This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/323830333a636135303a316330323a3a2f34382d3438203d3e20323733313737.roa File: 323830333a636135303a316330323a3a2f34382d3438203d3e20323733313737.roa (raw, json) Hash identifier: tfZVm62M64yAvd/hbVUg5Ww2k1oUs9YXNUOMnq/5fm0= Subject key identifier: 8B:60:5C:FA:A3:71:42:8F:D6:AF:F6:2D:0C:BC:11:75:42:ED:45:7F Certificate issuer: /CN=B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6 Certificate serial: 5D8584BBD57A7593DECA271C31C8369A6A6F851D Authority key identifier: B9:13:C2:60:F5:6B:F7:B1:E2:B7:32:3F:47:B3:26:FB:8A:0C:BC:D6 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/323830333a636135303a316330323a3a2f34382d3438203d3e20323733313737.roa Signing time: Wed 12 Nov 2025 20:52:25 +0000 ROA not before: Wed 12 Nov 2025 20:47:25 +0000 ROA not after: Wed 11 Nov 2026 20:52:25 +0000 asID: 273177 IP address blocks: 2803:ca50:1c02::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.crl rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 08 Dec 2025 11:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:85:84:bb:d5:7a:75:93:de:ca:27:1c:31:c8:36:9a:6a:6f:85:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6 Validity Not Before: Nov 12 20:47:25 2025 GMT Not After : Nov 11 20:52:25 2026 GMT Subject: CN=8B605CFAA371428FD6AFF62D0CBC117542ED457F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f3:21:f9:56:a5:ff:34:d3:ff:7b:27:68:86: 1c:d1:94:4c:4f:70:56:1c:6e:a5:9b:de:60:07:77: 62:0d:94:3a:2d:1f:ba:ca:69:03:01:f0:8c:c1:41: 4e:10:17:9e:6b:34:72:46:ab:58:a2:78:0c:fe:46: 0b:25:3b:09:bb:b3:32:00:ac:e7:04:38:f6:4f:d8: 3b:b5:cd:4b:4d:5e:2a:71:cd:e1:27:4e:81:06:a6: 70:81:42:ca:02:c5:8d:36:70:18:02:90:60:87:2c: 0a:20:5f:9b:b4:f0:41:a1:e3:42:52:a5:c1:84:86: 3b:c0:d3:32:56:24:57:f6:27:02:2f:6f:e1:c6:41: 41:fd:36:bd:3d:24:61:97:de:1f:c2:c9:da:0b:cc: 9d:73:b4:15:6d:98:f0:60:ff:cc:b0:94:d4:8c:4b: 32:19:0f:df:64:05:26:dc:cd:2e:37:ec:ec:d2:1b: ce:1a:1a:a7:f0:48:ec:3a:8f:79:eb:83:d6:4a:5a: 92:66:e8:68:52:44:ec:3e:f8:c1:04:e9:d9:04:0a: 45:b8:80:f5:82:87:a3:f2:45:c7:41:90:13:8b:27: d3:83:8c:3f:ea:a1:c6:33:6f:14:51:39:4d:7c:39: ae:b6:22:25:b0:8e:46:36:2e:b1:22:1d:7f:90:2a: d3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:60:5C:FA:A3:71:42:8F:D6:AF:F6:2D:0C:BC:11:75:42:ED:45:7F X509v3 Authority Key Identifier: keyid:B9:13:C2:60:F5:6B:F7:B1:E2:B7:32:3F:47:B3:26:FB:8A:0C:BC:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/323830333a636135303a316330323a3a2f34382d3438203d3e20323733313737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:ca50:1c02::/48 Signature Algorithm: sha256WithRSAEncryption 94:fe:00:36:70:ec:4e:b4:53:c0:b8:6f:cd:bb:97:dc:1a:7d: 9d:d1:b1:7a:4f:df:a1:79:ab:44:f2:db:76:00:6e:98:3d:96: 1a:23:2b:70:1e:ff:a0:53:58:6b:39:da:d1:c5:b1:91:0c:cf: e2:7c:7d:15:5b:25:5b:49:1e:50:d5:ac:93:5d:d5:06:cb:40: 80:7a:ef:ca:cb:1c:41:e3:03:5e:df:4e:01:8d:81:f0:1b:c3: 8e:65:f9:ba:75:16:f9:a2:b0:49:d7:3e:e0:72:c2:a6:9f:65: 8e:59:3c:1d:6a:08:9a:1d:01:0b:fd:af:3d:96:9d:bb:f5:4f: dc:fd:b7:08:99:4e:07:56:36:d8:62:ce:cc:a7:ff:16:e8:8a: c3:5d:30:85:9b:d6:f0:b7:b2:d3:72:37:39:6b:7b:01:3b:21: f5:68:9b:8c:a1:cc:a9:aa:4d:7c:e0:78:d5:51:3b:59:37:21: 3e:58:af:1b:31:ed:1d:39:37:2c:9f:c3:98:59:ec:d1:17:30: 2d:ab:18:64:a1:fc:a2:c0:dc:15:4d:03:83:b1:af:11:2b:69: 2f:07:f1:52:77:49:8e:2c:40:7d:55:fa:e7:81:a5:f9:b2:0b: 6a:17:03:de:b4:c6:c4:d9:85:1f:1b:aa:c6:66:18:c6:5c:54: 8d:f0:68:b9 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUXYWEu9V6dZPeyiccMcg2mmpvhR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkxM0MyNjBGNTZCRjdCMUUyQjczMjNGNDdCMzI2RkI4 QTBDQkNENjAeFw0yNTExMTIyMDQ3MjVaFw0yNjExMTEyMDUyMjVaMDMxMTAvBgNV BAMTKDhCNjA1Q0ZBQTM3MTQyOEZENkFGRjYyRDBDQkMxMTc1NDJFRDQ1N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX8yH5VqX/NNP/eydohhzRlExP cFYcbqWb3mAHd2INlDotH7rKaQMB8IzBQU4QF55rNHJGq1iieAz+RgslOwm7szIA rOcEOPZP2Du1zUtNXipxzeEnToEGpnCBQsoCxY02cBgCkGCHLAogX5u08EGh40JS pcGEhjvA0zJWJFf2JwIvb+HGQUH9Nr09JGGX3h/CydoLzJ1ztBVtmPBg/8ywlNSM SzIZD99kBSbczS437OzSG84aGqfwSOw6j3nrg9ZKWpJm6GhSROw++MEE6dkECkW4 gPWCh6PyRcdBkBOLJ9ODjD/qocYzbxRROU18Oa62IiWwjkY2LrEiHX+QKtPLAgMB AAGjggLVMIIC0TAdBgNVHQ4EFgQUi2Bc+qNxQo/Wr/YtDLwRdULtRX8wHwYDVR0j BBgwFoAUuRPCYPVr97HitzI/R7Mm+4oMvNYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xRkY3QjdGNTc3MEM0RUREN0Q2QjhFNEVFMDFDM0E0QjVC OTJFOTlDNzY2Nzg4RDczMzBFNkMyNzZDMEYzMDg4LzAvQjkxM0MyNjBGNTZCRjdC MUUyQjczMjNGNDdCMzI2RkI4QTBDQkNENi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9COTEzQzI2MEY1NkJGN0IxRTJC NzMyM0Y0N0IzMjZGQjhBMENCQ0Q2LmNlcjCB0QYIKwYBBQUHAQsEgcQwgcEwgb4G CCsGAQUFBzALhoGxcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMUZGN0I3RjU3NzBDNEVERDdENkI4RTRFRTAxQzNBNEI1QjkyRTk5Qzc2 Njc4OEQ3MzMwRTZDMjc2QzBGMzA4OC8wLzMyMzgzMDMzM2E2MzYxMzUzMDNhMzE2 MzMwMzIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjM3MzMzMTM3Mzcucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAoA8pQHAIwDQYJKoZIhvcNAQELBQADggEBAJT+ADZw7E60U8C4b827l9wa fZ3RsXpP36F5q0Ty23YAbpg9lhojK3Ae/6BTWGs52tHFsZEMz+J8fRVbJVtJHlDV rJNd1QbLQIB678rLHEHjA17fTgGNgfAbw45l+bp1FvmisEnXPuBywqafZY5ZPB1q CJodAQv9rz2Wnbv1T9z9twiZTgdWNthizsyn/xboisNdMIWb1vC3stNyNzlrewE7 IfVom4yhzKmqTXzgeNVRO1k3IT5Yrxsx7R05Nyyfw5hZ7NEXMC2rGGSh/KLA3BVN A4OxrxEraS8H8VJ3SY4sQH1V+ueBpfmyC2oXA960xsTZhR8bqsZmGMZcVI3waLk= -----END CERTIFICATE-----Generated at Fri Dec 5 06:24:32 2025 by rpki-client