This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repo.registro.br/repo/4C5t3Vmr9j7ax1AXGK1uswQGxtDqyZTkLFMLgZnTcnRg/0/3138392e35302e3232302e302f32342d3234203d3e20323730353531.roa File: 3138392e35302e3232302e302f32342d3234203d3e20323730353531.roa (raw, json) Hash identifier: a/Hl9jHqewKCWWFvOBL4/y2rZPqfhUTgPXbJTB52Btk= Subject key identifier: 2A:10:99:11:86:B6:23:01:05:95:E1:62:50:EF:5D:19:4F:38:FC:98 Certificate issuer: /CN=3D2A1A094245D407474F93186CE3F25FFBBEE59E Certificate serial: 44872A15C19E4C67FEB4D8E3A45F7A5007384BAE Authority key identifier: 3D:2A:1A:09:42:45:D4:07:47:4F:93:18:6C:E3:F2:5F:FB:BE:E5:9E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3D2A1A094245D407474F93186CE3F25FFBBEE59E.cer Subject info access: rsync://rpki-repo.registro.br/repo/4C5t3Vmr9j7ax1AXGK1uswQGxtDqyZTkLFMLgZnTcnRg/0/3138392e35302e3232302e302f32342d3234203d3e20323730353531.roa Signing time: Sat 27 Dec 2025 14:56:32 +0000 ROA not before: Sat 27 Dec 2025 14:51:32 +0000 ROA not after: Sat 26 Dec 2026 14:56:32 +0000 asID: 270551 IP address blocks: 189.50.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4C5t3Vmr9j7ax1AXGK1uswQGxtDqyZTkLFMLgZnTcnRg/0/3D2A1A094245D407474F93186CE3F25FFBBEE59E.crl rsync://rpki-repo.registro.br/repo/4C5t3Vmr9j7ax1AXGK1uswQGxtDqyZTkLFMLgZnTcnRg/0/3D2A1A094245D407474F93186CE3F25FFBBEE59E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3D2A1A094245D407474F93186CE3F25FFBBEE59E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 28 Dec 2025 17:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:87:2a:15:c1:9e:4c:67:fe:b4:d8:e3:a4:5f:7a:50:07:38:4b:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D2A1A094245D407474F93186CE3F25FFBBEE59E Validity Not Before: Dec 27 14:51:32 2025 GMT Not After : Dec 26 14:56:32 2026 GMT Subject: CN=2A10991186B623010595E16250EF5D194F38FC98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fb:12:4b:fc:4b:ac:38:43:a0:72:d4:75:2e: 93:d5:a3:c7:6a:3d:51:60:13:77:40:e6:2b:2f:cb: 7b:02:92:2f:68:c0:d9:87:25:73:8e:be:4c:4a:89: f1:dd:9c:09:98:52:b1:0f:2d:38:f0:66:e1:ba:d8: fb:f0:05:81:69:b9:0e:21:83:c1:ca:cc:bf:7b:35: f6:b4:e4:7d:eb:88:c1:f7:c0:00:d4:3a:64:85:36: af:eb:3b:89:de:80:be:f8:50:d6:e4:5e:77:f7:fa: ce:74:29:ed:44:01:ec:d7:d9:8f:0b:4d:97:7b:9c: d9:a4:80:94:41:56:5c:db:7c:23:cd:16:d1:48:2a: 29:58:21:fa:a3:c6:41:32:b5:ae:3f:71:93:eb:6e: 38:b3:92:3d:2f:43:05:1a:70:57:ef:64:80:ff:53: eb:a5:44:cf:db:b4:75:15:0b:26:4f:9c:a3:0e:f3: 09:6b:03:d2:b2:8b:74:57:11:ae:e2:01:bb:c2:bb: d6:66:a5:28:cd:5b:5a:87:54:2f:8b:2c:87:07:01: fc:ba:8a:8b:00:fc:a8:e0:b4:f3:bd:f1:d9:e9:91: bb:41:32:40:08:02:86:7e:bd:7a:99:2c:87:1a:c5: 8e:a9:8e:ef:48:e0:58:a6:bb:1b:6a:29:69:fe:07: 99:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:10:99:11:86:B6:23:01:05:95:E1:62:50:EF:5D:19:4F:38:FC:98 X509v3 Authority Key Identifier: keyid:3D:2A:1A:09:42:45:D4:07:47:4F:93:18:6C:E3:F2:5F:FB:BE:E5:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4C5t3Vmr9j7ax1AXGK1uswQGxtDqyZTkLFMLgZnTcnRg/0/3D2A1A094245D407474F93186CE3F25FFBBEE59E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3D2A1A094245D407474F93186CE3F25FFBBEE59E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4C5t3Vmr9j7ax1AXGK1uswQGxtDqyZTkLFMLgZnTcnRg/0/3138392e35302e3232302e302f32342d3234203d3e20323730353531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 189.50.220.0/24 Signature Algorithm: sha256WithRSAEncryption af:76:0c:05:d6:33:96:9a:00:6f:6a:a1:0b:b0:39:d6:f9:69: 6b:db:6b:4e:23:6e:63:04:ca:3d:0e:e1:cc:f0:86:23:a4:4d: 4f:72:bb:67:18:b3:4c:f9:ee:78:13:c0:41:42:e4:8c:a3:53: 2c:61:89:4a:5b:fc:8d:37:2e:dd:af:46:3f:d6:a0:98:f3:36: 1d:f6:ee:4b:ab:1f:a5:f6:1f:bb:00:e4:76:ac:14:2f:92:1f: 3a:4d:17:ba:18:0e:7f:da:38:c7:08:cb:c6:7c:b9:24:d3:9d: f2:e5:57:44:0c:bc:17:05:9e:0d:de:d0:ee:6f:47:bd:04:43: 86:1f:9a:6c:bc:4e:07:2d:ea:4f:6d:4b:6b:cb:d8:79:ab:6f: 55:4f:8c:54:a4:37:38:1f:80:97:92:c7:90:3e:e9:fd:2e:d2: df:54:7a:67:9a:44:2e:f8:9c:17:c5:53:57:e0:bc:79:21:7f: 04:4a:30:1c:3c:8b:32:62:ed:40:09:25:fc:2f:ed:07:82:3d: 1d:5b:0a:02:c2:d3:d5:4b:b5:32:95:ca:e9:c9:0a:15:2c:65: 3a:b0:82:74:45:c2:25:1d:53:7c:f5:1a:1b:9b:47:4d:9b:ca: aa:a0:11:04:59:30:f8:39:31:ea:47:f8:b7:db:72:4d:65:c1: ce:88:61:dd -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIURIcqFcGeTGf+tNjjpF96UAc4S64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyQTFBMDk0MjQ1RDQwNzQ3NEY5MzE4NkNFM0YyNUZG QkJFRTU5RTAeFw0yNTEyMjcxNDUxMzJaFw0yNjEyMjYxNDU2MzJaMDMxMTAvBgNV BAMTKDJBMTA5OTExODZCNjIzMDEwNTk1RTE2MjUwRUY1RDE5NEYzOEZDOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo+xJL/EusOEOgctR1LpPVo8dq PVFgE3dA5isvy3sCki9owNmHJXOOvkxKifHdnAmYUrEPLTjwZuG62PvwBYFpuQ4h g8HKzL97Nfa05H3riMH3wADUOmSFNq/rO4negL74UNbkXnf3+s50Ke1EAezX2Y8L TZd7nNmkgJRBVlzbfCPNFtFIKilYIfqjxkEyta4/cZPrbjizkj0vQwUacFfvZID/ U+ulRM/btHUVCyZPnKMO8wlrA9Kyi3RXEa7iAbvCu9ZmpSjNW1qHVC+LLIcHAfy6 iosA/KjgtPO98dnpkbtBMkAIAoZ+vXqZLIcaxY6pju9I4FimuxtqKWn+B5lBAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUKhCZEYa2IwEFleFiUO9dGU84/JgwHwYDVR0j BBgwFoAUPSoaCUJF1AdHT5MYbOPyX/u+5Z4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNEM1dDNWbXI5ajdheDFBWEdLMXVzd1FHeHREcXlaVGtMRk1MZ1puVGNu UmcvMC8zRDJBMUEwOTQyNDVENDA3NDc0RjkzMTg2Q0UzRjI1RkZCQkVFNTlFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzNEMkExQTA5NDI0NUQ0MDc0 NzRGOTMxODZDRTNGMjVGRkJCRUU1OUUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRDNXQzVm1yOWo3YXgxQVhHSzF1c3dRR3h0RHF5WlRrTEZNTGdablRjblJnLzAv MzEzODM5MmUzNTMwMmUzMjMyMzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3 MzAzNTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAC9MtwwDQYJKoZIhvcNAQELBQADggEBAK92DAXW M5aaAG9qoQuwOdb5aWvba04jbmMEyj0O4czwhiOkTU9yu2cYs0z57ngTwEFC5Iyj UyxhiUpb/I03Lt2vRj/WoJjzNh327kurH6X2H7sA5HasFC+SHzpNF7oYDn/aOMcI y8Z8uSTTnfLlV0QMvBcFng3e0O5vR70EQ4Yfmmy8Tgct6k9tS2vL2Hmrb1VPjFSk NzgfgJeSx5A+6f0u0t9UemeaRC74nBfFU1fgvHkhfwRKMBw8izJi7UAJJfwv7QeC PR1bCgLC09VLtTKVyunJChUsZTqwgnRFwiUdU3z1GhubR02byqqgEQRZMPg5MepH +Lfbck1lwc6IYd0= -----END CERTIFICATE-----Generated at Sat Dec 27 21:05:51 2025 by rpki-client