This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/323830333a636135303a316630323a3a2f34382d3438203d3e20323733313737.roa File: 323830333a636135303a316630323a3a2f34382d3438203d3e20323733313737.roa (raw, json) Hash identifier: epIdhN5ftArGhw8Zd4EBng1npSWNizIN/S4hGBDdPeg= Subject key identifier: 19:FF:38:4E:17:0A:6C:8C:D8:56:BF:51:EE:75:A0:A2:4B:DA:2C:02 Certificate issuer: /CN=B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6 Certificate serial: 07C7C219C75DF1939D97D4D3A3DF430CE6200060 Authority key identifier: B9:13:C2:60:F5:6B:F7:B1:E2:B7:32:3F:47:B3:26:FB:8A:0C:BC:D6 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/323830333a636135303a316630323a3a2f34382d3438203d3e20323733313737.roa Signing time: Wed 12 Nov 2025 20:52:24 +0000 ROA not before: Wed 12 Nov 2025 20:47:24 +0000 ROA not after: Wed 11 Nov 2026 20:52:24 +0000 asID: 273177 IP address blocks: 2803:ca50:1f02::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.crl rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 08 Dec 2025 11:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c7:c2:19:c7:5d:f1:93:9d:97:d4:d3:a3:df:43:0c:e6:20:00:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6 Validity Not Before: Nov 12 20:47:24 2025 GMT Not After : Nov 11 20:52:24 2026 GMT Subject: CN=19FF384E170A6C8CD856BF51EE75A0A24BDA2C02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:96:f6:f4:8d:b0:ed:1b:9e:65:50:23:2e:e5: 71:86:c6:6d:75:da:e1:47:37:0c:2f:50:fd:d7:f3: 90:01:f4:95:06:2d:48:32:4e:90:de:b7:ff:e1:b2: b1:23:91:8e:45:2f:bf:6e:d8:27:88:80:3d:e7:12: f5:fd:34:07:11:93:76:44:89:3f:c7:46:13:d7:46: 64:27:37:80:d9:e5:d7:a3:b8:6b:dc:07:ee:90:a7: 04:4f:fe:5d:dc:6e:e4:52:45:ae:0f:3f:3f:2a:d9: ae:9a:f5:9a:e4:68:86:44:c1:9a:d8:45:d3:78:99: 9d:f6:aa:1a:5a:0b:a2:da:39:fc:3c:93:3b:21:77: 6b:b5:80:27:20:aa:dd:ed:08:cf:85:dc:25:41:80: 4b:06:98:e2:54:cf:18:18:79:31:3f:05:bc:bb:3a: c1:53:d3:c2:a8:39:e1:8c:1b:18:50:31:22:04:6b: ac:8d:68:e5:7f:18:78:4c:bf:db:aa:ab:0b:14:9d: a9:b3:ba:99:df:04:db:b8:01:9a:b2:fa:ab:0c:02: e7:5b:f8:b2:25:13:07:c7:95:f6:b9:d2:71:b8:01: 74:1a:b9:75:e0:a7:d6:ce:c8:ef:40:da:39:95:67: 8d:9e:2d:92:95:a3:2e:31:e1:26:92:ac:d5:a8:09: 21:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FF:38:4E:17:0A:6C:8C:D8:56:BF:51:EE:75:A0:A2:4B:DA:2C:02 X509v3 Authority Key Identifier: keyid:B9:13:C2:60:F5:6B:F7:B1:E2:B7:32:3F:47:B3:26:FB:8A:0C:BC:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/323830333a636135303a316630323a3a2f34382d3438203d3e20323733313737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:ca50:1f02::/48 Signature Algorithm: sha256WithRSAEncryption 7b:f7:5d:18:7b:ec:00:07:cd:04:5d:3e:0a:78:b0:f7:53:08: fa:a4:3f:60:ec:be:6a:57:b3:05:84:2c:71:71:3a:80:6e:ee: e6:af:99:b8:11:20:33:f0:7e:ad:f4:80:d6:21:77:eb:e0:d5: 69:ae:bf:e7:22:ef:cb:c7:2c:8b:f6:18:0f:b6:c0:55:83:8b: b3:c0:3f:05:5e:aa:0f:4b:c4:7d:36:60:fb:e2:59:60:da:ef: 57:5c:42:02:f2:ba:78:02:27:3d:5c:da:a1:00:0a:ed:66:79: 46:de:4a:3c:09:cc:18:c0:e9:87:63:92:8e:a1:4d:6b:23:ce: 67:5f:29:7a:75:9e:35:ac:d1:7b:fd:9b:46:30:b0:40:d5:26: d8:42:9f:a8:08:9d:c9:14:a7:39:a7:5f:06:a3:f9:59:56:ca: 94:64:21:34:2e:fa:1b:89:21:4d:6a:02:6a:4c:80:72:8d:6e: 2a:3a:c2:5e:06:54:33:39:f8:35:e5:dd:07:d5:05:da:68:f1: 3f:51:05:8f:e5:c4:e4:10:95:45:e2:3e:2d:0d:aa:78:f4:64: 81:cf:c9:29:31:0e:1c:6c:d7:32:7a:7b:b1:2b:51:37:2f:ea: a3:5d:08:12:44:99:95:03:ce:6f:7b:0a:25:14:f4:58:66:8e: e8:23:36:d9 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUB8fCGcdd8ZOdl9TTo99DDOYgAGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkxM0MyNjBGNTZCRjdCMUUyQjczMjNGNDdCMzI2RkI4 QTBDQkNENjAeFw0yNTExMTIyMDQ3MjRaFw0yNjExMTEyMDUyMjRaMDMxMTAvBgNV BAMTKDE5RkYzODRFMTcwQTZDOENEODU2QkY1MUVFNzVBMEEyNEJEQTJDMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+lvb0jbDtG55lUCMu5XGGxm11 2uFHNwwvUP3X85AB9JUGLUgyTpDet//hsrEjkY5FL79u2CeIgD3nEvX9NAcRk3ZE iT/HRhPXRmQnN4DZ5dejuGvcB+6QpwRP/l3cbuRSRa4PPz8q2a6a9ZrkaIZEwZrY RdN4mZ32qhpaC6LaOfw8kzshd2u1gCcgqt3tCM+F3CVBgEsGmOJUzxgYeTE/Bby7 OsFT08KoOeGMGxhQMSIEa6yNaOV/GHhMv9uqqwsUnamzupnfBNu4AZqy+qsMAudb +LIlEwfHlfa50nG4AXQauXXgp9bOyO9A2jmVZ42eLZKVoy4x4SaSrNWoCSEpAgMB AAGjggLVMIIC0TAdBgNVHQ4EFgQUGf84ThcKbIzYVr9R7nWgokvaLAIwHwYDVR0j BBgwFoAUuRPCYPVr97HitzI/R7Mm+4oMvNYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xRkY3QjdGNTc3MEM0RUREN0Q2QjhFNEVFMDFDM0E0QjVC OTJFOTlDNzY2Nzg4RDczMzBFNkMyNzZDMEYzMDg4LzAvQjkxM0MyNjBGNTZCRjdC MUUyQjczMjNGNDdCMzI2RkI4QTBDQkNENi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9COTEzQzI2MEY1NkJGN0IxRTJC NzMyM0Y0N0IzMjZGQjhBMENCQ0Q2LmNlcjCB0QYIKwYBBQUHAQsEgcQwgcEwgb4G CCsGAQUFBzALhoGxcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMUZGN0I3RjU3NzBDNEVERDdENkI4RTRFRTAxQzNBNEI1QjkyRTk5Qzc2 Njc4OEQ3MzMwRTZDMjc2QzBGMzA4OC8wLzMyMzgzMDMzM2E2MzYxMzUzMDNhMzE2 NjMwMzIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjM3MzMzMTM3Mzcucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAoA8pQHwIwDQYJKoZIhvcNAQELBQADggEBAHv3XRh77AAHzQRdPgp4sPdT CPqkP2DsvmpXswWELHFxOoBu7uavmbgRIDPwfq30gNYhd+vg1Wmuv+ci78vHLIv2 GA+2wFWDi7PAPwVeqg9LxH02YPviWWDa71dcQgLyungCJz1c2qEACu1meUbeSjwJ zBjA6Ydjko6hTWsjzmdfKXp1njWs0Xv9m0YwsEDVJthCn6gInckUpzmnXwaj+VlW ypRkITQu+huJIU1qAmpMgHKNbio6wl4GVDM5+DXl3QfVBdpo8T9RBY/lxOQQlUXi Pi0Nqnj0ZIHPySkxDhxs1zJ6e7ErUTcv6qNdCBJEmZUDzm97CiUU9FhmjugjNtk= -----END CERTIFICATE-----Generated at Fri Dec 5 06:24:32 2025 by rpki-client