This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3234392e302f32342d3234203d3e203237373733.roa File: 3133382e3138362e3234392e302f32342d3234203d3e203237373733.roa (raw, json) Hash identifier: ImoOSvIpdSVJjwjJ/0zG0cBuCIHSHMklxDHL2DGNiU8= Subject key identifier: A7:00:34:01:7C:5F:6C:99:12:8F:33:9E:C8:EA:C3:BC:EA:D1:CD:40 Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208 Certificate serial: 21F393B304CFD7E90E34323B09DBD423CCCC2880 Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3234392e302f32342d3234203d3e203237373733.roa Signing time: Tue 06 Jan 2026 20:53:18 +0000 ROA not before: Tue 06 Jan 2026 20:48:18 +0000 ROA not after: Tue 05 Jan 2027 20:53:18 +0000 asID: 27773 IP address blocks: 138.186.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 26 Jan 2026 21:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f3:93:b3:04:cf:d7:e9:0e:34:32:3b:09:db:d4:23:cc:cc:28:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208 Validity Not Before: Jan 6 20:48:18 2026 GMT Not After : Jan 5 20:53:18 2027 GMT Subject: CN=A70034017C5F6C99128F339EC8EAC3BCEAD1CD40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:55:70:8f:a4:b2:c6:4c:51:ee:7b:2c:36:c3: 59:41:84:dc:8b:1f:5c:40:3c:2a:b0:c5:1f:5b:aa: 15:66:16:53:cc:f6:ff:6a:2e:a1:f0:9a:d1:a8:fd: 7a:49:b4:19:5f:76:56:93:9c:53:4e:1f:14:53:f1: 9d:1c:35:bc:9a:2f:5c:aa:65:7c:8b:8f:9c:f7:fa: 67:79:f8:1c:e9:9e:a9:c5:f5:b6:30:25:a4:ca:b8: a7:85:06:58:57:0a:5d:b1:98:0b:60:0b:1c:91:c7: 44:46:00:c6:65:ed:19:4f:72:31:58:d5:47:ce:4b: c3:06:44:42:84:20:1b:de:9a:f1:db:1e:8a:88:a7: a2:fe:f4:22:37:33:16:7b:6a:35:c9:a5:4e:2b:a0: ae:5e:df:ae:b0:6a:41:75:3b:10:94:aa:da:61:40: 34:8f:64:3a:f3:e1:08:28:02:dc:10:a8:ca:17:ee: 86:a8:69:a4:10:8f:85:6d:42:c5:5f:12:06:c5:ea: 0b:92:0d:d9:1e:d6:51:35:bb:8b:47:03:f9:00:e3: d1:9a:3d:84:17:60:1e:e4:96:39:b1:c3:e2:9d:9a: 40:f0:16:3f:ae:ad:8f:11:35:79:25:a8:9c:f6:0f: cd:f2:34:17:2b:3e:1d:2e:7c:6e:af:ec:43:fb:95: 43:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:00:34:01:7C:5F:6C:99:12:8F:33:9E:C8:EA:C3:BC:EA:D1:CD:40 X509v3 Authority Key Identifier: keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3234392e302f32342d3234203d3e203237373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.186.249.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:48:b5:af:2c:a5:b7:2c:06:a0:9d:ae:ed:35:9b:ea:e0:8e: b8:5a:3b:4b:fc:b1:c3:d0:6c:8f:cd:cb:ce:14:0b:dd:b8:07: cf:6a:c6:e9:d6:5e:50:73:6c:0e:98:a2:25:c2:f9:0e:ec:0b: 2b:07:26:cd:ce:f4:4c:28:1f:2f:2d:18:f2:48:05:49:01:63: 34:60:ad:8e:54:1a:bf:29:14:7a:f9:17:78:09:23:75:5e:d0: 07:9e:c3:52:f2:69:0a:57:a9:f0:a0:d1:e0:c3:96:ef:ca:62: ba:70:ae:9a:4e:7b:a0:f5:3d:7a:d1:22:b2:2e:20:b3:76:1a: a0:67:a2:d7:d5:db:2e:61:52:4e:a4:4d:6c:f7:5c:14:e2:47: b5:2b:59:9e:e3:e4:63:f1:0f:86:a1:15:d6:c4:f5:cb:62:3c: 1e:ef:0f:85:7a:bc:8f:77:a6:44:1d:2d:c7:21:28:c6:31:51: 3b:c1:b5:f4:6a:ef:6e:f4:61:51:a5:93:df:4a:64:d2:64:34: 72:de:00:d3:84:78:2a:ca:7e:7f:33:7b:ac:74:74:de:bc:8f: ac:b4:68:54:3f:64:91:83:fa:b2:be:51:8c:f5:32:d6:34:07: 12:1b:0f:8c:f7:ce:d4:4c:87:83:71:bd:63:cc:e7:80:6f:fe: e2:4c:c4:df -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUIfOTswTP1+kONDI7CdvUI8zMKIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJDQ0JENjhFQjIyQzM3Qjg4NkQ4MUJERkM4QkE3N0NE NzMxMjIwODAeFw0yNjAxMDYyMDQ4MThaFw0yNzAxMDUyMDUzMThaMDMxMTAvBgNV BAMTKEE3MDAzNDAxN0M1RjZDOTkxMjhGMzM5RUM4RUFDM0JDRUFEMUNENDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOVXCPpLLGTFHueyw2w1lBhNyL H1xAPCqwxR9bqhVmFlPM9v9qLqHwmtGo/XpJtBlfdlaTnFNOHxRT8Z0cNbyaL1yq ZXyLj5z3+md5+BzpnqnF9bYwJaTKuKeFBlhXCl2xmAtgCxyRx0RGAMZl7RlPcjFY 1UfOS8MGREKEIBvemvHbHoqIp6L+9CI3MxZ7ajXJpU4roK5e366wakF1OxCUqtph QDSPZDrz4QgoAtwQqMoX7oaoaaQQj4VtQsVfEgbF6guSDdke1lE1u4tHA/kA49Ga PYQXYB7kljmxw+KdmkDwFj+urY8RNXklqJz2D83yNBcrPh0ufG6v7EP7lUPVAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUpwA0AXxfbJkSjzOeyOrDvOrRzUAwHwYDVR0j BBgwFoAUm8y9aOsiw3uIbYG9/IunfNcxIggwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zQTVGMkY4N0QxMTc4NkZCM0ZDQURBQTA0MzQzMUVCMDEz Q0RCQUQwMDI0N0VEQjdBNjUwMkJGRkQ4QjRDQzI0LzAvOUJDQ0JENjhFQjIyQzM3 Qjg4NkQ4MUJERkM4QkE3N0NENzMxMjIwOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85QkNDQkQ2OEVCMjJDMzdCODg2 RDgxQkRGQzhCQTc3Q0Q3MzEyMjA4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvM0E1RjJGODdEMTE3ODZGQjNGQ0FEQUEwNDM0MzFFQjAxM0NEQkFEMDAy NDdFREI3QTY1MDJCRkZEOEI0Q0MyNC8wLzMxMzMzODJlMzEzODM2MmUzMjM0Mzky ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3MzczNzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAirr5 MA0GCSqGSIb3DQEBCwUAA4IBAQCMSLWvLKW3LAagna7tNZvq4I64WjtL/LHD0GyP zcvOFAvduAfPasbp1l5Qc2wOmKIlwvkO7AsrBybNzvRMKB8vLRjySAVJAWM0YK2O VBq/KRR6+Rd4CSN1XtAHnsNS8mkKV6nwoNHgw5bvymK6cK6aTnug9T160SKyLiCz dhqgZ6LX1dsuYVJOpE1s91wU4ke1K1me4+Rj8Q+GoRXWxPXLYjwe7w+FeryPd6ZE HS3HISjGMVE7wbX0au9u9GFRpZPfSmTSZDRy3gDThHgqyn5/M3usdHTevI+stGhU P2SRg/qyvlGM9TLWNAcSGw+M987UTIeDcb1jzOeAb/7iTMTf -----END CERTIFICATE-----Generated at Fri Jan 23 19:00:53 2026 by rpki-client