This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/323830343a363532633a383030303a3a2f33342d3334203d3e20323639343733.roa File: 323830343a363532633a383030303a3a2f33342d3334203d3e20323639343733.roa (raw, json) Hash identifier: Jvk4BhtkTqCaEGOfHpRXl47mcoGZIB2qsIvobQVyGEY= Subject key identifier: B3:E5:BE:45:54:A7:C7:1A:07:35:27:15:22:70:29:2A:DF:A7:51:B7 Certificate issuer: /CN=BAA91B8729924B4E8155B81952688BEC004DD0B7 Certificate serial: 09E646358C8DE6B825FFE2AF37AB6BE5FC4546FD Authority key identifier: BA:A9:1B:87:29:92:4B:4E:81:55:B8:19:52:68:8B:EC:00:4D:D0:B7 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.cer Subject info access: rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/323830343a363532633a383030303a3a2f33342d3334203d3e20323639343733.roa Signing time: Tue 18 Nov 2025 15:18:16 +0000 ROA not before: Tue 18 Nov 2025 15:13:16 +0000 ROA not after: Tue 17 Nov 2026 15:18:16 +0000 asID: 269473 IP address blocks: 2804:652c:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.crl rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 21 Dec 2025 10:03:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:e6:46:35:8c:8d:e6:b8:25:ff:e2:af:37:ab:6b:e5:fc:45:46:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAA91B8729924B4E8155B81952688BEC004DD0B7 Validity Not Before: Nov 18 15:13:16 2025 GMT Not After : Nov 17 15:18:16 2026 GMT Subject: CN=B3E5BE4554A7C71A073527152270292ADFA751B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6e:39:54:0d:01:82:04:be:91:e9:07:aa:2e: 57:cf:07:15:25:d3:ca:9d:7f:b5:91:df:59:b7:7f: 4c:b1:bd:9c:c8:0e:86:f4:62:d3:28:98:9e:1c:19: 0c:e5:9d:a7:80:4b:8d:13:ec:18:42:ff:c9:c8:51: fd:9b:ac:54:49:09:a8:c0:f6:07:dd:43:0c:36:8e: db:51:fc:51:4f:85:58:ce:84:eb:0d:f7:f0:5f:e3: 3d:66:ca:3a:05:24:57:36:83:4a:cb:6d:20:34:6f: f8:c7:89:6f:63:99:4e:26:be:74:86:19:63:95:f0: 9a:9e:8b:7e:81:83:3a:28:b0:cb:aa:5c:d2:72:8f: 08:b0:8e:52:c0:fd:44:1b:eb:6c:6f:50:f5:7c:ad: bb:7a:2a:80:51:c5:ee:7f:3c:4b:a8:a3:1e:09:24: f3:98:32:aa:3e:cd:13:8d:a3:77:d5:c3:af:e5:20: db:06:6e:d2:2e:5b:b7:1c:80:5c:18:55:04:8e:33: a6:66:95:07:bf:19:33:44:79:68:97:8e:40:83:ca: b7:23:f0:c5:05:e7:86:35:c5:ec:7c:54:75:09:08: 9c:b2:ab:e1:8e:64:2a:c2:e7:69:fc:b1:14:50:61: 16:7e:0c:ab:e5:aa:dd:dc:13:aa:2c:90:41:be:92: 6b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:E5:BE:45:54:A7:C7:1A:07:35:27:15:22:70:29:2A:DF:A7:51:B7 X509v3 Authority Key Identifier: keyid:BA:A9:1B:87:29:92:4B:4E:81:55:B8:19:52:68:8B:EC:00:4D:D0:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAA91B8729924B4E8155B81952688BEC004DD0B7.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HrvTxa2YNxYyPp3c5Pq51uo3WGnjxMhnMjHsBvd7eXF9/1/323830343a363532633a383030303a3a2f33342d3334203d3e20323639343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:652c:8000::/34 Signature Algorithm: sha256WithRSAEncryption 6f:e3:7f:b9:53:cc:fd:50:84:72:29:8e:c8:de:c2:83:00:2e: 88:23:7f:b1:fe:20:db:8a:27:b3:33:7b:4d:23:a0:0d:52:7d: ac:aa:7f:b7:53:35:f1:53:13:37:f9:e3:a6:e7:59:db:e7:32: 87:d4:b9:f8:09:16:12:81:ee:6f:8a:2f:23:64:59:c0:7f:d9: b7:c1:8e:0d:31:b8:ea:b9:bf:ec:e8:b8:6e:ef:92:91:bc:81: 07:5a:92:3a:ba:3a:99:88:3c:b3:79:33:0e:ad:03:88:c7:2c: 5e:82:a8:ae:61:9a:fa:6f:ab:ea:a2:a2:a0:13:ff:06:ab:a2: 76:76:5d:41:00:d0:8c:ba:8f:d8:aa:66:ac:7c:57:a1:1a:78: d7:dd:b2:7d:6a:b4:6b:8b:00:68:4f:a8:cb:7a:1d:a3:92:5e: 31:8f:f4:da:36:ad:88:cc:b7:45:33:1a:e1:32:7d:64:05:fe: 28:04:f3:4b:8e:b9:ec:11:6b:9d:69:06:e6:7e:96:1d:e4:28: c9:dc:23:9d:30:8b:cf:5e:d3:95:8a:04:dd:15:50:1d:21:09: 39:59:33:a6:0c:d7:7c:9e:d8:a6:ac:94:f4:fa:20:e8:06:f3: e9:4f:31:ed:7b:95:ad:9d:14:e3:ac:f3:1e:72:82:1b:9f:75: 58:f5:23:8c -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUCeZGNYyN5rgl/+KvN6tr5fxFRv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFBOTFCODcyOTkyNEI0RTgxNTVCODE5NTI2ODhCRUMw MDRERDBCNzAeFw0yNTExMTgxNTEzMTZaFw0yNjExMTcxNTE4MTZaMDMxMTAvBgNV BAMTKEIzRTVCRTQ1NTRBN0M3MUEwNzM1MjcxNTIyNzAyOTJBREZBNzUxQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrbjlUDQGCBL6R6QeqLlfPBxUl 08qdf7WR31m3f0yxvZzIDob0YtMomJ4cGQzlnaeAS40T7BhC/8nIUf2brFRJCajA 9gfdQww2jttR/FFPhVjOhOsN9/Bf4z1myjoFJFc2g0rLbSA0b/jHiW9jmU4mvnSG GWOV8Jqei36BgzoosMuqXNJyjwiwjlLA/UQb62xvUPV8rbt6KoBRxe5/PEuoox4J JPOYMqo+zRONo3fVw6/lINsGbtIuW7ccgFwYVQSOM6ZmlQe/GTNEeWiXjkCDyrcj 8MUF54Y1xex8VHUJCJyyq+GOZCrC52n8sRRQYRZ+DKvlqt3cE6oskEG+kmtdAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUs+W+RVSnxxoHNScVInApKt+nUbcwHwYDVR0j BBgwFoAUuqkbhymSS06BVbgZUmiL7ABN0LcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSHJ2VHhhMllOeFl5UHAzYzVQcTUxdW8zV0duanhNaG5NakhzQnZkN2VY RjkvMS9CQUE5MUI4NzI5OTI0QjRFODE1NUI4MTk1MjY4OEJFQzAwNEREMEI3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JBQTkxQjg3Mjk5MjRCNEU4 MTU1QjgxOTUyNjg4QkVDMDA0REQwQjcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hydlR4YTJZTnhZeVBwM2M1UHE1MXVvM1dHbmp4TWhuTWpIc0J2ZDdlWEY5LzEv MzIzODMwMzQzYTM2MzUzMjYzM2EzODMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk M2UyMDMyMzYzOTM0MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEZSyAMA0GCSqGSIb3DQEBCwUA A4IBAQBv43+5U8z9UIRyKY7I3sKDAC6II3+x/iDbiiezM3tNI6ANUn2sqn+3UzXx UxM3+eOm51nb5zKH1Ln4CRYSge5vii8jZFnAf9m3wY4NMbjqub/s6Lhu75KRvIEH WpI6ujqZiDyzeTMOrQOIxyxegqiuYZr6b6vqoqKgE/8Gq6J2dl1BANCMuo/Yqmas fFehGnjX3bJ9arRriwBoT6jLeh2jkl4xj/TaNq2IzLdFMxrhMn1kBf4oBPNLjrns EWudaQbmfpYd5CjJ3COdMIvPXtOVigTdFVAdIQk5WTOmDNd8ntimrJT0+iDoBvPp TzHte5WtnRTjrPMecoIbn3VY9SOM -----END CERTIFICATE-----Generated at Sun Dec 21 01:37:45 2025 by rpki-client