This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/GKx88Nf3tLPEpZEK63Q7SkXQSPNbzfw7RHN8mKGJgg1W/0/3136342e38352e38382e302f32332d3234203d3e203233303734.roa File: 3136342e38352e38382e302f32332d3234203d3e203233303734.roa (raw, json) Hash identifier: i5lyEL3Lk/hrmHcEGiNBz+cKJsLeNldR23daPjQWPFE= Subject key identifier: F7:D1:21:C9:31:2A:36:EA:5A:36:D8:66:A5:DF:67:56:19:21:02:08 Certificate issuer: /CN=D0C614E3FAA25F31A56E9CF2FEA479B1CF08095D Certificate serial: 6FE0B20E64EF1DA7DECA27B7B08FBC76DF40FEC3 Authority key identifier: D0:C6:14:E3:FA:A2:5F:31:A5:6E:9C:F2:FE:A4:79:B1:CF:08:09:5D Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D0C614E3FAA25F31A56E9CF2FEA479B1CF08095D.cer Subject info access: rsync://rpki-repo.registro.br/repo/GKx88Nf3tLPEpZEK63Q7SkXQSPNbzfw7RHN8mKGJgg1W/0/3136342e38352e38382e302f32332d3234203d3e203233303734.roa Signing time: Fri 07 Feb 2025 12:33:06 +0000 ROA not before: Fri 07 Feb 2025 12:28:06 +0000 ROA not after: Fri 06 Feb 2026 12:33:06 +0000 asID: 23074 IP address blocks: 164.85.88.0/23 maxlen: 24 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 6f:e0:b2:0e:64:ef:1d:a7:de:ca:27:b7:b0:8f:bc:76:df:40:fe:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C614E3FAA25F31A56E9CF2FEA479B1CF08095D Validity Not Before: Feb 7 12:28:06 2025 GMT Not After : Feb 6 12:33:06 2026 GMT Subject: CN=F7D121C9312A36EA5A36D866A5DF675619210208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f9:06:5e:5b:21:ac:73:48:37:19:fb:58:c1: df:b4:6f:54:8d:8e:b0:5b:88:a2:2c:e0:58:80:48: 5d:9b:c6:3b:29:38:3c:a2:96:b5:cb:0b:43:08:fa: cb:ed:4a:8c:90:5c:55:98:b8:9d:ac:a0:e3:68:a2: 6b:98:9f:49:b6:7d:96:75:1a:73:ba:25:b2:fb:d1: 9d:94:a3:f3:25:b3:fd:75:f3:05:2b:92:98:05:f2: cc:4e:21:fd:ef:f4:17:fd:c6:81:3b:39:78:d3:1c: 66:df:4b:6f:c2:8b:fe:c6:bc:8d:a0:c5:45:19:9a: 46:75:a9:7b:d7:2c:b7:d3:6f:28:6b:86:da:19:8f: 45:a1:4d:79:a1:9f:6f:6b:73:fb:6e:bc:13:f6:bf: bf:28:93:49:19:9c:fe:4b:ca:d0:bb:b0:92:d6:20: 3d:27:e7:48:f8:bf:9f:96:6c:87:c0:cc:4a:09:bc: a1:b2:5a:e4:d0:c9:b7:dc:e8:d2:81:e8:be:53:6c: 5a:40:67:52:4b:09:6c:df:0b:b5:c6:18:e9:a6:8c: f2:cb:b1:f0:20:d4:f9:d1:56:38:a2:2d:07:d8:a0: 88:fa:12:7d:bc:ae:7e:1d:f6:3b:37:8d:71:96:f5: 94:c0:95:22:40:32:73:9e:c2:ca:09:77:8a:e0:20: e0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D1:21:C9:31:2A:36:EA:5A:36:D8:66:A5:DF:67:56:19:21:02:08 X509v3 Authority Key Identifier: keyid:D0:C6:14:E3:FA:A2:5F:31:A5:6E:9C:F2:FE:A4:79:B1:CF:08:09:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/GKx88Nf3tLPEpZEK63Q7SkXQSPNbzfw7RHN8mKGJgg1W/0/D0C614E3FAA25F31A56E9CF2FEA479B1CF08095D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D0C614E3FAA25F31A56E9CF2FEA479B1CF08095D.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKx88Nf3tLPEpZEK63Q7SkXQSPNbzfw7RHN8mKGJgg1W/0/3136342e38352e38382e302f32332d3234203d3e203233303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.85.88.0/23 Signature Algorithm: sha256WithRSAEncryption 64:06:88:d8:7e:9c:f7:18:51:c5:45:9d:fd:27:e7:e1:96:eb: 66:9e:39:94:e3:86:6c:74:69:22:4d:d2:1e:1c:ba:07:9d:c6: 77:8e:37:a5:0b:53:8d:4d:d1:d1:fe:88:1a:4d:16:e5:96:ff: b9:21:5b:85:f7:ec:53:1a:11:50:95:f8:c9:47:c8:05:3a:fb: 86:5f:bd:cc:49:43:49:0f:f9:81:be:5d:30:22:5c:22:12:48: 25:12:3b:b0:67:42:1e:dc:81:6c:6c:bf:35:5f:fa:09:d1:b7: 22:66:04:c5:91:74:e6:f1:15:0a:69:84:21:88:95:92:66:1a: c1:45:bf:77:5a:52:2e:1a:b8:e1:e0:7e:12:59:ab:46:6c:56: b8:ec:cd:b3:db:5b:fe:6e:8a:de:6b:c9:c2:88:c6:df:fe:3c: 87:5c:4e:2d:1e:f1:fb:30:9e:eb:ba:30:d4:c4:37:a0:39:20: 81:cb:ce:7e:c9:69:83:03:e1:6e:b9:80:b5:f4:9f:23:d2:56: 40:38:a5:7e:81:54:0f:47:97:2e:17:2f:fc:fd:f6:40:74:08: 26:fa:9f:c3:43:06:82:c4:21:f2:31:e7:dc:c7:bc:15:9c:9d: 26:c8:cb:42:cd:9c:ba:cf:cc:96:c4:ef:61:6f:2c:a5:c1:91: 8a:ec:da:0f -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUb+CyDmTvHafeyie3sI+8dt9A/sMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNjE0RTNGQUEyNUYzMUE1NkU5Q0YyRkVBNDc5QjFD RjA4MDk1RDAeFw0yNTAyMDcxMjI4MDZaFw0yNjAyMDYxMjMzMDZaMDMxMTAvBgNV BAMTKEY3RDEyMUM5MzEyQTM2RUE1QTM2RDg2NkE1REY2NzU2MTkyMTAyMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX+QZeWyGsc0g3GftYwd+0b1SN jrBbiKIs4FiASF2bxjspODyilrXLC0MI+svtSoyQXFWYuJ2soONoomuYn0m2fZZ1 GnO6JbL70Z2Uo/Mls/118wUrkpgF8sxOIf3v9Bf9xoE7OXjTHGbfS2/Ci/7GvI2g xUUZmkZ1qXvXLLfTbyhrhtoZj0WhTXmhn29rc/tuvBP2v78ok0kZnP5LytC7sJLW ID0n50j4v5+WbIfAzEoJvKGyWuTQybfc6NKB6L5TbFpAZ1JLCWzfC7XGGOmmjPLL sfAg1PnRVjiiLQfYoIj6En28rn4d9js3jXGW9ZTAlSJAMnOewsoJd4rgIOBtAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQU99EhyTEqNupaNthmpd9nVhkhAggwHwYDVR0j BBgwFoAU0MYU4/qiXzGlbpzy/qR5sc8ICV0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vR0t4ODhOZjN0TFBFcFpFSzYzUTdTa1hRU1BOYnpmdzdSSE44bUtHSmdn MVcvMC9EMEM2MTRFM0ZBQTI1RjMxQTU2RTlDRjJGRUE0NzlCMUNGMDgwOTVELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QwQzYxNEUzRkFBMjVGMzFB NTZFOUNGMkZFQTQ3OUIxQ0YwODA5NUQuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0dLeDg4TmYzdExQRXBaRUs2M1E3U2tYUVNQTmJ6Znc3UkhOOG1LR0pnZzFXLzAv MzEzNjM0MmUzODM1MmUzODM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMzMw MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAaRVWDANBgkqhkiG9w0BAQsFAAOCAQEAZAaI2H6c9xhR xUWd/Sfn4ZbrZp45lOOGbHRpIk3SHhy6B53Gd443pQtTjU3R0f6IGk0W5Zb/uSFb hffsUxoRUJX4yUfIBTr7hl+9zElDSQ/5gb5dMCJcIhJIJRI7sGdCHtyBbGy/NV/6 CdG3ImYExZF05vEVCmmEIYiVkmYawUW/d1pSLhq44eB+ElmrRmxWuOzNs9tb/m6K 3mvJwojG3/48h1xOLR7x+zCe67ow1MQ3oDkggcvOfslpgwPhbrmAtfSfI9JWQDil foFUD0eXLhcv/P32QHQIJvqfw0MGgsQh8jHn3Me8FZydJsjLQs2cus/MlsTvYW8s pcGRiuzaDw== -----END CERTIFICATE-----Generated at Mon Dec 22 20:33:51 2025 by rpki-client