This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa File: 323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa (raw, json) Hash identifier: JywXVfaYSOPOlG7KwcKaNYwAofzUXO2WgbWjpUnYNdk= Subject key identifier: AD:30:A8:7D:B9:66:0B:38:97:3A:67:89:98:B6:CF:B7:BC:58:89:27 Certificate issuer: /CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Certificate serial: 26F1677E0C0FFAA7519A0BF6628D484513AB1037 Authority key identifier: 70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject info access: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa Signing time: Tue 09 Dec 2025 23:46:57 +0000 ROA not before: Tue 09 Dec 2025 23:41:57 +0000 ROA not after: Tue 08 Dec 2026 23:46:57 +0000 asID: 267991 IP address blocks: 2804:5654:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 21 Dec 2025 16:19:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:f1:67:7e:0c:0f:fa:a7:51:9a:0b:f6:62:8d:48:45:13:ab:10:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB Validity Not Before: Dec 9 23:41:57 2025 GMT Not After : Dec 8 23:46:57 2026 GMT Subject: CN=AD30A87DB9660B38973A678998B6CFB7BC588927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:dd:43:13:16:a4:3d:f9:38:2c:fb:b2:6e:f1: 08:86:13:de:9f:b8:df:d9:cf:f6:c3:8b:38:94:39: a0:cc:3e:b3:5a:94:ad:11:ca:dd:3e:22:ac:80:fc: 01:6d:64:61:c4:82:01:17:fc:04:b8:ab:e8:3a:84: 03:de:6f:26:b9:e7:12:d3:ac:70:d2:4c:dc:9e:36: 82:08:c5:1a:d6:3f:a1:47:5d:7c:47:87:a9:56:a8: 1b:30:3f:bf:a4:81:22:e8:30:48:b9:88:e4:ab:c3: 5a:41:db:ce:b3:c2:fc:4a:1d:52:cf:29:f1:65:d7: be:2d:24:d7:78:59:79:6a:c8:ca:03:49:a1:c8:6a: ee:7b:46:7a:05:92:9d:fa:51:09:df:93:21:1d:7e: 1c:d3:f8:ce:15:b5:fa:18:97:8e:67:81:37:00:f5: db:e5:6d:33:46:30:cd:0b:39:45:b1:ac:88:6d:d0: a7:5a:9a:65:4d:9b:d1:95:41:31:6d:dd:11:0b:0e: 65:74:f2:1a:cf:12:3e:df:2a:58:21:79:cf:a1:18: 46:21:ac:d0:3a:87:fa:8f:7e:f7:03:04:a5:3f:ed: 52:7f:86:4f:97:ef:55:c1:7f:31:b3:fc:b9:3a:e8: ce:b8:6c:55:a6:fa:54:c7:5f:4f:37:23:09:ca:8b: b7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:30:A8:7D:B9:66:0B:38:97:3A:67:89:98:B6:CF:B7:BC:58:89:27 X509v3 Authority Key Identifier: keyid:70:EC:9B:11:EA:E1:B7:BF:F0:E1:E8:63:56:5B:18:2D:5B:90:F1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70EC9B11EAE1B7BFF0E1E863565B182D5B90F1AB.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:5654:e000::/36 Signature Algorithm: sha256WithRSAEncryption ab:26:6a:c8:eb:c8:7c:66:8b:49:9a:5f:04:fc:03:f8:3b:c7: 46:5a:61:92:d6:23:57:1e:7b:3b:db:74:96:3b:a5:f5:76:a7: 5c:fe:9d:59:cc:5c:47:7e:f6:82:14:94:17:0a:cb:76:1e:d1: 6e:b7:fc:23:70:f0:96:d7:46:52:c4:cc:d3:bd:b7:55:05:77: 37:40:d4:a1:a8:ae:a7:ef:da:67:85:35:53:d7:28:f4:c5:26: 31:af:44:83:d1:69:e2:da:23:13:20:c1:47:9a:c1:6f:25:71: 7e:a2:d2:c0:3c:6e:9f:79:f8:03:bb:78:59:77:a3:7a:c2:4d: 14:bf:2c:79:8b:48:af:70:04:1f:4e:8b:45:d9:f2:3f:b9:9f: 56:82:73:7d:b3:45:fe:ce:77:3d:d4:c7:59:bc:01:50:bf:81: e2:ee:11:bc:13:c4:bc:9f:3b:8d:9f:17:54:30:73:78:4d:dc: ee:e5:d9:73:68:7d:aa:e6:11:30:a6:28:4a:dc:bb:fb:ac:71: d4:d0:c2:87:c2:ec:f2:92:07:70:38:9f:b2:5a:48:ee:be:8e: 0f:1f:d7:03:b0:78:00:7d:4a:6d:4a:17:4d:8a:73:d5:d1:54: 39:e6:09:19:e8:6f:6b:58:42:04:e8:69:fd:e8:f6:a7:cf:76: 81:22:7d:9e -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUJvFnfgwP+qdRmgv2Yo1IRROrEDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBFQzlCMTFFQUUxQjdCRkYwRTFFODYzNTY1QjE4MkQ1 QjkwRjFBQjAeFw0yNTEyMDkyMzQxNTdaFw0yNjEyMDgyMzQ2NTdaMDMxMTAvBgNV BAMTKEFEMzBBODdEQjk2NjBCMzg5NzNBNjc4OTk4QjZDRkI3QkM1ODg5MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCB3UMTFqQ9+Tgs+7Ju8QiGE96f uN/Zz/bDiziUOaDMPrNalK0Ryt0+IqyA/AFtZGHEggEX/AS4q+g6hAPebya55xLT rHDSTNyeNoIIxRrWP6FHXXxHh6lWqBswP7+kgSLoMEi5iOSrw1pB286zwvxKHVLP KfFl174tJNd4WXlqyMoDSaHIau57RnoFkp36UQnfkyEdfhzT+M4VtfoYl45ngTcA 9dvlbTNGMM0LOUWxrIht0KdammVNm9GVQTFt3RELDmV08hrPEj7fKlghec+hGEYh rNA6h/qPfvcDBKU/7VJ/hk+X71XBfzGz/Lk66M64bFWm+lTHX083IwnKi7fBAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUrTCofblmCziXOmeJmLbPt7xYiScwHwYDVR0j BBgwFoAUcOybEerht7/w4ehjVlsYLVuQ8aswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDhUVVNjMkxUcEhnTHRhQmFvMTlZVFFSN0tFM2ZrSDRhRFlUQzJpMTF5 Mk4vMC83MEVDOUIxMUVBRTFCN0JGRjBFMUU4NjM1NjVCMTgyRDVCOTBGMUFCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcwRUM5QjExRUFFMUI3QkZG MEUxRTg2MzU2NUIxODJENUI5MEYxQUIuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q4VFVTYzJMVHBIZ0x0YUJhbzE5WVRRUjdLRTNma0g0YURZVEMyaTExeTJOLzAv MzIzODMwMzQzYTM1MzYzNTM0M2E2NTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzYzNzM5MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEVlTgMA0GCSqGSIb3DQEBCwUA A4IBAQCrJmrI68h8ZotJml8E/AP4O8dGWmGS1iNXHns723SWO6X1dqdc/p1ZzFxH fvaCFJQXCst2HtFut/wjcPCW10ZSxMzTvbdVBXc3QNShqK6n79pnhTVT1yj0xSYx r0SD0Wni2iMTIMFHmsFvJXF+otLAPG6fefgDu3hZd6N6wk0Uvyx5i0ivcAQfTotF 2fI/uZ9WgnN9s0X+znc91MdZvAFQv4Hi7hG8E8S8nzuNnxdUMHN4Tdzu5dlzaH2q 5hEwpihK3Lv7rHHU0MKHwuzykgdwOJ+yWkjuvo4PH9cDsHgAfUptShdNinPV0VQ5 5gkZ6G9rWEIE6Gn96Panz3aBIn2e -----END CERTIFICATE-----Generated at Sun Dec 21 06:08:54 2025 by rpki-client