This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a633030303a3a2f33362d3336203d3e20323637393931.roa File: 323830343a353635343a633030303a3a2f33362d3336203d3e20323637393931.roa (raw, json) Hash identifier: AQgLiaiI9mEgHFVbCPn4o5Hlxva6FMxpH4ibd7zkd5U= Subject key identifier: 3F:9F:7D:12:A4:C0:CF:EE:B9:DE:DD:68:98:16:C6:F9:46:8F:3B:22 Certificate issuer: /CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Certificate serial: 0F6FDB7A6D7516D5E39CA7B0F25E8BA7EE3D1F43 Authority key identifier: 70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject info access: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a633030303a3a2f33362d3336203d3e20323637393931.roa Signing time: Tue 09 Dec 2025 23:47:04 +0000 ROA not before: Tue 09 Dec 2025 23:42:04 +0000 ROA not after: Tue 08 Dec 2026 23:47:04 +0000 asID: 267991 IP address blocks: 2804:5654:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 20 Dec 2025 04:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:6f:db:7a:6d:75:16:d5:e3:9c:a7:b0:f2:5e:8b:a7:ee:3d:1f:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Validity Not Before: Dec 9 23:42:04 2025 GMT Not After : Dec 8 23:47:04 2026 GMT Subject: CN=3F9F7D12A4C0CFEEB9DEDD689816C6F9468F3B22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e0:df:e9:7d:74:90:95:ca:44:ae:5f:e0:aa: 19:cc:7d:61:5b:91:84:10:af:53:64:ff:2a:00:6e: 6b:d8:2a:bc:f5:9a:80:7e:d4:81:92:30:1c:38:28: 66:9a:10:4a:a1:06:4f:8f:38:ec:b7:18:18:06:13: 10:ac:e4:c8:92:d0:9c:da:2b:ba:2e:41:ef:be:56: 87:ae:df:cc:9a:de:06:f3:2e:5a:07:cf:8f:ab:e7: 1b:9f:6d:bf:f1:ae:77:8f:36:da:60:e4:90:20:c8: 67:5c:27:57:4f:f3:cf:52:c6:09:8d:62:05:35:b6: 2e:ea:2a:d2:22:d9:f5:8e:e1:ce:f4:a1:93:58:b3: bd:68:ac:ee:9a:c3:41:06:04:00:5b:dc:7e:16:c0: 72:c8:84:06:b5:93:a5:ee:8a:79:ef:f0:c4:14:81: 80:06:63:4a:13:2e:cf:77:b5:6a:17:21:77:81:44: aa:16:df:67:fa:2b:9f:e6:f8:a6:e1:d2:0d:13:2d: 5f:88:89:34:04:bb:20:26:0a:7d:da:03:c6:4e:23: 15:b9:0b:3c:55:35:bd:bd:e4:4d:6e:4d:0f:7f:9b: 67:75:41:2c:4f:b2:19:a3:6c:51:d1:f2:ee:c4:03: 31:29:d4:ad:f2:4e:39:10:89:85:a8:85:3c:65:65: 85:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9F:7D:12:A4:C0:CF:EE:B9:DE:DD:68:98:16:C6:F9:46:8F:3B:22 X509v3 Authority Key Identifier: keyid:70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a633030303a3a2f33362d3336203d3e20323637393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5654:c000::/36 Signature Algorithm: sha256WithRSAEncryption 90:36:47:fa:9c:d7:d5:ce:c0:06:c6:75:a5:38:d3:da:18:3e: 65:33:bb:3a:f9:f0:8c:b0:1b:44:d2:f4:8f:7f:a6:6a:3a:9c: 8e:59:13:1f:77:a2:ee:6c:85:2a:41:c9:48:03:0f:fc:fa:f4: 91:8e:37:6f:25:b2:7e:71:e4:aa:b2:22:c6:cf:87:1f:43:e2: e8:68:aa:c4:a3:e5:c6:b5:d0:31:b5:59:08:95:97:6b:1c:3f: 17:94:ce:0e:ca:15:0d:7e:0c:dd:f3:91:dc:28:7d:03:67:97: 58:d0:cf:f8:ad:5e:d9:2b:5a:1b:b5:98:4e:f6:05:a8:d1:6a: 94:77:92:31:71:71:5c:04:26:c1:d3:6d:c6:db:2d:bb:04:e8: 34:42:2d:f3:f4:59:77:e7:6c:ca:49:a1:22:96:81:a9:ce:34: 1d:a7:21:e5:c5:2a:21:9a:1c:a5:42:a2:7b:00:ef:7d:fb:36: 5e:7a:e4:84:35:7c:58:60:7c:ee:d1:6c:09:fc:f2:4b:c8:eb: 5c:94:19:cf:b8:66:cc:43:6c:38:29:c3:c6:28:7a:0b:48:7c: 9c:c3:5d:74:7f:27:51:01:87:22:27:4f:3e:49:11:e6:3d:9d: a2:bf:df:62:0b:9e:b4:d3:11:a2:20:a8:05:05:10:54:57:11: 67:88:bf:07 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUD2/bem11FtXjnKew8l6Lp+49H0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBFQzlCMTFFQUUxQjdCRkYwRTFFODYzNTY1QjE4MkQ1 QjkwRjFBQjAeFw0yNTEyMDkyMzQyMDRaFw0yNjEyMDgyMzQ3MDRaMDMxMTAvBgNV BAMTKDNGOUY3RDEyQTRDMENGRUVCOURFREQ2ODk4MTZDNkY5NDY4RjNCMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq4N/pfXSQlcpErl/gqhnMfWFb kYQQr1Nk/yoAbmvYKrz1moB+1IGSMBw4KGaaEEqhBk+POOy3GBgGExCs5MiS0Jza K7ouQe++Voeu38ya3gbzLloHz4+r5xufbb/xrnePNtpg5JAgyGdcJ1dP889SxgmN YgU1ti7qKtIi2fWO4c70oZNYs71orO6aw0EGBABb3H4WwHLIhAa1k6Xuinnv8MQU gYAGY0oTLs93tWoXIXeBRKoW32f6K5/m+Kbh0g0TLV+IiTQEuyAmCn3aA8ZOIxW5 CzxVNb295E1uTQ9/m2d1QSxPshmjbFHR8u7EAzEp1K3yTjkQiYWohTxlZYV3AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUP599EqTAz+653t1omBbG+UaPOyIwHwYDVR0j BBgwFoAUcOybEerht7/w4ehjVlsYLVuQ8aswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDhUVVNjMkxUcEhnTHRhQmFvMTlZVFFSN0tFM2ZrSDRhRFlUQzJpMTF5 Mk4vMC83MEVDOUIxMUVBRTFCN0JGRjBFMUU4NjM1NjVCMTgyRDVCOTBGMUFCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcwRUM5QjExRUFFMUI3QkZG MEUxRTg2MzU2NUIxODJENUI5MEYxQUIuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q4VFVTYzJMVHBIZ0x0YUJhbzE5WVRRUjdLRTNma0g0YURZVEMyaTExeTJOLzAv MzIzODMwMzQzYTM1MzYzNTM0M2E2MzMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzNzM5MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEVlTAMA0GCSqGSIb3DQEBCwUA A4IBAQCQNkf6nNfVzsAGxnWlONPaGD5lM7s6+fCMsBtE0vSPf6ZqOpyOWRMfd6Lu bIUqQclIAw/8+vSRjjdvJbJ+ceSqsiLGz4cfQ+LoaKrEo+XGtdAxtVkIlZdrHD8X lM4OyhUNfgzd85HcKH0DZ5dY0M/4rV7ZK1obtZhO9gWo0WqUd5IxcXFcBCbB023G 2y27BOg0Qi3z9Fl352zKSaEiloGpzjQdpyHlxSohmhylQqJ7AO99+zZeeuSENXxY YHzu0WwJ/PJLyOtclBnPuGbMQ2w4KcPGKHoLSHycw110fydRAYciJ08+SRHmPZ2i v99iC5600xGiIKgFBRBUVxFniL8H -----END CERTIFICATE-----Generated at Fri Dec 19 13:51:42 2025 by rpki-client