This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3235302e302f32332d3234203d3e203237373733.roa File: 3133382e3138362e3235302e302f32332d3234203d3e203237373733.roa (raw, json) Hash identifier: vz/O1OnMjlsWK8VlXqWiMEkURY5IvHRo4PGCv3Y0t/k= Subject key identifier: 18:9C:8F:63:DA:70:96:0C:AE:77:72:D5:56:6F:FA:19:7A:F6:53:13 Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208 Certificate serial: 45309D2B03614B2CA5A6583B1A625DE912FAF6C7 Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3235302e302f32332d3234203d3e203237373733.roa Signing time: Tue 06 Jan 2026 20:53:18 +0000 ROA not before: Tue 06 Jan 2026 20:48:18 +0000 ROA not after: Tue 05 Jan 2027 20:53:18 +0000 asID: 27773 IP address blocks: 138.186.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 26 Jan 2026 21:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:30:9d:2b:03:61:4b:2c:a5:a6:58:3b:1a:62:5d:e9:12:fa:f6:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208 Validity Not Before: Jan 6 20:48:18 2026 GMT Not After : Jan 5 20:53:18 2027 GMT Subject: CN=189C8F63DA70960CAE7772D5566FFA197AF65313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8a:bc:6d:32:9c:f0:2a:67:5d:23:75:68:c3: d1:44:84:30:d1:41:8c:b6:76:e1:0f:78:7b:45:90: f3:9d:f4:4c:45:05:3f:1b:a5:5f:ad:b1:8e:b4:90: eb:60:ee:d1:22:bc:f7:2a:2d:73:54:3d:bf:f0:ee: d7:a8:2a:ce:9a:95:63:18:b7:73:a8:1b:64:07:a0: 53:29:1e:14:a0:07:16:ca:b9:0d:fe:68:25:48:87: 96:f9:65:f3:76:1d:ca:62:a3:13:1b:9b:22:c1:f1: d9:c2:78:1a:53:37:15:65:5e:46:e7:a4:37:be:5e: ce:07:3c:16:76:71:cb:a5:30:38:f3:0a:d7:81:03: e7:13:2f:09:e7:b7:0c:f0:fe:bc:da:2c:42:4f:ce: cd:5b:b4:e9:9a:9f:0b:64:62:6a:5b:d9:0c:84:09: b5:fb:53:f5:3e:dc:a6:45:5a:53:e3:3b:c0:f4:11: 64:8c:c3:77:2a:7f:12:bc:3c:36:e7:7c:00:1e:9b: aa:26:66:f4:6d:7c:8b:4e:99:0d:43:d6:43:6c:81: 3a:a0:eb:4f:aa:81:80:fd:f6:16:64:e1:b0:dd:11: b6:4e:35:c9:29:18:bc:e9:6b:16:d1:35:00:b4:e2: b1:a4:db:4c:c3:f7:c6:fb:28:77:4b:85:ec:23:3e: 49:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:9C:8F:63:DA:70:96:0C:AE:77:72:D5:56:6F:FA:19:7A:F6:53:13 X509v3 Authority Key Identifier: keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3235302e302f32332d3234203d3e203237373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.186.250.0/23 Signature Algorithm: sha256WithRSAEncryption 17:f2:d4:2f:d2:31:02:ae:79:41:17:07:65:97:c1:64:17:1b: be:e3:62:cc:1f:ef:f1:c8:64:21:a0:44:db:f4:e5:ab:a3:c9: 3b:82:3c:02:94:12:21:fa:e3:46:d6:fc:36:5f:17:cc:b2:d8: 9f:66:53:a1:9b:84:9d:ff:32:b6:87:41:26:63:a5:17:3a:84: 71:09:a9:e3:ad:09:66:33:c4:bb:43:a5:f8:72:75:16:ef:a6: 4f:a3:7b:3b:66:87:fd:02:dd:21:fb:9c:2f:97:14:e8:cc:3c: 13:03:4b:63:78:7d:21:1c:d5:c2:c5:fd:46:2c:fc:b0:8d:ac: f5:98:94:14:f7:75:33:18:57:5f:01:62:d0:5c:e8:33:62:24: 10:95:b0:28:78:bc:78:5c:e9:33:7f:b8:7c:7f:a5:de:c9:17: f4:b1:3e:7a:c3:8f:50:17:ca:b4:e1:ae:f7:54:97:e4:8b:3b: 27:f3:f4:1c:68:be:24:2d:ea:db:3f:0d:8c:5b:ed:9a:81:79: d6:5d:19:c5:40:c7:16:fc:38:c1:c9:b9:e9:34:77:28:14:99: 38:02:2d:9e:c2:6b:90:da:35:fc:d5:b7:04:5b:80:45:5c:8c: dc:76:64:b0:75:29:67:7a:41:56:e2:ca:6f:b7:95:b5:cd:98: e4:4a:4c:fa -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIURTCdKwNhSyylplg7GmJd6RL69scwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJDQ0JENjhFQjIyQzM3Qjg4NkQ4MUJERkM4QkE3N0NE NzMxMjIwODAeFw0yNjAxMDYyMDQ4MThaFw0yNzAxMDUyMDUzMThaMDMxMTAvBgNV BAMTKDE4OUM4RjYzREE3MDk2MENBRTc3NzJENTU2NkZGQTE5N0FGNjUzMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWirxtMpzwKmddI3Vow9FEhDDR QYy2duEPeHtFkPOd9ExFBT8bpV+tsY60kOtg7tEivPcqLXNUPb/w7teoKs6alWMY t3OoG2QHoFMpHhSgBxbKuQ3+aCVIh5b5ZfN2HcpioxMbmyLB8dnCeBpTNxVlXkbn pDe+Xs4HPBZ2cculMDjzCteBA+cTLwnntwzw/rzaLEJPzs1btOmanwtkYmpb2QyE CbX7U/U+3KZFWlPjO8D0EWSMw3cqfxK8PDbnfAAem6omZvRtfItOmQ1D1kNsgTqg 60+qgYD99hZk4bDdEbZONckpGLzpaxbRNQC04rGk20zD98b7KHdLhewjPkmxAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUGJyPY9pwlgyud3LVVm/6GXr2UxMwHwYDVR0j BBgwFoAUm8y9aOsiw3uIbYG9/IunfNcxIggwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zQTVGMkY4N0QxMTc4NkZCM0ZDQURBQTA0MzQzMUVCMDEz Q0RCQUQwMDI0N0VEQjdBNjUwMkJGRkQ4QjRDQzI0LzAvOUJDQ0JENjhFQjIyQzM3 Qjg4NkQ4MUJERkM4QkE3N0NENzMxMjIwOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85QkNDQkQ2OEVCMjJDMzdCODg2 RDgxQkRGQzhCQTc3Q0Q3MzEyMjA4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvM0E1RjJGODdEMTE3ODZGQjNGQ0FEQUEwNDM0MzFFQjAxM0NEQkFEMDAy NDdFREI3QTY1MDJCRkZEOEI0Q0MyNC8wLzMxMzMzODJlMzEzODM2MmUzMjM1MzAy ZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMjM3MzczNzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBirr6 MA0GCSqGSIb3DQEBCwUAA4IBAQAX8tQv0jECrnlBFwdll8FkFxu+42LMH+/xyGQh oETb9OWro8k7gjwClBIh+uNG1vw2XxfMstifZlOhm4Sd/zK2h0EmY6UXOoRxCanj rQlmM8S7Q6X4cnUW76ZPo3s7Zof9At0h+5wvlxTozDwTA0tjeH0hHNXCxf1GLPyw jaz1mJQU93UzGFdfAWLQXOgzYiQQlbAoeLx4XOkzf7h8f6XeyRf0sT56w49QF8q0 4a73VJfkizsn8/QcaL4kLerbPw2MW+2agXnWXRnFQMcW/DjBybnpNHcoFJk4Ai2e wmuQ2jX81bcEW4BFXIzcdmSwdSlnekFW4spvt5W1zZjkSkz6 -----END CERTIFICATE-----Generated at Fri Jan 23 19:00:43 2026 by rpki-client