This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/34352e37302e3134382e302f32322d3234203d3e20323637353839.roa File: 34352e37302e3134382e302f32322d3234203d3e20323637353839.roa (raw, json) Hash identifier: Cv/CYH8R4kueB9d5skXR/XvGpgGSxuwGpj0ARNbZVzM= Subject key identifier: 8B:56:50:D1:7E:8D:93:C1:09:3F:E1:2E:AD:8F:E5:C2:0F:78:96:9F Certificate issuer: /CN=AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC Certificate serial: 0888C693789F92F0E7008F6357DF3B3B2067444F Authority key identifier: AF:CA:87:E4:AD:03:5B:5E:4C:A0:ED:A1:C4:C0:42:C6:9B:FE:91:EC Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.cer Subject info access: rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/34352e37302e3134382e302f32322d3234203d3e20323637353839.roa Signing time: Wed 10 Dec 2025 12:25:31 +0000 ROA not before: Wed 10 Dec 2025 12:20:31 +0000 ROA not after: Wed 09 Dec 2026 12:25:31 +0000 asID: 267589 IP address blocks: 45.70.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.crl rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 21 Dec 2025 02:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:88:c6:93:78:9f:92:f0:e7:00:8f:63:57:df:3b:3b:20:67:44:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC Validity Not Before: Dec 10 12:20:31 2025 GMT Not After : Dec 9 12:25:31 2026 GMT Subject: CN=8B5650D17E8D93C1093FE12EAD8FE5C20F78969F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:97:90:32:87:4e:c8:c3:79:ff:e1:58:47:f1: 06:73:a0:c8:0a:15:c8:b5:b7:b4:20:d4:c4:fd:94: bd:ff:8c:c5:b7:2d:0a:8b:d8:a2:ce:85:65:7c:3e: d2:09:0e:41:0c:1d:0f:a3:5d:bd:c7:3b:eb:e3:8c: de:86:00:91:c5:fa:b3:6a:b0:49:46:0f:c3:d3:4b: 80:e7:5c:c3:a5:00:ca:41:45:d9:39:49:84:17:ac: b7:d8:02:b2:f4:11:cd:07:5f:f0:39:12:b1:3c:62: de:86:0c:b8:45:66:cc:87:38:8c:65:13:85:03:72: bf:c9:de:3e:2e:a3:ec:c7:8a:31:a6:2c:2d:fa:54: 08:a4:05:e1:c6:16:c5:46:c0:b2:50:39:c8:57:e0: 07:62:38:f5:07:99:65:b5:ad:61:c8:51:ce:00:15: e8:95:51:51:de:46:28:9c:ad:a5:c1:bb:d2:5f:18: b7:fd:21:ec:6e:92:46:33:85:1e:0e:31:c8:00:15: 19:30:a0:c8:72:fd:a0:97:d7:21:53:ec:01:63:c6: 26:98:3d:4c:55:e0:fe:ec:2e:8f:88:ff:c4:c6:e2: 19:2c:81:52:b7:e5:76:e5:65:f8:1d:14:8e:06:14: 58:f2:cb:b7:88:bd:a9:1a:04:83:1f:80:8b:0c:9f: f8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:56:50:D1:7E:8D:93:C1:09:3F:E1:2E:AD:8F:E5:C2:0F:78:96:9F X509v3 Authority Key Identifier: keyid:AF:CA:87:E4:AD:03:5B:5E:4C:A0:ED:A1:C4:C0:42:C6:9B:FE:91:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/34352e37302e3134382e302f32322d3234203d3e20323637353839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.70.148.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:1f:0f:13:5c:e7:8f:e4:c9:5c:af:fc:71:bf:3e:9f:d3:1e: 65:f0:e5:cb:46:3f:59:78:74:a4:8e:cb:24:d5:09:08:79:d1: 94:79:55:d9:ff:e0:62:a0:a1:70:2e:2c:04:91:86:59:39:e9: 2d:bb:eb:f4:74:1f:91:46:b5:40:cb:02:91:d9:ac:96:61:f5: cc:a2:75:77:b8:84:8b:08:8b:d7:1d:b8:6d:0f:a2:25:47:ca: 71:78:24:5a:5d:79:67:d5:bb:d3:da:a3:e4:7f:e6:6c:03:4f: 88:ae:43:59:6d:26:79:71:79:2f:eb:de:b1:ce:fd:b7:1c:df: 3a:35:81:ec:bb:fd:56:96:b6:69:21:81:76:47:ec:4d:05:07: 81:ca:d8:e0:1d:a3:95:ac:a5:9c:df:a9:62:b3:2c:48:66:a4: ca:1a:e9:06:b9:32:a5:b8:ff:c9:49:24:73:1e:46:55:4a:2f: f0:5d:1f:33:f3:7c:8b:cb:05:b5:00:97:30:97:30:2a:a9:41: f9:a6:94:1c:52:50:80:4d:07:88:9c:36:cc:8a:73:1b:b4:3f: 53:a6:36:05:8c:ef:e5:e6:c7:80:8f:36:66:2a:11:a9:c9:fa: d6:cd:26:f4:f8:d6:d3:30:92:1e:f7:15:fd:b0:a2:c6:c2:07: cf:24:2a:4f -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUCIjGk3ifkvDnAI9jV987OyBnRE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZDQTg3RTRBRDAzNUI1RTRDQTBFREExQzRDMDQyQzY5 QkZFOTFFQzAeFw0yNTEyMTAxMjIwMzFaFw0yNjEyMDkxMjI1MzFaMDMxMTAvBgNV BAMTKDhCNTY1MEQxN0U4RDkzQzEwOTNGRTEyRUFEOEZFNUMyMEY3ODk2OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxl5Ayh07Iw3n/4VhH8QZzoMgK Fci1t7Qg1MT9lL3/jMW3LQqL2KLOhWV8PtIJDkEMHQ+jXb3HO+vjjN6GAJHF+rNq sElGD8PTS4DnXMOlAMpBRdk5SYQXrLfYArL0Ec0HX/A5ErE8Yt6GDLhFZsyHOIxl E4UDcr/J3j4uo+zHijGmLC36VAikBeHGFsVGwLJQOchX4AdiOPUHmWW1rWHIUc4A FeiVUVHeRiicraXBu9JfGLf9IexukkYzhR4OMcgAFRkwoMhy/aCX1yFT7AFjxiaY PUxV4P7sLo+I/8TG4hksgVK35XblZfgdFI4GFFjyy7eIvakaBIMfgIsMn/g3AgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUi1ZQ0X6Nk8EJP+EurY/lwg94lp8wHwYDVR0j BBgwFoAUr8qH5K0DW15MoO2hxMBCxpv+kewwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vN0twd0tKakd5NlI5NUVGUGE3aVFkNlBKSnl2cFFRQzloeFMyclp0aTFC eGcvMS9BRkNBODdFNEFEMDM1QjVFNENBMEVEQTFDNEMwNDJDNjlCRkU5MUVDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0FGQ0E4N0U0QUQwMzVCNUU0 Q0EwRURBMUM0QzA0MkM2OUJGRTkxRUMuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzdLcHdLSmpHeTZSOTVFRlBhN2lRZDZQSkp5dnBRUUM5aHhTMnJadGkxQnhnLzEv MzQzNTJlMzczMDJlMzEzNDM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM3 MzUzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCLUaUMA0GCSqGSIb3DQEBCwUAA4IBAQAtHw8TXOeP 5Mlcr/xxvz6f0x5l8OXLRj9ZeHSkjssk1QkIedGUeVXZ/+BioKFwLiwEkYZZOekt u+v0dB+RRrVAywKR2ayWYfXMonV3uISLCIvXHbhtD6IlR8pxeCRaXXln1bvT2qPk f+ZsA0+IrkNZbSZ5cXkv696xzv23HN86NYHsu/1WlrZpIYF2R+xNBQeBytjgHaOV rKWc36lisyxIZqTKGukGuTKluP/JSSRzHkZVSi/wXR8z83yLywW1AJcwlzAqqUH5 ppQcUlCATQeInDbMinMbtD9TpjYFjO/l5seAjzZmKhGpyfrWzSb0+NbTMJIe9xX9 sKLGwgfPJCpP -----END CERTIFICATE-----Generated at Sat Dec 20 03:36:01 2025 by rpki-client