This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a3a2f33322d3332203d3e20323637393931.roa File: 323830343a353635343a3a2f33322d3332203d3e20323637393931.roa (raw, json) Hash identifier: 0Md8bBdIrHm99GKfDgUYlf7oNDewfb8uvX5TdiMYMFw= Subject key identifier: 46:51:CA:01:E2:71:2B:4C:6F:26:A7:C9:9A:EA:53:EB:F0:A1:90:67 Certificate issuer: /CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Certificate serial: 4CDBB73A9531BFFFF6EE34929A3D6564EBE8BEFA Authority key identifier: 70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject info access: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a3a2f33322d3332203d3e20323637393931.roa Signing time: Tue 09 Dec 2025 23:47:03 +0000 ROA not before: Tue 09 Dec 2025 23:42:03 +0000 ROA not after: Tue 08 Dec 2026 23:47:03 +0000 asID: 267991 IP address blocks: 2804:5654::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 21 Dec 2025 16:19:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:db:b7:3a:95:31:bf:ff:f6:ee:34:92:9a:3d:65:64:eb:e8:be:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Validity Not Before: Dec 9 23:42:03 2025 GMT Not After : Dec 8 23:47:03 2026 GMT Subject: CN=4651CA01E2712B4C6F26A7C99AEA53EBF0A19067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:16:98:8e:7d:f0:b1:6d:1f:06:21:e4:8a:d7: 93:20:49:a5:69:cf:57:5c:f0:63:a5:c8:a7:b9:e1: fc:17:75:8f:be:49:59:67:d1:46:05:1b:56:db:42: 6d:bd:01:f4:5c:2e:b3:fc:60:e4:79:9f:0c:27:d7: 85:7c:41:aa:d8:d3:1f:6b:4c:73:bb:4b:2a:c4:9e: d7:bb:ac:9a:a3:25:93:aa:fb:46:f3:4d:59:73:e0: e2:2b:89:44:52:14:76:8b:88:44:c3:2a:8e:8a:7b: 74:63:a9:91:fd:40:a2:8a:71:08:ba:97:2b:11:91: 7f:ec:ee:5f:0a:71:e6:75:b5:30:78:29:3b:d0:6b: 4e:cd:44:d9:2e:ac:b0:db:13:41:0e:c8:5d:d6:69: 91:a2:b7:d9:34:62:ba:9b:5f:33:57:42:e5:e9:46: 70:04:7a:89:08:0b:21:26:16:2c:8f:65:26:85:12: b2:d2:d4:31:eb:19:eb:81:56:e1:e3:06:55:c7:c4: 30:1d:cc:85:3d:0f:d0:47:7c:1b:8f:43:df:84:d1: de:e7:99:2d:0b:0d:db:74:59:29:4a:69:a7:dd:40: 7c:41:d8:c0:b1:9f:e0:c0:ed:da:b8:9f:b9:41:a8: ed:f0:9b:3a:c7:f1:e9:79:6f:b6:49:28:d4:e1:e4: ee:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:51:CA:01:E2:71:2B:4C:6F:26:A7:C9:9A:EA:53:EB:F0:A1:90:67 X509v3 Authority Key Identifier: keyid:70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a3a2f33322d3332203d3e20323637393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5654::/32 Signature Algorithm: sha256WithRSAEncryption 36:f5:a8:e8:c8:04:8d:a1:63:cf:69:aa:8e:86:94:e5:8e:e3: ad:88:09:8b:19:05:19:57:4b:96:6c:80:72:80:7c:c6:5f:f4: c7:8a:82:ec:c5:b0:ee:c6:12:00:3b:f2:54:bd:03:e1:6e:03: 1c:b4:f5:df:19:f1:52:ba:46:fd:85:9c:4f:ed:8e:6d:dc:54: 3f:86:12:d0:94:a4:76:0a:d4:1d:d8:cc:c1:48:6a:e0:24:5d: 2c:9d:48:d0:e2:90:e3:9c:f0:2f:8b:30:e9:e9:8b:91:93:03: f0:e1:8b:44:4c:70:2c:93:ce:a9:3d:3f:c0:d5:55:b5:f0:a2: 82:7e:28:8e:d1:27:49:05:b8:08:eb:76:3d:ee:72:45:ee:13: 6c:be:db:7c:d6:88:b2:cf:f2:78:74:c3:c4:94:94:f0:91:68: 7c:2e:47:06:57:64:37:2f:99:c7:f9:0d:a4:bb:e1:39:a1:4b: 5b:4a:d9:b5:9c:01:a5:b6:8b:e0:48:6c:f9:ad:cd:72:f5:15: e4:17:ec:f5:88:f9:99:fe:d7:21:02:92:e7:8f:e1:72:d9:23: d3:b7:9e:1d:4f:2f:d5:60:86:20:33:50:0e:ba:63:f4:b0:dc: 48:da:17:0d:ae:4d:f9:be:64:ff:1b:27:1f:3f:5b:75:e2:d4: 3e:62:83:a4 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIUTNu3OpUxv//27jSSmj1lZOvovvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBFQzlCMTFFQUUxQjdCRkYwRTFFODYzNTY1QjE4MkQ1 QjkwRjFBQjAeFw0yNTEyMDkyMzQyMDNaFw0yNjEyMDgyMzQ3MDNaMDMxMTAvBgNV BAMTKDQ2NTFDQTAxRTI3MTJCNEM2RjI2QTdDOTlBRUE1M0VCRjBBMTkwNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2FpiOffCxbR8GIeSK15MgSaVp z1dc8GOlyKe54fwXdY++SVln0UYFG1bbQm29AfRcLrP8YOR5nwwn14V8QarY0x9r THO7SyrEnte7rJqjJZOq+0bzTVlz4OIriURSFHaLiETDKo6Ke3RjqZH9QKKKcQi6 lysRkX/s7l8KceZ1tTB4KTvQa07NRNkurLDbE0EOyF3WaZGit9k0YrqbXzNXQuXp RnAEeokICyEmFiyPZSaFErLS1DHrGeuBVuHjBlXHxDAdzIU9D9BHfBuPQ9+E0d7n mS0LDdt0WSlKaafdQHxB2MCxn+DA7dq4n7lBqO3wmzrH8el5b7ZJKNTh5O6FAgMB AAGjggJQMIICTDAdBgNVHQ4EFgQURlHKAeJxK0xvJqfJmupT6/ChkGcwHwYDVR0j BBgwFoAUcOybEerht7/w4ehjVlsYLVuQ8aswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDhUVVNjMkxUcEhnTHRhQmFvMTlZVFFSN0tFM2ZrSDRhRFlUQzJpMTF5 Mk4vMC83MEVDOUIxMUVBRTFCN0JGRjBFMUU4NjM1NjVCMTgyRDVCOTBGMUFCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcwRUM5QjExRUFFMUI3QkZG MEUxRTg2MzU2NUIxODJENUI5MEYxQUIuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q4VFVTYzJMVHBIZ0x0YUJhbzE5WVRRUjdLRTNma0g0YURZVEMyaTExeTJOLzAv MzIzODMwMzQzYTM1MzYzNTM0M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzNjM3 MzkzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH AQH/BBEwDzANBAIAAjAHAwUAKARWVDANBgkqhkiG9w0BAQsFAAOCAQEANvWo6MgE jaFjz2mqjoaU5Y7jrYgJixkFGVdLlmyAcoB8xl/0x4qC7MWw7sYSADvyVL0D4W4D HLT13xnxUrpG/YWcT+2ObdxUP4YS0JSkdgrUHdjMwUhq4CRdLJ1I0OKQ45zwL4sw 6emLkZMD8OGLRExwLJPOqT0/wNVVtfCign4ojtEnSQW4COt2Pe5yRe4TbL7bfNaI ss/yeHTDxJSU8JFofC5HBldkNy+Zx/kNpLvhOaFLW0rZtZwBpbaL4Ehs+a3NcvUV 5Bfs9Yj5mf7XIQKS54/hctkj07eeHU8v1WCGIDNQDrpj9LDcSNoXDa5N+b5k/xsn Hz9bdeLUPmKDpA== -----END CERTIFICATE-----Generated at Sun Dec 21 06:07:28 2025 by rpki-client