This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/2GUHdKbzGVs6fnErnT35R972XtC63biXMJQ2rh6qB9Dh/0/323830313a61343a3a2f33322d3335203d3e20323632373432.roa File: 323830313a61343a3a2f33322d3335203d3e20323632373432.roa (raw, json) Hash identifier: igJvt0RqrH8RTPinACIPSsI7ZnYOgDGhY3p+HEI2B9M= Subject key identifier: 3C:58:C3:D7:96:5D:CC:C7:A0:41:A6:FB:8F:28:11:92:90:17:8C:DE Certificate issuer: /CN=6968CB73E2470E4282A375B8959AE6A2A6A53A3C Certificate serial: 2D14BA9F5BD3C401069B4A34E4E3E161FE15C0FA Authority key identifier: 69:68:CB:73:E2:47:0E:42:82:A3:75:B8:95:9A:E6:A2:A6:A5:3A:3C Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6968CB73E2470E4282A375B8959AE6A2A6A53A3C.cer Subject info access: rsync://rpki-repo.registro.br/repo/2GUHdKbzGVs6fnErnT35R972XtC63biXMJQ2rh6qB9Dh/0/323830313a61343a3a2f33322d3335203d3e20323632373432.roa Signing time: Thu 08 Jan 2026 12:15:56 +0000 ROA not before: Thu 08 Jan 2026 12:10:56 +0000 ROA not after: Thu 07 Jan 2027 12:15:56 +0000 asID: 262742 IP address blocks: 2801:a4::/32 maxlen: 35 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2GUHdKbzGVs6fnErnT35R972XtC63biXMJQ2rh6qB9Dh/0/6968CB73E2470E4282A375B8959AE6A2A6A53A3C.crl rsync://rpki-repo.registro.br/repo/2GUHdKbzGVs6fnErnT35R972XtC63biXMJQ2rh6qB9Dh/0/6968CB73E2470E4282A375B8959AE6A2A6A53A3C.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6968CB73E2470E4282A375B8959AE6A2A6A53A3C.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 27 Jan 2026 03:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:14:ba:9f:5b:d3:c4:01:06:9b:4a:34:e4:e3:e1:61:fe:15:c0:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6968CB73E2470E4282A375B8959AE6A2A6A53A3C Validity Not Before: Jan 8 12:10:56 2026 GMT Not After : Jan 7 12:15:56 2027 GMT Subject: CN=3C58C3D7965DCCC7A041A6FB8F28119290178CDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c6:27:a9:ca:f7:e4:01:83:c4:67:05:ba:f1: 96:7b:1f:2f:cf:d6:71:a5:0b:74:9f:66:da:03:93: 6e:93:13:f1:a3:39:2e:00:5f:39:17:c6:50:69:bb: e8:4a:2a:1d:ea:94:ea:aa:c0:c9:24:b5:82:41:22: 88:8b:33:32:25:18:76:08:a2:4f:53:66:6e:cc:94: 99:ae:5a:52:ee:cd:f9:c7:b5:56:a2:9e:a1:c7:a7: 0c:00:5d:93:5f:96:e4:cd:0b:8f:09:a8:af:df:fc: 83:ce:84:3f:b6:8c:ef:bc:f4:09:42:91:8b:3d:00: b8:4c:3a:e8:2d:9c:90:29:82:66:29:ff:96:f3:ad: 69:3a:f4:8d:f8:db:d6:ee:90:e3:2f:27:f4:64:1b: d7:3a:bb:5f:5b:3e:34:fa:6e:29:dc:e4:42:80:c1: bd:78:d6:30:e2:00:d1:56:3c:be:af:88:3d:70:2f: 0e:25:c9:fe:4c:90:3e:0a:cb:e5:c1:eb:42:5d:24: e3:78:a8:11:67:bf:a4:c7:a5:c6:38:f2:33:a5:7d: a4:59:be:cd:81:eb:72:b8:38:21:00:83:08:68:ea: 01:5c:45:19:b6:3a:40:cf:73:a2:f2:b9:25:19:90: 5e:41:29:a1:d5:0f:d1:30:aa:b2:8b:a3:5c:ce:54: 68:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:58:C3:D7:96:5D:CC:C7:A0:41:A6:FB:8F:28:11:92:90:17:8C:DE X509v3 Authority Key Identifier: keyid:69:68:CB:73:E2:47:0E:42:82:A3:75:B8:95:9A:E6:A2:A6:A5:3A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2GUHdKbzGVs6fnErnT35R972XtC63biXMJQ2rh6qB9Dh/0/6968CB73E2470E4282A375B8959AE6A2A6A53A3C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6968CB73E2470E4282A375B8959AE6A2A6A53A3C.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2GUHdKbzGVs6fnErnT35R972XtC63biXMJQ2rh6qB9Dh/0/323830313a61343a3a2f33322d3335203d3e20323632373432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2801:a4::/32 Signature Algorithm: sha256WithRSAEncryption 9c:66:33:98:a3:1a:7e:f4:da:9e:1b:26:27:89:36:68:de:1b: 1a:23:cf:a7:ae:4c:26:61:28:2e:ea:5c:a6:f9:5b:b0:06:5d: de:96:94:a8:3e:f3:4d:18:35:98:25:83:08:ef:07:e4:12:a4: a9:2a:45:15:d3:84:88:c3:c7:ae:07:d4:a0:dc:05:67:8b:83: 70:ca:99:cf:7d:a6:f6:d4:5f:a3:69:2b:1b:93:18:65:b0:a5: 50:16:25:74:52:eb:8b:e0:2d:59:99:58:33:a2:4a:0c:d0:4c: b4:22:61:f7:01:58:2a:b3:6e:49:32:98:1b:89:0d:a4:2a:33: f2:06:99:a3:ec:53:23:a9:84:db:df:51:76:df:60:72:c8:1b: 20:c7:4e:51:3b:e2:a3:09:22:07:c4:96:f6:e5:08:db:3f:b9: 1e:55:b2:77:d1:09:4c:c8:f5:cd:e4:7e:1c:71:7e:87:da:7c: 0a:f8:01:a8:68:e1:c2:db:92:a6:21:63:7a:26:95:db:71:af: a7:e6:5c:fd:0c:6d:5b:3e:7c:e4:1c:74:4c:12:e7:84:99:4c: c1:dc:a7:b6:29:46:f2:98:54:31:84:6c:b8:0d:8f:9e:96:48: db:79:7a:d1:f9:4d:6c:ba:32:d0:c9:6d:a8:63:35:85:e2:9b: 37:21:04:0a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIULRS6n1vTxAEGm0o05OPhYf4VwPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OENCNzNFMjQ3MEU0MjgyQTM3NUI4OTU5QUU2QTJB NkE1M0EzQzAeFw0yNjAxMDgxMjEwNTZaFw0yNzAxMDcxMjE1NTZaMDMxMTAvBgNV BAMTKDNDNThDM0Q3OTY1RENDQzdBMDQxQTZGQjhGMjgxMTkyOTAxNzhDREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2xiepyvfkAYPEZwW68ZZ7Hy/P 1nGlC3SfZtoDk26TE/GjOS4AXzkXxlBpu+hKKh3qlOqqwMkktYJBIoiLMzIlGHYI ok9TZm7MlJmuWlLuzfnHtVainqHHpwwAXZNfluTNC48JqK/f/IPOhD+2jO+89AlC kYs9ALhMOugtnJApgmYp/5bzrWk69I3429bukOMvJ/RkG9c6u19bPjT6binc5EKA wb141jDiANFWPL6viD1wLw4lyf5MkD4Ky+XB60JdJON4qBFnv6THpcY48jOlfaRZ vs2B63K4OCEAgwho6gFcRRm2OkDPc6LyuSUZkF5BKaHVD9EwqrKLo1zOVGhPAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUPFjD15ZdzMegQab7jygRkpAXjN4wHwYDVR0j BBgwFoAUaWjLc+JHDkKCo3W4lZrmoqalOjwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMkdVSGRLYnpHVnM2Zm5Fcm5UMzVSOTcyWHRDNjNiaVhNSlEycmg2cUI5 RGgvMC82OTY4Q0I3M0UyNDcwRTQyODJBMzc1Qjg5NTlBRTZBMkE2QTUzQTNDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY5NjhDQjczRTI0NzBFNDI4 MkEzNzVCODk1OUFFNkEyQTZBNTNBM0MuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJHVUhkS2J6R1ZzNmZuRXJuVDM1Ujk3Mlh0QzYzYmlYTUpRMnJoNnFCOURoLzAv MzIzODMwMzEzYTYxMzQzYTNhMmYzMzMyMmQzMzM1MjAzZDNlMjAzMjM2MzIzNzM0 MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAoAQCkMA0GCSqGSIb3DQEBCwUAA4IBAQCcZjOYoxp+9Nqe GyYniTZo3hsaI8+nrkwmYSgu6lym+VuwBl3elpSoPvNNGDWYJYMI7wfkEqSpKkUV 04SIw8euB9Sg3AVni4NwypnPfab21F+jaSsbkxhlsKVQFiV0UuuL4C1ZmVgzokoM 0Ey0ImH3AVgqs25JMpgbiQ2kKjPyBpmj7FMjqYTb31F232ByyBsgx05RO+KjCSIH xJb25QjbP7keVbJ30QlMyPXN5H4ccX6H2nwK+AGoaOHC25KmIWN6JpXbca+n5lz9 DG1bPnzkHHRMEueEmUzB3Ke2KUbymFQxhGy4DY+elkjbeXrR+U1sujLQyW2oYzWF 4ps3IQQK -----END CERTIFICATE-----Generated at Mon Jan 26 04:27:09 2026 by rpki-client