This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/323830333a633465303a383030303a3a2f33362d3336203d3e20323639383039.roa File: 323830333a633465303a383030303a3a2f33362d3336203d3e20323639383039.roa (raw, json) Hash identifier: ad/avqZKCE3gqnla0uPrxYVfhwy37SL3mGk93Q+j5RQ= Subject key identifier: C1:4D:31:E9:B5:6E:84:D0:2B:4E:8F:98:DC:5B:6B:AB:A1:82:86:3E Certificate issuer: /CN=3D77237A7C9B2196D17146B7FDD8C031BE81DBF4 Certificate serial: 6E891197E49097BF1A06330AF9CAC27AA350415E Authority key identifier: 3D:77:23:7A:7C:9B:21:96:D1:71:46:B7:FD:D8:C0:31:BE:81:DB:F4 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/323830333a633465303a383030303a3a2f33362d3336203d3e20323639383039.roa Signing time: Tue 06 Jan 2026 20:53:44 +0000 ROA not before: Tue 06 Jan 2026 20:48:44 +0000 ROA not after: Tue 05 Jan 2027 20:53:44 +0000 asID: 269809 IP address blocks: 2803:c4e0:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.crl rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 01 Feb 2026 15:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:89:11:97:e4:90:97:bf:1a:06:33:0a:f9:ca:c2:7a:a3:50:41:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D77237A7C9B2196D17146B7FDD8C031BE81DBF4 Validity Not Before: Jan 6 20:48:44 2026 GMT Not After : Jan 5 20:53:44 2027 GMT Subject: CN=C14D31E9B56E84D02B4E8F98DC5B6BABA182863E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4d:a9:b8:78:be:25:a4:71:d0:7c:1c:c7:dd: 91:e8:1d:b0:b5:e8:3a:76:f9:27:b0:93:cd:1f:2e: 74:6b:0e:7a:29:e3:12:01:90:26:62:bb:16:46:b8: e0:1d:8e:c6:40:3b:ca:f2:d3:e1:0e:4f:b1:d3:04: 83:5e:d0:4f:31:66:b1:c9:d8:ff:dc:7e:6d:bf:82: 74:af:e3:74:a3:1b:1c:88:74:cc:bc:43:e8:0c:88: b0:77:13:c7:48:32:eb:81:b2:bc:1c:81:13:a0:49: 36:4c:34:04:5c:2d:46:51:53:6e:62:04:12:7e:99: 5e:59:76:9b:9d:d3:ce:17:10:33:c5:c0:d3:f4:5b: 5c:2d:b7:62:83:bb:69:4e:24:db:8b:b0:9a:d8:85: 8e:de:56:4d:4d:f1:c9:a5:1a:f7:60:03:b1:fe:1b: dc:ad:80:6b:76:a5:be:fc:66:15:a4:a5:79:46:1c: eb:38:a0:bc:22:e2:02:e2:16:6b:1c:38:28:df:6b: 43:dd:16:ba:99:ec:12:0d:2f:12:ba:ae:16:b8:0c: 14:ef:e1:1d:1c:2b:73:ec:3a:26:21:e8:52:b9:56: 7e:95:17:5d:ac:50:a8:52:3b:93:63:d1:f7:00:36: 74:6a:bf:43:6b:a9:ca:d0:df:c2:27:b2:36:04:26: 53:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:4D:31:E9:B5:6E:84:D0:2B:4E:8F:98:DC:5B:6B:AB:A1:82:86:3E X509v3 Authority Key Identifier: keyid:3D:77:23:7A:7C:9B:21:96:D1:71:46:B7:FD:D8:C0:31:BE:81:DB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/323830333a633465303a383030303a3a2f33362d3336203d3e20323639383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:c4e0:8000::/36 Signature Algorithm: sha256WithRSAEncryption 6c:3d:92:35:62:b2:c2:51:af:0b:87:0f:e6:e1:61:a8:29:01: d3:3c:b7:88:3f:cb:6b:6d:45:f1:3b:d9:46:64:92:18:3f:18: 92:83:df:fb:5f:9f:41:ef:ea:c6:fb:4a:53:2e:f3:af:1b:3f: 09:5e:46:3b:e6:a5:67:b5:21:ac:64:b1:88:f8:47:67:e3:8f: f3:2a:bb:43:a9:de:fe:07:58:8d:12:e0:54:33:50:58:3e:ab: 89:38:8e:38:06:31:e7:13:e4:04:36:e0:01:e9:6b:17:75:aa: 0b:3b:d5:c4:57:bf:88:ec:13:f1:3f:d8:46:14:cf:4e:38:cf: c1:51:e6:97:bb:fd:66:45:26:b2:17:9d:68:c8:d8:58:c7:a7: 22:b5:d4:eb:35:46:e1:a5:10:e3:6f:90:0e:f5:74:f5:78:28: aa:d7:29:3b:5c:93:45:a8:3a:35:e4:ad:d6:e3:75:09:e9:16: fd:02:be:6b:b2:ec:f6:ce:ac:47:64:8f:c8:9b:c4:71:b6:3c: 34:f3:31:44:64:71:fb:9b:56:64:ef:af:a1:95:21:1a:ec:2b: 87:48:ab:4a:f1:41:ca:6e:e5:11:17:a2:bc:c8:f2:61:67:fe: af:80:19:2c:c1:fd:55:8a:32:c5:3f:8d:95:c3:d8:70:24:af: cf:7a:f5:6b -----BEGIN CERTIFICATE----- MIIFyjCCBLKgAwIBAgIUbokRl+SQl78aBjMK+crCeqNQQV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3NzIzN0E3QzlCMjE5NkQxNzE0NkI3RkREOEMwMzFC RTgxREJGNDAeFw0yNjAxMDYyMDQ4NDRaFw0yNzAxMDUyMDUzNDRaMDMxMTAvBgNV BAMTKEMxNEQzMUU5QjU2RTg0RDAyQjRFOEY5OERDNUI2QkFCQTE4Mjg2M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTTam4eL4lpHHQfBzH3ZHoHbC1 6Dp2+Sewk80fLnRrDnop4xIBkCZiuxZGuOAdjsZAO8ry0+EOT7HTBINe0E8xZrHJ 2P/cfm2/gnSv43SjGxyIdMy8Q+gMiLB3E8dIMuuBsrwcgROgSTZMNARcLUZRU25i BBJ+mV5Zdpud084XEDPFwNP0W1wtt2KDu2lOJNuLsJrYhY7eVk1N8cmlGvdgA7H+ G9ytgGt2pb78ZhWkpXlGHOs4oLwi4gLiFmscOCjfa0PdFrqZ7BINLxK6rha4DBTv 4R0cK3PsOiYh6FK5Vn6VF12sUKhSO5Nj0fcANnRqv0NrqcrQ38InsjYEJlMLAgMB AAGjggLUMIIC0DAdBgNVHQ4EFgQUwU0x6bVuhNArTo+Y3Ftrq6GChj4wHwYDVR0j BBgwFoAUPXcjenybIZbRcUa3/djAMb6B2/QwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8wNTg0QzBBNzlEMjYzNzU4QUQzNjZBQkM3MEFFRTU5NUND QUFDQjQxQTZGNkE5Qzc3MzQ3Mzk2QUE4M0ZCQkFGLzAvM0Q3NzIzN0E3QzlCMjE5 NkQxNzE0NkI3RkREOEMwMzFCRTgxREJGNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zRDc3MjM3QTdDOUIyMTk2RDE3 MTQ2QjdGREQ4QzAzMUJFODFEQkY0LmNlcjCB0QYIKwYBBQUHAQsEgcQwgcEwgb4G CCsGAQUFBzALhoGxcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMDU4NEMwQTc5RDI2Mzc1OEFEMzY2QUJDNzBBRUU1OTVDQ0FBQ0I0MUE2 RjZBOUM3NzM0NzM5NkFBODNGQkJBRi8wLzMyMzgzMDMzM2E2MzM0NjUzMDNhMzgz MDMwMzAzYTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMjM2MzkzODMwMzkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQoA8TggDANBgkqhkiG9w0BAQsFAAOCAQEAbD2SNWKywlGvC4cP5uFhqCkB 0zy3iD/La21F8TvZRmSSGD8YkoPf+1+fQe/qxvtKUy7zrxs/CV5GO+alZ7UhrGSx iPhHZ+OP8yq7Q6ne/gdYjRLgVDNQWD6riTiOOAYx5xPkBDbgAelrF3WqCzvVxFe/ iOwT8T/YRhTPTjjPwVHml7v9ZkUmshedaMjYWMenIrXU6zVG4aUQ42+QDvV09Xgo qtcpO1yTRag6NeSt1uN1CekW/QK+a7Ls9s6sR2SPyJvEcbY8NPMxRGRx+5tWZO+v oZUhGuwrh0irSvFBym7lEReivMjyYWf+r4AZLMH9VYoyxT+NlcPYcCSvz3r1aw== -----END CERTIFICATE-----Generated at Thu Jan 29 05:04:18 2026 by rpki-client