This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/3139302e3131312e3135362e302f32332d3233203d3e20323638363035.roa File: 3139302e3131312e3135362e302f32332d3233203d3e20323638363035.roa (raw, json) Hash identifier: 7hPzGK/CUPZ/r2iZKde4LgoCtvkjslQoFyYNkdwDeD0= Subject key identifier: 97:6A:B4:C8:3A:8A:34:7B:F9:75:92:E3:24:CD:D3:AF:4E:18:02:E1 Certificate issuer: /CN=89572AF0EBD91AB05A4587B34A48A12C52369C71 Certificate serial: 592C66B58A1D4843489D1FBC2A1AF8669CBFE9DC Authority key identifier: 89:57:2A:F0:EB:D9:1A:B0:5A:45:87:B3:4A:48:A1:2C:52:36:9C:71 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/89572AF0EBD91AB05A4587B34A48A12C52369C71.cer Subject info access: rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/3139302e3131312e3135362e302f32332d3233203d3e20323638363035.roa Signing time: Wed 07 Jan 2026 13:55:53 +0000 ROA not before: Wed 07 Jan 2026 13:50:53 +0000 ROA not after: Wed 06 Jan 2027 13:55:53 +0000 asID: 268605 IP address blocks: 190.111.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/89572AF0EBD91AB05A4587B34A48A12C52369C71.crl rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/89572AF0EBD91AB05A4587B34A48A12C52369C71.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/89572AF0EBD91AB05A4587B34A48A12C52369C71.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 26 Jan 2026 20:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:2c:66:b5:8a:1d:48:43:48:9d:1f:bc:2a:1a:f8:66:9c:bf:e9:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89572AF0EBD91AB05A4587B34A48A12C52369C71 Validity Not Before: Jan 7 13:50:53 2026 GMT Not After : Jan 6 13:55:53 2027 GMT Subject: CN=976AB4C83A8A347BF97592E324CDD3AF4E1802E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:38:58:7e:ce:fc:8f:8a:37:1e:6a:44:d2:6a: 60:fb:7a:b8:87:e5:a1:05:f4:3d:97:97:c7:34:f8: 52:91:66:da:de:07:d4:d4:59:fa:94:21:39:8a:f3: 1b:8a:98:da:68:83:fb:29:d1:c6:62:7d:bd:e1:4b: 80:10:00:01:77:f9:9c:d2:f0:2b:bf:2d:26:e9:c2: 4c:ea:bd:d0:9f:98:c7:df:4f:8e:99:10:32:7f:d5: df:f8:55:1d:bf:2b:06:d1:b1:9a:9c:6c:c7:38:c3: 6b:a4:0b:ce:43:f3:3d:ff:af:27:fa:0f:00:11:e6: 5b:f7:e2:36:5a:ed:80:18:08:34:71:5f:90:5a:db: 3a:8c:f9:64:9d:76:6d:25:fe:b3:48:d0:6c:c9:9f: 89:41:54:a8:1d:f8:6c:b0:fc:42:53:b7:15:18:af: a7:af:4b:40:c9:27:e6:e4:6b:9c:63:01:2d:c9:ff: c6:81:28:03:54:82:07:4d:8f:c5:e1:2f:3b:f1:a8: 9b:39:39:8c:32:e6:f8:61:1c:b3:9d:b3:61:fe:37: 83:4c:ff:b1:9d:5b:bc:33:72:11:da:d8:8b:a0:f8: f3:b0:40:f2:87:15:44:83:4c:7a:4c:40:41:16:28: ba:bc:4a:39:3a:06:e3:ed:66:3a:af:5a:76:21:96: 7a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6A:B4:C8:3A:8A:34:7B:F9:75:92:E3:24:CD:D3:AF:4E:18:02:E1 X509v3 Authority Key Identifier: keyid:89:57:2A:F0:EB:D9:1A:B0:5A:45:87:B3:4A:48:A1:2C:52:36:9C:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/89572AF0EBD91AB05A4587B34A48A12C52369C71.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/89572AF0EBD91AB05A4587B34A48A12C52369C71.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/3139302e3131312e3135362e302f32332d3233203d3e20323638363035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 190.111.156.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:14:92:a5:29:4d:92:75:d4:42:3f:9a:fc:7c:cb:f7:9e:cd: 9d:30:ff:0d:20:7d:89:27:e8:2c:11:17:55:22:6c:a1:16:23: d0:83:fa:6a:41:5e:95:97:73:a7:03:51:9c:a8:eb:a9:fa:67: 8d:46:b8:04:6c:3d:8a:e3:7a:72:79:8c:4e:53:4c:03:f8:c0: 9b:18:5e:b6:9c:8c:0b:8b:6c:3b:1a:b9:c3:e2:71:00:34:f4: 9d:02:cf:d2:32:88:d5:4c:4c:4a:5e:b4:92:0e:8f:00:db:56: b2:86:df:79:4a:2f:f6:b7:de:ac:30:56:2d:e2:76:be:1a:2f: ef:63:f2:cb:31:28:28:f8:21:06:ec:81:17:a9:cf:7c:d9:a9: 41:64:b3:b3:76:33:34:12:e1:53:66:13:96:3b:4b:65:d9:1d: 7b:69:20:bf:58:c4:09:c4:6a:74:1c:25:52:cf:5f:50:a5:b3: a7:5c:e2:22:cd:f6:8d:b0:d2:84:63:b9:f2:b0:c2:c3:d4:d9: bb:d0:eb:fb:e5:08:7c:12:7b:5e:af:ea:9e:e4:43:f9:89:19: c8:61:e7:3f:77:2f:d7:15:96:bd:72:1c:a1:59:e8:f6:6b:ca: d7:64:c8:5e:e6:d4:f8:ef:ba:30:19:ff:c7:a2:d2:18:62:f8: 58:5b:88:83 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUWSxmtYodSENInR+8Khr4Zpy/6dwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk1NzJBRjBFQkQ5MUFCMDVBNDU4N0IzNEE0OEExMkM1 MjM2OUM3MTAeFw0yNjAxMDcxMzUwNTNaFw0yNzAxMDYxMzU1NTNaMDMxMTAvBgNV BAMTKDk3NkFCNEM4M0E4QTM0N0JGOTc1OTJFMzI0Q0REM0FGNEUxODAyRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2OFh+zvyPijceakTSamD7eriH 5aEF9D2Xl8c0+FKRZtreB9TUWfqUITmK8xuKmNpog/sp0cZifb3hS4AQAAF3+ZzS 8Cu/LSbpwkzqvdCfmMffT46ZEDJ/1d/4VR2/KwbRsZqcbMc4w2ukC85D8z3/ryf6 DwAR5lv34jZa7YAYCDRxX5Ba2zqM+WSddm0l/rNI0GzJn4lBVKgd+Gyw/EJTtxUY r6evS0DJJ+bka5xjAS3J/8aBKANUggdNj8XhLzvxqJs5OYwy5vhhHLOds2H+N4NM /7GdW7wzchHa2Iug+POwQPKHFUSDTHpMQEEWKLq8Sjk6BuPtZjqvWnYhlnqzAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUl2q0yDqKNHv5dZLjJM3Tr04YAuEwHwYDVR0j BBgwFoAUiVcq8OvZGrBaRYezSkihLFI2nHEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOWRaekF0UFBaQkR3UHFoVUVoR2J3MmVlRkJyNVpoaW5zeUZ3OEp4eHFr VEwvMC84OTU3MkFGMEVCRDkxQUIwNUE0NTg3QjM0QTQ4QTEyQzUyMzY5QzcxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg5NTcyQUYwRUJEOTFBQjA1 QTQ1ODdCMzRBNDhBMTJDNTIzNjlDNzEuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlkWnpBdFBQWkJEd1BxaFVFaEdidzJlZUZCcjVaaGluc3lGdzhKeHhxa1RMLzAv MzEzOTMwMmUzMTMxMzEyZTMxMzUzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy MzYzODM2MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAb5vnDANBgkqhkiG9w0BAQsFAAOCAQEAHhSS pSlNknXUQj+a/HzL957NnTD/DSB9iSfoLBEXVSJsoRYj0IP6akFelZdzpwNRnKjr qfpnjUa4BGw9iuN6cnmMTlNMA/jAmxhetpyMC4tsOxq5w+JxADT0nQLP0jKI1UxM Sl60kg6PANtWsobfeUov9rferDBWLeJ2vhov72PyyzEoKPghBuyBF6nPfNmpQWSz s3YzNBLhU2YTljtLZdkde2kgv1jECcRqdBwlUs9fUKWzp1ziIs32jbDShGO58rDC w9TZu9Dr++UIfBJ7Xq/qnuRD+YkZyGHnP3cv1xWWvXIcoVno9mvK12TIXubU+O+6 MBn/x6LSGGL4WFuIgw== -----END CERTIFICATE-----Generated at Mon Jan 26 06:08:45 2026 by rpki-client