This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/323830333a633465303a393030303a3a2f33362d3336203d3e20323639383039.roa File: 323830333a633465303a393030303a3a2f33362d3336203d3e20323639383039.roa (raw, json) Hash identifier: LWVtI2x8AIaE64KikYpmSirugw9BPTRjcIh12R4iyeo= Subject key identifier: 02:B1:20:1F:F9:75:AC:29:A1:73:5B:6B:F2:94:D2:FF:E3:AE:BB:93 Certificate issuer: /CN=3D77237A7C9B2196D17146B7FDD8C031BE81DBF4 Certificate serial: 59EAF44A92A3827FA3C2E0597C35B990ACA78A2D Authority key identifier: 3D:77:23:7A:7C:9B:21:96:D1:71:46:B7:FD:D8:C0:31:BE:81:DB:F4 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/323830333a633465303a393030303a3a2f33362d3336203d3e20323639383039.roa Signing time: Tue 06 Jan 2026 20:53:46 +0000 ROA not before: Tue 06 Jan 2026 20:48:46 +0000 ROA not after: Tue 05 Jan 2027 20:53:46 +0000 asID: 269809 IP address blocks: 2803:c4e0:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.crl rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 01 Feb 2026 15:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ea:f4:4a:92:a3:82:7f:a3:c2:e0:59:7c:35:b9:90:ac:a7:8a:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D77237A7C9B2196D17146B7FDD8C031BE81DBF4 Validity Not Before: Jan 6 20:48:46 2026 GMT Not After : Jan 5 20:53:46 2027 GMT Subject: CN=02B1201FF975AC29A1735B6BF294D2FFE3AEBB93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e2:5a:3e:7f:0f:0f:9b:30:9b:6e:f9:36:f0: f5:e9:e6:67:d0:a5:6b:2d:93:9b:90:04:bd:34:a6: 61:f3:8b:17:d5:b6:f0:1e:8f:c9:3a:ec:62:fa:81: 0b:de:02:5c:2c:2f:45:85:55:81:03:83:34:c4:0a: e3:db:d4:c7:a2:b2:22:f4:09:5a:32:6c:cd:10:8c: d4:76:d0:18:98:b5:dc:ba:f9:9e:a4:dc:6f:bc:5b: 01:e8:52:b3:6a:e8:50:97:d2:e4:8e:65:6d:3b:6e: 19:67:ab:c9:5c:f3:00:f3:e1:e8:33:f0:5e:71:6d: f1:70:db:81:b7:92:06:b1:5c:3e:c2:19:b7:74:34: 35:d7:5f:60:96:6a:e6:56:66:e7:9f:25:d5:66:84: 6a:6a:16:36:1e:ae:a3:0f:55:0d:92:ab:10:90:eb: 64:b6:0a:28:9a:5d:70:4e:ac:17:15:9d:82:91:7d: 11:e2:aa:e9:21:39:e9:43:4b:6f:7d:d8:b5:2d:b1: 20:b9:a2:95:7a:3e:1c:85:2f:41:79:3e:92:92:3a: f6:16:ac:56:6b:20:a0:4e:7d:81:6c:89:f0:7b:2c: 98:ff:f4:60:df:8b:0d:81:88:35:f1:6f:86:56:eb: 4b:70:80:14:47:36:ff:27:f7:4e:9b:6c:36:57:a0: ca:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B1:20:1F:F9:75:AC:29:A1:73:5B:6B:F2:94:D2:FF:E3:AE:BB:93 X509v3 Authority Key Identifier: keyid:3D:77:23:7A:7C:9B:21:96:D1:71:46:B7:FD:D8:C0:31:BE:81:DB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D77237A7C9B2196D17146B7FDD8C031BE81DBF4.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0584C0A79D263758AD366ABC70AEE595CCAACB41A6F6A9C77347396AA83FBBAF/0/323830333a633465303a393030303a3a2f33362d3336203d3e20323639383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:c4e0:9000::/36 Signature Algorithm: sha256WithRSAEncryption b8:0e:ab:41:29:ae:4a:41:4d:8c:84:ab:59:97:6a:34:86:21: dc:4b:98:ea:90:e9:89:98:12:2d:b5:b5:56:f4:3b:53:aa:9c: c4:b7:59:aa:f6:b0:eb:06:c1:8a:c3:5f:b8:8e:b4:6e:76:7c: b4:ee:56:f6:e7:d2:45:74:90:f1:88:b2:ad:53:9d:bf:27:e2: 7b:6d:ee:3a:f2:8e:c1:90:85:74:c8:0b:17:de:e3:7b:40:4c: 4c:a3:70:80:a3:71:b3:41:cd:94:7a:39:a3:05:51:c7:fd:e8: 1f:7b:63:df:8f:ef:3d:9d:e0:8c:06:f6:da:e7:09:aa:7f:3f: 68:cc:e9:1b:1e:2b:6f:51:da:db:12:5d:ff:05:4c:81:20:5f: 21:d3:f2:1f:6d:c6:b2:70:65:27:65:1e:9b:e7:70:b6:4b:a7: 56:40:a8:f4:2e:40:db:17:76:e2:df:b0:6d:39:09:32:62:3c: c2:54:b2:76:38:f0:b3:3b:b3:4a:54:3b:16:07:0d:22:af:06: b6:61:73:0a:50:7f:a1:3c:d0:18:44:d1:ff:8b:48:02:94:06: 2d:32:4b:a8:69:d8:4d:45:2e:e8:c2:ed:06:fc:23:57:eb:65: 2f:4b:e4:b4:e6:39:0f:3e:7f:27:e3:54:50:96:14:91:72:ff: 3a:c3:b7:5a -----BEGIN CERTIFICATE----- MIIFyjCCBLKgAwIBAgIUWer0SpKjgn+jwuBZfDW5kKynii0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3NzIzN0E3QzlCMjE5NkQxNzE0NkI3RkREOEMwMzFC RTgxREJGNDAeFw0yNjAxMDYyMDQ4NDZaFw0yNzAxMDUyMDUzNDZaMDMxMTAvBgNV BAMTKDAyQjEyMDFGRjk3NUFDMjlBMTczNUI2QkYyOTREMkZGRTNBRUJCOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb4lo+fw8PmzCbbvk28PXp5mfQ pWstk5uQBL00pmHzixfVtvAej8k67GL6gQveAlwsL0WFVYEDgzTECuPb1MeisiL0 CVoybM0QjNR20BiYtdy6+Z6k3G+8WwHoUrNq6FCX0uSOZW07bhlnq8lc8wDz4egz 8F5xbfFw24G3kgaxXD7CGbd0NDXXX2CWauZWZuefJdVmhGpqFjYerqMPVQ2SqxCQ 62S2CiiaXXBOrBcVnYKRfRHiqukhOelDS2992LUtsSC5opV6PhyFL0F5PpKSOvYW rFZrIKBOfYFsifB7LJj/9GDfiw2BiDXxb4ZW60twgBRHNv8n906bbDZXoMrdAgMB AAGjggLUMIIC0DAdBgNVHQ4EFgQUArEgH/l1rCmhc1tr8pTS/+Ouu5MwHwYDVR0j BBgwFoAUPXcjenybIZbRcUa3/djAMb6B2/QwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8wNTg0QzBBNzlEMjYzNzU4QUQzNjZBQkM3MEFFRTU5NUND QUFDQjQxQTZGNkE5Qzc3MzQ3Mzk2QUE4M0ZCQkFGLzAvM0Q3NzIzN0E3QzlCMjE5 NkQxNzE0NkI3RkREOEMwMzFCRTgxREJGNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zRDc3MjM3QTdDOUIyMTk2RDE3 MTQ2QjdGREQ4QzAzMUJFODFEQkY0LmNlcjCB0QYIKwYBBQUHAQsEgcQwgcEwgb4G CCsGAQUFBzALhoGxcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMDU4NEMwQTc5RDI2Mzc1OEFEMzY2QUJDNzBBRUU1OTVDQ0FBQ0I0MUE2 RjZBOUM3NzM0NzM5NkFBODNGQkJBRi8wLzMyMzgzMDMzM2E2MzM0NjUzMDNhMzkz MDMwMzAzYTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMjM2MzkzODMwMzkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQoA8TgkDANBgkqhkiG9w0BAQsFAAOCAQEAuA6rQSmuSkFNjISrWZdqNIYh 3EuY6pDpiZgSLbW1VvQ7U6qcxLdZqvaw6wbBisNfuI60bnZ8tO5W9ufSRXSQ8Yiy rVOdvyfie23uOvKOwZCFdMgLF97je0BMTKNwgKNxs0HNlHo5owVRx/3oH3tj34/v PZ3gjAb22ucJqn8/aMzpGx4rb1Ha2xJd/wVMgSBfIdPyH23GsnBlJ2Uem+dwtkun VkCo9C5A2xd24t+wbTkJMmI8wlSydjjwszuzSlQ7FgcNIq8GtmFzClB/oTzQGETR /4tIApQGLTJLqGnYTUUu6MLtBvwjV+tlL0vktOY5Dz5/J+NUUJYUkXL/OsO3Wg== -----END CERTIFICATE-----Generated at Thu Jan 29 05:04:17 2026 by rpki-client