$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS61844.roa File: AS61844.roa (raw, json) Hash identifier: k+cHrhGWNZ3dIRZq97ytC2reo1alF6b9B0WCMreSbv4= Subject key identifier: 17:8B:8B:FB:D4:F9:C7:30:BE:F3:94:84:DA:4F:B4:6D:45:70:92:CC Certificate issuer: /CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Certificate serial: 4CE9D197BF34311B0087D577B200F35A98D680FC Authority key identifier: 15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS61844.roa Signing time: Mon 29 Sep 2025 11:46:38 +0000 ROA not before: Mon 29 Sep 2025 11:41:38 +0000 ROA not after: Mon 28 Sep 2026 11:46:38 +0000 asID: 61844 IP address blocks: 45.177.252.0/22 maxlen: 24 45.179.20.0/22 maxlen: 24 138.255.212.0/22 maxlen: 24 201.148.124.0/22 maxlen: 24 2804:1a30::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 21 Oct 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e9:d1:97:bf:34:31:1b:00:87:d5:77:b2:00:f3:5a:98:d6:80:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15A0CACB6F5D6B45006136392255670B81DB66F8 Validity Not Before: Sep 29 11:41:38 2025 GMT Not After : Sep 28 11:46:38 2026 GMT Subject: CN=178B8BFBD4F9C730BEF39484DA4FB46D457092CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ec:a4:f0:8d:08:ce:9f:37:cc:52:a5:d3:ed: 8f:81:d2:c4:90:6f:3c:a9:0c:5f:c6:c0:cd:5c:3d: ce:db:da:48:f8:f7:1d:bc:f4:11:af:08:4a:3f:75: ca:7e:8d:ff:ee:02:a0:56:93:8e:02:f4:ff:27:56: de:e9:53:33:54:cf:da:9c:bc:62:60:12:3c:10:dd: 87:7f:66:ee:be:b8:04:fd:d1:40:8e:52:2c:f9:00: 05:d8:4c:f9:82:2b:a6:77:69:7e:a2:78:62:1d:fe: 80:82:90:45:72:07:71:0d:fc:c6:69:75:8f:95:77: 94:34:a1:a6:72:f7:1d:42:d0:3f:a9:b5:74:70:3b: 90:ae:bb:be:ad:18:b7:00:a7:8e:ef:28:03:53:44: 54:c0:ac:d6:87:81:87:f3:8e:4f:3e:1c:bc:23:38: d3:20:9e:a4:bc:fd:75:4b:51:5e:27:ba:82:1f:30: b7:d2:8c:e5:89:ac:e0:20:65:0e:c1:bd:3c:50:3c: 9f:54:65:36:24:b3:08:f3:df:6b:81:e3:b8:1a:75: 85:f4:c0:56:6e:6c:ad:c5:47:08:9f:07:56:9e:70: 27:a7:a2:61:f8:8e:9a:75:2e:d9:31:13:34:fe:f3: fe:b0:c4:98:2d:19:bb:e8:13:94:12:48:62:61:c9: 10:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:8B:8B:FB:D4:F9:C7:30:BE:F3:94:84:DA:4F:B4:6D:45:70:92:CC X509v3 Authority Key Identifier: keyid:15:A0:CA:CB:6F:5D:6B:45:00:61:36:39:22:55:67:0B:81:DB:66:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/15A0CACB6F5D6B45006136392255670B81DB66F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/15A0CACB6F5D6B45006136392255670B81DB66F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/4/AS61844.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.177.252.0/22 45.179.20.0/22 138.255.212.0/22 201.148.124.0/22 IPv6: 2804:1a30::/32 Signature Algorithm: sha256WithRSAEncryption 6b:2f:72:3e:b1:1b:b4:27:da:95:52:dc:f2:19:bc:69:9e:76: 44:18:74:a2:22:f2:36:98:33:c9:72:85:58:37:dd:40:80:15: 39:16:9a:cb:0b:c4:04:81:3b:f0:17:05:c7:5b:99:78:ca:21: f3:e2:32:8e:29:f5:05:dd:1a:24:be:37:77:d9:db:19:9e:17: cf:6e:46:f5:33:e5:23:f3:a4:92:80:98:38:85:d7:2b:dc:c0: 98:b4:34:b0:ec:7c:2a:44:bd:40:4c:72:5c:54:86:03:85:d3: c4:b8:6c:43:78:13:e1:1e:2c:84:d9:7b:a4:52:1a:5c:20:3a: 62:f1:92:d4:0f:5a:a8:1b:79:ca:83:09:51:41:d1:e0:e3:5e: aa:49:82:94:e6:a1:2d:10:25:2f:bf:0b:9e:cc:61:86:f8:df: d9:21:84:9d:23:8d:fa:21:13:cf:d1:64:c4:52:b0:bd:fc:9e: 92:a1:80:46:dc:56:50:c9:27:4a:87:e0:9c:62:5c:87:16:03: 08:1d:3b:43:56:e5:97:96:04:df:14:2f:ae:7d:71:8c:84:c1: 5b:58:fa:ac:25:4b:14:79:b8:b0:89:b4:b5:e6:82:f6:2d:1a: c6:1a:60:66:71:8a:b1:95:8e:9d:d7:a6:3c:56:d5:00:6d:3e: f4:e2:b0:1d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTOnRl780MRsAh9V3sgDzWpjWgPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVBMENBQ0I2RjVENkI0NTAwNjEzNjM5MjI1NTY3MEI4 MURCNjZGODAeFw0yNTA5MjkxMTQxMzhaFw0yNjA5MjgxMTQ2MzhaMDMxMTAvBgNV BAMTKDE3OEI4QkZCRDRGOUM3MzBCRUYzOTQ4NERBNEZCNDZENDU3MDkyQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC17KTwjQjOnzfMUqXT7Y+B0sSQ bzypDF/GwM1cPc7b2kj49x289BGvCEo/dcp+jf/uAqBWk44C9P8nVt7pUzNUz9qc vGJgEjwQ3Yd/Zu6+uAT90UCOUiz5AAXYTPmCK6Z3aX6ieGId/oCCkEVyB3EN/MZp dY+Vd5Q0oaZy9x1C0D+ptXRwO5Cuu76tGLcAp47vKANTRFTArNaHgYfzjk8+HLwj ONMgnqS8/XVLUV4nuoIfMLfSjOWJrOAgZQ7BvTxQPJ9UZTYkswjz32uB47gadYX0 wFZubK3FRwifB1aecCenomH4jpp1LtkxEzT+8/6wxJgtGbvoE5QSSGJhyRCdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUF4uL+9T5xzC+85SE2k+0bUVwkswwHwYDVR0j BBgwFoAUFaDKy29da0UAYTY5IlVnC4HbZvgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvNC8xNUEwQ0FDQjZGNUQ2QjQ1MDA2MTM2MzkyMjU1NjcwQjgxREI2NkY4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE1QTBDQUNCNkY1RDZCNDUw MDYxMzYzOTIyNTU2NzBCODFEQjY2RjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS80L0FTNjE4 NDQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAItsfwDBAItsxQDBAKK/9QDBALJlHwwDQQCAAIwBwMFACgE GjAwDQYJKoZIhvcNAQELBQADggEBAGsvcj6xG7Qn2pVS3PIZvGmedkQYdKIi8jaY M8lyhVg33UCAFTkWmssLxASBO/AXBcdbmXjKIfPiMo4p9QXdGiS+N3fZ2xmeF89u RvUz5SPzpJKAmDiF1yvcwJi0NLDsfCpEvUBMclxUhgOF08S4bEN4E+EeLITZe6RS GlwgOmLxktQPWqgbecqDCVFB0eDjXqpJgpTmoS0QJS+/C57MYYb439khhJ0jjfoh E8/RZMRSsL38npKhgEbcVlDJJ0qH4JxiXIcWAwgdO0NW5ZeWBN8UL659cYyEwVtY +qwlSxR5uLCJtLXmgvYtGsYaYGZxirGVjp3XpjxW1QBtPvTisB0= -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:41 2025 by rpki-client