This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/323830343a31343a3a2f33322d313238203d3e203238333630.roa File: 323830343a31343a3a2f33322d313238203d3e203238333630.roa (raw, json) Hash identifier: vbhyDBoaIRYCVOOcWnys+smsxMdtSrdF2iyob4UgMhM= Subject key identifier: 57:21:15:BD:55:12:AE:FC:B5:B3:9E:C1:B5:DD:33:7B:B4:AC:E5:02 Certificate issuer: /CN=7155F95F3F50406AE68A9CCF51483483D251BB70 Certificate serial: 64E0910731C22EEF403EB6ABB58CF988380913E6 Authority key identifier: 71:55:F9:5F:3F:50:40:6A:E6:8A:9C:CF:51:48:34:83:D2:51:BB:70 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7155F95F3F50406AE68A9CCF51483483D251BB70.cer Subject info access: rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/323830343a31343a3a2f33322d313238203d3e203238333630.roa Signing time: Wed 17 Dec 2025 21:12:51 +0000 ROA not before: Wed 17 Dec 2025 21:07:51 +0000 ROA not after: Wed 16 Dec 2026 21:12:51 +0000 asID: 28360 IP address blocks: 2804:14::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/7155F95F3F50406AE68A9CCF51483483D251BB70.crl rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/7155F95F3F50406AE68A9CCF51483483D251BB70.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7155F95F3F50406AE68A9CCF51483483D251BB70.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 20 Dec 2025 10:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e0:91:07:31:c2:2e:ef:40:3e:b6:ab:b5:8c:f9:88:38:09:13:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7155F95F3F50406AE68A9CCF51483483D251BB70 Validity Not Before: Dec 17 21:07:51 2025 GMT Not After : Dec 16 21:12:51 2026 GMT Subject: CN=572115BD5512AEFCB5B39EC1B5DD337BB4ACE502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:36:b5:b6:7b:0a:a5:d2:df:6d:e7:a0:43:7d: 42:93:ef:bf:d2:14:99:77:f2:de:5d:7d:53:d4:6e: 61:82:2e:a9:af:d0:1a:85:6e:e7:df:34:06:2b:7a: b2:33:9c:92:e0:bb:fb:cc:ad:5f:6d:cc:de:69:b7: 8b:01:bb:99:16:f5:bc:58:f5:98:04:ee:6c:0b:ad: 24:f3:3b:a4:5f:9c:32:11:44:46:ab:d2:a2:75:d9: d0:04:b3:76:a6:5b:93:4c:9e:ca:ab:23:17:d2:88: 51:20:98:3f:36:17:9b:14:da:9a:25:cd:b0:04:f7: ee:af:91:c9:ec:44:70:48:37:d4:40:58:61:cf:40: 7a:7a:6d:34:33:00:74:32:25:7a:9d:15:31:a3:9f: eb:e4:df:76:80:cd:c1:cc:05:6c:ad:7a:88:0d:b6: 5f:ad:57:69:41:db:6a:e1:89:64:72:29:87:92:56: 2f:e1:26:50:6c:4a:a3:ca:e2:72:55:d4:9e:76:dc: 51:36:cc:da:c2:d5:a7:5e:d1:35:10:c7:e9:e7:53: 52:7c:3e:8a:3d:f1:6d:be:1d:fd:18:49:64:c0:09: b6:9c:36:ad:c8:92:b5:30:13:a7:40:f1:e2:76:7f: 5d:25:15:bd:3a:09:5d:1a:f6:84:35:77:7d:44:96: be:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:21:15:BD:55:12:AE:FC:B5:B3:9E:C1:B5:DD:33:7B:B4:AC:E5:02 X509v3 Authority Key Identifier: keyid:71:55:F9:5F:3F:50:40:6A:E6:8A:9C:CF:51:48:34:83:D2:51:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/7155F95F3F50406AE68A9CCF51483483D251BB70.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7155F95F3F50406AE68A9CCF51483483D251BB70.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/323830343a31343a3a2f33322d313238203d3e203238333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:14::/32 Signature Algorithm: sha256WithRSAEncryption 15:3a:c1:74:a1:e1:fe:0d:f7:34:96:d5:c3:1c:b6:8b:8d:0e: fb:8b:e4:27:98:91:1c:6a:ca:60:b2:0b:43:76:9d:be:99:ad: dd:6f:bd:43:49:5d:af:1b:ed:c7:1b:5e:c0:ce:68:25:72:52: 38:c8:be:81:c3:33:f8:55:93:85:78:af:20:6d:e8:0c:b5:78: 6f:13:f1:55:f1:eb:50:11:55:1a:a7:38:17:e7:9d:ba:d2:4e: d3:7a:c8:79:3e:96:96:2e:c4:b2:96:f3:3e:79:33:5b:12:f2: 96:a9:bd:eb:7d:08:17:59:5f:e9:63:e3:61:65:3c:7d:29:42: 99:48:7a:64:a5:7f:7f:15:1e:4f:6f:4f:6e:0c:bb:20:2a:4a: c5:ef:c9:d4:d6:fe:45:6e:ef:01:55:67:e8:1c:63:ca:49:4a: 96:d9:5e:b2:a0:7e:f9:c1:9e:e6:ad:b6:92:b5:c6:a0:ca:a2: 2a:5b:32:ee:e5:86:b8:2c:f0:01:a7:e1:c8:51:d1:f3:70:0a: 6b:59:b9:69:b2:f3:d3:c4:b4:21:78:b3:6f:36:e7:e9:c8:7b: f2:c5:ee:a2:95:b9:2f:7f:49:64:b3:bf:0a:fc:7a:02:df:68: 5e:30:64:5e:79:f0:0a:d0:eb:b8:42:82:42:8e:5c:bf:5e:c3: 98:fd:2e:36 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUZOCRBzHCLu9APrartYz5iDgJE+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzE1NUY5NUYzRjUwNDA2QUU2OEE5Q0NGNTE0ODM0ODNE MjUxQkI3MDAeFw0yNTEyMTcyMTA3NTFaFw0yNjEyMTYyMTEyNTFaMDMxMTAvBgNV BAMTKDU3MjExNUJENTUxMkFFRkNCNUIzOUVDMUI1REQzMzdCQjRBQ0U1MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrNrW2ewql0t9t56BDfUKT77/S FJl38t5dfVPUbmGCLqmv0BqFbuffNAYrerIznJLgu/vMrV9tzN5pt4sBu5kW9bxY 9ZgE7mwLrSTzO6RfnDIRREar0qJ12dAEs3amW5NMnsqrIxfSiFEgmD82F5sU2pol zbAE9+6vkcnsRHBIN9RAWGHPQHp6bTQzAHQyJXqdFTGjn+vk33aAzcHMBWyteogN tl+tV2lB22rhiWRyKYeSVi/hJlBsSqPK4nJV1J523FE2zNrC1ade0TUQx+nnU1J8 Poo98W2+Hf0YSWTACbacNq3IkrUwE6dA8eJ2f10lFb06CV0a9oQ1d31Elr5nAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUVyEVvVUSrvy1s57Btd0ze7Ss5QIwHwYDVR0j BBgwFoAUcVX5Xz9QQGrmipzPUUg0g9JRu3AwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNEJoYXpqOGJGeHZwN1A2UGNaZ1lGcW0zYlB4RXJ5YXgzUTlSYURRTkoz UDIvMC83MTU1Rjk1RjNGNTA0MDZBRTY4QTlDQ0Y1MTQ4MzQ4M0QyNTFCQjcwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcxNTVGOTVGM0Y1MDQwNkFF NjhBOUNDRjUxNDgzNDgzRDI1MUJCNzAuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRCaGF6ajhiRnh2cDdQNlBjWmdZRnFtM2JQeEVyeWF4M1E5UmFEUU5KM1AyLzAv MzIzODMwMzQzYTMxMzQzYTNhMmYzMzMyMmQzMTMyMzgyMDNkM2UyMDMyMzgzMzM2 MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoBAAUMA0GCSqGSIb3DQEBCwUAA4IBAQAVOsF0oeH+Dfc0 ltXDHLaLjQ77i+QnmJEcaspgsgtDdp2+ma3db71DSV2vG+3HG17AzmglclI4yL6B wzP4VZOFeK8gbegMtXhvE/FV8etQEVUapzgX55260k7Tesh5PpaWLsSylvM+eTNb EvKWqb3rfQgXWV/pY+NhZTx9KUKZSHpkpX9/FR5Pb09uDLsgKkrF78nU1v5Fbu8B VWfoHGPKSUqW2V6yoH75wZ7mrbaStcagyqIqWzLu5Ya4LPABp+HIUdHzcAprWblp svPTxLQheLNvNufpyHvyxe6ilbkvf0lks78K/HoC32heMGReefAK0Ou4QoJCjly/ XsOY/S42 -----END CERTIFICATE-----Generated at Sat Dec 20 00:22:41 2025 by rpki-client