This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/3139302e3131312e3135362e302f32332d3233203d3e20323730343330.roa File: 3139302e3131312e3135362e302f32332d3233203d3e20323730343330.roa (raw, json) Hash identifier: 2NM7Ae9Sv5Df57LSganz5fp6V75+n8kH+Q1m7/3KWi4= Subject key identifier: EA:D0:65:5D:3D:AB:2C:8F:85:C4:A5:D9:35:5D:58:B8:C5:DE:E0:8C Certificate issuer: /CN=6649D462B62A954091EA975AB9273AD49F359F63 Certificate serial: 314F9A105E1A89DF4B337B7A33502D8BA84B22AB Authority key identifier: 66:49:D4:62:B6:2A:95:40:91:EA:97:5A:B9:27:3A:D4:9F:35:9F:63 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6649D462B62A954091EA975AB9273AD49F359F63.cer Subject info access: rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/3139302e3131312e3135362e302f32332d3233203d3e20323730343330.roa Signing time: Thu 04 Dec 2025 13:07:20 +0000 ROA not before: Thu 04 Dec 2025 13:02:20 +0000 ROA not after: Thu 03 Dec 2026 13:07:20 +0000 asID: 270430 IP address blocks: 190.111.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/6649D462B62A954091EA975AB9273AD49F359F63.crl rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/6649D462B62A954091EA975AB9273AD49F359F63.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6649D462B62A954091EA975AB9273AD49F359F63.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 07 Dec 2025 19:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:4f:9a:10:5e:1a:89:df:4b:33:7b:7a:33:50:2d:8b:a8:4b:22:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6649D462B62A954091EA975AB9273AD49F359F63 Validity Not Before: Dec 4 13:02:20 2025 GMT Not After : Dec 3 13:07:20 2026 GMT Subject: CN=EAD0655D3DAB2C8F85C4A5D9355D58B8C5DEE08C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fb:a0:45:8b:99:79:14:fe:2f:26:c9:e5:fc: 23:4c:a2:b7:d9:60:ee:6a:cb:87:43:de:e0:be:77: b6:e3:59:09:db:33:6b:a6:9f:23:74:5d:4b:cd:8a: 61:ee:e8:a0:ba:17:d6:e3:f3:f5:55:be:49:c6:21: 7e:9f:92:db:67:27:15:57:28:0b:a2:56:9c:5f:6f: e3:0b:7e:fb:8e:90:58:fb:6e:72:2f:fb:bb:43:4e: 9d:83:d5:4b:c1:13:07:7c:6a:12:ab:db:4c:52:99: 0b:24:93:cc:bd:40:22:08:44:73:b6:59:49:0b:91: 9b:9a:0d:c6:38:29:85:58:08:96:85:12:a4:64:4c: 7e:d7:4a:45:be:1c:a8:ca:8f:31:db:c5:5e:5f:ef: d4:6b:d0:da:c5:1e:85:1d:23:9f:8e:9a:fc:b4:65: d7:d2:06:c9:08:58:99:76:dc:a8:99:b3:95:95:4e: 0b:ff:bd:79:3d:0a:34:1b:53:dc:ca:bb:1c:b4:6d: a4:11:7c:63:43:67:a8:e6:ba:1a:47:d7:67:e9:41: 4b:d8:fb:90:2c:e5:d6:9e:4d:f6:c3:78:6e:91:45: 42:09:e2:91:e9:f7:ae:f0:0c:f0:05:4d:a4:b4:f7: ee:ea:a8:1a:c3:27:fb:24:09:dd:1a:0e:7a:3c:01: df:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:D0:65:5D:3D:AB:2C:8F:85:C4:A5:D9:35:5D:58:B8:C5:DE:E0:8C X509v3 Authority Key Identifier: keyid:66:49:D4:62:B6:2A:95:40:91:EA:97:5A:B9:27:3A:D4:9F:35:9F:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/6649D462B62A954091EA975AB9273AD49F359F63.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6649D462B62A954091EA975AB9273AD49F359F63.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/3139302e3131312e3135362e302f32332d3233203d3e20323730343330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 190.111.156.0/23 Signature Algorithm: sha256WithRSAEncryption 90:e1:16:52:2d:4a:35:5d:80:89:2a:27:2c:f6:b6:fc:b2:79: 3d:6f:ee:a4:ce:8c:a8:d3:3a:27:95:8f:ba:14:dd:8e:ad:84: 9d:b2:f7:39:b6:09:46:93:2b:aa:b0:22:19:fd:c1:28:fb:e0: c8:d0:a6:73:69:e4:04:57:a6:4e:77:eb:47:85:d5:f7:6b:64: 2f:7d:08:48:4b:fe:a5:d7:a8:e1:04:e0:f9:81:57:90:97:d8: 5e:8d:25:0f:3b:43:25:66:50:03:55:86:8b:ae:b5:b9:bb:18: 71:e0:5e:4f:f4:ce:a9:41:14:59:e0:21:b6:fa:52:84:bf:bc: e0:6f:70:28:d9:7c:90:17:2d:de:d7:85:ce:2a:35:b6:3a:0b: 1e:04:eb:ea:d5:38:92:bd:d2:ee:92:e9:3c:67:bd:08:fd:a8: 6a:02:87:5a:09:ca:8a:dd:e1:d7:00:84:eb:df:40:22:b3:ec: 2d:a0:b9:1e:77:20:f0:0e:f9:68:0d:76:df:bd:b7:db:7f:6f: 7a:e8:1d:08:7a:9b:b3:ee:a5:7e:dc:88:6c:19:1a:29:97:57: 94:e5:1a:e8:3d:07:8f:cf:19:e9:97:f2:3d:c8:17:00:77:fb: 4b:d5:e0:0c:e6:63:60:62:e7:13:e9:77:02:5c:f3:55:6b:0d: 11:13:58:d2 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUMU+aEF4aid9LM3t6M1Ati6hLIqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY0OUQ0NjJCNjJBOTU0MDkxRUE5NzVBQjkyNzNBRDQ5 RjM1OUY2MzAeFw0yNTEyMDQxMzAyMjBaFw0yNjEyMDMxMzA3MjBaMDMxMTAvBgNV BAMTKEVBRDA2NTVEM0RBQjJDOEY4NUM0QTVEOTM1NUQ1OEI4QzVERUUwOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1+6BFi5l5FP4vJsnl/CNMorfZ YO5qy4dD3uC+d7bjWQnbM2umnyN0XUvNimHu6KC6F9bj8/VVvknGIX6fkttnJxVX KAuiVpxfb+MLfvuOkFj7bnIv+7tDTp2D1UvBEwd8ahKr20xSmQskk8y9QCIIRHO2 WUkLkZuaDcY4KYVYCJaFEqRkTH7XSkW+HKjKjzHbxV5f79Rr0NrFHoUdI5+Omvy0 ZdfSBskIWJl23KiZs5WVTgv/vXk9CjQbU9zKuxy0baQRfGNDZ6jmuhpH12fpQUvY +5As5daeTfbDeG6RRUIJ4pHp967wDPAFTaS09+7qqBrDJ/skCd0aDno8Ad9FAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQU6tBlXT2rLI+FxKXZNV1YuMXe4IwwHwYDVR0j BBgwFoAUZknUYrYqlUCR6pdauSc61J81n2MwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOWRaekF0UFBaQkR3UHFoVUVoR2J3MmVlRkJyNVpoaW5zeUZ3OEp4eHFr VEwvMC82NjQ5RDQ2MkI2MkE5NTQwOTFFQTk3NUFCOTI3M0FENDlGMzU5RjYzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY2NDlENDYyQjYyQTk1NDA5 MUVBOTc1QUI5MjczQUQ0OUYzNTlGNjMuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlkWnpBdFBQWkJEd1BxaFVFaEdidzJlZUZCcjVaaGluc3lGdzhKeHhxa1RMLzAv MzEzOTMwMmUzMTMxMzEyZTMxMzUzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy MzczMDM0MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAb5vnDANBgkqhkiG9w0BAQsFAAOCAQEAkOEW Ui1KNV2AiSonLPa2/LJ5PW/upM6MqNM6J5WPuhTdjq2EnbL3ObYJRpMrqrAiGf3B KPvgyNCmc2nkBFemTnfrR4XV92tkL30ISEv+pdeo4QTg+YFXkJfYXo0lDztDJWZQ A1WGi661ubsYceBeT/TOqUEUWeAhtvpShL+84G9wKNl8kBct3teFzio1tjoLHgTr 6tU4kr3S7pLpPGe9CP2oagKHWgnKit3h1wCE699AIrPsLaC5Hncg8A75aA123723 239veugdCHqbs+6lftyIbBkaKZdXlOUa6D0Hj88Z6ZfyPcgXAHf7S9XgDOZjYGLn E+l3AlzzVWsNERNY0g== -----END CERTIFICATE-----Generated at Sun Dec 7 03:47:57 2025 by rpki-client