$ rpki-client -vvf rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/AS52613.roa File: AS52613.roa (raw, json) Hash identifier: fPL/sAfA8ZaWROnd7hyAi+lo34trBbOHQHpLadV+Hyo= Subject key identifier: 57:74:8D:28:FF:EE:14:72:87:E3:20:0E:FF:16:45:1A:15:6D:17:D9 Certificate issuer: /CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA Certificate serial: 26423D96724AE7AF988C77441E0CF7877CAF06AE Authority key identifier: A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer Subject info access: rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/AS52613.roa Signing time: Wed 17 Sep 2025 14:35:43 +0000 ROA not before: Wed 17 Sep 2025 14:30:43 +0000 ROA not after: Wed 16 Sep 2026 14:35:43 +0000 asID: 52613 IP address blocks: 138.36.56.0/22 maxlen: 24 143.0.56.0/22 maxlen: 24 168.232.160.0/22 maxlen: 24 170.231.232.0/22 maxlen: 22 170.231.232.0/23 maxlen: 23 170.231.234.0/23 maxlen: 23 177.125.168.0/21 maxlen: 21 177.125.170.0/23 maxlen: 23 177.125.171.0/24 maxlen: 24 177.125.172.0/22 maxlen: 22 177.125.172.0/23 maxlen: 23 177.125.172.0/24 maxlen: 24 177.125.174.0/23 maxlen: 23 177.125.174.0/24 maxlen: 24 177.125.175.0/24 maxlen: 24 2804:d3c::/32 maxlen: 32 2804:d3c::/32 maxlen: 64 2804:d3c:8000::/48 maxlen: 48 2804:d3c:8004::/48 maxlen: 48 2804:d3c:8100::/44 maxlen: 44 2804:d3c:8140::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.crl rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 05 Nov 2025 05:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:42:3d:96:72:4a:e7:af:98:8c:77:44:1e:0c:f7:87:7c:af:06:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA Validity Not Before: Sep 17 14:30:43 2025 GMT Not After : Sep 16 14:35:43 2026 GMT Subject: CN=57748D28FFEE147287E3200EFF16451A156D17D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8f:a3:6d:10:1b:f0:c3:6f:1e:27:41:90:a8: dc:2a:46:6e:c8:57:dc:58:4d:c4:3f:ea:62:eb:c5: 6c:dd:2a:3f:63:76:90:b4:02:a9:17:c5:9a:66:18: 69:91:f2:eb:40:a2:e3:d0:ce:5a:1b:49:75:bb:3a: 36:50:45:ff:bf:f3:0f:fe:3b:9a:d1:5c:fa:a7:15: 07:a2:28:83:71:3a:ed:46:5c:94:fe:d1:e7:44:01: e0:21:25:b9:e9:af:72:be:1b:68:44:59:17:13:ed: 81:5e:ae:34:c5:c1:c3:be:ef:66:75:ff:0a:3a:e7: ad:e0:b2:02:61:35:cd:1b:64:ac:64:0b:78:74:27: 88:63:2b:a3:92:86:83:78:9b:0a:39:e4:7d:e9:e7: fb:76:34:63:e5:19:32:c1:a6:3a:a5:b1:e3:99:33: 3f:a0:14:b0:a8:2b:ba:a0:76:ce:c1:25:d9:4c:6d: f2:a0:a5:3a:00:62:67:70:94:3e:51:6b:11:af:fe: 79:7d:dc:56:68:94:b5:c6:05:fa:08:15:86:f8:df: f0:fd:3a:d9:41:9f:94:47:61:a8:72:10:b7:6c:8f: 9f:92:0b:83:73:f9:8a:a9:69:57:4e:1c:1a:49:e1: 3a:d0:08:5f:bb:7e:44:8d:ef:b2:bc:28:74:fd:9f: 9f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:74:8D:28:FF:EE:14:72:87:E3:20:0E:FF:16:45:1A:15:6D:17:D9 X509v3 Authority Key Identifier: keyid:A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/AS52613.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.36.56.0/22 143.0.56.0/22 168.232.160.0/22 170.231.232.0/22 177.125.168.0/21 IPv6: 2804:d3c::/32 Signature Algorithm: sha256WithRSAEncryption 91:c6:13:5c:98:a5:74:1b:2b:73:c0:4d:4e:8a:7a:9a:b5:cd: 0d:9b:43:d0:27:ae:9a:32:71:c4:01:9c:6b:23:0b:d4:fd:7d: 11:7d:ec:ba:4f:70:bb:f9:ae:b4:72:88:3f:f5:ca:a5:4b:02: 2e:68:10:ea:c6:09:fc:67:b6:b4:27:6a:74:b2:03:04:85:67: aa:ad:1d:ba:cb:24:12:7f:d2:13:86:f6:ab:86:cf:99:dc:ef: 8f:72:e5:4d:3c:b8:a2:5b:0c:fb:40:38:de:07:c5:43:a1:82: 08:2a:23:c0:0a:d4:62:e9:e6:2e:b9:38:09:b8:0f:20:2b:2a: 4b:21:20:af:33:c1:73:b2:5c:63:b6:9f:e9:69:12:20:05:7c: d2:24:cc:7a:ee:03:76:63:03:df:3e:c9:68:31:df:a3:20:34: 86:6b:de:b2:08:96:4d:6b:cf:b6:9f:6c:c7:20:4e:15:41:90: 66:39:b2:a9:43:5d:cb:2e:32:8a:f1:30:de:85:44:43:a0:ff: a4:21:38:94:09:c1:33:c8:96:45:24:c6:31:82:4d:e1:5d:4f: 4e:95:36:b6:60:bc:4a:15:cd:a8:03:c4:b4:bc:4d:08:80:1d: 3b:5b:8f:78:4a:e9:48:03:81:b0:8f:21:ed:91:0f:a7:9c:ba: 19:4c:50:5a -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUJkI9lnJK56+YjHdEHgz3h3yvBq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYxQ0FCNjVCQURBRDc1RkY0OUNGOENFNTRBRTc1NzM3 MUQxQzRBQTAeFw0yNTA5MTcxNDMwNDNaFw0yNjA5MTYxNDM1NDNaMDMxMTAvBgNV BAMTKDU3NzQ4RDI4RkZFRTE0NzI4N0UzMjAwRUZGMTY0NTFBMTU2RDE3RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbj6NtEBvww28eJ0GQqNwqRm7I V9xYTcQ/6mLrxWzdKj9jdpC0AqkXxZpmGGmR8utAouPQzlobSXW7OjZQRf+/8w/+ O5rRXPqnFQeiKINxOu1GXJT+0edEAeAhJbnpr3K+G2hEWRcT7YFerjTFwcO+72Z1 /wo6563gsgJhNc0bZKxkC3h0J4hjK6OShoN4mwo55H3p5/t2NGPlGTLBpjqlseOZ Mz+gFLCoK7qgds7BJdlMbfKgpToAYmdwlD5RaxGv/nl93FZolLXGBfoIFYb43/D9 OtlBn5RHYahyELdsj5+SC4Nz+YqpaVdOHBpJ4TrQCF+7fkSN77K8KHT9n5/nAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQUV3SNKP/uFHKH4yAO/xZFGhVtF9kwHwYDVR0j BBgwFoAUphyrZbra11/0nPjOVK51c3HRxKowDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOVFmeFJydGhFV3dtMXc3WVNmWUU5V2Q2NDFWMW5hWGRrdUtrQXRDOHFn YVYvMS9BNjFDQUI2NUJBREFENzVGRjQ5Q0Y4Q0U1NEFFNzU3MzcxRDFDNEFBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E2MUNBQjY1QkFEQUQ3NUZG NDlDRjhDRTU0QUU3NTczNzFEMUM0QUEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby85UWZ4 UnJ0aEVXd20xdzdZU2ZZRTlXZDY0MVYxbmFYZGt1S2tBdEM4cWdhVi8xL0FTNTI2 MTMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAKKJDgDBAKPADgDBAKo6KADBAKq5+gDBAOxfagwDQQCAAIw BwMFACgEDTwwDQYJKoZIhvcNAQELBQADggEBAJHGE1yYpXQbK3PATU6Kepq1zQ2b Q9AnrpoyccQBnGsjC9T9fRF97LpPcLv5rrRyiD/1yqVLAi5oEOrGCfxntrQnanSy AwSFZ6qtHbrLJBJ/0hOG9quGz5nc749y5U08uKJbDPtAON4HxUOhgggqI8AK1GLp 5i65OAm4DyArKkshIK8zwXOyXGO2n+lpEiAFfNIkzHruA3ZjA98+yWgx36MgNIZr 3rIIlk1rz7afbMcgThVBkGY5sqlDXcsuMorxMN6FREOg/6QhOJQJwTPIlkUkxjGC TeFdT06VNrZgvEoVzagDxLS8TQiAHTtbj3hK6UgDgbCPIe2RD6ecuhlMUFo= -----END CERTIFICATE-----Generated at Tue Nov 4 17:45:17 2025 by rpki-client