$ rpki-client -vvf rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53224.roa File: AS53224.roa (raw, json) Hash identifier: OJqA0lZpH+T3qq0CkGXdAQI1pCzajmI6h/xqXRgSt/Q= Subject key identifier: 6D:36:25:17:00:7E:91:42:EF:13:D0:7A:11:88:5F:6B:76:08:27:A6 Certificate issuer: /CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E Certificate serial: 33527B245915FF691D53E08CEB4BF8DD584082FA Authority key identifier: F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer Subject info access: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53224.roa Signing time: Thu 09 Oct 2025 21:02:30 +0000 ROA not before: Thu 09 Oct 2025 20:57:30 +0000 ROA not after: Thu 08 Oct 2026 21:02:30 +0000 asID: 53224 IP address blocks: 186.193.96.0/20 maxlen: 20 186.193.103.0/24 maxlen: 24 186.193.104.0/24 maxlen: 24 186.208.208.0/21 maxlen: 21 186.208.209.0/24 maxlen: 24 186.208.210.0/23 maxlen: 23 186.208.211.0/24 maxlen: 24 186.208.214.0/24 maxlen: 24 186.208.215.0/24 maxlen: 24 186.251.112.0/22 maxlen: 22 186.251.113.0/24 maxlen: 24 186.251.114.0/24 maxlen: 24 186.251.115.0/24 maxlen: 24 186.251.117.0/24 maxlen: 24 186.251.118.0/24 maxlen: 24 186.251.119.0/24 maxlen: 24 187.86.96.0/20 maxlen: 20 187.86.97.0/24 maxlen: 24 187.86.98.0/24 maxlen: 24 187.86.99.0/24 maxlen: 24 187.86.100.0/24 maxlen: 24 187.86.101.0/24 maxlen: 24 187.86.110.0/24 maxlen: 24 189.45.16.0/20 maxlen: 20 200.233.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 05 Nov 2025 18:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:52:7b:24:59:15:ff:69:1d:53:e0:8c:eb:4b:f8:dd:58:40:82:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E Validity Not Before: Oct 9 20:57:30 2025 GMT Not After : Oct 8 21:02:30 2026 GMT Subject: CN=6D362517007E9142EF13D07A11885F6B760827A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6f:cf:02:29:43:6d:19:6a:0d:73:42:7d:af: 0c:69:c5:0b:a0:ea:db:6a:ac:94:73:b0:45:e1:b1: 8c:b2:39:da:76:4d:6f:75:f2:22:04:d8:07:d2:2d: 34:2a:20:ca:6a:be:b6:73:0d:99:7d:43:53:32:09: 94:7d:e3:eb:70:10:95:6d:92:5f:f1:d4:52:ef:20: e9:71:9d:e5:a0:7f:bc:f8:4b:04:5d:8d:04:82:89: 2a:cb:30:64:10:75:4f:c7:2c:56:c8:bf:c9:3d:ba: 95:cd:ba:19:02:97:ff:5d:9a:bc:f3:29:29:21:e0: 46:ea:0a:4f:0b:a7:00:79:3e:dd:5a:25:ba:0e:8c: b7:f4:22:e3:9d:c1:95:04:0b:fb:34:2c:26:5c:bf: bf:04:24:2b:61:14:f3:a1:10:61:6c:7a:8b:be:0e: 4a:7a:c5:bc:ff:77:4e:21:74:fa:51:bb:60:28:95: a6:5d:20:ca:6a:35:91:e2:ee:fb:ff:9a:6c:50:f5: b8:8a:38:ae:5e:2b:3c:91:d7:ea:c1:fc:30:37:ff: d9:ac:f3:5e:2d:a7:49:2d:bd:cc:de:56:26:b9:0d: 64:eb:01:e7:4c:bf:65:e3:b5:ed:93:18:b8:25:8d: 87:8c:5a:b2:10:e6:bd:0b:08:7f:11:b6:c8:47:8d: fb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:36:25:17:00:7E:91:42:EF:13:D0:7A:11:88:5F:6B:76:08:27:A6 X509v3 Authority Key Identifier: keyid:F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53224.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 186.193.96.0/20 186.208.208.0/21 186.251.112.0/22 186.251.117.0-186.251.119.255 187.86.96.0/20 189.45.16.0/20 200.233.84.0/24 Signature Algorithm: sha256WithRSAEncryption 32:82:34:03:73:8c:60:73:73:b3:1b:89:36:8c:a1:dd:c9:1f: 1e:8c:b0:29:84:e9:dc:41:96:07:c6:da:60:65:cd:4a:65:79: 87:84:4d:74:7c:14:f9:f9:63:af:8f:55:e7:49:d1:c3:41:73: 44:37:18:4e:18:cf:da:30:d5:89:58:7a:9d:49:31:b0:50:d9: 4e:e6:3b:c3:be:71:1d:eb:bc:fb:26:b3:9e:88:17:34:8e:2e: d3:cc:17:8a:dc:f0:d5:0e:c3:0d:80:db:de:5b:7c:19:b6:86: 02:cb:e2:5e:44:56:77:fe:7c:4b:e2:7f:c1:92:0c:61:3f:a3: c6:81:b1:e4:c0:3f:ec:70:1b:46:7c:bb:a8:17:2e:89:2a:92: 78:82:99:89:28:03:be:e7:07:25:58:5e:06:32:76:7c:dc:2a: 93:b3:49:07:bb:98:25:a1:26:79:27:69:2e:ea:65:2a:4d:48: 6e:81:7f:e4:69:bb:f2:f3:0e:6c:1c:43:60:5a:8c:c7:61:8d: 68:4a:14:ea:d4:bf:2e:a6:50:b3:71:13:a2:60:17:d2:3d:7a: 46:9b:51:79:57:b4:19:34:71:d5:15:28:d4:db:51:5f:45:8c: 14:19:6f:87:8b:f2:e2:c8:f8:83:5c:6d:a9:b1:63:2e:8b:39: 68:31:7e:ac -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUM1J7JFkV/2kdU+CM60v43VhAgvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjYyRkE1NDBFNTlCODU3MDIwQzRCMjA5NTQyMzBFMEMw QUU4Q0EwRTAeFw0yNTEwMDkyMDU3MzBaFw0yNjEwMDgyMTAyMzBaMDMxMTAvBgNV BAMTKDZEMzYyNTE3MDA3RTkxNDJFRjEzRDA3QTExODg1RjZCNzYwODI3QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDob88CKUNtGWoNc0J9rwxpxQug 6ttqrJRzsEXhsYyyOdp2TW918iIE2AfSLTQqIMpqvrZzDZl9Q1MyCZR94+twEJVt kl/x1FLvIOlxneWgf7z4SwRdjQSCiSrLMGQQdU/HLFbIv8k9upXNuhkCl/9dmrzz KSkh4EbqCk8LpwB5Pt1aJboOjLf0IuOdwZUEC/s0LCZcv78EJCthFPOhEGFseou+ Dkp6xbz/d04hdPpRu2AolaZdIMpqNZHi7vv/mmxQ9biKOK5eKzyR1+rB/DA3/9ms 814tp0ktvczeVia5DWTrAedMv2Xjte2TGLgljYeMWrIQ5r0LCH8RtshHjftDAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUbTYlFwB+kULvE9B6EYhfa3YIJ6YwHwYDVR0j BBgwFoAU9i+lQOWbhXAgxLIJVCMODAroyg4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMmRHQVBKUDY1ZWZlQ1RVYTg0aHc1UkdSYlpHUFcycVJ5VHZnYWhnanhF ZUIvMC9GNjJGQTU0MEU1OUI4NTcwMjBDNEIyMDk1NDIzMEUwQzBBRThDQTBFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Y2MkZBNTQwRTU5Qjg1NzAy MEM0QjIwOTU0MjMwRTBDMEFFOENBMEUuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8yZEdB UEpQNjVlZmVDVFVhODRodzVSR1JiWkdQVzJxUnlUdmdhaGdqeEVlQi8wL0FTNTMy MjQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBAS6wWADBAO60NADBAK6+3AwDAMEALr7dQMEA7r7cAMEBLtW YAMEBL0tEAMEAMjpVDANBgkqhkiG9w0BAQsFAAOCAQEAMoI0A3OMYHNzsxuJNoyh 3ckfHoywKYTp3EGWB8baYGXNSmV5h4RNdHwU+fljr49V50nRw0FzRDcYThjP2jDV iVh6nUkxsFDZTuY7w75xHeu8+yaznogXNI4u08wXitzw1Q7DDYDb3lt8GbaGAsvi XkRWd/58S+J/wZIMYT+jxoGx5MA/7HAbRny7qBcuiSqSeIKZiSgDvucHJVheBjJ2 fNwqk7NJB7uYJaEmeSdpLuplKk1IboF/5Gm78vMObBxDYFqMx2GNaEoU6tS/LqZQ s3ETomAX0j16RptReVe0GTRx1RUo1NtRX0WMFBlvh4vy4sj4g1xtqbFjLos5aDF+ rA== -----END CERTIFICATE-----Generated at Tue Nov 4 20:20:14 2025 by rpki-client