This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/3139302e3131312e3135362e302f32332d3233203d3e20323730343330.roa File: 3139302e3131312e3135362e302f32332d3233203d3e20323730343330.roa (raw, json) Hash identifier: 2ksuRXkds6UzrwVLxd7nqX6Gnkn7TgnGl0XGq4zms0I= Subject key identifier: 70:E2:34:6A:97:AF:8A:2D:25:4B:8B:7B:A5:72:25:21:84:04:4C:80 Certificate issuer: /CN=89572AF0EBD91AB05A4587B34A48A12C52369C71 Certificate serial: 72A8A2C52EBC3533F2841E69726CF01227062830 Authority key identifier: 89:57:2A:F0:EB:D9:1A:B0:5A:45:87:B3:4A:48:A1:2C:52:36:9C:71 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/89572AF0EBD91AB05A4587B34A48A12C52369C71.cer Subject info access: rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/3139302e3131312e3135362e302f32332d3233203d3e20323730343330.roa Signing time: Wed 07 Jan 2026 13:55:56 +0000 ROA not before: Wed 07 Jan 2026 13:50:56 +0000 ROA not after: Wed 06 Jan 2027 13:55:56 +0000 asID: 270430 IP address blocks: 190.111.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/89572AF0EBD91AB05A4587B34A48A12C52369C71.crl rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/89572AF0EBD91AB05A4587B34A48A12C52369C71.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/89572AF0EBD91AB05A4587B34A48A12C52369C71.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 26 Jan 2026 20:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a8:a2:c5:2e:bc:35:33:f2:84:1e:69:72:6c:f0:12:27:06:28:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89572AF0EBD91AB05A4587B34A48A12C52369C71 Validity Not Before: Jan 7 13:50:56 2026 GMT Not After : Jan 6 13:55:56 2027 GMT Subject: CN=70E2346A97AF8A2D254B8B7BA572252184044C80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9c:9c:e8:1f:12:06:f3:ab:0b:e2:af:91:ef: 36:33:66:dc:fc:25:51:0d:a8:8f:0d:5f:58:08:30: 79:a4:c5:74:66:d8:6c:10:52:c4:1d:e8:1b:d5:4c: 91:ee:c0:f3:80:3a:3d:08:d9:b8:b2:22:db:8c:02: 0e:24:08:44:fe:e7:22:16:d2:c3:b3:20:b5:8e:24: 06:35:74:0b:4a:ed:ab:f5:b4:88:f4:e1:8d:de:98: 88:6d:3c:17:82:f6:95:10:91:eb:25:dc:2d:11:5b: 6b:57:a1:e3:78:1d:2d:46:d9:57:a2:d6:ae:25:f8: 83:ff:ca:88:d1:e9:8b:0b:de:3d:0e:7c:53:65:10: 89:5d:48:a0:6b:08:f4:34:e9:a5:9e:4e:24:04:59: 8f:69:04:cc:fa:5e:8e:c0:12:b0:4d:8c:79:71:fa: 4f:82:ac:ae:dc:93:f4:5e:e2:6e:c3:2a:89:ae:0d: dc:13:f3:87:6f:4e:d6:13:c3:c7:4c:08:35:47:5a: e9:fc:42:15:2c:c3:31:4d:23:b7:49:2b:9b:60:f0: af:85:3b:da:b7:93:e8:60:02:e8:75:c3:8a:09:af: ff:bd:91:60:bf:8b:50:12:db:e9:af:21:fd:03:8d: 1e:cd:3a:6f:b6:58:61:73:d3:6a:bb:3b:f9:af:77: 2e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E2:34:6A:97:AF:8A:2D:25:4B:8B:7B:A5:72:25:21:84:04:4C:80 X509v3 Authority Key Identifier: keyid:89:57:2A:F0:EB:D9:1A:B0:5A:45:87:B3:4A:48:A1:2C:52:36:9C:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/89572AF0EBD91AB05A4587B34A48A12C52369C71.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/89572AF0EBD91AB05A4587B34A48A12C52369C71.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/9dZzAtPPZBDwPqhUEhGbw2eeFBr5ZhinsyFw8JxxqkTL/0/3139302e3131312e3135362e302f32332d3233203d3e20323730343330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 190.111.156.0/23 Signature Algorithm: sha256WithRSAEncryption 16:00:8d:e2:24:9c:d0:17:99:f7:35:5a:d5:ea:a5:d9:3a:40: d9:da:ff:4a:95:a0:d5:84:c9:9d:1d:5e:13:50:d7:6c:b4:e9: 64:ca:94:a8:d9:7d:c4:85:a3:0b:39:ab:3f:7a:22:67:7b:1e: 68:6e:cc:a5:0a:9b:3b:c9:3a:42:18:3d:6a:ee:fe:2a:30:4e: 61:c6:f2:22:02:e0:b8:b3:0f:d5:53:de:7c:38:87:f2:15:fa: c6:75:4b:e3:f7:f9:23:ce:4d:0f:29:fc:fb:89:fa:a6:01:e1: ad:3e:90:e0:d6:ac:62:9e:67:0e:3d:ff:39:cd:96:d9:b7:a0: 72:28:dc:83:aa:9f:9b:c7:98:92:ce:b6:42:9c:d6:4e:10:f4: 1d:05:b2:11:86:c0:20:86:c6:9e:fe:60:9d:bd:e8:7e:c2:db: 1f:eb:7f:f1:d5:a0:ce:23:95:ae:85:4a:00:ef:4a:88:b6:f8: 40:13:eb:e4:57:e0:a9:94:be:69:69:ca:57:5d:8a:80:7f:45: 6e:86:bf:73:08:76:9c:33:24:38:b4:4a:88:e7:82:c3:7b:fd: 48:a1:e7:02:bd:ef:ca:db:30:8e:06:c4:b2:b9:d7:87:07:c8: 06:eb:1a:d5:71:c5:f5:75:d2:ae:f8:99:2e:36:b8:f7:d2:e7: 15:ab:ee:15 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUcqiixS68NTPyhB5pcmzwEicGKDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk1NzJBRjBFQkQ5MUFCMDVBNDU4N0IzNEE0OEExMkM1 MjM2OUM3MTAeFw0yNjAxMDcxMzUwNTZaFw0yNzAxMDYxMzU1NTZaMDMxMTAvBgNV BAMTKDcwRTIzNDZBOTdBRjhBMkQyNTRCOEI3QkE1NzIyNTIxODQwNDRDODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCunJzoHxIG86sL4q+R7zYzZtz8 JVENqI8NX1gIMHmkxXRm2GwQUsQd6BvVTJHuwPOAOj0I2biyItuMAg4kCET+5yIW 0sOzILWOJAY1dAtK7av1tIj04Y3emIhtPBeC9pUQkesl3C0RW2tXoeN4HS1G2Vei 1q4l+IP/yojR6YsL3j0OfFNlEIldSKBrCPQ06aWeTiQEWY9pBMz6Xo7AErBNjHlx +k+CrK7ck/Re4m7DKomuDdwT84dvTtYTw8dMCDVHWun8QhUswzFNI7dJK5tg8K+F O9q3k+hgAuh1w4oJr/+9kWC/i1AS2+mvIf0DjR7NOm+2WGFz02q7O/mvdy4xAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUcOI0apevii0lS4t7pXIlIYQETIAwHwYDVR0j BBgwFoAUiVcq8OvZGrBaRYezSkihLFI2nHEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOWRaekF0UFBaQkR3UHFoVUVoR2J3MmVlRkJyNVpoaW5zeUZ3OEp4eHFr VEwvMC84OTU3MkFGMEVCRDkxQUIwNUE0NTg3QjM0QTQ4QTEyQzUyMzY5QzcxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg5NTcyQUYwRUJEOTFBQjA1 QTQ1ODdCMzRBNDhBMTJDNTIzNjlDNzEuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzlkWnpBdFBQWkJEd1BxaFVFaEdidzJlZUZCcjVaaGluc3lGdzhKeHhxa1RMLzAv MzEzOTMwMmUzMTMxMzEyZTMxMzUzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy MzczMDM0MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAb5vnDANBgkqhkiG9w0BAQsFAAOCAQEAFgCN 4iSc0BeZ9zVa1eql2TpA2dr/SpWg1YTJnR1eE1DXbLTpZMqUqNl9xIWjCzmrP3oi Z3seaG7MpQqbO8k6Qhg9au7+KjBOYcbyIgLguLMP1VPefDiH8hX6xnVL4/f5I85N Dyn8+4n6pgHhrT6Q4NasYp5nDj3/Oc2W2begcijcg6qfm8eYks62QpzWThD0HQWy EYbAIIbGnv5gnb3ofsLbH+t/8dWgziOVroVKAO9KiLb4QBPr5FfgqZS+aWnKV12K gH9Fboa/cwh2nDMkOLRKiOeCw3v9SKHnAr3vytswjgbEsrnXhwfIBusa1XHF9XXS rviZLja499LnFavuFQ== -----END CERTIFICATE-----Generated at Mon Jan 26 09:02:30 2026 by rpki-client