This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/323830333a623263303a3a2f33322d3430203d3e2033353439.roa File: 323830333a623263303a3a2f33322d3430203d3e2033353439.roa (raw, json) Hash identifier: fd4CgQ1aa8hJ8h3OKwi+1+vQZ8EJpHBRnUQ0o4wccTM= Subject key identifier: 20:E5:06:AA:1B:4B:C4:0D:D6:2B:49:24:6F:AA:D6:76:46:E2:74:05 Certificate issuer: /CN=CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F Certificate serial: 2E27264C9DBF3B199A28528B601562C1E3101D30 Authority key identifier: CB:E7:2B:8D:81:5E:9A:3D:3D:87:C1:0B:39:ED:41:69:A8:4A:B6:8F Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/323830333a623263303a3a2f33322d3430203d3e2033353439.roa Signing time: Tue 06 Jan 2026 19:13:11 +0000 ROA not before: Tue 06 Jan 2026 19:08:11 +0000 ROA not after: Tue 05 Jan 2027 19:13:11 +0000 asID: 3549 IP address blocks: 2803:b2c0::/32 maxlen: 40 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.crl rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 27 Jan 2026 13:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:27:26:4c:9d:bf:3b:19:9a:28:52:8b:60:15:62:c1:e3:10:1d:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F Validity Not Before: Jan 6 19:08:11 2026 GMT Not After : Jan 5 19:13:11 2027 GMT Subject: CN=20E506AA1B4BC40DD62B49246FAAD67646E27405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:03:7e:f7:71:49:df:62:3b:70:ab:2c:c4:54: e8:df:fe:2f:9a:b0:8b:ab:97:90:58:40:b5:6d:30: 9c:91:50:ba:1b:79:9a:e2:f6:de:47:23:33:f5:13: 0d:d8:cc:b4:bb:68:b0:77:83:44:32:9c:6f:ec:34: b3:e3:e4:fa:b3:69:de:c5:5e:de:17:ae:41:f8:ec: 7f:ee:b6:5c:4e:16:f4:20:fc:8c:7e:c7:43:0c:ff: cf:4f:40:f0:a9:08:9b:37:90:ee:53:5a:0e:3f:b1: 30:67:60:75:e1:7f:39:15:6b:3b:1d:81:76:7d:fc: ce:c9:29:12:06:a7:47:04:49:ad:b4:0c:b0:68:e0: 59:02:01:09:6c:ac:50:46:eb:53:f7:3a:a1:38:0c: e0:58:f3:26:d2:0b:aa:8b:30:1e:f3:73:e0:d5:56: 23:1d:a2:18:99:c3:1a:16:5f:68:1a:6e:59:a9:22: 9c:3b:5e:1b:8b:13:bf:66:6f:60:d7:fd:10:10:1e: be:34:fe:3f:80:17:aa:fa:ec:ff:82:d1:55:d2:f6: 50:20:8d:9b:35:60:fb:eb:43:1f:e0:50:be:82:5b: 58:3f:1d:d4:79:f8:5a:db:6a:18:d6:d3:23:ee:58: 21:aa:10:16:07:d2:ad:c1:9e:6f:bd:fa:e2:29:1e: 38:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E5:06:AA:1B:4B:C4:0D:D6:2B:49:24:6F:AA:D6:76:46:E2:74:05 X509v3 Authority Key Identifier: keyid:CB:E7:2B:8D:81:5E:9A:3D:3D:87:C1:0B:39:ED:41:69:A8:4A:B6:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/323830333a623263303a3a2f33322d3430203d3e2033353439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:b2c0::/32 Signature Algorithm: sha256WithRSAEncryption 7d:f8:4c:c4:01:03:46:00:67:1d:9d:e5:22:f8:82:4f:df:14: 11:14:3b:f8:84:66:91:d4:f1:24:23:24:69:4a:c5:c7:36:c6: b5:d8:4a:2e:39:aa:c1:2c:9d:e7:70:d5:06:e4:42:f5:0e:dd: 2f:f5:25:c1:92:06:99:1b:f8:75:a1:8d:93:28:89:06:29:f6: 47:ac:10:f6:4e:34:fc:e9:0f:b6:e4:32:ea:a6:46:ba:40:14: 35:ea:9c:e8:e7:aa:a6:49:fb:4b:dd:89:65:54:1c:f5:1c:cb: 2c:a6:1e:19:40:21:8e:c7:30:d7:b9:cd:c2:34:85:e8:27:3d: e1:1a:af:23:42:80:e4:d2:a3:11:c8:71:41:78:c9:81:7b:33: 0c:a4:6e:bd:12:ff:39:d1:27:a0:96:42:a7:5b:73:ba:36:b2: de:75:5b:61:d6:bf:4f:e6:f2:60:e2:3b:8a:ef:9b:ed:29:2d: 9f:7a:d5:d4:d2:02:97:57:81:eb:99:0a:6c:90:0d:0c:14:2c: be:73:5d:69:c9:bd:03:77:8e:de:16:96:43:71:ae:bb:b4:10: 6a:c0:5b:56:94:5b:77:c3:fa:ce:0e:9c:34:cd:e9:93:a3:0e: 8f:3e:77:24:29:ee:a2:dc:eb:83:7a:92:0b:24:6b:c6:ac:87: 26:b3:d5:86 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgIULicmTJ2/OxmaKFKLYBViweMQHTAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0JFNzJCOEQ4MTVFOUEzRDNEODdDMTBCMzlFRDQxNjlB ODRBQjY4RjAeFw0yNjAxMDYxOTA4MTFaFw0yNzAxMDUxOTEzMTFaMDMxMTAvBgNV BAMTKDIwRTUwNkFBMUI0QkM0MERENjJCNDkyNDZGQUFENjc2NDZFMjc0MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFA373cUnfYjtwqyzEVOjf/i+a sIurl5BYQLVtMJyRULobeZri9t5HIzP1Ew3YzLS7aLB3g0QynG/sNLPj5Pqzad7F Xt4XrkH47H/utlxOFvQg/Ix+x0MM/89PQPCpCJs3kO5TWg4/sTBnYHXhfzkVazsd gXZ9/M7JKRIGp0cESa20DLBo4FkCAQlsrFBG61P3OqE4DOBY8ybSC6qLMB7zc+DV ViMdohiZwxoWX2gablmpIpw7XhuLE79mb2DX/RAQHr40/j+AF6r67P+C0VXS9lAg jZs1YPvrQx/gUL6CW1g/HdR5+FrbahjW0yPuWCGqEBYH0q3Bnm+9+uIpHjgvAgMB AAGjggLFMIICwTAdBgNVHQ4EFgQUIOUGqhtLxA3WK0kkb6rWdkbidAUwHwYDVR0j BBgwFoAUy+crjYFemj09h8ELOe1BaahKto8wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xMTdFMEYyOEQ3QjEwOTY0MzM4MjEzNEE5MjhBREI3RDhD MTMxOTcyNzAyRUE0MkEwNDhDMjc2NEM4MERDN0MxLzAvQ0JFNzJCOEQ4MTVFOUEz RDNEODdDMTBCMzlFRDQxNjlBODRBQjY4Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DQkU3MkI4RDgxNUU5QTNEM0Q4 N0MxMEIzOUVENDE2OUE4NEFCNjhGLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMTE3RTBGMjhEN0IxMDk2NDMzODIxMzRBOTI4QURCN0Q4QzEzMTk3Mjcw MkVBNDJBMDQ4QzI3NjRDODBEQzdDMS8wLzMyMzgzMDMzM2E2MjMyNjMzMDNhM2Ey ZjMzMzIyZDM0MzAyMDNkM2UyMDMzMzUzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKAOywDANBgkq hkiG9w0BAQsFAAOCAQEAffhMxAEDRgBnHZ3lIviCT98UERQ7+IRmkdTxJCMkaUrF xzbGtdhKLjmqwSyd53DVBuRC9Q7dL/UlwZIGmRv4daGNkyiJBin2R6wQ9k40/OkP tuQy6qZGukAUNeqc6Oeqpkn7S92JZVQc9RzLLKYeGUAhjscw17nNwjSF6Cc94Rqv I0KA5NKjEchxQXjJgXszDKRuvRL/OdEnoJZCp1tzujay3nVbYda/T+byYOI7iu+b 7Sktn3rV1NICl1eB65kKbJANDBQsvnNdacm9A3eO3haWQ3Guu7QQasBbVpRbd8P6 zg6cNM3pk6MOjz53JCnuotzrg3qSCyRrxqyHJrPVhg== -----END CERTIFICATE-----Generated at Fri Jan 23 16:25:57 2026 by rpki-client