This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a613030303a3a2f33362d3336203d3e20323637393931.roa File: 323830343a353635343a613030303a3a2f33362d3336203d3e20323637393931.roa (raw, json) Hash identifier: 43gQIvdQ8iscOf5FTFum+ze96mG4K50tRZhAk/TkwBo= Subject key identifier: C8:E8:82:8B:FA:BC:A8:25:CC:06:FB:20:61:7F:B1:3A:19:C3:5D:96 Certificate issuer: /CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Certificate serial: 09B2D53E1C6552306D1C7DD1CBEFB4C28C9FDD7C Authority key identifier: 70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject info access: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a613030303a3a2f33362d3336203d3e20323637393931.roa Signing time: Tue 09 Dec 2025 23:47:02 +0000 ROA not before: Tue 09 Dec 2025 23:42:02 +0000 ROA not after: Tue 08 Dec 2026 23:47:02 +0000 asID: 267991 IP address blocks: 2804:5654:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 20 Dec 2025 04:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:b2:d5:3e:1c:65:52:30:6d:1c:7d:d1:cb:ef:b4:c2:8c:9f:dd:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Validity Not Before: Dec 9 23:42:02 2025 GMT Not After : Dec 8 23:47:02 2026 GMT Subject: CN=C8E8828BFABCA825CC06FB20617FB13A19C35D96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5c:a0:ea:ef:16:21:a0:f1:f0:9f:5b:1e:52: 9d:fc:1c:5b:21:a0:21:54:ab:a4:82:69:64:ec:91: 46:35:87:8b:95:c2:c9:76:91:9c:76:be:95:88:ee: 22:16:83:2e:2b:4f:ff:02:34:27:5b:54:1b:a4:26: 5a:2a:69:a0:85:0e:02:c1:1a:99:ee:48:1f:3b:fa: 9d:1f:fe:02:7d:87:55:97:41:12:d2:d3:06:21:14: ab:fd:d7:59:96:77:ba:71:7b:85:68:e7:c5:85:60: b5:d0:3a:2e:91:96:f6:21:0d:0e:3c:4d:45:90:81: a7:8b:5d:e3:d3:a7:c8:85:c3:8c:01:b2:8a:bb:21: f2:8f:d1:79:f2:f3:5c:57:56:1d:5f:4c:b1:7d:f5: 70:4e:88:90:73:48:65:59:2e:16:13:49:45:ae:66: 25:2f:9c:c7:25:aa:b1:17:3f:a7:96:0c:42:f2:f6: b5:59:c1:d5:f2:e5:b2:77:51:f3:06:2e:3a:8c:b4: dc:48:c9:50:6e:ba:96:af:68:91:bf:56:f9:7d:22: d9:b8:95:b4:51:20:dc:20:27:02:7e:b5:9a:7b:bd: 7a:b4:b0:1f:10:5b:7c:f7:ba:b6:a1:0f:66:b0:39: 29:4e:fd:f5:c9:16:d0:77:7c:7b:eb:c6:e7:63:ea: f2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E8:82:8B:FA:BC:A8:25:CC:06:FB:20:61:7F:B1:3A:19:C3:5D:96 X509v3 Authority Key Identifier: keyid:70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a613030303a3a2f33362d3336203d3e20323637393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5654:a000::/36 Signature Algorithm: sha256WithRSAEncryption c7:f4:f9:93:c5:50:9b:f2:28:dd:5a:d1:37:ee:a0:21:05:a3: 74:cf:87:ab:32:30:9b:2f:0c:2c:90:9d:4f:f8:f9:0f:4a:7f: af:34:35:e5:d5:92:43:c8:7b:56:c6:07:b5:67:63:8f:d7:12: 7a:b4:e3:91:fd:67:fc:b6:5f:f9:b6:cd:ac:e7:76:24:ee:9b: 30:34:4c:a5:ac:50:98:39:41:d5:7f:aa:1e:8a:db:11:2b:dc: 4e:25:5b:56:96:28:f6:16:a8:64:47:48:de:7e:42:11:72:af: dc:f7:87:ed:1e:95:06:7f:d6:86:19:2d:5b:8b:d7:8c:5e:85: 92:57:d4:1b:ce:cd:17:d6:59:10:be:ee:71:a3:49:6f:2f:1e: 83:32:93:8b:f7:88:89:cd:33:2b:c8:cf:80:17:8f:83:1e:7f: 42:5c:6f:e0:b1:6a:35:a6:87:53:6f:24:a1:0a:90:96:65:2b: f4:d2:60:85:7c:52:ff:e5:e3:16:b1:76:1c:b6:f0:e0:cd:b3: f1:96:5b:2b:56:9b:42:2d:fa:34:58:15:be:16:62:6f:af:0e: e2:5a:38:7a:b4:24:d0:f4:c2:52:6e:3d:48:02:b6:a6:ee:b7: b2:f4:39:9e:ae:03:f2:ad:74:68:f0:20:0c:7c:5a:0e:77:fa: 73:13:24:c2 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUCbLVPhxlUjBtHH3Ry++0woyf3XwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBFQzlCMTFFQUUxQjdCRkYwRTFFODYzNTY1QjE4MkQ1 QjkwRjFBQjAeFw0yNTEyMDkyMzQyMDJaFw0yNjEyMDgyMzQ3MDJaMDMxMTAvBgNV BAMTKEM4RTg4MjhCRkFCQ0E4MjVDQzA2RkIyMDYxN0ZCMTNBMTlDMzVEOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAXKDq7xYhoPHwn1seUp38HFsh oCFUq6SCaWTskUY1h4uVwsl2kZx2vpWI7iIWgy4rT/8CNCdbVBukJloqaaCFDgLB GpnuSB87+p0f/gJ9h1WXQRLS0wYhFKv911mWd7pxe4Vo58WFYLXQOi6RlvYhDQ48 TUWQgaeLXePTp8iFw4wBsoq7IfKP0Xny81xXVh1fTLF99XBOiJBzSGVZLhYTSUWu ZiUvnMclqrEXP6eWDELy9rVZwdXy5bJ3UfMGLjqMtNxIyVBuupavaJG/Vvl9Itm4 lbRRINwgJwJ+tZp7vXq0sB8QW3z3urahD2awOSlO/fXJFtB3fHvrxudj6vLJAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUyOiCi/q8qCXMBvsgYX+xOhnDXZYwHwYDVR0j BBgwFoAUcOybEerht7/w4ehjVlsYLVuQ8aswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDhUVVNjMkxUcEhnTHRhQmFvMTlZVFFSN0tFM2ZrSDRhRFlUQzJpMTF5 Mk4vMC83MEVDOUIxMUVBRTFCN0JGRjBFMUU4NjM1NjVCMTgyRDVCOTBGMUFCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcwRUM5QjExRUFFMUI3QkZG MEUxRTg2MzU2NUIxODJENUI5MEYxQUIuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q4VFVTYzJMVHBIZ0x0YUJhbzE5WVRRUjdLRTNma0g0YURZVEMyaTExeTJOLzAv MzIzODMwMzQzYTM1MzYzNTM0M2E2MTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzNzM5MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEVlSgMA0GCSqGSIb3DQEBCwUA A4IBAQDH9PmTxVCb8ijdWtE37qAhBaN0z4erMjCbLwwskJ1P+PkPSn+vNDXl1ZJD yHtWxge1Z2OP1xJ6tOOR/Wf8tl/5ts2s53Yk7pswNEylrFCYOUHVf6oeitsRK9xO JVtWlij2FqhkR0jefkIRcq/c94ftHpUGf9aGGS1bi9eMXoWSV9Qbzs0X1lkQvu5x o0lvLx6DMpOL94iJzTMryM+AF4+DHn9CXG/gsWo1podTbyShCpCWZSv00mCFfFL/ 5eMWsXYctvDgzbPxllsrVptCLfo0WBW+FmJvrw7iWjh6tCTQ9MJSbj1IAram7rey 9DmergPyrXRo8CAMfFoOd/pzEyTC -----END CERTIFICATE-----Generated at Fri Dec 19 15:23:33 2025 by rpki-client