This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/HDzXJtxXvXRkjVa6fiUEDTfdactB9KNnhnBKGU2gQiW2/0/3136382e3233322e31322e302f32322d3332203d3e20323634393332.roa File: 3136382e3233322e31322e302f32322d3332203d3e20323634393332.roa (raw, json) Hash identifier: ovEuyAp+fRwhjJQH2KN+42JlRJG0CNQoOVLhlCktA3U= Subject key identifier: 9F:B4:AB:D7:C3:D1:72:E6:D7:E8:87:53:C1:A8:C4:DD:E2:33:1F:E4 Certificate issuer: /CN=B72B0284F2122722802DB9B23EEDE6D2F1B7EB88 Certificate serial: 28E7B891335850058BBCCC10FA14DA30F2E27D7F Authority key identifier: B7:2B:02:84:F2:12:27:22:80:2D:B9:B2:3E:ED:E6:D2:F1:B7:EB:88 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B72B0284F2122722802DB9B23EEDE6D2F1B7EB88.cer Subject info access: rsync://rpki-repo.registro.br/repo/HDzXJtxXvXRkjVa6fiUEDTfdactB9KNnhnBKGU2gQiW2/0/3136382e3233322e31322e302f32322d3332203d3e20323634393332.roa Signing time: Tue 20 Jan 2026 20:06:41 +0000 ROA not before: Tue 20 Jan 2026 20:01:41 +0000 ROA not after: Tue 19 Jan 2027 20:06:41 +0000 asID: 264932 IP address blocks: 168.232.12.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HDzXJtxXvXRkjVa6fiUEDTfdactB9KNnhnBKGU2gQiW2/0/B72B0284F2122722802DB9B23EEDE6D2F1B7EB88.crl rsync://rpki-repo.registro.br/repo/HDzXJtxXvXRkjVa6fiUEDTfdactB9KNnhnBKGU2gQiW2/0/B72B0284F2122722802DB9B23EEDE6D2F1B7EB88.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B72B0284F2122722802DB9B23EEDE6D2F1B7EB88.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 26 Jan 2026 13:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:e7:b8:91:33:58:50:05:8b:bc:cc:10:fa:14:da:30:f2:e2:7d:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B72B0284F2122722802DB9B23EEDE6D2F1B7EB88 Validity Not Before: Jan 20 20:01:41 2026 GMT Not After : Jan 19 20:06:41 2027 GMT Subject: CN=9FB4ABD7C3D172E6D7E88753C1A8C4DDE2331FE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c4:3d:e3:aa:d3:6e:65:98:3d:2c:2e:70:3b: 3c:b6:44:eb:39:df:ed:a0:0d:3d:1c:69:b9:c4:26: 86:ef:3f:19:4e:3a:3c:fd:7b:3b:bd:cd:43:d1:96: 85:94:d5:ee:34:f8:58:d4:61:39:de:1e:03:24:41: 22:74:d7:c7:d9:e9:8b:72:1c:b3:64:29:34:74:dd: 8f:0a:46:90:fe:15:77:d1:92:7d:c9:c6:87:57:df: 66:2e:03:09:0d:a1:d7:5e:26:ea:44:80:32:21:44: b8:68:79:5d:08:9e:b3:e1:74:65:94:43:1b:12:76: 47:33:dc:c5:c0:c4:fa:bd:bc:07:82:3d:e6:fd:55: ef:99:1a:61:75:10:d6:b2:80:1f:8d:fe:03:82:73: 96:57:75:7e:31:3b:52:50:df:7a:f9:ff:73:01:51: 69:fb:50:89:c5:5e:f7:80:2d:56:50:a5:83:5d:93: 3c:17:c4:24:17:84:5c:be:ec:5f:e4:08:b9:b4:b1: bf:f1:a7:87:a3:ef:9f:cb:dc:91:ea:d3:d0:89:13: 5f:49:99:86:d0:d6:e9:1a:e9:ce:e1:6e:2a:68:7f: 0f:ba:7a:59:a7:c5:81:9e:76:1b:9f:af:12:0d:6f: 2d:95:44:c3:80:b2:dc:47:9c:d9:b9:5f:a4:c2:2e: 82:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:B4:AB:D7:C3:D1:72:E6:D7:E8:87:53:C1:A8:C4:DD:E2:33:1F:E4 X509v3 Authority Key Identifier: keyid:B7:2B:02:84:F2:12:27:22:80:2D:B9:B2:3E:ED:E6:D2:F1:B7:EB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HDzXJtxXvXRkjVa6fiUEDTfdactB9KNnhnBKGU2gQiW2/0/B72B0284F2122722802DB9B23EEDE6D2F1B7EB88.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B72B0284F2122722802DB9B23EEDE6D2F1B7EB88.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HDzXJtxXvXRkjVa6fiUEDTfdactB9KNnhnBKGU2gQiW2/0/3136382e3233322e31322e302f32322d3332203d3e20323634393332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.232.12.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:47:02:95:48:50:11:d1:bf:da:07:6b:16:74:20:70:8f:46: 65:e5:60:9f:be:da:f4:39:d1:fa:e5:ef:4f:3b:a8:d2:ff:15: 08:2a:de:95:ed:12:94:85:d5:99:53:21:ad:24:fe:43:75:9c: 68:e8:3b:40:3a:04:46:bd:2d:d2:94:c0:b8:b6:e2:23:62:06: 3e:df:21:bf:48:e8:fa:8e:c3:08:59:be:74:22:80:d6:8d:4f: 46:9c:46:96:9c:e3:87:bb:06:c7:ec:96:c8:1c:ee:f5:a1:81: 59:12:71:a4:63:4e:67:9c:85:f9:11:63:b2:b1:a5:1a:b5:8a: 05:37:d4:f3:30:99:fc:fe:c3:7d:4f:5a:80:6b:5c:14:84:ee: 97:3f:15:f4:20:42:fc:54:09:e4:38:06:13:e9:8d:f3:17:2d: 7a:5d:9a:fd:56:4b:cb:55:57:59:2e:63:74:f6:6d:92:26:06: 46:fa:ac:65:09:60:5a:f0:79:29:14:e6:d7:83:a0:10:3e:c0: ee:14:10:68:5a:5f:1b:40:1a:c3:ff:aa:dc:8c:75:10:bc:24: 1f:1b:9d:73:2f:b4:f9:a7:8d:8b:a4:78:f9:1d:28:b0:fc:34: 71:f1:df:b7:29:65:f2:49:1c:f0:bf:77:9b:49:e7:53:76:cb: ae:65:c8:6e -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUKOe4kTNYUAWLvMwQ+hTaMPLifX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcyQjAyODRGMjEyMjcyMjgwMkRCOUIyM0VFREU2RDJG MUI3RUI4ODAeFw0yNjAxMjAyMDAxNDFaFw0yNzAxMTkyMDA2NDFaMDMxMTAvBgNV BAMTKDlGQjRBQkQ3QzNEMTcyRTZEN0U4ODc1M0MxQThDNERERTIzMzFGRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDxD3jqtNuZZg9LC5wOzy2ROs5 3+2gDT0cabnEJobvPxlOOjz9ezu9zUPRloWU1e40+FjUYTneHgMkQSJ018fZ6Yty HLNkKTR03Y8KRpD+FXfRkn3JxodX32YuAwkNoddeJupEgDIhRLhoeV0InrPhdGWU QxsSdkcz3MXAxPq9vAeCPeb9Ve+ZGmF1ENaygB+N/gOCc5ZXdX4xO1JQ33r5/3MB UWn7UInFXveALVZQpYNdkzwXxCQXhFy+7F/kCLm0sb/xp4ej75/L3JHq09CJE19J mYbQ1uka6c7hbipofw+6elmnxYGedhufrxINby2VRMOAstxHnNm5X6TCLoIxAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUn7Sr18PRcubX6IdTwajE3eIzH+QwHwYDVR0j BBgwFoAUtysChPISJyKALbmyPu3m0vG364gwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSER6WEp0eFh2WFJralZhNmZpVUVEVGZkYWN0QjlLTm5obkJLR1UyZ1Fp VzIvMC9CNzJCMDI4NEYyMTIyNzIyODAyREI5QjIzRUVERTZEMkYxQjdFQjg4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I3MkIwMjg0RjIxMjI3MjI4 MDJEQjlCMjNFRURFNkQyRjFCN0VCODguY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hEelhKdHhYdlhSa2pWYTZmaVVFRFRmZGFjdEI5S05uaG5CS0dVMmdRaVcyLzAv MzEzNjM4MmUzMjMzMzIyZTMxMzIyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMjM2 MzQzOTMzMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKo6AwwDQYJKoZIhvcNAQELBQADggEBAFpHApVI UBHRv9oHaxZ0IHCPRmXlYJ++2vQ50frl7087qNL/FQgq3pXtEpSF1ZlTIa0k/kN1 nGjoO0A6BEa9LdKUwLi24iNiBj7fIb9I6PqOwwhZvnQigNaNT0acRpac44e7Bsfs lsgc7vWhgVkScaRjTmechfkRY7KxpRq1igU31PMwmfz+w31PWoBrXBSE7pc/FfQg QvxUCeQ4BhPpjfMXLXpdmv1WS8tVV1kuY3T2bZImBkb6rGUJYFrweSkU5teDoBA+ wO4UEGhaXxtAGsP/qtyMdRC8JB8bnXMvtPmnjYukePkdKLD8NHHx37cpZfJJHPC/ d5tJ51N2y65lyG4= -----END CERTIFICATE-----Generated at Mon Jan 26 07:27:28 2026 by rpki-client