This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a353030303a3a2f33362d3336203d3e20323637393931.roa File: 323830343a353635343a353030303a3a2f33362d3336203d3e20323637393931.roa (raw, json) Hash identifier: fNX4gfp7yjsItJ3UT10tH27ej97v3dTM+gOw9YUQiaE= Subject key identifier: BE:58:A4:69:24:30:1C:04:E4:CF:A3:29:E9:B3:07:D7:96:0A:41:4D Certificate issuer: /CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Certificate serial: 2CEB883783CE21416E8D4C255679FD1CDBB8957C Authority key identifier: 70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject info access: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a353030303a3a2f33362d3336203d3e20323637393931.roa Signing time: Tue 09 Dec 2025 23:47:02 +0000 ROA not before: Tue 09 Dec 2025 23:42:02 +0000 ROA not after: Tue 08 Dec 2026 23:47:02 +0000 asID: 267991 IP address blocks: 2804:5654:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 20 Dec 2025 04:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:eb:88:37:83:ce:21:41:6e:8d:4c:25:56:79:fd:1c:db:b8:95:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Validity Not Before: Dec 9 23:42:02 2025 GMT Not After : Dec 8 23:47:02 2026 GMT Subject: CN=BE58A46924301C04E4CFA329E9B307D7960A414D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:c9:95:f4:09:2b:b8:58:cc:6a:46:68:9d: c6:c2:66:92:5e:fc:cd:c4:a0:55:e6:ec:19:d2:ea: ce:44:37:16:41:7f:a5:63:03:ab:6a:bc:28:52:62: 11:ab:27:a9:61:86:e2:84:ad:22:ca:ae:d5:0e:63: 98:1a:b4:ac:85:58:70:84:db:7a:91:29:ed:0b:4e: c9:34:ae:c1:47:fa:27:3c:08:62:4b:e7:15:d1:a3: 25:c4:5f:f7:cb:35:de:30:da:4d:fb:11:e3:03:05: 3f:58:b5:57:42:17:43:81:d6:36:9d:73:cd:64:c4: 01:50:4e:6c:e0:be:49:40:46:23:2c:6d:a6:db:d7: e6:b7:b3:27:9a:69:66:eb:43:ed:86:f7:c7:b9:35: d1:e1:cb:98:f1:38:7d:ad:59:7b:f3:fe:65:fa:7e: 64:4d:db:13:cf:cc:8e:a9:89:62:11:8a:39:93:66: b3:e3:16:7a:2f:b9:bb:3a:59:26:3e:52:b5:b6:68: b4:a5:54:85:ca:f4:e6:a6:a4:4e:20:93:49:89:29: ca:bb:59:81:e7:19:7b:4b:a8:14:e5:51:12:d1:cf: 46:53:10:6e:1e:59:7b:60:7f:43:31:fb:8c:17:50: bf:e1:4e:5c:f2:7d:c7:20:7c:2b:ef:a5:ca:d9:fb: 54:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:58:A4:69:24:30:1C:04:E4:CF:A3:29:E9:B3:07:D7:96:0A:41:4D X509v3 Authority Key Identifier: keyid:70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a353030303a3a2f33362d3336203d3e20323637393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5654:5000::/36 Signature Algorithm: sha256WithRSAEncryption d3:0b:a7:e8:e7:51:24:7c:97:0f:f6:3d:54:11:47:59:3b:e2: 96:d7:1a:d3:1d:d2:e2:3d:3e:06:c7:9b:9f:ba:0c:9c:1c:ed: 2b:e3:9b:e4:0d:ba:fc:c3:f1:0e:de:e9:a4:06:5a:e6:e2:27: fc:54:54:5a:a2:f4:fb:d2:b6:22:87:91:d3:f7:12:8f:52:5f: f4:cb:9d:88:61:6f:48:8f:d5:c7:f3:b6:97:ff:60:99:98:a8: c3:95:14:36:30:e9:61:cb:c9:25:73:2b:3c:e2:92:eb:4c:79: 01:11:90:46:7b:b1:9f:10:03:56:70:9c:26:b6:32:b1:da:9b: a9:51:85:99:da:01:18:55:0d:26:0b:9d:e1:cd:70:30:12:45: a7:05:10:37:2c:5d:8b:4d:c9:75:69:fc:58:c7:ff:37:ef:14: 1c:cc:50:d5:66:cc:73:0d:7d:df:5b:fc:ad:9f:97:a5:b6:a0: ff:67:be:4a:c9:5d:88:1a:73:48:95:c5:64:04:62:7b:89:31: 13:9a:b1:a9:18:7b:d8:d1:2c:99:13:d6:53:b9:3d:7a:cd:c4: e2:38:75:37:49:c4:01:ed:66:d4:ec:8c:8f:4f:6b:20:0f:3d: 95:01:40:dc:9e:1c:71:89:a3:96:40:af:f7:89:bb:75:a5:3d: c4:45:09:85 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIULOuIN4POIUFujUwlVnn9HNu4lXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBFQzlCMTFFQUUxQjdCRkYwRTFFODYzNTY1QjE4MkQ1 QjkwRjFBQjAeFw0yNTEyMDkyMzQyMDJaFw0yNjEyMDgyMzQ3MDJaMDMxMTAvBgNV BAMTKEJFNThBNDY5MjQzMDFDMDRFNENGQTMyOUU5QjMwN0Q3OTYwQTQxNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7jcmV9AkruFjMakZoncbCZpJe /M3EoFXm7BnS6s5ENxZBf6VjA6tqvChSYhGrJ6lhhuKErSLKrtUOY5gatKyFWHCE 23qRKe0LTsk0rsFH+ic8CGJL5xXRoyXEX/fLNd4w2k37EeMDBT9YtVdCF0OB1jad c81kxAFQTmzgvklARiMsbabb1+a3syeaaWbrQ+2G98e5NdHhy5jxOH2tWXvz/mX6 fmRN2xPPzI6piWIRijmTZrPjFnovubs6WSY+UrW2aLSlVIXK9OampE4gk0mJKcq7 WYHnGXtLqBTlURLRz0ZTEG4eWXtgf0Mx+4wXUL/hTlzyfccgfCvvpcrZ+1S/AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUvlikaSQwHATkz6Mp6bMH15YKQU0wHwYDVR0j BBgwFoAUcOybEerht7/w4ehjVlsYLVuQ8aswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDhUVVNjMkxUcEhnTHRhQmFvMTlZVFFSN0tFM2ZrSDRhRFlUQzJpMTF5 Mk4vMC83MEVDOUIxMUVBRTFCN0JGRjBFMUU4NjM1NjVCMTgyRDVCOTBGMUFCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcwRUM5QjExRUFFMUI3QkZG MEUxRTg2MzU2NUIxODJENUI5MEYxQUIuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q4VFVTYzJMVHBIZ0x0YUJhbzE5WVRRUjdLRTNma0g0YURZVEMyaTExeTJOLzAv MzIzODMwMzQzYTM1MzYzNTM0M2EzNTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzNzM5MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEVlRQMA0GCSqGSIb3DQEBCwUA A4IBAQDTC6fo51EkfJcP9j1UEUdZO+KW1xrTHdLiPT4Gx5ufugycHO0r45vkDbr8 w/EO3umkBlrm4if8VFRaovT70rYih5HT9xKPUl/0y52IYW9Ij9XH87aX/2CZmKjD lRQ2MOlhy8klcys84pLrTHkBEZBGe7GfEANWcJwmtjKx2pupUYWZ2gEYVQ0mC53h zXAwEkWnBRA3LF2LTcl1afxYx/837xQczFDVZsxzDX3fW/ytn5eltqD/Z75KyV2I GnNIlcVkBGJ7iTETmrGpGHvY0SyZE9ZTuT16zcTiOHU3ScQB7WbU7IyPT2sgDz2V AUDcnhxxiaOWQK/3ibt1pT3ERQmF -----END CERTIFICATE-----Generated at Fri Dec 19 13:54:12 2025 by rpki-client