This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/323830333a633465303a373030303a3a2f33362d3336203d3e20323639383039.roa File: 323830333a633465303a373030303a3a2f33362d3336203d3e20323639383039.roa (raw, json) Hash identifier: 7L9wWB8AVOEzz8LwmMTo5xvbYhs62BRrISJxSvn5GPk= Subject key identifier: FB:BB:83:00:EF:DD:07:01:F4:C7:88:A6:E5:C1:04:60:01:E0:32:09 Certificate issuer: /CN=3D77237A7C9B2196D17146B7FDD8C031BE81DBF4 Certificate serial: 14F847C31F7175EEE40C0FD2E5685B11E310294F Authority key identifier: 3D:77:23:7A:7C:9B:21:96:D1:71:46:B7:FD:D8:C0:31:BE:81:DB:F4 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/323830333a633465303a373030303a3a2f33362d3336203d3e20323639383039.roa Signing time: Tue 06 Jan 2026 20:53:47 +0000 ROA not before: Tue 06 Jan 2026 20:48:47 +0000 ROA not after: Tue 05 Jan 2027 20:53:47 +0000 asID: 269809 IP address blocks: 2803:c4e0:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.crl rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 01 Feb 2026 15:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f8:47:c3:1f:71:75:ee:e4:0c:0f:d2:e5:68:5b:11:e3:10:29:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D77237A7C9B2196D17146B7FDD8C031BE81DBF4 Validity Not Before: Jan 6 20:48:47 2026 GMT Not After : Jan 5 20:53:47 2027 GMT Subject: CN=FBBB8300EFDD0701F4C788A6E5C1046001E03209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d5:2b:93:c9:56:7b:3f:e5:7a:9d:4d:67:0c: ae:7c:a2:a8:53:ca:55:e4:52:b0:f3:44:0d:09:ce: 27:30:07:51:8b:d3:f9:b4:95:a5:11:b4:ca:76:d9: 2b:7a:2b:bf:c4:3e:39:49:f8:09:b6:51:5c:42:f4: d7:b6:09:02:21:37:d5:ff:e8:8f:e5:4b:0a:ab:1f: ad:96:f3:26:60:7e:d2:36:08:53:67:88:28:5a:1d: 8d:76:19:17:45:a8:ac:3a:35:8e:cc:79:60:2c:49: 75:c4:f6:bb:6b:25:f7:93:f9:fd:42:ad:83:3f:38: 38:cd:69:3e:36:f2:ed:e7:b6:a1:06:5d:f7:68:d2: 68:aa:d4:d1:43:c3:36:5f:28:7f:45:d3:57:51:c0: b2:15:3d:fe:92:e2:b1:70:c6:5a:91:29:f4:34:7a: 26:8b:4b:e6:ee:e8:53:01:4e:41:f9:24:0c:ac:99: 04:b5:df:87:1e:33:66:62:cd:50:d7:0a:af:01:2d: be:67:57:54:c7:32:a8:97:22:42:74:31:dc:ce:f4: 84:fd:a7:b7:ae:e1:33:44:ed:0e:ee:a0:c1:ad:ef: 26:d4:95:64:2d:73:ac:7f:b4:aa:0e:83:6d:62:bf: 4e:ae:bd:55:a3:ae:35:a7:2e:d0:ef:78:a8:67:ce: 1c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:BB:83:00:EF:DD:07:01:F4:C7:88:A6:E5:C1:04:60:01:E0:32:09 X509v3 Authority Key Identifier: keyid:3D:77:23:7A:7C:9B:21:96:D1:71:46:B7:FD:D8:C0:31:BE:81:DB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/323830333a633465303a373030303a3a2f33362d3336203d3e20323639383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:c4e0:7000::/36 Signature Algorithm: sha256WithRSAEncryption 13:95:2c:85:ae:9b:2a:ee:b4:54:c5:0c:9d:6d:6a:75:b0:fb: 0b:e8:60:1d:7b:5b:7a:4e:c3:01:45:b5:30:be:39:5c:5c:11: f9:64:06:82:52:e8:8e:82:9c:8c:48:c9:e1:c1:7a:77:fd:d4: 42:73:47:72:25:53:4a:ea:49:4d:15:a8:e9:cb:7f:dd:60:04: f1:eb:01:84:9a:82:b0:ef:bb:7d:6a:d1:9f:69:52:d1:4b:53: 8d:03:d6:a1:45:6a:d0:a2:c9:aa:52:91:0e:15:83:a0:4d:af: 03:84:b6:cc:6d:f6:e0:ad:92:76:bd:3f:58:5e:4b:92:57:d6: 36:7e:00:ae:60:4c:0b:b2:25:f2:58:87:4e:57:b1:23:7e:56: 85:15:2b:91:3d:71:a0:a4:7a:cd:ad:ed:26:f4:5c:b9:5b:93: b3:86:89:59:1f:30:e4:8a:3a:d2:4e:e0:e9:de:ba:76:38:4c: ef:cc:0b:5a:a2:fc:23:2e:61:75:4b:8b:5e:86:0c:1e:ff:4a: b3:fe:66:d0:76:dd:d8:65:fb:d3:b5:9a:49:0a:8a:3e:60:20: 73:0d:28:ce:6b:fb:1e:03:cb:7c:68:e0:6b:b6:76:f7:e9:eb: f8:0c:0b:3e:de:f4:f6:8b:9b:31:2b:fe:b8:76:0b:57:b9:a9: 70:25:50:51 -----BEGIN CERTIFICATE----- MIIFyjCCBLKgAwIBAgIUFPhHwx9xde7kDA/S5WhbEeMQKU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3NzIzN0E3QzlCMjE5NkQxNzE0NkI3RkREOEMwMzFC RTgxREJGNDAeFw0yNjAxMDYyMDQ4NDdaFw0yNzAxMDUyMDUzNDdaMDMxMTAvBgNV BAMTKEZCQkI4MzAwRUZERDA3MDFGNEM3ODhBNkU1QzEwNDYwMDFFMDMyMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO1SuTyVZ7P+V6nU1nDK58oqhT ylXkUrDzRA0JzicwB1GL0/m0laURtMp22St6K7/EPjlJ+Am2UVxC9Ne2CQIhN9X/ 6I/lSwqrH62W8yZgftI2CFNniChaHY12GRdFqKw6NY7MeWAsSXXE9rtrJfeT+f1C rYM/ODjNaT428u3ntqEGXfdo0miq1NFDwzZfKH9F01dRwLIVPf6S4rFwxlqRKfQ0 eiaLS+bu6FMBTkH5JAysmQS134ceM2ZizVDXCq8BLb5nV1THMqiXIkJ0MdzO9IT9 p7eu4TNE7Q7uoMGt7ybUlWQtc6x/tKoOg21iv06uvVWjrjWnLtDveKhnzhyzAgMB AAGjggLUMIIC0DAdBgNVHQ4EFgQU+7uDAO/dBwH0x4im5cEEYAHgMgkwHwYDVR0j BBgwFoAUPXcjenybIZbRcUa3/djAMb6B2/QwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8wNTg0QzBBNzlEMjYzNzU4QUQzNjZBQkM3MEFFRTU5NUND QUFDQjQxQTZGNkE5Qzc3MzQ3Mzk2QUE4M0ZCQkFGLzAvM0Q3NzIzN0E3QzlCMjE5 NkQxNzE0NkI3RkREOEMwMzFCRTgxREJGNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zRDc3MjM3QTdDOUIyMTk2RDE3 MTQ2QjdGREQ4QzAzMUJFODFEQkY0LmNlcjCB0QYIKwYBBQUHAQsEgcQwgcEwgb4G CCsGAQUFBzALhoGxcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMDU4NEMwQTc5RDI2Mzc1OEFEMzY2QUJDNzBBRUU1OTVDQ0FBQ0I0MUE2 RjZBOUM3NzM0NzM5NkFBODNGQkJBRi8wLzMyMzgzMDMzM2E2MzM0NjUzMDNhMzcz MDMwMzAzYTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMjM2MzkzODMwMzkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQoA8TgcDANBgkqhkiG9w0BAQsFAAOCAQEAE5Usha6bKu60VMUMnW1qdbD7 C+hgHXtbek7DAUW1ML45XFwR+WQGglLojoKcjEjJ4cF6d/3UQnNHciVTSupJTRWo 6ct/3WAE8esBhJqCsO+7fWrRn2lS0UtTjQPWoUVq0KLJqlKRDhWDoE2vA4S2zG32 4K2Sdr0/WF5LklfWNn4ArmBMC7Il8liHTlexI35WhRUrkT1xoKR6za3tJvRcuVuT s4aJWR8w5Io60k7g6d66djhM78wLWqL8Iy5hdUuLXoYMHv9Ks/5m0Hbd2GX707Wa SQqKPmAgcw0ozmv7HgPLfGjga7Z29+nr+AwLPt709oubMSv+uHYLV7mpcCVQUQ== -----END CERTIFICATE-----Generated at Thu Jan 29 05:05:27 2026 by rpki-client