$ rpki-client -vvf rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/AS28210.roa File: AS28210.roa (raw, json) Hash identifier: wYwH9XH45WaidWa7g6OJYXqY03eabFeAETSl0xDP5Ok= Subject key identifier: 52:FF:7F:CA:19:37:36:D1:F7:AD:5B:2D:2C:F5:00:71:84:86:F4:EB Certificate issuer: /CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA Certificate serial: 4A1E00A5C16D7EA30C10052233DFF832121B48ED Authority key identifier: A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer Subject info access: rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/AS28210.roa Signing time: Wed 17 Sep 2025 14:39:40 +0000 ROA not before: Wed 17 Sep 2025 14:34:40 +0000 ROA not after: Wed 16 Sep 2026 14:39:40 +0000 asID: 28210 IP address blocks: 45.226.116.0/22 maxlen: 22 45.226.116.0/22 maxlen: 24 45.232.132.0/22 maxlen: 22 45.232.132.0/22 maxlen: 24 45.232.135.0/24 maxlen: 24 131.0.28.0/22 maxlen: 22 131.0.28.0/22 maxlen: 24 131.255.20.0/22 maxlen: 22 131.255.20.0/22 maxlen: 24 138.59.120.0/22 maxlen: 22 138.59.120.0/22 maxlen: 24 138.117.220.0/22 maxlen: 22 138.117.220.0/22 maxlen: 24 138.185.96.0/22 maxlen: 22 138.185.96.0/22 maxlen: 24 138.204.136.0/22 maxlen: 22 138.204.136.0/22 maxlen: 24 138.255.144.0/22 maxlen: 22 138.255.144.0/22 maxlen: 24 168.228.200.0/22 maxlen: 24 170.233.48.0/22 maxlen: 22 170.233.48.0/22 maxlen: 24 170.233.49.0/24 maxlen: 24 170.233.50.0/24 maxlen: 24 170.238.196.0/22 maxlen: 22 170.238.196.0/24 maxlen: 24 170.238.197.0/24 maxlen: 24 170.238.198.0/24 maxlen: 24 170.238.199.0/24 maxlen: 24 177.55.192.0/20 maxlen: 24 177.85.48.0/21 maxlen: 21 177.85.48.0/21 maxlen: 24 177.131.160.0/19 maxlen: 24 177.137.32.0/20 maxlen: 20 177.137.32.0/20 maxlen: 24 177.137.36.0/24 maxlen: 24 177.137.40.0/24 maxlen: 24 177.137.47.0/24 maxlen: 24 177.222.160.0/21 maxlen: 24 179.191.192.0/19 maxlen: 24 186.194.96.0/20 maxlen: 20 186.194.96.0/20 maxlen: 24 186.219.112.0/21 maxlen: 21 186.219.112.0/21 maxlen: 24 189.113.64.0/20 maxlen: 20 189.113.64.0/20 maxlen: 24 189.127.208.0/20 maxlen: 20 189.127.208.0/20 maxlen: 24 189.127.210.0/24 maxlen: 24 189.127.216.0/24 maxlen: 24 189.127.221.0/24 maxlen: 24 191.243.88.0/24 maxlen: 24 191.243.89.0/24 maxlen: 24 191.243.90.0/24 maxlen: 24 191.243.91.0/24 maxlen: 24 2804:56c::/32 maxlen: 43 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.crl rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 20 Sep 2025 05:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:1e:00:a5:c1:6d:7e:a3:0c:10:05:22:33:df:f8:32:12:1b:48:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA Validity Not Before: Sep 17 14:34:40 2025 GMT Not After : Sep 16 14:39:40 2026 GMT Subject: CN=52FF7FCA193736D1F7AD5B2D2CF500718486F4EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d6:58:f1:9a:b9:8d:00:cf:cb:33:b8:27:36: 11:75:cb:82:82:a4:18:8f:3e:d0:cd:7b:33:50:2b: fb:87:46:46:8b:66:08:26:b9:db:85:b6:fd:b5:3a: ca:6f:1f:b4:3a:a4:ed:50:4d:d7:3a:39:39:b6:f5: 5d:57:a9:c3:29:d6:04:e3:13:1a:7c:bc:b7:59:87: 86:bb:42:d7:c5:df:5d:87:e8:df:df:ef:75:8e:32: fd:20:8b:a0:c1:8d:d6:25:b1:1e:47:a3:1a:98:bc: 29:07:21:00:cf:e8:10:6d:f5:8e:71:0a:db:8f:00: 40:d7:a6:25:81:43:6b:07:a0:dc:2a:93:1b:07:86: 10:6f:54:e5:92:63:b2:bd:3f:8b:3f:88:55:15:4f: bc:b1:c7:43:f2:f6:91:f6:69:56:e6:37:1a:11:9a: 84:1c:34:e5:cb:92:15:d2:f9:17:8a:61:b9:70:1f: 18:bd:03:92:f5:66:a1:d6:f0:9d:57:58:7a:47:5f: d0:a6:30:e3:05:bd:3a:ce:27:42:d6:c7:7c:be:37: e3:1f:60:b1:8e:25:2a:51:e1:ef:86:db:9b:08:35: 6c:3d:6b:a0:ef:ab:95:dd:d7:cb:1c:fc:4d:73:a7: 5e:13:83:64:c4:8e:7b:80:6b:1c:21:7b:ad:c9:68: 97:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:FF:7F:CA:19:37:36:D1:F7:AD:5B:2D:2C:F5:00:71:84:86:F4:EB X509v3 Authority Key Identifier: keyid:A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/AS28210.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.226.116.0/22 45.232.132.0/22 131.0.28.0/22 131.255.20.0/22 138.59.120.0/22 138.117.220.0/22 138.185.96.0/22 138.204.136.0/22 138.255.144.0/22 168.228.200.0/22 170.233.48.0/22 170.238.196.0/22 177.55.192.0/20 177.85.48.0/21 177.131.160.0/19 177.137.32.0/20 177.222.160.0/21 179.191.192.0/19 186.194.96.0/20 186.219.112.0/21 189.113.64.0/20 189.127.208.0/20 191.243.88.0/22 IPv6: 2804:56c::/32 Signature Algorithm: sha256WithRSAEncryption 2a:4c:95:3f:8e:54:f7:99:65:93:da:d0:99:ce:59:df:fe:a8: 71:57:c4:e9:b6:e2:9c:1b:be:e5:9b:42:47:25:85:2e:f2:d2: 31:98:5d:42:a2:bb:47:63:d6:df:24:03:03:38:ac:0e:be:5e: 29:4f:f1:9f:ac:23:15:48:da:47:bc:04:31:8c:75:d6:93:d7: 39:84:3c:94:b5:4f:a0:94:83:98:03:03:2d:38:a1:6b:95:d5: 73:70:68:70:08:57:b9:8b:ab:c5:cb:d6:29:b7:c0:ab:dc:19: 1c:be:9c:a5:53:cb:66:1d:e2:62:ae:76:f2:6e:36:15:86:e1: 95:30:c8:27:fc:61:8a:ba:2d:e3:2b:24:6a:f5:e3:3d:f0:66: 15:80:e6:5c:bf:86:b3:3d:fc:94:57:b3:38:38:de:06:9a:92: 74:1f:09:f5:7d:22:a1:23:71:a6:b3:c9:6f:f7:6a:bb:b9:fb: d4:87:83:0d:d6:94:3b:eb:a8:71:37:eb:f0:e3:d3:3b:89:0b: fb:91:c5:88:96:bd:3b:5a:0f:fd:01:9e:18:dd:da:bd:eb:2b: 5a:d9:9a:56:7d:36:ba:4e:d2:ee:d3:eb:e1:36:d3:af:23:29: 4f:a0:7a:30:1f:1b:c2:12:c1:92:1f:6d:e3:5f:c1:c7:d4:c0: c6:32:92:75 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgIUSh4ApcFtfqMMEAUiM9/4MhIbSO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYxQ0FCNjVCQURBRDc1RkY0OUNGOENFNTRBRTc1NzM3 MUQxQzRBQTAeFw0yNTA5MTcxNDM0NDBaFw0yNjA5MTYxNDM5NDBaMDMxMTAvBgNV BAMTKDUyRkY3RkNBMTkzNzM2RDFGN0FENUIyRDJDRjUwMDcxODQ4NkY0RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe1ljxmrmNAM/LM7gnNhF1y4KC pBiPPtDNezNQK/uHRkaLZggmuduFtv21OspvH7Q6pO1QTdc6OTm29V1XqcMp1gTj Exp8vLdZh4a7QtfF312H6N/f73WOMv0gi6DBjdYlsR5HoxqYvCkHIQDP6BBt9Y5x CtuPAEDXpiWBQ2sHoNwqkxsHhhBvVOWSY7K9P4s/iFUVT7yxx0Py9pH2aVbmNxoR moQcNOXLkhXS+ReKYblwHxi9A5L1ZqHW8J1XWHpHX9CmMOMFvTrOJ0LWx3y+N+Mf YLGOJSpR4e+G25sINWw9a6Dvq5Xd18sc/E1zp14Tg2TEjnuAaxwhe63JaJcrAgMB AAGjggKzMIICrzAdBgNVHQ4EFgQUUv9/yhk3NtH3rVstLPUAcYSG9OswHwYDVR0j BBgwFoAUphyrZbra11/0nPjOVK51c3HRxKowDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOVFmeFJydGhFV3dtMXc3WVNmWUU5V2Q2NDFWMW5hWGRrdUtrQXRDOHFn YVYvMS9BNjFDQUI2NUJBREFENzVGRjQ5Q0Y4Q0U1NEFFNzU3MzcxRDFDNEFBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E2MUNBQjY1QkFEQUQ3NUZG NDlDRjhDRTU0QUU3NTczNzFEMUM0QUEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby85UWZ4 UnJ0aEVXd20xdzdZU2ZZRTlXZDY0MVYxbmFYZGt1S2tBdEM4cWdhVi8xL0FTMjgy MTAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwgbYGCCsGAQUFBwEHAQH/ BIGmMIGjMIGRBAIAATCBigMEAi3idAMEAi3ohAMEAoMAHAMEAoP/FAMEAoo7eAME Aop13AMEAoq5YAMEAorMiAMEAor/kAMEAqjkyAMEAqrpMAMEAqruxAMEBLE3wAME A7FVMAMEBbGDoAMEBLGJIAMEA7HeoAMEBbO/wAMEBLrCYAMEA7rbcAMEBL1xQAME BL1/0AMEAr/zWDANBAIAAjAHAwUAKAQFbDANBgkqhkiG9w0BAQsFAAOCAQEAKkyV P45U95llk9rQmc5Z3/6ocVfE6bbinBu+5ZtCRyWFLvLSMZhdQqK7R2PW3yQDAzis Dr5eKU/xn6wjFUjaR7wEMYx11pPXOYQ8lLVPoJSDmAMDLTiha5XVc3BocAhXuYur xcvWKbfAq9wZHL6cpVPLZh3iYq528m42FYbhlTDIJ/xhirot4yskavXjPfBmFYDm XL+Gsz38lFezODjeBpqSdB8J9X0ioSNxprPJb/dqu7n71IeDDdaUO+uocTfr8OPT O4kL+5HFiJa9O1oP/QGeGN3avesrWtmaVn02uk7S7tPr4TbTryMpT6B6MB8bwhLB kh9t41/Bx9TAxjKSdQ== -----END CERTIFICATE-----Generated at Fri Sep 19 08:15:41 2025 by rpki-client