This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/27pUxAbzrKc7Ry7hXdmaREKDNjdtsrJnq92uvNw6s2XL/0/3136382e3233322e3138382e302f32322d3234203d3e20323634323735.roa File: 3136382e3233322e3138382e302f32322d3234203d3e20323634323735.roa (raw, json) Hash identifier: uT4Yd1CGoAFyoG3AGwP6NQ6c9NSmcuEHEUxc+1uvkx4= Subject key identifier: 35:B7:5B:A3:BD:3C:CE:68:E4:B8:88:77:8B:0E:C8:61:65:6C:D1:1F Certificate issuer: /CN=D9C4F17E8FEAA71140327FF834FC01E5DD40E797 Certificate serial: 0C1FB52077B0FF5C823DEE7F305362F9D08D3738 Authority key identifier: D9:C4:F1:7E:8F:EA:A7:11:40:32:7F:F8:34:FC:01:E5:DD:40:E7:97 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D9C4F17E8FEAA71140327FF834FC01E5DD40E797.cer Subject info access: rsync://rpki-repo.registro.br/repo/27pUxAbzrKc7Ry7hXdmaREKDNjdtsrJnq92uvNw6s2XL/0/3136382e3233322e3138382e302f32322d3234203d3e20323634323735.roa Signing time: Wed 17 Dec 2025 23:22:47 +0000 ROA not before: Wed 17 Dec 2025 23:17:47 +0000 ROA not after: Wed 16 Dec 2026 23:22:47 +0000 asID: 264275 IP address blocks: 168.232.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/27pUxAbzrKc7Ry7hXdmaREKDNjdtsrJnq92uvNw6s2XL/0/D9C4F17E8FEAA71140327FF834FC01E5DD40E797.crl rsync://rpki-repo.registro.br/repo/27pUxAbzrKc7Ry7hXdmaREKDNjdtsrJnq92uvNw6s2XL/0/D9C4F17E8FEAA71140327FF834FC01E5DD40E797.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D9C4F17E8FEAA71140327FF834FC01E5DD40E797.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 22 Dec 2025 04:20:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:1f:b5:20:77:b0:ff:5c:82:3d:ee:7f:30:53:62:f9:d0:8d:37:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9C4F17E8FEAA71140327FF834FC01E5DD40E797 Validity Not Before: Dec 17 23:17:47 2025 GMT Not After : Dec 16 23:22:47 2026 GMT Subject: CN=35B75BA3BD3CCE68E4B888778B0EC861656CD11F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d6:36:44:05:94:ab:77:ce:63:fd:3d:1e:ae: 32:a3:03:58:3e:55:7d:6c:eb:86:4c:b8:cf:75:32: 70:22:76:c6:fa:88:da:ab:b0:16:ce:41:ea:4e:61: 77:f1:b5:66:b9:a3:58:04:e4:76:f6:6b:70:48:b8: 09:3b:4d:79:d4:f0:f9:a5:e6:60:81:a6:ff:39:b7: f5:6b:1d:35:98:31:6f:91:d7:93:ce:dd:27:96:83: 00:99:28:b3:a0:5d:05:f9:2f:1d:9d:ed:92:d0:ec: 8b:a9:46:c8:77:34:9f:ba:df:f1:31:0a:8d:eb:0f: ed:db:a7:cf:8f:fd:0e:b5:f1:54:f7:6f:b8:17:7e: c7:9a:bc:79:52:ad:f3:e3:d5:47:ca:1b:38:03:e9: 54:9c:57:3b:7b:22:e6:13:6c:60:97:b2:b0:03:f9: 99:47:5c:85:cf:6f:7c:7e:66:45:1d:78:cb:74:87: 79:d0:9c:8c:12:c2:dd:0d:5c:ff:77:63:5a:f6:cd: af:b1:52:c2:1f:42:e8:7f:c4:f2:02:38:2f:0f:31: 5e:8d:c9:6e:62:b7:70:33:49:19:3a:26:13:e0:74: fb:5d:c0:3f:b1:a3:1d:e5:0c:58:04:07:bc:86:f4: af:f1:2e:5f:52:4d:3f:01:d7:56:3b:11:93:15:cb: 1d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B7:5B:A3:BD:3C:CE:68:E4:B8:88:77:8B:0E:C8:61:65:6C:D1:1F X509v3 Authority Key Identifier: keyid:D9:C4:F1:7E:8F:EA:A7:11:40:32:7F:F8:34:FC:01:E5:DD:40:E7:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/27pUxAbzrKc7Ry7hXdmaREKDNjdtsrJnq92uvNw6s2XL/0/D9C4F17E8FEAA71140327FF834FC01E5DD40E797.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D9C4F17E8FEAA71140327FF834FC01E5DD40E797.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/27pUxAbzrKc7Ry7hXdmaREKDNjdtsrJnq92uvNw6s2XL/0/3136382e3233322e3138382e302f32322d3234203d3e20323634323735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.232.188.0/22 Signature Algorithm: sha256WithRSAEncryption 42:2b:c5:bb:21:b2:c0:26:70:86:cc:51:ed:02:a5:02:47:8b: b0:46:20:e0:fc:30:b4:00:87:cd:ef:68:23:c1:a5:97:06:33: ca:26:92:44:f2:a4:61:10:d4:f3:30:7d:cd:9a:49:73:5d:3f: 18:bc:5e:c5:2d:93:a5:9f:b2:c7:45:65:0d:91:64:70:02:1a: e4:e6:ae:a7:cc:40:b0:2e:82:78:c1:e0:5b:07:92:ad:79:31: b6:26:34:f9:29:36:be:f2:20:87:9d:00:b3:36:ca:e3:d2:48: 29:f2:e8:d7:24:6b:ae:63:5b:77:d4:35:77:63:9b:fd:03:cd: 8d:4d:44:4c:4d:e7:3b:9d:a7:7e:7e:49:4a:ad:9a:fb:05:3f: a2:9d:56:d8:86:dd:eb:9d:16:a6:ef:13:30:47:d1:39:90:52: 4b:ad:6c:9d:08:4e:04:2c:b9:91:ac:45:ba:98:cd:62:09:21: e2:f9:04:fa:8a:8b:49:55:aa:15:a7:98:36:d6:97:18:d4:e2: 71:6a:ce:f7:cc:99:f8:c4:a4:43:26:5f:4d:33:98:67:b3:56: 1b:e0:50:ab:6d:37:e2:ef:aa:a3:12:e8:62:ba:19:9f:12:ee: a9:9e:23:64:04:1c:77:78:8b:ae:20:e4:56:5e:d2:a2:ba:3f: 8c:a2:cc:ed -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUDB+1IHew/1yCPe5/MFNi+dCNNzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDNEYxN0U4RkVBQTcxMTQwMzI3RkY4MzRGQzAxRTVE RDQwRTc5NzAeFw0yNTEyMTcyMzE3NDdaFw0yNjEyMTYyMzIyNDdaMDMxMTAvBgNV BAMTKDM1Qjc1QkEzQkQzQ0NFNjhFNEI4ODg3NzhCMEVDODYxNjU2Q0QxMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb1jZEBZSrd85j/T0erjKjA1g+ VX1s64ZMuM91MnAidsb6iNqrsBbOQepOYXfxtWa5o1gE5Hb2a3BIuAk7TXnU8Pml 5mCBpv85t/VrHTWYMW+R15PO3SeWgwCZKLOgXQX5Lx2d7ZLQ7IupRsh3NJ+63/Ex Co3rD+3bp8+P/Q618VT3b7gXfseavHlSrfPj1UfKGzgD6VScVzt7IuYTbGCXsrAD +ZlHXIXPb3x+ZkUdeMt0h3nQnIwSwt0NXP93Y1r2za+xUsIfQuh/xPICOC8PMV6N yW5it3AzSRk6JhPgdPtdwD+xox3lDFgEB7yG9K/xLl9STT8B11Y7EZMVyx1LAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUNbdbo708zmjkuIh3iw7IYWVs0R8wHwYDVR0j BBgwFoAU2cTxfo/qpxFAMn/4NPwB5d1A55cwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMjdwVXhBYnpyS2M3Unk3aFhkbWFSRUtETmpkdHNySm5xOTJ1dk53NnMy WEwvMC9EOUM0RjE3RThGRUFBNzExNDAzMjdGRjgzNEZDMDFFNURENDBFNzk3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q5QzRGMTdFOEZFQUE3MTE0 MDMyN0ZGODM0RkMwMUU1REQ0MEU3OTcuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzI3cFV4QWJ6cktjN1J5N2hYZG1hUkVLRE5qZHRzckpucTkydXZOdzZzMlhMLzAv MzEzNjM4MmUzMjMzMzIyZTMxMzgzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzYzNDMyMzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqjovDANBgkqhkiG9w0BAQsFAAOCAQEAQivF uyGywCZwhsxR7QKlAkeLsEYg4PwwtACHze9oI8GllwYzyiaSRPKkYRDU8zB9zZpJ c10/GLxexS2TpZ+yx0VlDZFkcAIa5Oaup8xAsC6CeMHgWweSrXkxtiY0+Sk2vvIg h50AszbK49JIKfLo1yRrrmNbd9Q1d2Ob/QPNjU1ETE3nO52nfn5JSq2a+wU/op1W 2Ibd650Wpu8TMEfROZBSS61snQhOBCy5kaxFupjNYgkh4vkE+oqLSVWqFaeYNtaX GNTicWrO98yZ+MSkQyZfTTOYZ7NWG+BQq2034u+qoxLoYroZnxLuqZ4jZAQcd3iL riDkVl7Soro/jKLM7Q== -----END CERTIFICATE-----Generated at Sun Dec 21 21:29:04 2025 by rpki-client