This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/323830333a636135303a326630313a3a2f34382d3438203d3e20323733313737.roa File: 323830333a636135303a326630313a3a2f34382d3438203d3e20323733313737.roa (raw, json) Hash identifier: fe7cqLcd3jQjbsLnFcsce0xXLMGTY1qoAnTCMqLs1t0= Subject key identifier: 03:F0:B9:9C:A4:03:9D:BF:89:71:36:ED:71:FE:3D:A9:31:C3:08:7C Certificate issuer: /CN=B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6 Certificate serial: 7DA22364E58027C578D12AE544B587803DA68158 Authority key identifier: B9:13:C2:60:F5:6B:F7:B1:E2:B7:32:3F:47:B3:26:FB:8A:0C:BC:D6 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/323830333a636135303a326630313a3a2f34382d3438203d3e20323733313737.roa Signing time: Wed 12 Nov 2025 20:52:25 +0000 ROA not before: Wed 12 Nov 2025 20:47:25 +0000 ROA not after: Wed 11 Nov 2026 20:52:25 +0000 asID: 273177 IP address blocks: 2803:ca50:2f01::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.crl rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 08 Dec 2025 11:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a2:23:64:e5:80:27:c5:78:d1:2a:e5:44:b5:87:80:3d:a6:81:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6 Validity Not Before: Nov 12 20:47:25 2025 GMT Not After : Nov 11 20:52:25 2026 GMT Subject: CN=03F0B99CA4039DBF897136ED71FE3DA931C3087C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:16:6a:3d:e2:92:fc:f6:15:69:00:56:b4:55: aa:97:55:7a:1e:16:07:d0:4d:64:b1:eb:6f:99:99: 97:90:53:d9:66:90:be:e3:6d:d5:d6:a4:54:93:5e: 08:74:e9:39:70:94:70:2a:2c:43:74:73:36:d2:17: 04:44:a9:3f:24:b6:db:9a:0a:4f:78:2f:49:3f:91: 33:17:0b:3c:fd:52:6b:73:63:f9:22:3f:83:c3:93: e9:18:55:c5:a5:63:f5:7a:e8:1d:f8:a9:aa:66:f8: 65:b5:72:fc:41:d3:a0:34:62:9c:eb:3c:66:83:f0: 65:10:c4:e0:2e:67:10:b1:5a:23:97:2c:3b:87:4c: 34:41:73:cb:37:0d:29:6d:41:9b:d4:b3:fa:af:f1: 4d:fc:75:91:2b:16:f9:2d:dd:c5:32:c2:eb:4b:72: f7:3d:aa:e2:dd:ba:3b:d5:c3:53:da:70:d3:29:1e: 8a:8c:86:18:23:44:ed:55:5a:ea:4b:f8:8b:b2:40: cf:53:ea:84:ba:7b:76:1b:b6:d3:f4:a7:8b:33:76: fe:a0:29:50:6d:0c:e2:7a:27:7f:74:99:f8:43:32: 20:6a:28:70:24:95:f8:bf:7b:fd:21:92:d1:01:8d: f8:2f:b7:b3:8d:af:9b:c2:4e:86:d3:cf:51:ec:0c: 3d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F0:B9:9C:A4:03:9D:BF:89:71:36:ED:71:FE:3D:A9:31:C3:08:7C X509v3 Authority Key Identifier: keyid:B9:13:C2:60:F5:6B:F7:B1:E2:B7:32:3F:47:B3:26:FB:8A:0C:BC:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B913C260F56BF7B1E2B7323F47B326FB8A0CBCD6.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1FF7B7F5770C4EDD7D6B8E4EE01C3A4B5B92E99C766788D7330E6C276C0F3088/0/323830333a636135303a326630313a3a2f34382d3438203d3e20323733313737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:ca50:2f01::/48 Signature Algorithm: sha256WithRSAEncryption 26:66:fe:5d:76:7d:dd:d8:19:72:6c:c0:1d:ce:80:ea:46:38: e0:57:07:c7:c2:ae:63:0a:30:77:85:ee:9f:9f:09:8c:e6:ba: 5b:77:f1:95:f5:3d:21:a4:95:0c:59:49:15:ce:09:e8:55:79: f8:95:fb:1f:73:ad:24:f9:d5:7f:5d:8a:bd:13:8f:45:56:b9: 2e:2e:92:cf:92:df:65:c2:41:d4:e1:ec:f4:b5:41:f8:4d:00: 39:79:27:3f:69:07:78:cc:9f:90:d3:db:74:36:67:c3:c2:41: 5d:5d:15:aa:c7:38:88:61:45:44:46:ca:5f:3d:05:ab:6d:9d: 9a:21:1b:78:50:ab:0a:a6:95:88:9a:6a:26:46:06:48:b6:d2: 2c:09:48:2a:8d:e4:9d:68:c0:a1:34:d3:e8:48:5b:5e:63:b6: 2a:2e:6f:ab:3f:72:01:aa:e6:cb:fd:ec:b7:5d:d9:24:38:16: d8:a7:9d:74:a9:8d:88:7a:d8:23:e4:02:98:1c:18:f5:5e:c8: 8e:29:0b:73:05:00:7a:df:25:11:e0:97:a5:92:73:09:86:cf: 31:5b:c3:c0:a6:8c:fe:88:78:d5:ac:89:db:9b:12:5a:99:a6: 1e:88:67:81:f7:d5:d9:b8:c3:a0:1f:b9:94:17:21:d6:97:92: 90:a5:22:35 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUfaIjZOWAJ8V40SrlRLWHgD2mgVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkxM0MyNjBGNTZCRjdCMUUyQjczMjNGNDdCMzI2RkI4 QTBDQkNENjAeFw0yNTExMTIyMDQ3MjVaFw0yNjExMTEyMDUyMjVaMDMxMTAvBgNV BAMTKDAzRjBCOTlDQTQwMzlEQkY4OTcxMzZFRDcxRkUzREE5MzFDMzA4N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcFmo94pL89hVpAFa0VaqXVXoe FgfQTWSx62+ZmZeQU9lmkL7jbdXWpFSTXgh06TlwlHAqLEN0czbSFwREqT8kttua Ck94L0k/kTMXCzz9UmtzY/kiP4PDk+kYVcWlY/V66B34qapm+GW1cvxB06A0Ypzr PGaD8GUQxOAuZxCxWiOXLDuHTDRBc8s3DSltQZvUs/qv8U38dZErFvkt3cUywutL cvc9quLdujvVw1PacNMpHoqMhhgjRO1VWupL+IuyQM9T6oS6e3YbttP0p4szdv6g KVBtDOJ6J390mfhDMiBqKHAklfi/e/0hktEBjfgvt7ONr5vCTobTz1HsDD2XAgMB AAGjggLVMIIC0TAdBgNVHQ4EFgQUA/C5nKQDnb+JcTbtcf49qTHDCHwwHwYDVR0j BBgwFoAUuRPCYPVr97HitzI/R7Mm+4oMvNYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xRkY3QjdGNTc3MEM0RUREN0Q2QjhFNEVFMDFDM0E0QjVC OTJFOTlDNzY2Nzg4RDczMzBFNkMyNzZDMEYzMDg4LzAvQjkxM0MyNjBGNTZCRjdC MUUyQjczMjNGNDdCMzI2RkI4QTBDQkNENi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9COTEzQzI2MEY1NkJGN0IxRTJC NzMyM0Y0N0IzMjZGQjhBMENCQ0Q2LmNlcjCB0QYIKwYBBQUHAQsEgcQwgcEwgb4G CCsGAQUFBzALhoGxcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMUZGN0I3RjU3NzBDNEVERDdENkI4RTRFRTAxQzNBNEI1QjkyRTk5Qzc2 Njc4OEQ3MzMwRTZDMjc2QzBGMzA4OC8wLzMyMzgzMDMzM2E2MzYxMzUzMDNhMzI2 NjMwMzEzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjM3MzMzMTM3Mzcucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAoA8pQLwEwDQYJKoZIhvcNAQELBQADggEBACZm/l12fd3YGXJswB3OgOpG OOBXB8fCrmMKMHeF7p+fCYzmult38ZX1PSGklQxZSRXOCehVefiV+x9zrST51X9d ir0Tj0VWuS4uks+S32XCQdTh7PS1QfhNADl5Jz9pB3jMn5DT23Q2Z8PCQV1dFarH OIhhRURGyl89BattnZohG3hQqwqmlYiaaiZGBki20iwJSCqN5J1owKE00+hIW15j tioub6s/cgGq5sv97Ldd2SQ4FtinnXSpjYh62CPkApgcGPVeyI4pC3MFAHrfJRHg l6WScwmGzzFbw8CmjP6IeNWsidubElqZph6IZ4H31dm4w6AfuZQXIdaXkpClIjU= -----END CERTIFICATE-----Generated at Fri Dec 5 06:24:32 2025 by rpki-client