This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/323830343a336132343a3a2f33322d313238203d3e20323636303733.roa File: 323830343a336132343a3a2f33322d313238203d3e20323636303733.roa (raw, json) Hash identifier: LfyutgJNO2lNp9h7whLWqhIXS4q7fLK6rdLw3Y5YoME= Subject key identifier: B3:31:47:FD:12:E9:88:68:EF:4B:ED:2D:25:70:7F:5F:5C:60:BE:BA Certificate issuer: /CN=40D0F0229169D52F626961DD15E22B1658FD6535 Certificate serial: 49D10E57F5E9A2CB611A3ED15A6C8DDC06A7D2EB Authority key identifier: 40:D0:F0:22:91:69:D5:2F:62:69:61:DD:15:E2:2B:16:58:FD:65:35 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/40D0F0229169D52F626961DD15E22B1658FD6535.cer Subject info access: rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/323830343a336132343a3a2f33322d313238203d3e20323636303733.roa Signing time: Tue 13 Jan 2026 20:04:21 +0000 ROA not before: Tue 13 Jan 2026 19:59:21 +0000 ROA not after: Tue 12 Jan 2027 20:04:21 +0000 asID: 266073 IP address blocks: 2804:3a24::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/40D0F0229169D52F626961DD15E22B1658FD6535.crl rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/40D0F0229169D52F626961DD15E22B1658FD6535.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/40D0F0229169D52F626961DD15E22B1658FD6535.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 26 Jan 2026 11:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d1:0e:57:f5:e9:a2:cb:61:1a:3e:d1:5a:6c:8d:dc:06:a7:d2:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D0F0229169D52F626961DD15E22B1658FD6535 Validity Not Before: Jan 13 19:59:21 2026 GMT Not After : Jan 12 20:04:21 2027 GMT Subject: CN=B33147FD12E98868EF4BED2D25707F5F5C60BEBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:68:cc:dd:72:67:f1:67:85:3a:8b:c0:07:fd: 70:31:06:31:44:74:58:30:df:78:bf:0e:72:d6:08: eb:e3:0b:bd:75:23:ac:6d:bf:7b:cb:1d:87:88:ea: 30:e1:c5:8a:8b:6c:4c:d3:d3:ee:16:9b:7e:fc:da: 4e:b5:ce:f6:24:99:f1:9f:91:4a:6c:0a:85:f9:87: a1:b1:a9:9b:ae:eb:0a:a5:59:cb:ea:72:3f:81:38: ad:a2:96:4a:2e:c3:81:c0:89:86:34:08:99:3e:d4: a8:d3:a6:4a:69:52:02:b4:69:e0:8d:bf:66:55:ac: a8:3a:fd:79:60:04:cd:a1:e8:ec:95:6c:0d:b3:3b: 79:5c:79:36:4e:76:04:81:62:6e:20:2e:63:cd:a3: 64:36:99:51:93:23:35:97:8f:c1:63:a6:a5:5a:bb: 31:36:8b:2c:6b:b0:be:24:ee:5e:38:b3:b0:b0:b5: fa:6e:b9:81:81:3d:32:e2:35:42:7e:cd:bc:ff:b7: 0c:1a:5a:84:dd:e9:fc:a5:fd:2b:23:98:c2:4c:1c: e4:e9:b5:33:c2:d2:94:a3:ae:b2:ff:c0:46:c4:3d: b1:1f:1a:d6:d3:45:19:f8:86:23:21:15:fd:9d:20: 14:8f:bf:ff:65:52:d0:23:eb:cb:85:9d:15:87:64: ba:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:31:47:FD:12:E9:88:68:EF:4B:ED:2D:25:70:7F:5F:5C:60:BE:BA X509v3 Authority Key Identifier: keyid:40:D0:F0:22:91:69:D5:2F:62:69:61:DD:15:E2:2B:16:58:FD:65:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/40D0F0229169D52F626961DD15E22B1658FD6535.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/40D0F0229169D52F626961DD15E22B1658FD6535.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/323830343a336132343a3a2f33322d313238203d3e20323636303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:3a24::/32 Signature Algorithm: sha256WithRSAEncryption c1:c1:8c:55:38:73:08:47:45:91:ad:18:15:31:aa:75:df:21: bf:fa:6e:cf:aa:0c:62:be:bc:5e:f0:a5:40:8e:c7:8a:36:06: f6:e4:41:1d:0c:9e:97:87:d1:9d:62:a5:ff:cf:bc:64:b5:c4: bf:0a:4d:1d:91:3b:7e:fc:01:8a:5a:16:17:f1:90:43:ba:89: 0c:e9:c7:26:e5:5c:9f:2c:5d:fa:68:38:21:0e:c5:99:10:81: c5:90:d1:76:30:ba:c1:f2:3d:7d:10:ab:a3:60:0f:f6:e7:7f: d4:39:86:21:25:11:33:8a:c6:93:aa:92:e7:fe:63:70:ad:2f: ab:30:97:08:a0:ab:7a:41:40:90:18:92:87:fa:f0:dd:7a:80: 81:88:64:87:01:a0:ae:7b:54:4d:91:a5:40:08:94:a9:03:63: c6:3c:1b:bb:5c:c4:bb:a1:46:28:de:2d:19:1d:b6:d9:e1:18: 57:b3:f5:b8:3c:af:e0:43:a9:25:0e:1e:11:cd:c6:ce:07:85: 90:28:9a:57:73:0c:d5:f0:70:65:fd:06:92:37:16:5b:96:64: 70:49:e3:ed:99:08:d2:71:be:ac:17:c3:08:1a:b7:43:0d:0a: 4e:30:71:55:9e:4b:43:e0:5f:99:d9:f5:b4:0b:7e:f5:b3:35: c5:40:fc:a3 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgIUSdEOV/XposthGj7RWmyN3Aan0uswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEMEYwMjI5MTY5RDUyRjYyNjk2MUREMTVFMjJCMTY1 OEZENjUzNTAeFw0yNjAxMTMxOTU5MjFaFw0yNzAxMTIyMDA0MjFaMDMxMTAvBgNV BAMTKEIzMzE0N0ZEMTJFOTg4NjhFRjRCRUQyRDI1NzA3RjVGNUM2MEJFQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfaMzdcmfxZ4U6i8AH/XAxBjFE dFgw33i/DnLWCOvjC711I6xtv3vLHYeI6jDhxYqLbEzT0+4Wm3782k61zvYkmfGf kUpsCoX5h6GxqZuu6wqlWcvqcj+BOK2ilkouw4HAiYY0CJk+1KjTpkppUgK0aeCN v2ZVrKg6/XlgBM2h6OyVbA2zO3lceTZOdgSBYm4gLmPNo2Q2mVGTIzWXj8FjpqVa uzE2iyxrsL4k7l44s7CwtfpuuYGBPTLiNUJ+zbz/twwaWoTd6fyl/SsjmMJMHOTp tTPC0pSjrrL/wEbEPbEfGtbTRRn4hiMhFf2dIBSPv/9lUtAj68uFnRWHZLq3AgMB AAGjggJSMIICTjAdBgNVHQ4EFgQUszFH/RLpiGjvS+0tJXB/X1xgvrowHwYDVR0j BBgwFoAUQNDwIpFp1S9iaWHdFeIrFlj9ZTUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ3dkZjFYb1A1UldvaXpNa25TQm1rM0NZS290dTk3ZlZ0NmdNUkdkS2o4 ZGUvMC80MEQwRjAyMjkxNjlENTJGNjI2OTYxREQxNUUyMkIxNjU4RkQ2NTM1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQwRDBGMDIyOTE2OUQ1MkY2 MjY5NjFERDE1RTIyQjE2NThGRDY1MzUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0N3ZGYxWG9QNVJXb2l6TWtuU0JtazNDWUtvdHU5N2ZWdDZnTVJHZEtqOGRlLzAv MzIzODMwMzQzYTMzNjEzMjM0M2EzYTJmMzMzMjJkMzEzMjM4MjAzZDNlMjAzMjM2 MzYzMDM3MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUH AQcBAf8EETAPMA0EAgACMAcDBQAoBDokMA0GCSqGSIb3DQEBCwUAA4IBAQDBwYxV OHMIR0WRrRgVMap13yG/+m7Pqgxivrxe8KVAjseKNgb25EEdDJ6Xh9GdYqX/z7xk tcS/Ck0dkTt+/AGKWhYX8ZBDuokM6ccm5VyfLF36aDghDsWZEIHFkNF2MLrB8j19 EKujYA/253/UOYYhJREzisaTqpLn/mNwrS+rMJcIoKt6QUCQGJKH+vDdeoCBiGSH AaCue1RNkaVACJSpA2PGPBu7XMS7oUYo3i0ZHbbZ4RhXs/W4PK/gQ6klDh4RzcbO B4WQKJpXcwzV8HBl/QaSNxZblmRwSePtmQjScb6sF8MIGrdDDQpOMHFVnktD4F+Z 2fW0C371szXFQPyj -----END CERTIFICATE-----Generated at Mon Jan 26 04:26:49 2026 by rpki-client