This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/34352e3233342e36382e302f32332d3233203d3e20323637333633.roa File: 34352e3233342e36382e302f32332d3233203d3e20323637333633.roa (raw, json) Hash identifier: o+JertN1VWFObV7NRyHOCTFCrzIU/4YKMCnyf7NKCJI= Subject key identifier: 23:AF:1F:5D:5B:2F:C5:E9:91:CA:4D:D6:06:D3:9E:42:C4:83:14:E4 Certificate issuer: /CN=D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA Certificate serial: 2D5EA4815E290BF953373EB40D1D2F5CB592A4E2 Authority key identifier: D7:C6:5B:91:75:A8:C5:5D:D1:BE:8B:5D:6F:51:15:2D:72:C5:05:AA Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.cer Subject info access: rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/34352e3233342e36382e302f32332d3233203d3e20323637333633.roa Signing time: Thu 06 Mar 2025 13:54:57 +0000 ROA not before: Thu 06 Mar 2025 13:49:57 +0000 ROA not after: Thu 05 Mar 2026 13:54:57 +0000 asID: 267363 IP address blocks: 45.234.68.0/23 maxlen: 23 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 2d:5e:a4:81:5e:29:0b:f9:53:37:3e:b4:0d:1d:2f:5c:b5:92:a4:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA Validity Not Before: Mar 6 13:49:57 2025 GMT Not After : Mar 5 13:54:57 2026 GMT Subject: CN=23AF1F5D5B2FC5E991CA4DD606D39E42C48314E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fd:d8:6c:3d:a7:39:67:41:d1:ed:40:c5:c8: 70:99:4f:05:5f:0a:63:23:b1:d7:bf:f6:a2:a9:03: e8:60:07:0d:21:39:8e:38:5a:13:c8:e2:09:97:46: 6e:12:0f:fa:1a:7f:5c:e3:53:8e:10:c3:f5:df:41: a8:a5:3a:9d:ec:04:a3:3e:f0:f7:34:c8:22:b3:bc: 77:2a:a4:e9:3e:bc:f5:66:0e:f2:4c:79:70:da:6a: e1:3d:c9:d1:bd:4d:17:50:0f:68:ff:52:d7:46:e4: 97:fe:9e:ca:24:84:81:2b:63:9c:3d:6d:90:36:a0: 2e:ba:69:37:61:7f:54:72:27:79:e9:1a:ed:ad:0a: d0:aa:5f:a5:1c:7e:ac:87:db:b5:55:4f:8f:d6:f0: 02:90:ed:dd:4a:76:60:11:28:3d:c0:9d:2c:7b:5e: a1:3b:12:02:84:99:8b:06:8f:24:0e:47:a2:e3:f8: 56:34:f1:a8:ea:6e:9f:73:7b:5c:fc:3f:42:27:00: be:39:98:fd:da:c7:b7:af:90:47:43:41:df:f5:78: 6a:1a:48:c9:c4:01:24:68:d7:cf:49:3f:ff:be:2d: 29:1d:30:c3:8e:cd:fe:8c:7f:3e:66:a4:8e:50:83: 17:98:d4:3a:66:e4:37:43:26:89:cf:97:1b:cb:da: ee:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AF:1F:5D:5B:2F:C5:E9:91:CA:4D:D6:06:D3:9E:42:C4:83:14:E4 X509v3 Authority Key Identifier: keyid:D7:C6:5B:91:75:A8:C5:5D:D1:BE:8B:5D:6F:51:15:2D:72:C5:05:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/34352e3233342e36382e302f32332d3233203d3e20323637333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.234.68.0/23 Signature Algorithm: sha256WithRSAEncryption 05:88:9a:94:c1:97:04:58:22:28:61:96:66:1b:fe:45:5a:44: ee:9f:96:0d:3e:98:32:7a:d0:df:ab:0f:72:3b:d2:c2:1d:df: 9b:05:54:d9:33:03:04:51:db:79:ec:fa:b2:36:e4:44:ef:17: f7:78:53:84:8f:f2:e6:65:dd:49:24:f4:5d:32:6c:ff:c6:d1: 0b:22:32:59:a5:53:61:03:ad:60:f0:ca:c5:3f:e2:74:51:f4: 2d:54:90:e9:f1:73:14:93:b2:74:20:74:28:65:c5:40:40:eb: ff:c9:94:a8:1c:23:b7:3a:e2:6f:41:ad:75:77:eb:60:3f:a1: c3:7f:0b:c7:df:40:83:fe:c7:4f:a6:54:07:7b:84:82:49:1c: e6:25:09:59:28:f0:ab:ad:ba:f8:3b:32:6f:f0:c1:1b:89:f1: 9e:f7:28:d1:53:e1:86:dc:83:f6:2e:9e:ce:c4:ef:ce:8b:3a: 5f:fb:e0:92:c7:79:30:1b:29:c6:74:cd:7a:1d:85:25:0a:9c: fa:9e:b9:b9:c3:94:47:d6:d7:b3:c2:c4:ab:71:c5:6b:3e:da: 9e:85:f3:7a:3b:65:7d:65:fc:69:6d:80:b6:11:8d:5f:64:7f: bd:de:5e:7b:f1:d6:3d:05:01:c2:ff:86:3d:d2:2e:86:1f:55: 09:17:b7:9d -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIULV6kgV4pC/lTNz60DR0vXLWSpOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdDNjVCOTE3NUE4QzU1REQxQkU4QjVENkY1MTE1MkQ3 MkM1MDVBQTAeFw0yNTAzMDYxMzQ5NTdaFw0yNjAzMDUxMzU0NTdaMDMxMTAvBgNV BAMTKDIzQUYxRjVENUIyRkM1RTk5MUNBNERENjA2RDM5RTQyQzQ4MzE0RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo/dhsPac5Z0HR7UDFyHCZTwVf CmMjsde/9qKpA+hgBw0hOY44WhPI4gmXRm4SD/oaf1zjU44Qw/XfQailOp3sBKM+ 8Pc0yCKzvHcqpOk+vPVmDvJMeXDaauE9ydG9TRdQD2j/UtdG5Jf+nsokhIErY5w9 bZA2oC66aTdhf1RyJ3npGu2tCtCqX6UcfqyH27VVT4/W8AKQ7d1KdmARKD3AnSx7 XqE7EgKEmYsGjyQOR6Lj+FY08ajqbp9ze1z8P0InAL45mP3ax7evkEdDQd/1eGoa SMnEASRo189JP/++LSkdMMOOzf6Mfz5mpI5QgxeY1Dpm5DdDJonPlxvL2u5fAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUI68fXVsvxemRyk3WBtOeQsSDFOQwHwYDVR0j BBgwFoAU18ZbkXWoxV3Rvotdb1EVLXLFBaowDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vODZFM1lqSHA0bXEzdGhvaGdhOWVaajJGallFQUIxYnR6dVVWbzFDZXBk YXcvMS9EN0M2NUI5MTc1QThDNTVERDFCRThCNUQ2RjUxMTUyRDcyQzUwNUFBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q3QzY1QjkxNzVBOEM1NURE MUJFOEI1RDZGNTExNTJENzJDNTA1QUEuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzg2RTNZakhwNG1xM3Rob2hnYTllWmoyRmpZRUFCMWJ0enVVVm8xQ2VwZGF3LzEv MzQzNTJlMzIzMzM0MmUzNjM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIzNjM3 MzMzNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQBLepEMA0GCSqGSIb3DQEBCwUAA4IBAQAFiJqUwZcE WCIoYZZmG/5FWkTun5YNPpgyetDfqw9yO9LCHd+bBVTZMwMEUdt57PqyNuRE7xf3 eFOEj/LmZd1JJPRdMmz/xtELIjJZpVNhA61g8MrFP+J0UfQtVJDp8XMUk7J0IHQo ZcVAQOv/yZSoHCO3OuJvQa11d+tgP6HDfwvH30CD/sdPplQHe4SCSRzmJQlZKPCr rbr4OzJv8MEbifGe9yjRU+GG3IP2Lp7OxO/Oizpf++CSx3kwGynGdM16HYUlCpz6 nrm5w5RH1tezwsSrccVrPtqehfN6O2V9ZfxpbYC2EY1fZH+93l578dY9BQHC/4Y9 0i6GH1UJF7ed -----END CERTIFICATE-----Generated at Mon Dec 22 12:00:31 2025 by rpki-client