This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa File: 3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa (raw, json) Hash identifier: 55aTf6iVZ6P+Ssu9mYU4AaUln7cFLGPoYUco4veRuQ4= Subject key identifier: 3E:88:64:E1:B9:A5:FB:A9:28:08:86:0D:F2:63:B8:7D:5C:58:95:C4 Certificate issuer: /CN=2AAD0546D869051DF88F8860A3540C3582BA1456 Certificate serial: 583CEC96493715343138A8764E79529ADA68DAE8 Authority key identifier: 2A:AD:05:46:D8:69:05:1D:F8:8F:88:60:A3:54:0C:35:82:BA:14:56 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2AAD0546D869051DF88F8860A3540C3582BA1456.cer Subject info access: rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa Signing time: Wed 03 Dec 2025 15:17:25 +0000 ROA not before: Wed 03 Dec 2025 15:12:25 +0000 ROA not after: Wed 02 Dec 2026 15:17:25 +0000 asID: 265384 IP address blocks: 170.254.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/2AAD0546D869051DF88F8860A3540C3582BA1456.crl rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/2AAD0546D869051DF88F8860A3540C3582BA1456.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2AAD0546D869051DF88F8860A3540C3582BA1456.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 07 Dec 2025 04:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:3c:ec:96:49:37:15:34:31:38:a8:76:4e:79:52:9a:da:68:da:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAD0546D869051DF88F8860A3540C3582BA1456 Validity Not Before: Dec 3 15:12:25 2025 GMT Not After : Dec 2 15:17:25 2026 GMT Subject: CN=3E8864E1B9A5FBA92808860DF263B87D5C5895C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1f:29:2c:02:c7:f4:4e:34:ae:ef:03:fb:78: 54:0e:6b:12:b0:1f:32:56:13:81:46:36:a2:3e:58: 9e:30:26:4a:4d:aa:20:5f:b0:52:7f:54:95:3c:fc: 58:5d:bf:5f:32:a4:cc:2e:07:d6:c3:b7:83:87:6e: 92:ae:0d:9a:19:82:3a:24:bb:24:fc:db:65:5e:db: f6:73:77:8a:e6:51:c3:52:db:21:fd:d5:97:96:e8: 92:fd:4e:6c:72:c7:1f:0b:1d:e7:b1:5c:87:bb:70: 09:d6:81:13:ad:4e:e5:a8:5c:a0:8b:ba:a0:7c:86: 46:c9:b3:0b:33:e4:1a:50:a0:47:0a:50:ea:b8:67: b6:75:5b:a6:9e:b9:29:f5:dc:87:a6:40:bd:86:ae: 4b:45:c9:2b:62:a6:0c:99:5c:17:84:f8:02:e0:20: c6:7c:b4:74:9d:49:93:03:a3:d2:71:f7:5e:09:84: e3:7b:e1:02:ee:00:43:a8:ce:6c:aa:a7:da:e9:80: 11:23:10:d3:86:ca:45:3e:f1:fb:4a:1f:55:71:d3: 87:8e:f4:53:aa:5f:9e:ba:84:a5:4a:8e:be:45:9f: 69:97:e2:4c:f0:fb:2a:53:99:15:50:5f:d2:5b:1e: 10:29:1b:68:1b:c4:40:ef:91:82:f2:84:ee:bf:f5: 1f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:88:64:E1:B9:A5:FB:A9:28:08:86:0D:F2:63:B8:7D:5C:58:95:C4 X509v3 Authority Key Identifier: keyid:2A:AD:05:46:D8:69:05:1D:F8:8F:88:60:A3:54:0C:35:82:BA:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/2AAD0546D869051DF88F8860A3540C3582BA1456.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2AAD0546D869051DF88F8860A3540C3582BA1456.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.254.240.0/22 Signature Algorithm: sha256WithRSAEncryption 23:f7:1b:db:31:ca:51:b6:36:b9:28:4b:bd:c5:33:dc:41:eb: 67:a4:5e:26:b6:78:80:e2:8b:74:b1:f0:aa:fc:f4:de:7b:70: 6b:81:7e:2a:2a:fb:fa:d1:ee:9c:83:f2:a8:29:3a:40:5c:bf: 02:82:69:99:13:bb:29:80:55:31:46:ff:1a:16:cf:e6:20:e2: 31:d8:c3:09:58:46:33:99:88:f3:97:d0:71:d3:8b:eb:d8:c6: e1:1b:93:b0:6c:84:1c:c1:46:51:08:51:a4:a6:41:e8:90:5e: 22:fc:d3:3c:4d:63:57:5e:a1:ad:f6:f6:6b:b4:b1:a6:c7:d6: f4:4f:ba:49:e9:93:8c:2c:6c:85:5f:05:ad:53:e6:27:f6:22: be:cf:51:d0:46:66:26:dc:de:bb:47:16:af:5b:4f:17:fd:92: 3f:37:2f:da:40:4f:ea:51:18:8e:ac:89:a3:c3:7f:61:a1:35: 74:ef:36:f6:6d:91:ed:0a:01:e6:88:b8:0b:11:c0:4b:7d:ce: 83:b8:38:4e:eb:d6:30:3a:b8:44:c7:c1:10:d8:05:f3:a8:7a: c0:c6:97:f6:08:19:a7:88:56:11:23:91:1b:5f:ed:e6:53:14: a6:11:f6:9b:90:51:ca:9c:a7:f4:18:ce:a2:a3:9e:14:85:3d: 36:94:1d:79 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUWDzslkk3FTQxOKh2TnlSmtpo2ugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRDA1NDZEODY5MDUxREY4OEY4ODYwQTM1NDBDMzU4 MkJBMTQ1NjAeFw0yNTEyMDMxNTEyMjVaFw0yNjEyMDIxNTE3MjVaMDMxMTAvBgNV BAMTKDNFODg2NEUxQjlBNUZCQTkyODA4ODYwREYyNjNCODdENUM1ODk1QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbHyksAsf0TjSu7wP7eFQOaxKw HzJWE4FGNqI+WJ4wJkpNqiBfsFJ/VJU8/Fhdv18ypMwuB9bDt4OHbpKuDZoZgjok uyT822Ve2/Zzd4rmUcNS2yH91ZeW6JL9Tmxyxx8LHeexXIe7cAnWgROtTuWoXKCL uqB8hkbJswsz5BpQoEcKUOq4Z7Z1W6aeuSn13IemQL2GrktFyStipgyZXBeE+ALg IMZ8tHSdSZMDo9Jx914JhON74QLuAEOozmyqp9rpgBEjENOGykU+8ftKH1Vx04eO 9FOqX566hKVKjr5Fn2mX4kzw+ypTmRVQX9JbHhApG2gbxEDvkYLyhO6/9R/TAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUPohk4bml+6koCIYN8mO4fVxYlcQwHwYDVR0j BBgwFoAUKq0FRthpBR34j4hgo1QMNYK6FFYwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMk5QOGNQRDQ0VGp3ZlBXUER2cFJVM3pTeGdZSjlZVkVXQ2phaWdmY2VR cHQvMC8yQUFEMDU0NkQ4NjkwNTFERjg4Rjg4NjBBMzU0MEMzNTgyQkExNDU2LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJBQUQwNTQ2RDg2OTA1MURG ODhGODg2MEEzNTQwQzM1ODJCQTE0NTYuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJOUDhjUEQ0NFRqd2ZQV1BEdnBSVTN6U3hnWUo5WVZFV0NqYWlnZmNlUXB0LzAv MzEzNzMwMmUzMjM1MzQyZTMyMzQzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy MzYzNTMzMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqr+8DANBgkqhkiG9w0BAQsFAAOCAQEAI/cb 2zHKUbY2uShLvcUz3EHrZ6ReJrZ4gOKLdLHwqvz03ntwa4F+Kir7+tHunIPyqCk6 QFy/AoJpmRO7KYBVMUb/GhbP5iDiMdjDCVhGM5mI85fQcdOL69jG4RuTsGyEHMFG UQhRpKZB6JBeIvzTPE1jV16hrfb2a7SxpsfW9E+6SemTjCxshV8FrVPmJ/Yivs9R 0EZmJtzeu0cWr1tPF/2SPzcv2kBP6lEYjqyJo8N/YaE1dO829m2R7QoB5oi4CxHA S33Og7g4TuvWMDq4RMfBENgF86h6wMaX9ggZp4hWESORG1/t5lMUphH2m5BRypyn 9BjOoqOeFIU9NpQdeQ== -----END CERTIFICATE-----Generated at Sat Dec 6 19:38:26 2025 by rpki-client