This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138362e3230392e3130392e302f32342d3234203d3e203533313533.roa File: 3138362e3230392e3130392e302f32342d3234203d3e203533313533.roa (raw, json) Hash identifier: BHIxRY6Zb6Tc7LNhY/HT3ZOg42LRhrNZuIYBrCuZMPw= Subject key identifier: FB:74:56:5B:43:91:46:1A:E4:5D:3E:27:EA:5D:1B:E7:CF:E3:05:1F Certificate issuer: /CN=088529FD326477A5FEB0A67AFC1C93F8F83A8707 Certificate serial: 5871B2D2479E47AFDDA9DA2BD1487D1249D31F4D Authority key identifier: 08:85:29:FD:32:64:77:A5:FE:B0:A6:7A:FC:1C:93:F8:F8:3A:87:07 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/088529FD326477A5FEB0A67AFC1C93F8F83A8707.cer Subject info access: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138362e3230392e3130392e302f32342d3234203d3e203533313533.roa Signing time: Wed 28 Jan 2026 11:34:29 +0000 ROA not before: Wed 28 Jan 2026 11:29:29 +0000 ROA not after: Wed 27 Jan 2027 11:34:29 +0000 asID: 53153 IP address blocks: 186.209.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/088529FD326477A5FEB0A67AFC1C93F8F83A8707.crl rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/088529FD326477A5FEB0A67AFC1C93F8F83A8707.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/088529FD326477A5FEB0A67AFC1C93F8F83A8707.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 06 Feb 2026 21:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:71:b2:d2:47:9e:47:af:dd:a9:da:2b:d1:48:7d:12:49:d3:1f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088529FD326477A5FEB0A67AFC1C93F8F83A8707 Validity Not Before: Jan 28 11:29:29 2026 GMT Not After : Jan 27 11:34:29 2027 GMT Subject: CN=FB74565B4391461AE45D3E27EA5D1BE7CFE3051F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:aa:89:a0:ba:54:63:f2:af:b5:b3:fe:03:b7: f9:52:1c:6e:ae:cd:5e:fa:7e:28:22:6f:90:f8:20: 9d:6f:82:ee:5e:1e:a0:59:4a:bc:80:4a:f4:54:62: 4f:d3:d3:ff:83:a3:cc:3b:fe:02:fc:d4:3d:7e:68: 98:84:cf:39:49:64:c1:e0:d6:c8:82:e9:12:fb:44: 67:e1:4a:47:29:5d:68:f9:0e:f8:1f:63:b5:4a:93: 81:df:7a:1d:64:9d:cb:26:7d:35:e2:08:86:76:e5: 6b:96:08:92:17:73:b8:2e:b3:ff:00:dc:3f:22:8f: 59:da:57:15:74:9e:2e:a4:5b:69:a2:16:dc:05:4d: c5:3b:e9:1e:d8:cc:14:aa:54:d8:81:47:50:39:e2: 83:cc:1a:c3:b0:57:7a:c2:0d:d5:d8:87:62:24:74: 5f:bf:f9:89:e1:99:92:e4:25:fb:f3:28:6c:3d:59: 33:05:3c:fd:e3:95:a8:e2:7e:d7:b8:dc:1c:77:ac: 10:da:70:32:b2:61:c9:90:d5:72:c3:75:ba:5e:72: c6:bf:b2:d2:e8:c4:d5:a6:35:86:94:04:3d:8d:f9: c0:39:ea:e5:fb:b6:8b:b1:14:00:42:92:7f:5c:b0: 92:f8:ea:20:f3:ba:34:42:ee:82:27:69:29:90:07: 32:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:74:56:5B:43:91:46:1A:E4:5D:3E:27:EA:5D:1B:E7:CF:E3:05:1F X509v3 Authority Key Identifier: keyid:08:85:29:FD:32:64:77:A5:FE:B0:A6:7A:FC:1C:93:F8:F8:3A:87:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/088529FD326477A5FEB0A67AFC1C93F8F83A8707.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/088529FD326477A5FEB0A67AFC1C93F8F83A8707.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138362e3230392e3130392e302f32342d3234203d3e203533313533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 186.209.109.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:e9:90:36:0e:b0:fa:81:c9:97:80:8c:15:cb:5d:fc:a3:b7: 34:37:fc:c1:85:b5:fb:b1:ae:83:9e:6d:cd:06:8b:1f:c6:37: 76:22:97:d1:d8:f1:48:bf:73:13:19:93:51:99:79:61:aa:a0: 68:6d:7a:83:73:9f:a4:49:2e:85:7c:6a:59:61:82:4b:9a:9b: df:f3:48:76:2d:96:41:fb:05:86:f1:be:b3:4f:73:0f:73:5b: 73:e3:60:2f:51:79:59:37:11:42:38:ad:f8:93:3a:63:66:f9: 94:e5:5f:76:83:7a:36:ef:fd:45:7e:84:1b:c6:e9:53:c8:d5: 03:97:8f:1d:08:19:e9:50:74:94:1c:c7:c0:ff:5d:e0:16:b4: 40:9b:c7:86:91:78:b9:48:7d:8c:7d:70:6d:35:1a:09:c3:b2: a1:5c:6a:bc:d0:77:19:67:b4:42:3e:9f:9b:0b:16:f3:00:ca: 0f:9a:64:d8:12:4a:56:12:3c:31:27:bc:20:47:94:73:e9:fe: 16:6a:48:9b:d0:02:16:45:4f:c8:68:5c:ba:26:93:88:f7:7f: ce:40:21:f9:4b:82:b8:28:19:8d:3d:bb:a6:2b:9f:b4:43:5f: 70:97:94:cc:80:77:50:e4:e8:09:fc:cd:20:24:e6:0b:42:a7: af:b2:4c:a0 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUWHGy0keeR6/dqdor0Uh9EknTH00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NTI5RkQzMjY0NzdBNUZFQjBBNjdBRkMxQzkzRjhG ODNBODcwNzAeFw0yNjAxMjgxMTI5MjlaFw0yNzAxMjcxMTM0MjlaMDMxMTAvBgNV BAMTKEZCNzQ1NjVCNDM5MTQ2MUFFNDVEM0UyN0VBNUQxQkU3Q0ZFMzA1MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDqomgulRj8q+1s/4Dt/lSHG6u zV76figib5D4IJ1vgu5eHqBZSryASvRUYk/T0/+Do8w7/gL81D1+aJiEzzlJZMHg 1siC6RL7RGfhSkcpXWj5DvgfY7VKk4Hfeh1kncsmfTXiCIZ25WuWCJIXc7gus/8A 3D8ij1naVxV0ni6kW2miFtwFTcU76R7YzBSqVNiBR1A54oPMGsOwV3rCDdXYh2Ik dF+/+YnhmZLkJfvzKGw9WTMFPP3jlajifte43Bx3rBDacDKyYcmQ1XLDdbpecsa/ stLoxNWmNYaUBD2N+cA56uX7touxFABCkn9csJL46iDzujRC7oInaSmQBzJPAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQU+3RWW0ORRhrkXT4n6l0b58/jBR8wHwYDVR0j BBgwFoAUCIUp/TJkd6X+sKZ6/ByT+Pg6hwcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMm5zZHRMdG1xcEgzUFBtYnJzTHNIWGhtN2p4a1ByVHNkSnJudmdOelJC SmgvMC8wODg1MjlGRDMyNjQ3N0E1RkVCMEE2N0FGQzFDOTNGOEY4M0E4NzA3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzA4ODUyOUZEMzI2NDc3QTVG RUIwQTY3QUZDMUM5M0Y4RjgzQTg3MDcuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJuc2R0THRtcXBIM1BQbWJyc0xzSFhobTdqeGtQclRzZEpybnZnTnpSQkpoLzAv MzEzODM2MmUzMjMwMzkyZTMxMzAzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1 MzMzMTM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAC60W0wDQYJKoZIhvcNAQELBQADggEBAArpkDYO sPqByZeAjBXLXfyjtzQ3/MGFtfuxroOebc0Gix/GN3Yil9HY8Ui/cxMZk1GZeWGq oGhteoNzn6RJLoV8allhgkuam9/zSHYtlkH7BYbxvrNPcw9zW3PjYC9ReVk3EUI4 rfiTOmNm+ZTlX3aDejbv/UV+hBvG6VPI1QOXjx0IGelQdJQcx8D/XeAWtECbx4aR eLlIfYx9cG01GgnDsqFcarzQdxlntEI+n5sLFvMAyg+aZNgSSlYSPDEnvCBHlHPp /hZqSJvQAhZFT8hoXLomk4j3f85AIflLgrgoGY09u6Yrn7RDX3CXlMyAd1Dk6An8 zSAk5gtCp6+yTKA= -----END CERTIFICATE-----Generated at Fri Feb 6 03:06:06 2026 by rpki-client