This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/323830343a373865633a333030303a3a2f33362d3336203d3e20323731323734.roa File: 323830343a373865633a333030303a3a2f33362d3336203d3e20323731323734.roa (raw, json) Hash identifier: VXjFelkFSdFKx8Y2J6XhU5Ptn2Vi5wT4GfSbDJZEwlc= Subject key identifier: 04:72:1F:51:21:07:BF:D0:F9:67:35:5F:2A:93:92:E4:0C:7C:AB:51 Certificate issuer: /CN=A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478 Certificate serial: 40B3BB7B97556ACC147E60A9852A901BAFC8A780 Authority key identifier: A1:CC:88:C7:FD:49:EE:B4:16:9B:CC:7F:C3:66:DD:AD:75:0C:14:78 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.cer Subject info access: rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/323830343a373865633a333030303a3a2f33362d3336203d3e20323731323734.roa Signing time: Thu 11 Dec 2025 12:56:21 +0000 ROA not before: Thu 11 Dec 2025 12:51:21 +0000 ROA not after: Thu 10 Dec 2026 12:56:21 +0000 asID: 271274 IP address blocks: 2804:78ec:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.crl rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 23 Dec 2025 20:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b3:bb:7b:97:55:6a:cc:14:7e:60:a9:85:2a:90:1b:af:c8:a7:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478 Validity Not Before: Dec 11 12:51:21 2025 GMT Not After : Dec 10 12:56:21 2026 GMT Subject: CN=04721F512107BFD0F967355F2A9392E40C7CAB51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0a:c6:32:04:8a:59:0f:ff:05:4c:e0:37:91: d2:ef:04:c4:7c:60:17:7d:c8:8e:c5:9c:95:82:be: 13:18:25:29:7b:b4:d2:06:42:f8:eb:40:55:6c:e3: c7:c1:34:4e:07:51:ad:99:62:15:37:dd:e9:ca:c6: 53:43:d8:c4:48:6a:cf:ed:32:36:3f:ff:f4:14:78: fc:53:eb:91:7f:f0:02:32:2d:4a:75:c3:4b:5c:56: a3:5f:4f:00:16:e8:0c:74:63:b3:2c:bc:a7:37:59: 09:d2:cf:e3:7a:8a:f3:2b:c3:44:dc:dd:17:ba:2a: f0:87:44:48:0f:8c:6b:a0:20:42:f0:c5:cd:8a:02: ed:78:c3:9f:d6:a5:f1:44:c5:7c:24:09:5a:65:88: 9d:47:cc:84:f7:99:33:de:39:d2:63:7e:2d:fe:51: 0a:1f:18:42:29:81:06:91:60:14:58:a1:0c:b6:98: 79:a7:a7:82:58:d3:72:7f:42:2e:75:22:b6:0a:ea: c0:5d:15:40:ee:65:58:9c:e3:30:ae:a2:27:f0:0a: aa:aa:dd:90:93:d5:ef:18:3c:7f:04:d0:b0:27:48: 29:08:01:66:33:be:1d:04:03:cd:ac:ae:bf:9b:8a: d9:8b:bf:0c:ae:a0:b3:94:61:1b:b6:57:7c:35:0f: d4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:72:1F:51:21:07:BF:D0:F9:67:35:5F:2A:93:92:E4:0C:7C:AB:51 X509v3 Authority Key Identifier: keyid:A1:CC:88:C7:FD:49:EE:B4:16:9B:CC:7F:C3:66:DD:AD:75:0C:14:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A1CC88C7FD49EEB4169BCC7FC366DDAD750C1478.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DfhT7jJ2CmY94GEVKx8gymSCP84HdPk8TkESEsZZQa7u/0/323830343a373865633a333030303a3a2f33362d3336203d3e20323731323734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:78ec:3000::/36 Signature Algorithm: sha256WithRSAEncryption 09:b8:7d:00:3c:b2:67:cb:d7:34:98:55:81:bd:1a:58:21:c9: 3d:cd:a2:d2:50:dd:18:44:f1:65:7b:14:52:5d:da:74:c1:17: e6:43:6a:d4:bb:e0:a4:50:39:f6:61:3a:09:1d:23:44:67:82: 71:ed:51:58:02:41:15:cf:e4:33:b9:7c:25:ac:07:49:25:9d: 43:7a:2a:e9:76:73:d0:56:cb:de:9e:d6:90:f7:8e:ca:38:e9: 64:a9:cd:9d:9d:e9:1b:5c:ba:9e:86:51:18:82:ff:98:d6:af: f0:3c:18:e0:0e:f8:4d:e4:c7:63:a5:15:2b:ef:1d:55:10:67: 10:66:a2:8a:42:a5:47:9b:0e:5a:2d:f4:c7:e7:32:5c:75:7c: c8:59:36:b7:8a:8f:3d:6e:52:de:36:72:93:34:5b:56:44:f8: 76:e3:ca:a7:e8:4f:36:a8:6c:90:6c:5e:54:28:cd:6e:93:34: d7:fb:6a:c8:68:44:67:b0:2a:21:e3:7b:90:b2:af:ab:6d:51: 87:f3:89:76:89:7a:aa:d9:f6:1a:72:3e:5b:e7:3b:00:b3:fa: 54:22:12:f5:35:47:bc:a6:17:df:95:02:94:b3:74:ca:0f:81: fa:11:47:63:27:eb:d3:ed:5c:cd:f6:c8:e9:71:0e:89:71:5d: 4b:46:47:d9 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUQLO7e5dVaswUfmCphSqQG6/Ip4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFDQzg4QzdGRDQ5RUVCNDE2OUJDQzdGQzM2NkREQUQ3 NTBDMTQ3ODAeFw0yNTEyMTExMjUxMjFaFw0yNjEyMTAxMjU2MjFaMDMxMTAvBgNV BAMTKDA0NzIxRjUxMjEwN0JGRDBGOTY3MzU1RjJBOTM5MkU0MEM3Q0FCNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNCsYyBIpZD/8FTOA3kdLvBMR8 YBd9yI7FnJWCvhMYJSl7tNIGQvjrQFVs48fBNE4HUa2ZYhU33enKxlND2MRIas/t MjY///QUePxT65F/8AIyLUp1w0tcVqNfTwAW6Ax0Y7MsvKc3WQnSz+N6ivMrw0Tc 3Re6KvCHREgPjGugIELwxc2KAu14w5/WpfFExXwkCVpliJ1HzIT3mTPeOdJjfi3+ UQofGEIpgQaRYBRYoQy2mHmnp4JY03J/Qi51IrYK6sBdFUDuZVic4zCuoifwCqqq 3ZCT1e8YPH8E0LAnSCkIAWYzvh0EA82srr+bitmLvwyuoLOUYRu2V3w1D9QtAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUBHIfUSEHv9D5ZzVfKpOS5Ax8q1EwHwYDVR0j BBgwFoAUocyIx/1J7rQWm8x/w2bdrXUMFHgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRGZoVDdqSjJDbVk5NEdFVkt4OGd5bVNDUDg0SGRQazhUa0VTRXNaWlFh N3UvMC9BMUNDODhDN0ZENDlFRUI0MTY5QkNDN0ZDMzY2RERBRDc1MEMxNDc4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0ExQ0M4OEM3RkQ0OUVFQjQx NjlCQ0M3RkMzNjZEREFENzUwQzE0NzguY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RmaFQ3akoyQ21ZOTRHRVZLeDhneW1TQ1A4NEhkUGs4VGtFU0VzWlpRYTd1LzAv MzIzODMwMzQzYTM3Mzg2NTYzM2EzMzMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk M2UyMDMyMzczMTMyMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEeOwwMA0GCSqGSIb3DQEBCwUA A4IBAQAJuH0APLJny9c0mFWBvRpYIck9zaLSUN0YRPFlexRSXdp0wRfmQ2rUu+Ck UDn2YToJHSNEZ4Jx7VFYAkEVz+QzuXwlrAdJJZ1DeirpdnPQVsventaQ947KOOlk qc2dnekbXLqehlEYgv+Y1q/wPBjgDvhN5MdjpRUr7x1VEGcQZqKKQqVHmw5aLfTH 5zJcdXzIWTa3io89blLeNnKTNFtWRPh248qn6E82qGyQbF5UKM1ukzTX+2rIaERn sCoh43uQsq+rbVGH84l2iXqq2fYacj5b5zsAs/pUIhL1NUe8phfflQKUs3TKD4H6 EUdjJ+vT7VzN9sjpcQ6JcV1LRkfZ -----END CERTIFICATE-----Generated at Tue Dec 23 13:00:44 2025 by rpki-client