This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/323830333a623263303a3a2f33322d3438203d3e203237393437.roa File: 323830333a623263303a3a2f33322d3438203d3e203237393437.roa (raw, json) Hash identifier: tiVUPWIdVRY/HwMEe+Li77PRITY8wTXtxIArg9b4hzk= Subject key identifier: 21:93:23:19:A0:90:A4:26:AD:C7:FA:1C:F9:DB:17:6A:0C:F8:7D:0D Certificate issuer: /CN=CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F Certificate serial: 3BBE4333F1C43967FBB86569965DD52BEF935804 Authority key identifier: CB:E7:2B:8D:81:5E:9A:3D:3D:87:C1:0B:39:ED:41:69:A8:4A:B6:8F Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/323830333a623263303a3a2f33322d3438203d3e203237393437.roa Signing time: Tue 06 Jan 2026 19:13:10 +0000 ROA not before: Tue 06 Jan 2026 19:08:10 +0000 ROA not after: Tue 05 Jan 2027 19:13:10 +0000 asID: 27947 IP address blocks: 2803:b2c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.crl rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 27 Jan 2026 13:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:be:43:33:f1:c4:39:67:fb:b8:65:69:96:5d:d5:2b:ef:93:58:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F Validity Not Before: Jan 6 19:08:10 2026 GMT Not After : Jan 5 19:13:10 2027 GMT Subject: CN=21932319A090A426ADC7FA1CF9DB176A0CF87D0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1d:cf:8f:8d:43:a2:95:92:cb:50:71:20:4c: 35:60:e9:f9:15:8b:7a:3f:4f:44:62:52:e6:43:b5: b0:46:79:7e:3d:e5:10:25:c3:aa:9a:67:96:2b:93: c9:22:84:4e:0a:a3:16:b7:d3:11:be:96:8f:bf:81: 7a:04:83:b3:50:3d:1c:0e:41:98:ca:b6:6f:97:a3: 04:ae:42:77:ba:fe:b5:0c:c2:8a:5f:af:7c:f8:25: 1a:e0:af:0c:a8:94:17:79:dd:ca:73:57:32:4b:7a: 0f:5c:c8:7c:49:9a:f3:18:5a:52:d5:a0:db:3b:94: c1:38:9e:32:a2:af:3c:27:32:fd:b7:7d:2d:b3:d2: fd:47:cd:33:26:99:f6:19:dc:4a:34:d6:4a:a7:38: 9b:53:36:79:6d:e7:65:fe:2e:a6:7c:a0:39:a4:a3: 92:f1:25:a7:45:b9:29:6b:3d:68:cc:12:78:75:ba: ca:aa:16:e7:c0:a1:5c:2e:5c:2f:56:c5:23:1b:8b: 74:1e:37:de:c7:84:e0:e4:7f:f6:5b:da:86:ee:50: b0:85:1b:5b:50:c9:c4:7f:43:b6:7d:c6:2f:bd:de: 57:fb:c0:8f:35:85:f2:ae:d9:f3:7d:b9:83:7d:ba: 4d:86:4a:15:7e:5a:e5:c7:61:2f:95:39:ed:3d:df: 7e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:93:23:19:A0:90:A4:26:AD:C7:FA:1C:F9:DB:17:6A:0C:F8:7D:0D X509v3 Authority Key Identifier: keyid:CB:E7:2B:8D:81:5E:9A:3D:3D:87:C1:0B:39:ED:41:69:A8:4A:B6:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBE72B8D815E9A3D3D87C10B39ED4169A84AB68F.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/117E0F28D7B109643382134A928ADB7D8C131972702EA42A048C2764C80DC7C1/0/323830333a623263303a3a2f33322d3438203d3e203237393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:b2c0::/32 Signature Algorithm: sha256WithRSAEncryption 12:d6:f1:32:b6:10:50:f0:33:45:26:23:60:9b:1e:ad:55:9d: 22:5c:c5:2b:ef:25:11:66:23:25:66:b8:08:62:8c:81:1e:e9: ec:6f:57:0e:26:cc:7d:6c:c8:7c:47:e3:09:6a:8b:19:ed:3b: 83:09:59:13:3f:e5:c6:42:2c:13:3a:06:41:ea:cf:9d:61:3e: e7:75:9a:9f:48:3d:ef:15:14:bc:9f:c0:72:c0:20:3a:13:9f: 43:63:be:0b:ac:56:c1:82:c7:53:fd:54:aa:55:0e:5a:36:b8: ec:b8:4c:98:09:b2:92:eb:42:ef:f2:97:32:1d:df:55:29:86: 53:7b:a2:6d:8a:ae:a0:d8:1b:a3:2a:44:94:e9:61:10:d3:16: 02:bf:51:fc:50:9f:13:7e:75:19:92:41:9b:42:74:f6:ec:42: 25:dc:11:b9:59:4f:3a:e9:17:d5:ff:d9:80:f3:82:4e:72:bc: 7d:fb:d2:65:f1:ed:01:e6:18:c3:f2:b6:0a:7b:52:7e:d9:37: c0:ef:90:84:86:55:e8:fd:2f:f6:2f:22:2e:00:ec:36:fc:13: d1:73:44:35:0c:d5:f3:7f:5c:a2:00:e3:62:63:a3:8a:11:66: db:e7:10:ec:ec:4a:a7:1e:b7:da:40:b4:99:fd:36:54:ee:16: b3:f8:62:0d -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIUO75DM/HEOWf7uGVpll3VK++TWAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0JFNzJCOEQ4MTVFOUEzRDNEODdDMTBCMzlFRDQxNjlB ODRBQjY4RjAeFw0yNjAxMDYxOTA4MTBaFw0yNzAxMDUxOTEzMTBaMDMxMTAvBgNV BAMTKDIxOTMyMzE5QTA5MEE0MjZBREM3RkExQ0Y5REIxNzZBMENGODdEMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZHc+PjUOilZLLUHEgTDVg6fkV i3o/T0RiUuZDtbBGeX495RAlw6qaZ5Yrk8kihE4Koxa30xG+lo+/gXoEg7NQPRwO QZjKtm+XowSuQne6/rUMwopfr3z4JRrgrwyolBd53cpzVzJLeg9cyHxJmvMYWlLV oNs7lME4njKirzwnMv23fS2z0v1HzTMmmfYZ3Eo01kqnOJtTNnlt52X+LqZ8oDmk o5LxJadFuSlrPWjMEnh1usqqFufAoVwuXC9WxSMbi3QeN97HhODkf/Zb2obuULCF G1tQycR/Q7Z9xi+93lf7wI81hfKu2fN9uYN9uk2GShV+WuXHYS+VOe09336zAgMB AAGjggLHMIICwzAdBgNVHQ4EFgQUIZMjGaCQpCatx/oc+dsXagz4fQ0wHwYDVR0j BBgwFoAUy+crjYFemj09h8ELOe1BaahKto8wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xMTdFMEYyOEQ3QjEwOTY0MzM4MjEzNEE5MjhBREI3RDhD MTMxOTcyNzAyRUE0MkEwNDhDMjc2NEM4MERDN0MxLzAvQ0JFNzJCOEQ4MTVFOUEz RDNEODdDMTBCMzlFRDQxNjlBODRBQjY4Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DQkU3MkI4RDgxNUU5QTNEM0Q4 N0MxMEIzOUVENDE2OUE4NEFCNjhGLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMTE3RTBGMjhEN0IxMDk2NDMzODIxMzRBOTI4QURCN0Q4QzEzMTk3Mjcw MkVBNDJBMDQ4QzI3NjRDODBEQzdDMS8wLzMyMzgzMDMzM2E2MjMyNjMzMDNhM2Ey ZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzczOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA7LAMA0G CSqGSIb3DQEBCwUAA4IBAQAS1vEythBQ8DNFJiNgmx6tVZ0iXMUr7yURZiMlZrgI YoyBHunsb1cOJsx9bMh8R+MJaosZ7TuDCVkTP+XGQiwTOgZB6s+dYT7ndZqfSD3v FRS8n8BywCA6E59DY74LrFbBgsdT/VSqVQ5aNrjsuEyYCbKS60Lv8pcyHd9VKYZT e6Jtiq6g2BujKkSU6WEQ0xYCv1H8UJ8TfnUZkkGbQnT27EIl3BG5WU866RfV/9mA 84JOcrx9+9Jl8e0B5hjD8rYKe1J+2TfA75CEhlXo/S/2LyIuAOw2/BPRc0Q1DNXz f1yiAONiY6OKEWbb5xDs7EqnHrfaQLSZ/TZU7haz+GIN -----END CERTIFICATE-----Generated at Fri Jan 23 16:26:53 2026 by rpki-client