This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/34352e342e3134382e302f32322d3332203d3e20323636303733.roa File: 34352e342e3134382e302f32322d3332203d3e20323636303733.roa (raw, json) Hash identifier: jp+n2xHWm3FEojhkoKCClPTOSSHiliLXAln+OZJ7e/o= Subject key identifier: 88:3E:0B:22:3C:92:33:94:4E:1D:A4:65:46:4A:C5:AC:81:77:8B:EB Certificate issuer: /CN=40D0F0229169D52F626961DD15E22B1658FD6535 Certificate serial: 2ACA54DD62A77B00A7CF7C1A2D00B8623DE70063 Authority key identifier: 40:D0:F0:22:91:69:D5:2F:62:69:61:DD:15:E2:2B:16:58:FD:65:35 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/40D0F0229169D52F626961DD15E22B1658FD6535.cer Subject info access: rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/34352e342e3134382e302f32322d3332203d3e20323636303733.roa Signing time: Tue 13 Jan 2026 20:03:44 +0000 ROA not before: Tue 13 Jan 2026 19:58:44 +0000 ROA not after: Tue 12 Jan 2027 20:03:44 +0000 asID: 266073 IP address blocks: 45.4.148.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/40D0F0229169D52F626961DD15E22B1658FD6535.crl rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/40D0F0229169D52F626961DD15E22B1658FD6535.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/40D0F0229169D52F626961DD15E22B1658FD6535.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 26 Jan 2026 11:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:ca:54:dd:62:a7:7b:00:a7:cf:7c:1a:2d:00:b8:62:3d:e7:00:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D0F0229169D52F626961DD15E22B1658FD6535 Validity Not Before: Jan 13 19:58:44 2026 GMT Not After : Jan 12 20:03:44 2027 GMT Subject: CN=883E0B223C9233944E1DA465464AC5AC81778BEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0a:b1:92:ae:7a:7d:12:72:76:f6:85:e7:2b: 2e:a4:ed:d0:be:3c:ef:86:1b:4b:0a:a5:a0:b9:91: 9e:9d:cc:a1:b8:ec:63:4c:e2:7b:86:b0:20:99:23: 4e:d0:65:11:24:53:6c:66:bb:98:fa:03:80:f5:2a: 71:be:75:64:19:2f:9d:48:80:69:48:9a:77:06:2b: 67:d2:54:fb:02:31:a3:60:42:dd:ae:ee:4b:83:0b: f2:96:d4:04:3f:b4:8a:43:b2:d5:28:47:7f:1f:c3: 1b:64:33:92:a2:83:12:c9:2d:13:bb:e7:cc:18:c9: 7e:46:23:dc:4f:0a:fa:67:90:b8:21:11:98:51:04: d1:b4:14:8b:eb:1d:2f:b0:e0:28:7e:f0:55:82:88: e3:ee:18:d6:79:bd:14:73:42:75:08:16:55:3b:fd: 7b:04:22:6f:fc:dd:cf:a4:71:53:cd:b0:d0:4e:46: 20:1a:b1:81:f1:26:ac:21:fa:d2:ab:8c:ca:97:cf: fa:a8:9f:66:d4:f8:ea:83:88:07:ba:93:b6:40:33: c4:7c:1a:d1:11:5e:33:67:bc:38:7e:ae:3b:c4:37: e2:f1:bd:3b:9f:79:cf:50:6d:8d:88:16:4b:b6:ab: a2:10:78:f9:d6:d3:f7:b6:cd:a9:d0:92:d5:35:e6: 85:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:3E:0B:22:3C:92:33:94:4E:1D:A4:65:46:4A:C5:AC:81:77:8B:EB X509v3 Authority Key Identifier: keyid:40:D0:F0:22:91:69:D5:2F:62:69:61:DD:15:E2:2B:16:58:FD:65:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/40D0F0229169D52F626961DD15E22B1658FD6535.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/40D0F0229169D52F626961DD15E22B1658FD6535.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/Cwdf1XoP5RWoizMknSBmk3CYKotu97fVt6gMRGdKj8de/0/34352e342e3134382e302f32322d3332203d3e20323636303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.4.148.0/22 Signature Algorithm: sha256WithRSAEncryption 80:56:0f:bc:70:88:03:cd:48:2e:a8:f6:9e:31:98:6c:7d:09: d1:5f:06:65:4e:01:3d:a9:35:b0:59:7a:24:9e:e6:bb:dc:ef: 90:fc:c7:54:d9:06:87:cd:c5:4b:20:51:70:a5:98:88:e8:13: 79:e3:d8:96:cb:b9:6f:00:f3:01:c9:b6:bb:16:16:c1:13:9d: 72:1b:79:f6:46:6f:4c:db:b0:0d:1f:be:9f:bf:6d:74:f3:69: 2f:ae:d4:d6:3a:4c:6c:d3:f6:76:1e:56:25:cd:20:bd:a6:af: da:aa:d3:d1:5f:54:20:42:d8:8b:24:ca:78:37:c1:d8:93:31: 42:3d:02:0d:bd:ec:3d:c5:38:0b:bf:08:5a:32:ac:c6:2f:1f: 98:36:50:9f:cb:5c:6c:89:e1:6c:b3:5b:28:80:ba:79:53:0e: 67:e7:d6:f4:5a:eb:ca:c5:b0:f7:78:42:8f:36:bc:64:47:95: 9f:f4:9a:3b:18:36:e7:9a:a0:f1:40:c2:d1:3e:e3:34:28:25: 8a:7f:74:dc:40:be:0b:fa:1c:7a:c9:13:3f:b8:e3:f6:07:fb: 39:44:94:00:50:91:c1:27:7a:10:88:ed:e9:4e:fe:12:72:dd: 0e:73:bd:b1:d8:ff:81:85:af:2c:d5:fd:ae:2c:b1:64:45:fb: 22:a8:f5:42 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUKspU3WKnewCnz3waLQC4Yj3nAGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEMEYwMjI5MTY5RDUyRjYyNjk2MUREMTVFMjJCMTY1 OEZENjUzNTAeFw0yNjAxMTMxOTU4NDRaFw0yNzAxMTIyMDAzNDRaMDMxMTAvBgNV BAMTKDg4M0UwQjIyM0M5MjMzOTQ0RTFEQTQ2NTQ2NEFDNUFDODE3NzhCRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHCrGSrnp9EnJ29oXnKy6k7dC+ PO+GG0sKpaC5kZ6dzKG47GNM4nuGsCCZI07QZREkU2xmu5j6A4D1KnG+dWQZL51I gGlImncGK2fSVPsCMaNgQt2u7kuDC/KW1AQ/tIpDstUoR38fwxtkM5KigxLJLRO7 58wYyX5GI9xPCvpnkLghEZhRBNG0FIvrHS+w4Ch+8FWCiOPuGNZ5vRRzQnUIFlU7 /XsEIm/83c+kcVPNsNBORiAasYHxJqwh+tKrjMqXz/qon2bU+OqDiAe6k7ZAM8R8 GtERXjNnvDh+rjvEN+LxvTufec9QbY2IFku2q6IQePnW0/e2zanQktU15oUBAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUiD4LIjySM5ROHaRlRkrFrIF3i+swHwYDVR0j BBgwFoAUQNDwIpFp1S9iaWHdFeIrFlj9ZTUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ3dkZjFYb1A1UldvaXpNa25TQm1rM0NZS290dTk3ZlZ0NmdNUkdkS2o4 ZGUvMC80MEQwRjAyMjkxNjlENTJGNjI2OTYxREQxNUUyMkIxNjU4RkQ2NTM1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQwRDBGMDIyOTE2OUQ1MkY2 MjY5NjFERDE1RTIyQjE2NThGRDY1MzUuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0N3ZGYxWG9QNVJXb2l6TWtuU0JtazNDWUtvdHU5N2ZWdDZnTVJHZEtqOGRlLzAv MzQzNTJlMzQyZTMxMzQzODJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDMyMzYzNjMw MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAi0ElDANBgkqhkiG9w0BAQsFAAOCAQEAgFYPvHCIA81I Lqj2njGYbH0J0V8GZU4BPak1sFl6JJ7mu9zvkPzHVNkGh83FSyBRcKWYiOgTeePY lsu5bwDzAcm2uxYWwROdcht59kZvTNuwDR++n79tdPNpL67U1jpMbNP2dh5WJc0g vaav2qrT0V9UIELYiyTKeDfB2JMxQj0CDb3sPcU4C78IWjKsxi8fmDZQn8tcbInh bLNbKIC6eVMOZ+fW9FrrysWw93hCjza8ZEeVn/SaOxg255qg8UDC0T7jNCglin90 3EC+C/oceskTP7jj9gf7OUSUAFCRwSd6EIjt6U7+EnLdDnO9sdj/gYWvLNX9riyx ZEX7Iqj1Qg== -----END CERTIFICATE-----Generated at Mon Jan 26 04:26:47 2026 by rpki-client