAOQDBAKoAJQDBAKoxLQDBAKq7+gDBAOxJ0AD BAOxSQADBAOxSngDBAKxVyADBAKxgRgDBAKxm/gDBAO66DAwFAQCAAIwDgMFACgE AcgDBQAoBCmEMA0GCSqGSIb3DQEBCwUAA4IBAQBm+w3Dk6Fo3iWx0Q+D3R7Ao9ja ChgJc/9r+TmwDUSuTCOShDf3e2fAdRSUVauVxt3Gm+plQVSJ27MLrmJxht9kPBdw XytOHWQW6Kg3mhXMak/uYZL7vWpotFbVHnr/A9rksRSc8oWqrvn2mHVBAzFg0tOs Ymjt9oawFEVM82IcYr8ZMCRN+dHP960UA393jakeSS3d2wUbarnCd2BM/1FwOLUs KICO7zQKgwkFSzBO7N+5FQrPGQL47xQB2wlfrBJBD5C6dnbgxdXx4IZuMaPbfQVP SjSQmbCPELfmH5YTYi7i7Z8DKrnNeBx8ffgvv+GM2W3kr21Cq96pq5Dh2yxf -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:30 2025 by rpki-client