This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1950988E5AEEEF1FE876BFD8B0F24D5600C40D2B053A1BD786FD5A8AD3EBA56C/0/323830333a653565303a333830303a3a2f33372d3430203d3e20323730303335.roa File: 323830333a653565303a333830303a3a2f33372d3430203d3e20323730303335.roa (raw, json) Hash identifier: maLfZH26BJc+lUo9l7cRyAYQwbKSzFeipgWeZtaJNjk= Subject key identifier: AD:52:20:BC:9D:95:B0:58:E2:07:FE:54:AC:46:41:0A:9A:59:04:E3 Certificate issuer: /CN=C49B3EB85EBAEC5AE7373A6398C425068DE4257A Certificate serial: 097B1DE052C8A79645E4EB36745062F360D6CEB1 Authority key identifier: C4:9B:3E:B8:5E:BA:EC:5A:E7:37:3A:63:98:C4:25:06:8D:E4:25:7A Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C49B3EB85EBAEC5AE7373A6398C425068DE4257A.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1950988E5AEEEF1FE876BFD8B0F24D5600C40D2B053A1BD786FD5A8AD3EBA56C/0/323830333a653565303a333830303a3a2f33372d3430203d3e20323730303335.roa Signing time: Wed 28 Jan 2026 15:28:04 +0000 ROA not before: Wed 28 Jan 2026 15:23:04 +0000 ROA not after: Wed 27 Jan 2027 15:28:04 +0000 asID: 270035 IP address blocks: 2803:e5e0:3800::/37 maxlen: 40 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/1950988E5AEEEF1FE876BFD8B0F24D5600C40D2B053A1BD786FD5A8AD3EBA56C/0/C49B3EB85EBAEC5AE7373A6398C425068DE4257A.crl rsync://repository.lacnic.net/rpki/lacnic/1950988E5AEEEF1FE876BFD8B0F24D5600C40D2B053A1BD786FD5A8AD3EBA56C/0/C49B3EB85EBAEC5AE7373A6398C425068DE4257A.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C49B3EB85EBAEC5AE7373A6398C425068DE4257A.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 01 Feb 2026 15:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7b:1d:e0:52:c8:a7:96:45:e4:eb:36:74:50:62:f3:60:d6:ce:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49B3EB85EBAEC5AE7373A6398C425068DE4257A Validity Not Before: Jan 28 15:23:04 2026 GMT Not After : Jan 27 15:28:04 2027 GMT Subject: CN=AD5220BC9D95B058E207FE54AC46410A9A5904E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:80:56:f2:ec:b0:e7:d3:28:24:3a:b8:89:94: ba:f7:8a:05:87:0d:9a:3c:2b:e8:b3:88:87:8c:da: fe:f1:66:0a:df:a8:b4:03:e5:6b:58:7d:86:b6:b2: c9:67:d7:a5:25:a1:6b:d5:f3:7c:5e:c4:16:3c:d6: ce:6e:35:03:98:ea:ec:a0:3c:56:6d:ff:93:78:05: 93:75:37:d2:ee:56:e9:c5:54:32:83:c1:fb:77:fc: f8:f6:34:67:4d:06:d4:17:25:d1:eb:0d:a5:18:5b: 5a:9c:7a:ee:1a:a6:b1:fc:4c:37:1a:bc:f5:2e:36: 98:19:47:a7:1e:65:4f:d2:a9:4b:49:2c:a3:ac:b0: 56:41:4e:a3:98:e0:0d:cd:06:0e:c2:be:d4:99:6e: cf:89:e8:77:a2:5d:f1:59:28:7c:69:38:a2:c9:21: f8:22:25:eb:e1:24:1b:ab:26:2a:01:c9:53:d6:b0: e1:8d:cb:7a:52:6c:59:8b:90:7c:03:59:b6:83:2a: 25:e8:79:3f:08:17:ec:17:30:87:d9:d6:dd:bd:eb: 2e:82:07:94:ae:66:70:02:36:a7:81:a3:5b:22:37: f7:6f:8f:cb:5c:15:0c:fb:fc:9c:1c:21:b8:94:9c: 86:3b:d8:d7:ce:ce:13:44:50:2e:a3:12:18:3e:27: 13:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:52:20:BC:9D:95:B0:58:E2:07:FE:54:AC:46:41:0A:9A:59:04:E3 X509v3 Authority Key Identifier: keyid:C4:9B:3E:B8:5E:BA:EC:5A:E7:37:3A:63:98:C4:25:06:8D:E4:25:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/1950988E5AEEEF1FE876BFD8B0F24D5600C40D2B053A1BD786FD5A8AD3EBA56C/0/C49B3EB85EBAEC5AE7373A6398C425068DE4257A.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C49B3EB85EBAEC5AE7373A6398C425068DE4257A.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1950988E5AEEEF1FE876BFD8B0F24D5600C40D2B053A1BD786FD5A8AD3EBA56C/0/323830333a653565303a333830303a3a2f33372d3430203d3e20323730303335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:e5e0:3800::/37 Signature Algorithm: sha256WithRSAEncryption a1:44:7c:6e:4f:db:1c:f5:e9:29:b0:ee:3b:3a:31:83:0c:1d: 15:f0:9b:62:47:0f:5c:ce:c9:cf:d6:2c:3e:43:b8:85:75:70: 65:ed:57:80:9f:6b:ed:a7:38:33:dc:39:a6:9f:35:f3:8d:97: b4:9c:ab:10:6a:d1:28:78:79:65:00:e2:c2:92:d4:8e:7d:34: f6:d5:2a:7d:0f:00:57:4c:9e:26:55:a0:21:aa:c8:01:d7:27: 75:0b:eb:51:c8:cb:4f:aa:af:3e:be:bb:b2:e9:02:2d:b3:d2: 6f:fc:4a:e8:ce:24:91:ef:4d:ce:f7:0f:f4:30:1f:45:2a:88: 00:36:b0:48:58:a9:f8:80:a7:71:e2:83:bd:b0:c8:0a:3c:48: d1:a4:3d:84:b2:7f:a6:25:93:2c:68:21:0a:60:5b:19:cb:fd: bf:a6:c6:cc:96:00:9e:5f:e7:0e:0d:66:c2:04:81:96:ba:71: 00:19:8a:b9:f5:36:da:69:fc:3b:ee:59:7f:be:51:1b:c7:cb: 14:c4:cf:52:78:08:8c:b5:a9:96:16:45:e4:76:b9:ad:ce:62: 14:7d:52:95:a5:fa:bd:ca:ed:cb:9a:e9:22:46:dd:5d:32:d8: 11:03:62:dc:0f:ee:51:50:32:64:58:56:b2:fb:94:9d:0e:23: d4:3b:fc:65 -----BEGIN CERTIFICATE----- MIIFyjCCBLKgAwIBAgIUCXsd4FLIp5ZF5Os2dFBi82DWzrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ5QjNFQjg1RUJBRUM1QUU3MzczQTYzOThDNDI1MDY4 REU0MjU3QTAeFw0yNjAxMjgxNTIzMDRaFw0yNzAxMjcxNTI4MDRaMDMxMTAvBgNV BAMTKEFENTIyMEJDOUQ5NUIwNThFMjA3RkU1NEFDNDY0MTBBOUE1OTA0RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUgFby7LDn0ygkOriJlLr3igWH DZo8K+iziIeM2v7xZgrfqLQD5WtYfYa2ssln16UloWvV83xexBY81s5uNQOY6uyg PFZt/5N4BZN1N9LuVunFVDKDwft3/Pj2NGdNBtQXJdHrDaUYW1qceu4aprH8TDca vPUuNpgZR6ceZU/SqUtJLKOssFZBTqOY4A3NBg7CvtSZbs+J6HeiXfFZKHxpOKLJ IfgiJevhJBurJioByVPWsOGNy3pSbFmLkHwDWbaDKiXoeT8IF+wXMIfZ1t296y6C B5SuZnACNqeBo1siN/dvj8tcFQz7/JwcIbiUnIY72NfOzhNEUC6jEhg+JxOTAgMB AAGjggLUMIIC0DAdBgNVHQ4EFgQUrVIgvJ2VsFjiB/5UrEZBCppZBOMwHwYDVR0j BBgwFoAUxJs+uF667FrnNzpjmMQlBo3kJXowDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xOTUwOTg4RTVBRUVFRjFGRTg3NkJGRDhCMEYyNEQ1NjAw QzQwRDJCMDUzQTFCRDc4NkZENUE4QUQzRUJBNTZDLzAvQzQ5QjNFQjg1RUJBRUM1 QUU3MzczQTYzOThDNDI1MDY4REU0MjU3QS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DNDlCM0VCODVFQkFFQzVBRTcz NzNBNjM5OEM0MjUwNjhERTQyNTdBLmNlcjCB0QYIKwYBBQUHAQsEgcQwgcEwgb4G CCsGAQUFBzALhoGxcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMTk1MDk4OEU1QUVFRUYxRkU4NzZCRkQ4QjBGMjRENTYwMEM0MEQyQjA1 M0ExQkQ3ODZGRDVBOEFEM0VCQTU2Qy8wLzMyMzgzMDMzM2E2NTM1NjUzMDNhMzMz ODMwMzAzYTNhMmYzMzM3MmQzNDMwMjAzZDNlMjAzMjM3MzAzMDMzMzUucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMoA+XgODANBgkqhkiG9w0BAQsFAAOCAQEAoUR8bk/bHPXpKbDuOzoxgwwd FfCbYkcPXM7Jz9YsPkO4hXVwZe1XgJ9r7ac4M9w5pp81842XtJyrEGrRKHh5ZQDi wpLUjn009tUqfQ8AV0yeJlWgIarIAdcndQvrUcjLT6qvPr67sukCLbPSb/xK6M4k ke9NzvcP9DAfRSqIADawSFip+ICnceKDvbDICjxI0aQ9hLJ/piWTLGghCmBbGcv9 v6bGzJYAnl/nDg1mwgSBlrpxABmKufU22mn8O+5Zf75RG8fLFMTPUngIjLWplhZF 5Ha5rc5iFH1SlaX6vcrty5rpIkbdXTLYEQNi3A/uUVAyZFhWsvuUnQ4j1Dv8ZQ== -----END CERTIFICATE-----Generated at Thu Jan 29 05:17:06 2026 by rpki-client