This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/Bd8gwAan3LfKUhLBNpaAxDkGFGeWrxUdLctnJweVHPfp/0/323830343a383433303a3a2f33322d3332203d3e20323732323435.roa File: 323830343a383433303a3a2f33322d3332203d3e20323732323435.roa (raw, json) Hash identifier: 2xKVYMsaZHc2a7ClSZFqlNowS/DRHQkU1vPrr18KJE0= Subject key identifier: 22:F5:C0:C4:6A:FB:75:F0:71:A6:84:89:54:38:29:EC:E8:84:B3:FD Certificate issuer: /CN=7B95A4B07BA817CC9D8FD2E337A916689CD15D79 Certificate serial: 4FCC84BC478642350E3DFE9ED21E67992A5A2EEE Authority key identifier: 7B:95:A4:B0:7B:A8:17:CC:9D:8F:D2:E3:37:A9:16:68:9C:D1:5D:79 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7B95A4B07BA817CC9D8FD2E337A916689CD15D79.cer Subject info access: rsync://rpki-repo.registro.br/repo/Bd8gwAan3LfKUhLBNpaAxDkGFGeWrxUdLctnJweVHPfp/0/323830343a383433303a3a2f33322d3332203d3e20323732323435.roa Signing time: Mon 15 Dec 2025 14:27:56 +0000 ROA not before: Mon 15 Dec 2025 14:22:56 +0000 ROA not after: Mon 14 Dec 2026 14:27:56 +0000 asID: 272245 IP address blocks: 2804:8430::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/Bd8gwAan3LfKUhLBNpaAxDkGFGeWrxUdLctnJweVHPfp/0/7B95A4B07BA817CC9D8FD2E337A916689CD15D79.crl rsync://rpki-repo.registro.br/repo/Bd8gwAan3LfKUhLBNpaAxDkGFGeWrxUdLctnJweVHPfp/0/7B95A4B07BA817CC9D8FD2E337A916689CD15D79.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7B95A4B07BA817CC9D8FD2E337A916689CD15D79.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 21 Dec 2025 02:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:cc:84:bc:47:86:42:35:0e:3d:fe:9e:d2:1e:67:99:2a:5a:2e:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B95A4B07BA817CC9D8FD2E337A916689CD15D79 Validity Not Before: Dec 15 14:22:56 2025 GMT Not After : Dec 14 14:27:56 2026 GMT Subject: CN=22F5C0C46AFB75F071A68489543829ECE884B3FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:34:7b:f8:2a:50:d7:36:a8:a0:c4:20:7d:b7: a6:a6:04:31:28:ed:fe:57:cc:4f:39:cd:bd:52:b9: dc:40:a7:6a:c6:eb:ef:c9:a4:a5:91:d9:5e:71:ed: ae:fc:ea:ba:2a:89:21:90:cd:bf:04:6d:b4:20:c2: 96:6d:37:d8:e4:d3:2e:75:c6:10:d1:89:ab:eb:46: 34:3d:e0:d5:93:22:c3:4e:6c:da:1a:0e:2a:90:ac: 6e:fb:9b:24:ee:45:a8:87:6e:ab:ca:7a:69:97:4c: d6:a6:20:e3:15:63:4e:2f:14:9f:0a:bf:c3:6f:13: 52:6d:a1:0d:53:a9:e1:9a:32:52:b3:e0:41:86:7d: 5b:34:a1:b0:4e:1c:19:0f:8d:e9:1a:95:bb:da:23: 80:6d:70:79:8f:1c:d3:fd:d6:48:60:e1:c7:76:d5: e6:0a:ce:1a:43:2d:76:88:79:75:03:77:2a:5f:ed: 56:d0:57:49:34:df:7c:3a:f5:f0:de:bb:f4:09:f1: ad:3c:dd:8b:07:a4:c6:7e:c6:db:1f:0d:fd:ab:9a: d1:fd:d5:8b:02:df:e0:a6:0c:e1:ba:20:7d:d5:ea: 74:c5:2a:ba:03:d3:e9:b7:a6:f7:7d:e6:3c:b2:01: 98:76:14:e2:09:82:1a:0a:74:bf:96:d8:e6:f8:81: f7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F5:C0:C4:6A:FB:75:F0:71:A6:84:89:54:38:29:EC:E8:84:B3:FD X509v3 Authority Key Identifier: keyid:7B:95:A4:B0:7B:A8:17:CC:9D:8F:D2:E3:37:A9:16:68:9C:D1:5D:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/Bd8gwAan3LfKUhLBNpaAxDkGFGeWrxUdLctnJweVHPfp/0/7B95A4B07BA817CC9D8FD2E337A916689CD15D79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7B95A4B07BA817CC9D8FD2E337A916689CD15D79.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/Bd8gwAan3LfKUhLBNpaAxDkGFGeWrxUdLctnJweVHPfp/0/323830343a383433303a3a2f33322d3332203d3e20323732323435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:8430::/32 Signature Algorithm: sha256WithRSAEncryption 67:90:e8:b0:8a:5d:f6:64:7a:41:97:f7:23:a5:8f:ea:3d:75: 48:1e:77:24:ca:1d:f8:41:23:56:59:c9:06:76:12:d9:86:10: 56:e5:ec:1e:0e:25:d5:6b:c5:90:f2:95:f2:9e:d9:0d:76:ef: 7f:4e:20:2e:40:18:28:8d:6c:65:df:6c:fc:81:69:a5:80:91: 64:71:13:78:d6:83:b5:c0:aa:c3:c4:f2:0b:76:c8:3f:65:0b: 45:a1:91:1a:f8:01:c2:00:e9:da:4b:85:42:0c:17:84:2e:d6: a6:2c:ea:2a:13:03:68:64:c3:59:88:7e:db:4d:3b:d6:36:66: 98:2a:cc:5f:bb:86:3b:04:78:56:71:78:37:87:89:30:f4:5c: fb:a2:61:87:85:6f:fa:84:05:eb:cf:b3:72:15:f7:de:e5:18: e5:30:b0:6d:2e:6e:9d:66:41:cb:34:9d:53:9f:d7:8f:57:2c: 3e:95:bd:fa:64:ef:1b:0c:4a:b8:01:fc:0f:09:de:65:c7:e0: c9:42:1c:57:7e:96:fa:0d:c9:e9:73:1f:ee:77:d5:f8:f3:80: b4:f0:c7:49:5c:91:00:6d:6a:76:cf:d2:29:0b:2b:3f:f0:eb: bb:73:07:37:93:90:40:ea:8b:19:d4:52:22:4c:c9:72:fd:63: 37:23:23:5d -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIUT8yEvEeGQjUOPf6e0h5nmSpaLu4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0I5NUE0QjA3QkE4MTdDQzlEOEZEMkUzMzdBOTE2Njg5 Q0QxNUQ3OTAeFw0yNTEyMTUxNDIyNTZaFw0yNjEyMTQxNDI3NTZaMDMxMTAvBgNV BAMTKDIyRjVDMEM0NkFGQjc1RjA3MUE2ODQ4OTU0MzgyOUVDRTg4NEIzRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNNHv4KlDXNqigxCB9t6amBDEo 7f5XzE85zb1SudxAp2rG6+/JpKWR2V5x7a786roqiSGQzb8EbbQgwpZtN9jk0y51 xhDRiavrRjQ94NWTIsNObNoaDiqQrG77myTuRaiHbqvKemmXTNamIOMVY04vFJ8K v8NvE1JtoQ1TqeGaMlKz4EGGfVs0obBOHBkPjekalbvaI4BtcHmPHNP91khg4cd2 1eYKzhpDLXaIeXUDdypf7VbQV0k033w69fDeu/QJ8a083YsHpMZ+xtsfDf2rmtH9 1YsC3+CmDOG6IH3V6nTFKroD0+m3pvd95jyyAZh2FOIJghoKdL+W2Ob4gfc5AgMB AAGjggJQMIICTDAdBgNVHQ4EFgQUIvXAxGr7dfBxpoSJVDgp7OiEs/0wHwYDVR0j BBgwFoAUe5WksHuoF8ydj9LjN6kWaJzRXXkwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQmQ4Z3dBYW4zTGZLVWhMQk5wYUF4RGtHRkdlV3J4VWRMY3RuSndlVkhQ ZnAvMC83Qjk1QTRCMDdCQTgxN0NDOUQ4RkQyRTMzN0E5MTY2ODlDRDE1RDc5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzdCOTVBNEIwN0JBODE3Q0M5 RDhGRDJFMzM3QTkxNjY4OUNEMTVENzkuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0JkOGd3QWFuM0xmS1VoTEJOcGFBeERrR0ZHZVdyeFVkTGN0bkp3ZVZIUGZwLzAv MzIzODMwMzQzYTM4MzQzMzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzNzMy MzIzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH AQH/BBEwDzANBAIAAjAHAwUAKASEMDANBgkqhkiG9w0BAQsFAAOCAQEAZ5DosIpd 9mR6QZf3I6WP6j11SB53JMod+EEjVlnJBnYS2YYQVuXsHg4l1WvFkPKV8p7ZDXbv f04gLkAYKI1sZd9s/IFppYCRZHETeNaDtcCqw8TyC3bIP2ULRaGRGvgBwgDp2kuF QgwXhC7WpizqKhMDaGTDWYh+20071jZmmCrMX7uGOwR4VnF4N4eJMPRc+6Jhh4Vv +oQF68+zchX33uUY5TCwbS5unWZByzSdU5/Xj1csPpW9+mTvGwxKuAH8DwneZcfg yUIcV36W+g3J6XMf7nfV+POAtPDHSVyRAG1qds/SKQsrP/Dru3MHN5OQQOqLGdRS IkzJcv1jNyMjXQ== -----END CERTIFICATE-----Generated at Sat Dec 20 18:14:41 2025 by rpki-client