$ rpki-client -vvf rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AS28201.roa File: AS28201.roa (raw, json) Hash identifier: lIdJKkew9d6zFwqLwCG23Up27g1cYpWj5oDK9CFug6M= Subject key identifier: 09:9C:5B:FC:91:D5:07:55:D0:53:B8:43:AC:18:67:98:25:AC:B0:F4 Certificate issuer: /CN=AC1FE9387640A777B73D94211D4C8FFA5C669304 Certificate serial: 668573B6D6EA1A98FB81B4A000D88DA052F578A4 Authority key identifier: AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer Subject info access: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AS28201.roa Signing time: Thu 10 Jul 2025 14:39:24 +0000 ROA not before: Thu 10 Jul 2025 14:34:24 +0000 ROA not after: Thu 09 Jul 2026 14:39:24 +0000 asID: 28201 IP address blocks: 45.7.212.0/22 maxlen: 24 45.191.168.0/22 maxlen: 24 45.231.8.0/22 maxlen: 24 45.235.116.0/22 maxlen: 24 131.161.4.0/22 maxlen: 24 138.59.20.0/22 maxlen: 24 138.117.204.0/22 maxlen: 24 138.121.64.0/22 maxlen: 24 138.185.24.0/22 maxlen: 24 168.181.80.0/22 maxlen: 24 168.195.64.0/22 maxlen: 24 168.227.8.0/22 maxlen: 24 170.239.192.0/22 maxlen: 24 170.239.220.0/22 maxlen: 24 170.254.160.0/22 maxlen: 24 177.125.80.0/21 maxlen: 24 177.125.88.0/21 maxlen: 24 177.152.160.0/20 maxlen: 24 177.221.72.0/21 maxlen: 24 179.189.96.0/20 maxlen: 24 181.225.180.0/22 maxlen: 24 186.216.128.0/20 maxlen: 24 186.251.200.0/22 maxlen: 24 187.1.48.0/20 maxlen: 24 187.17.240.0/20 maxlen: 24 187.73.0.0/20 maxlen: 24 187.86.64.0/20 maxlen: 24 187.108.48.0/20 maxlen: 24 189.90.240.0/20 maxlen: 24 191.5.80.0/20 maxlen: 24 2804:5c::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 27 Jul 2025 07:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:85:73:b6:d6:ea:1a:98:fb:81:b4:a0:00:d8:8d:a0:52:f5:78:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC1FE9387640A777B73D94211D4C8FFA5C669304 Validity Not Before: Jul 10 14:34:24 2025 GMT Not After : Jul 9 14:39:24 2026 GMT Subject: CN=099C5BFC91D50755D053B843AC18679825ACB0F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:5d:9c:98:f8:1b:4e:5d:6c:a3:2d:5c:65:20: 4b:b2:81:cc:db:fc:7d:d3:cc:47:58:3c:c8:90:da: de:0d:c2:cc:4a:3f:b4:c3:b5:14:af:b8:a7:a2:38: 85:17:d8:0e:ec:7f:91:d6:f7:8f:a0:01:36:19:18: 5f:ec:43:b2:a2:bf:29:5e:0a:27:92:b0:e9:55:e0: 08:d0:06:d3:5d:b1:c4:f6:49:85:32:72:55:12:0e: 94:0a:1e:91:9f:fe:b9:5a:25:d2:32:59:cd:8f:73: 3d:5f:82:49:54:6a:19:18:c1:fb:45:3b:a6:07:5a: 2e:4a:8a:ad:51:10:fb:80:86:91:4a:61:c6:23:61: 4c:3f:8a:4a:28:06:d7:3a:5e:41:0c:44:fc:89:31: 59:28:85:86:5e:4a:9b:8f:7b:58:61:98:be:e8:f5: 43:4a:19:5a:71:eb:1a:44:e1:e6:5c:37:c8:f6:64: e5:63:b2:3c:c3:3f:ea:aa:ba:68:ff:18:32:52:8f: 20:98:02:54:d0:13:53:5c:46:07:9c:18:12:a6:7f: 85:ec:f8:7c:5e:fb:16:9f:63:6c:4f:64:fa:b8:80: 3e:0a:a0:81:d7:8e:fd:2c:dc:3f:7d:65:3d:68:c3: 99:af:a5:63:3f:59:d2:36:d9:87:1d:a6:de:54:3d: 74:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9C:5B:FC:91:D5:07:55:D0:53:B8:43:AC:18:67:98:25:AC:B0:F4 X509v3 Authority Key Identifier: keyid:AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AS28201.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.7.212.0/22 45.191.168.0/22 45.231.8.0/22 45.235.116.0/22 131.161.4.0/22 138.59.20.0/22 138.117.204.0/22 138.121.64.0/22 138.185.24.0/22 168.181.80.0/22 168.195.64.0/22 168.227.8.0/22 170.239.192.0/22 170.239.220.0/22 170.254.160.0/22 177.125.80.0/20 177.152.160.0/20 177.221.72.0/21 179.189.96.0/20 181.225.180.0/22 186.216.128.0/20 186.251.200.0/22 187.1.48.0/20 187.17.240.0/20 187.73.0.0/20 187.86.64.0/20 187.108.48.0/20 189.90.240.0/20 191.5.80.0/20 IPv6: 2804:5c::/32 Signature Algorithm: sha256WithRSAEncryption 92:89:c5:8b:e6:4a:9e:8e:52:31:c5:e8:35:b1:66:48:42:23: c6:f8:d7:c5:3d:9d:0a:08:8a:f5:55:cf:99:ee:26:2f:74:c9: 14:a7:6e:6c:b1:9e:91:ab:af:75:f4:59:8a:69:5d:5b:da:f0: bd:a3:51:0e:21:6d:e9:90:f7:f3:0e:6f:7d:c9:73:93:85:f0: b8:78:5c:7c:76:de:1b:35:39:6f:ad:f2:bf:33:41:b6:70:a4: d0:5e:27:5c:a4:56:01:7c:98:ce:c0:8b:7b:4f:3b:c1:84:e1: 7c:62:a8:de:83:ca:87:73:dd:4e:3c:13:19:01:6a:c6:b6:e7: 23:57:18:12:48:20:30:e3:15:6f:fa:33:67:11:80:e4:5b:c8: 56:ed:3c:fe:48:5e:cd:81:f9:ed:23:42:2d:68:9d:90:c4:de: ee:30:ec:5d:42:fb:f5:76:62:f8:23:f6:5a:67:69:64:22:e2: 91:fd:d8:38:a2:c6:0d:fa:f1:ee:f5:b0:53:ce:87:8c:16:f2: 85:02:0e:70:bd:5c:e0:19:6e:7c:7c:56:cb:ad:25:78:16:40: 75:0b:97:6f:c3:ce:3a:62:b7:cc:5a:b9:e5:df:4d:36:29:a1: 2a:56:78:f5:01:b5:04:37:a8:84:df:a4:a0:dd:d8:76:66:a7: 39:7d:3d:4c -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUZoVzttbqGpj7gbSgANiNoFL1eKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMxRkU5Mzg3NjQwQTc3N0I3M0Q5NDIxMUQ0QzhGRkE1 QzY2OTMwNDAeFw0yNTA3MTAxNDM0MjRaFw0yNjA3MDkxNDM5MjRaMDMxMTAvBgNV BAMTKDA5OUM1QkZDOTFENTA3NTVEMDUzQjg0M0FDMTg2Nzk4MjVBQ0IwRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSXZyY+BtOXWyjLVxlIEuygczb /H3TzEdYPMiQ2t4NwsxKP7TDtRSvuKeiOIUX2A7sf5HW94+gATYZGF/sQ7Kivyle CieSsOlV4AjQBtNdscT2SYUyclUSDpQKHpGf/rlaJdIyWc2Pcz1fgklUahkYwftF O6YHWi5Kiq1REPuAhpFKYcYjYUw/ikooBtc6XkEMRPyJMVkohYZeSpuPe1hhmL7o 9UNKGVpx6xpE4eZcN8j2ZOVjsjzDP+qqumj/GDJSjyCYAlTQE1NcRgecGBKmf4Xs +Hxe+xafY2xPZPq4gD4KoIHXjv0s3D99ZT1ow5mvpWM/WdI22Ycdpt5UPXS7AgMB AAGjggLXMIIC0zAdBgNVHQ4EFgQUCZxb/JHVB1XQU7hDrBhnmCWssPQwHwYDVR0j BBgwFoAUrB/pOHZAp3e3PZQhHUyP+lxmkwQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOXRnSEZyWXFvdGtucnpHTkhBMjJxUFhBcmJUMjJVc3BUR2NacmlETjZm Z1UvMC9BQzFGRTkzODc2NDBBNzc3QjczRDk0MjExRDRDOEZGQTVDNjY5MzA0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0FDMUZFOTM4NzY0MEE3NzdC NzNEOTQyMTFENEM4RkZBNUM2NjkzMDQuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby85dGdI RnJZcW90a25yekdOSEEyMnFQWEFyYlQyMlVzcFRHY1pyaURONmZnVS8wL0FTMjgy MDEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwgdoGCCsGAQUFBwEHAQH/ BIHKMIHHMIG1BAIAATCBrgMEAi0H1AMEAi2/qAMEAi3nCAMEAi3rdAMEAoOhBAME Aoo7FAMEAop1zAMEAop5QAMEAoq5GAMEAqi1UAMEAqjDQAMEAqjjCAMEAqrvwAME Aqrv3AMEAqr+oAMEBLF9UAMEBLGYoAMEA7HdSAMEBLO9YAMEArXhtAMEBLrYgAME Arr7yAMEBLsBMAMEBLsR8AMEBLtJAAMEBLtWQAMEBLtsMAMEBL1a8AMEBL8FUDAN BAIAAjAHAwUAKAQAXDANBgkqhkiG9w0BAQsFAAOCAQEAkonFi+ZKno5SMcXoNbFm SEIjxvjXxT2dCgiK9VXPme4mL3TJFKdubLGekauvdfRZimldW9rwvaNRDiFt6ZD3 8w5vfclzk4XwuHhcfHbeGzU5b63yvzNBtnCk0F4nXKRWAXyYzsCLe087wYThfGKo 3oPKh3PdTjwTGQFqxrbnI1cYEkggMOMVb/ozZxGA5FvIVu08/khezYH57SNCLWid kMTe7jDsXUL79XZi+CP2WmdpZCLikf3YOKLGDfrx7vWwU86HjBbyhQIOcL1c4Blu fHxWy60leBZAdQuXb8POOmK3zFq55d9NNimhKlZ49QG1BDeohN+koN3YdmanOX09 TA== -----END CERTIFICATE-----Generated at Sat Jul 26 10:11:32 2025 by rpki-client