This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/34352e3233372e3231322e302f32332d3233203d3e20323638333033.roa File: 34352e3233372e3231322e302f32332d3233203d3e20323638333033.roa (raw, json) Hash identifier: MLg/jiZLXbBDbK1XW5nt214BDm9hv498VC8L07X5YLk= Subject key identifier: ED:C5:3C:A6:55:E8:AF:16:2C:D1:64:FF:B3:D6:02:8A:00:CB:10:B7 Certificate issuer: /CN=7E09C85B0E5ACF758DAA966E4C1E2328D0322164 Certificate serial: 436BE1DD49D6B3F2048AFB36E316AD7D25D49DCD Authority key identifier: 7E:09:C8:5B:0E:5A:CF:75:8D:AA:96:6E:4C:1E:23:28:D0:32:21:64 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.cer Subject info access: rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/34352e3233372e3231322e302f32332d3233203d3e20323638333033.roa Signing time: Fri 02 May 2025 14:16:01 +0000 ROA not before: Fri 02 May 2025 14:11:01 +0000 ROA not after: Fri 01 May 2026 14:16:01 +0000 asID: 268303 IP address blocks: 45.237.212.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.crl rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 09 Dec 2025 00:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:6b:e1:dd:49:d6:b3:f2:04:8a:fb:36:e3:16:ad:7d:25:d4:9d:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E09C85B0E5ACF758DAA966E4C1E2328D0322164 Validity Not Before: May 2 14:11:01 2025 GMT Not After : May 1 14:16:01 2026 GMT Subject: CN=EDC53CA655E8AF162CD164FFB3D6028A00CB10B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:10:9a:ec:8d:e9:a9:fb:4a:33:8b:a2:b1:fc: 29:3f:8f:71:68:17:21:a8:2f:ed:93:ad:aa:32:62: ae:54:fc:26:fd:92:ea:ba:c8:08:e2:0e:8f:59:37: 80:51:2f:c5:26:72:d2:21:58:6f:4d:01:83:59:dd: 3d:25:99:a0:5f:87:f2:6e:d9:af:9e:65:16:16:a5: 1c:f1:1f:e2:65:dc:de:af:e0:97:ef:65:8b:18:a1: c8:90:fd:00:4b:ad:57:89:d4:88:d4:02:69:73:49: 51:16:86:51:09:aa:ad:2a:90:a4:66:0d:ae:ba:a3: 0c:22:c9:d8:a8:03:e2:90:49:66:15:d8:32:b9:c2: cd:8a:5d:1a:c2:b3:d3:20:a3:b9:79:b1:39:78:c1: 67:c7:82:0b:5d:3a:b0:49:43:c4:ff:3d:d7:e2:73: ba:9a:b8:71:de:b9:f7:87:80:d6:40:6d:df:39:4e: a0:cf:eb:b7:c9:2f:2b:ae:4e:09:03:8b:39:2a:63: 60:80:f6:8b:53:9b:81:09:f9:86:ac:30:cf:e9:1c: 80:c7:7a:95:ae:fa:ff:10:8e:b0:a2:ba:93:cb:cb: b4:76:4b:5a:70:82:73:29:89:a8:24:a9:c0:a4:0a: 98:95:b4:bf:e8:56:b0:59:64:20:60:78:8a:e2:b4: 41:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:C5:3C:A6:55:E8:AF:16:2C:D1:64:FF:B3:D6:02:8A:00:CB:10:B7 X509v3 Authority Key Identifier: keyid:7E:09:C8:5B:0E:5A:CF:75:8D:AA:96:6E:4C:1E:23:28:D0:32:21:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7E09C85B0E5ACF758DAA966E4C1E2328D0322164.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9HG5NehSAWQykSCsftLzjhGecn1mwk1BjkuEJrjZgPkb/0/34352e3233372e3231322e302f32332d3233203d3e20323638333033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.237.212.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:0f:d4:0f:28:34:0b:7e:c1:f8:85:d0:17:b3:1c:6e:15:3a: 76:5a:e7:10:4b:50:d1:bd:e4:16:51:90:9b:fe:d3:54:a6:10: 19:a4:39:42:ec:fb:f2:95:1b:02:a9:6e:a6:57:30:de:94:05: 28:48:6a:58:07:2e:20:e5:8f:e3:30:55:a0:06:ae:83:27:57: d8:a0:d3:8b:ab:2d:f3:eb:b8:77:39:8c:09:4f:92:43:98:96: 26:90:ec:e0:00:e8:65:9d:66:ff:0f:5a:ad:52:2a:a6:b0:6e: 1f:b8:05:cf:f3:96:ba:4f:31:05:84:63:3a:76:fb:61:db:95: 6f:53:80:46:c5:16:7c:87:b5:d3:a5:36:b5:40:8e:b8:d8:73: 55:25:21:50:0a:da:b1:81:76:96:af:25:bb:69:6c:ad:02:52: 4d:00:e2:c9:35:1f:93:f4:e9:f0:67:db:3f:fe:e7:7e:f1:6f: 1c:81:b6:8b:e5:3e:36:79:2b:72:be:a3:5c:89:31:de:94:c6: d0:15:16:0f:ea:49:b5:77:af:5e:3e:03:f1:e5:6f:23:98:2b: a1:69:47:50:bd:f8:6d:09:fd:46:f6:0c:ed:bd:52:60:f7:39: b6:79:f7:7e:c0:80:8f:2d:be:9a:92:96:d1:4a:1d:20:1c:ab: c2:c6:9b:af -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUQ2vh3UnWs/IEivs24xatfSXUnc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UwOUM4NUIwRTVBQ0Y3NThEQUE5NjZFNEMxRTIzMjhE MDMyMjE2NDAeFw0yNTA1MDIxNDExMDFaFw0yNjA1MDExNDE2MDFaMDMxMTAvBgNV BAMTKEVEQzUzQ0E2NTVFOEFGMTYyQ0QxNjRGRkIzRDYwMjhBMDBDQjEwQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyEJrsjemp+0ozi6Kx/Ck/j3Fo FyGoL+2TraoyYq5U/Cb9kuq6yAjiDo9ZN4BRL8UmctIhWG9NAYNZ3T0lmaBfh/Ju 2a+eZRYWpRzxH+Jl3N6v4JfvZYsYociQ/QBLrVeJ1IjUAmlzSVEWhlEJqq0qkKRm Da66owwiydioA+KQSWYV2DK5ws2KXRrCs9Mgo7l5sTl4wWfHggtdOrBJQ8T/Pdfi c7qauHHeufeHgNZAbd85TqDP67fJLyuuTgkDizkqY2CA9otTm4EJ+YasMM/pHIDH epWu+v8QjrCiupPLy7R2S1pwgnMpiagkqcCkCpiVtL/oVrBZZCBgeIritEGjAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQU7cU8plXorxYs0WT/s9YCigDLELcwHwYDVR0j BBgwFoAUfgnIWw5az3WNqpZuTB4jKNAyIWQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOUhHNU5laFNBV1F5a1NDc2Z0THpqaEdlY24xbXdrMUJqa3VFSnJqWmdQ a2IvMC83RTA5Qzg1QjBFNUFDRjc1OERBQTk2NkU0QzFFMjMyOEQwMzIyMTY0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzdFMDlDODVCMEU1QUNGNzU4 REFBOTY2RTRDMUUyMzI4RDAzMjIxNjQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlIRzVOZWhTQVdReWtTQ3NmdEx6amhHZWNuMW13azFCamt1RUpyalpnUGtiLzAv MzQzNTJlMzIzMzM3MmUzMjMxMzIyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMjM2 MzgzMzMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAEt7dQwDQYJKoZIhvcNAQELBQADggEBAB0P1A8o NAt+wfiF0BezHG4VOnZa5xBLUNG95BZRkJv+01SmEBmkOULs+/KVGwKpbqZXMN6U BShIalgHLiDlj+MwVaAGroMnV9ig04urLfPruHc5jAlPkkOYliaQ7OAA6GWdZv8P Wq1SKqawbh+4Bc/zlrpPMQWEYzp2+2HblW9TgEbFFnyHtdOlNrVAjrjYc1UlIVAK 2rGBdpavJbtpbK0CUk0A4sk1H5P06fBn2z/+537xbxyBtovlPjZ5K3K+o1yJMd6U xtAVFg/qSbV3r14+A/HlbyOYK6FpR1C9+G0J/Ub2DO29UmD3ObZ5937AgI8tvpqS ltFKHSAcq8LGm68= -----END CERTIFICATE-----Generated at Mon Dec 8 09:40:13 2025 by rpki-client