This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/323830303a3838303a3a2f33302d3330203d3e203237373733.roa File: 323830303a3838303a3a2f33302d3330203d3e203237373733.roa (raw, json) Hash identifier: Eo4mjB2yoTFm+H2ROCK6mqqhHT0lgU/zMhcmPPbpIbs= Subject key identifier: B1:7B:3C:F3:D0:D0:97:24:95:B7:C3:F1:8F:9F:DD:FD:3A:E9:63:D8 Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208 Certificate serial: 0F47B3E06440EF7BDCE4702FC8257EB3C2818015 Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/323830303a3838303a3a2f33302d3330203d3e203237373733.roa Signing time: Tue 06 Jan 2026 20:53:26 +0000 ROA not before: Tue 06 Jan 2026 20:48:26 +0000 ROA not after: Tue 05 Jan 2027 20:53:26 +0000 asID: 27773 IP address blocks: 2800:880::/30 maxlen: 30 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 26 Jan 2026 21:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:47:b3:e0:64:40:ef:7b:dc:e4:70:2f:c8:25:7e:b3:c2:81:80:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208 Validity Not Before: Jan 6 20:48:26 2026 GMT Not After : Jan 5 20:53:26 2027 GMT Subject: CN=B17B3CF3D0D0972495B7C3F18F9FDDFD3AE963D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fa:68:40:3a:d1:3b:9a:aa:6a:8f:e9:0b:67: dc:89:67:cd:96:4b:0d:67:83:61:ed:c4:f5:6a:2e: 57:8b:f7:e5:5f:e9:3e:99:c0:75:7f:43:f2:4c:79: fb:4f:fd:fd:3f:bb:b7:89:6c:45:85:b8:b1:32:6f: 8e:51:9a:c5:a6:15:92:9f:bd:4e:28:ae:e7:37:90: 65:6a:7c:75:ee:d8:f0:fc:20:f1:e9:07:4f:0a:d8: 21:75:8b:01:1c:f9:81:80:23:47:d1:6f:02:55:82: ff:66:c6:ce:f0:16:79:a2:91:3e:d9:7c:cf:98:e8: 2b:71:0d:09:eb:22:f4:9e:8f:6c:41:36:9e:1a:4b: ef:73:56:c2:81:bf:c1:88:1b:ac:4f:26:d3:67:a3: f8:2a:34:10:05:d4:c9:f2:de:20:dc:8a:d7:d4:4b: ef:2a:6f:39:d5:1e:c6:b6:72:52:38:a5:89:b7:fa: f3:b8:be:d2:a8:7d:f6:68:25:b2:91:e1:4f:ed:6b: 16:2c:1c:da:0d:e5:9a:c8:3f:e3:a6:bc:fe:c9:c7: 4d:65:66:d1:5f:d7:f0:fb:4a:5e:76:f6:d2:eb:bf: 51:72:1a:65:80:a4:68:bf:df:7c:d8:49:d9:3d:96: 9a:2a:b8:d2:81:99:ea:0a:50:8c:26:5a:60:5a:cb: 15:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7B:3C:F3:D0:D0:97:24:95:B7:C3:F1:8F:9F:DD:FD:3A:E9:63:D8 X509v3 Authority Key Identifier: keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/323830303a3838303a3a2f33302d3330203d3e203237373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2800:880::/30 Signature Algorithm: sha256WithRSAEncryption 91:b1:b7:03:65:96:11:f3:55:b3:33:22:79:01:74:79:f0:70: 1a:a2:96:75:47:5c:37:2f:0f:6b:3b:86:03:95:04:fa:bc:9c: a5:be:b5:86:5b:b2:40:d3:7d:e8:cf:b6:2e:9e:66:85:84:37: 15:8d:71:34:8e:8a:c9:33:5a:f4:f4:12:ee:e2:bb:05:ed:50: 70:1c:b4:05:7a:02:3d:af:21:36:91:b1:b1:ad:e9:16:86:0a: bf:17:54:f8:9b:b4:89:b8:5d:43:2c:e7:d3:50:4c:67:96:fa: b0:d8:44:cc:02:48:5c:39:a2:fc:28:ef:5e:45:5c:19:e0:61: cc:c2:1d:d0:52:7b:ad:6f:77:6b:08:b9:cc:41:13:27:64:f5: 15:1c:c7:be:60:89:b7:74:c5:47:ab:61:7b:77:5c:ca:3c:b0: d1:1f:1f:f1:bb:97:de:1c:dd:33:a7:fb:39:5a:5f:43:2d:ad: bc:db:82:e4:7b:5d:8b:54:16:0a:7f:ba:fa:00:f2:a3:ff:11: 68:8c:05:1b:6a:66:ea:31:54:13:c5:3a:28:ca:09:e7:3c:fd: 1a:f3:fa:e8:ca:64:b2:f3:57:bc:b4:1c:5e:66:d4:1b:b3:75: 30:24:9f:e4:4a:b3:17:de:ca:3f:07:20:fa:96:48:82:65:44: bf:22:c4:89 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgIUD0ez4GRA73vc5HAvyCV+s8KBgBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJDQ0JENjhFQjIyQzM3Qjg4NkQ4MUJERkM4QkE3N0NE NzMxMjIwODAeFw0yNjAxMDYyMDQ4MjZaFw0yNzAxMDUyMDUzMjZaMDMxMTAvBgNV BAMTKEIxN0IzQ0YzRDBEMDk3MjQ5NUI3QzNGMThGOUZEREZEM0FFOTYzRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV+mhAOtE7mqpqj+kLZ9yJZ82W Sw1ng2HtxPVqLleL9+Vf6T6ZwHV/Q/JMeftP/f0/u7eJbEWFuLEyb45RmsWmFZKf vU4oruc3kGVqfHXu2PD8IPHpB08K2CF1iwEc+YGAI0fRbwJVgv9mxs7wFnmikT7Z fM+Y6CtxDQnrIvSej2xBNp4aS+9zVsKBv8GIG6xPJtNno/gqNBAF1Mny3iDcitfU S+8qbznVHsa2clI4pYm3+vO4vtKoffZoJbKR4U/taxYsHNoN5ZrIP+OmvP7Jx01l ZtFf1/D7Sl529tLrv1FyGmWApGi/33zYSdk9lpoquNKBmeoKUIwmWmBayxVFAgMB AAGjggLFMIICwTAdBgNVHQ4EFgQUsXs889DQlySVt8Pxj5/d/TrpY9gwHwYDVR0j BBgwFoAUm8y9aOsiw3uIbYG9/IunfNcxIggwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zQTVGMkY4N0QxMTc4NkZCM0ZDQURBQTA0MzQzMUVCMDEz Q0RCQUQwMDI0N0VEQjdBNjUwMkJGRkQ4QjRDQzI0LzAvOUJDQ0JENjhFQjIyQzM3 Qjg4NkQ4MUJERkM4QkE3N0NENzMxMjIwOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85QkNDQkQ2OEVCMjJDMzdCODg2 RDgxQkRGQzhCQTc3Q0Q3MzEyMjA4LmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvM0E1RjJGODdEMTE3ODZGQjNGQ0FEQUEwNDM0MzFFQjAxM0NEQkFEMDAy NDdFREI3QTY1MDJCRkZEOEI0Q0MyNC8wLzMyMzgzMDMwM2EzODM4MzAzYTNhMmYz MzMwMmQzMzMwMjAzZDNlMjAzMjM3MzczNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUCKAAIgDANBgkq hkiG9w0BAQsFAAOCAQEAkbG3A2WWEfNVszMieQF0efBwGqKWdUdcNy8PazuGA5UE +rycpb61hluyQNN96M+2Lp5mhYQ3FY1xNI6KyTNa9PQS7uK7Be1QcBy0BXoCPa8h NpGxsa3pFoYKvxdU+Ju0ibhdQyzn01BMZ5b6sNhEzAJIXDmi/CjvXkVcGeBhzMId 0FJ7rW93awi5zEETJ2T1FRzHvmCJt3TFR6the3dcyjyw0R8f8buX3hzdM6f7OVpf Qy2tvNuC5Htdi1QWCn+6+gDyo/8RaIwFG2pm6jFUE8U6KMoJ5zz9GvP66MpksvNX vLQcXmbUG7N1MCSf5EqzF97KPwcg+pZIgmVEvyLEiQ== -----END CERTIFICATE-----Generated at Fri Jan 23 18:57:48 2026 by rpki-client