This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa File: AS28541.roa (raw, json) Hash identifier: 2cBtWF+eAXo93bL98SXH6W7beb1XxxyXyLHqIv+1JR0= Subject key identifier: 25:2E:4E:F8:FA:0B:4F:32:3A:F1:33:08:A0:6E:5C:90:7B:7E:9E:F6 Certificate issuer: /CN=3B34906CA2BE711E565ADA84356DDADC6B48AA3E Certificate serial: 230E3F2E919C367635CDC38099B6AEF8C18F7789 Authority key identifier: 3B:34:90:6C:A2:BE:71:1E:56:5A:DA:84:35:6D:DA:DC:6B:48:AA:3E Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3B34906CA2BE711E565ADA84356DDADC6B48AA3E.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa Signing time: Mon 08 Dec 2025 08:45:01 +0000 ROA not before: Mon 08 Dec 2025 08:40:01 +0000 ROA not after: Mon 07 Dec 2026 08:45:01 +0000 asID: 28541 IP address blocks: 177.242.192.0/21 maxlen: 21 177.242.200.0/21 maxlen: 24 177.247.176.0/23 maxlen: 23 201.159.192.0/21 maxlen: 24 201.159.207.0/24 maxlen: 24 2806:260:1020::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/3B34906CA2BE711E565ADA84356DDADC6B48AA3E.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/3B34906CA2BE711E565ADA84356DDADC6B48AA3E.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3B34906CA2BE711E565ADA84356DDADC6B48AA3E.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 15 Dec 2025 08:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:0e:3f:2e:91:9c:36:76:35:cd:c3:80:99:b6:ae:f8:c1:8f:77:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B34906CA2BE711E565ADA84356DDADC6B48AA3E Validity Not Before: Dec 8 08:40:01 2025 GMT Not After : Dec 7 08:45:01 2026 GMT Subject: CN=252E4EF8FA0B4F323AF13308A06E5C907B7E9EF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2d:b9:fb:be:a2:58:a7:39:3e:02:c7:ac:1a: 6e:d3:2e:04:32:22:32:5d:67:eb:35:b6:0d:36:c2: 03:5f:e5:5c:fc:1e:61:3b:f9:88:a7:b7:72:fd:26: 29:b0:59:28:45:6a:d1:15:ca:3f:20:f0:0b:58:03: 1b:d0:66:8c:5a:9d:47:78:63:a6:e5:aa:43:a5:1a: 51:ac:28:9d:2f:14:f6:ee:bc:e4:b3:37:29:f8:26: 32:07:6e:e8:42:c5:47:fa:c1:9e:90:8e:65:05:49: 9f:49:9a:0c:d8:38:0f:79:ba:18:cd:6d:3c:b7:6f: 07:65:81:71:9d:ab:cc:7b:1a:61:5c:9c:01:4d:a6: f9:fd:70:64:c3:76:e2:02:cd:a0:9a:bc:51:dd:1d: 6d:0d:85:63:07:b9:82:2f:b0:70:e0:a5:10:63:fa: fb:f2:df:18:b7:b9:79:cb:81:c6:4e:65:7a:14:61: 07:a4:f3:88:2b:f6:56:bb:7b:8c:94:33:ec:0f:66: b3:9a:16:76:e4:17:7a:44:f8:44:fd:93:ae:84:ad: c3:e2:54:2a:20:f4:b9:ce:f7:a6:82:6b:0a:b2:7c: df:6c:e5:52:78:8b:86:3f:c9:c0:8a:ea:e9:88:b3: 2d:13:f3:c5:a2:6a:11:bd:99:10:86:f2:65:67:5c: 71:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:2E:4E:F8:FA:0B:4F:32:3A:F1:33:08:A0:6E:5C:90:7B:7E:9E:F6 X509v3 Authority Key Identifier: keyid:3B:34:90:6C:A2:BE:71:1E:56:5A:DA:84:35:6D:DA:DC:6B:48:AA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/3B34906CA2BE711E565ADA84356DDADC6B48AA3E.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3B34906CA2BE711E565ADA84356DDADC6B48AA3E.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.242.192.0/20 177.247.176.0/23 201.159.192.0/21 201.159.207.0/24 IPv6: 2806:260:1020::/48 Signature Algorithm: sha256WithRSAEncryption de:da:60:0b:c0:20:6e:9a:79:80:08:69:db:4c:a0:8e:23:9f: f6:05:4a:a8:22:d6:dc:4d:30:0e:21:75:78:e3:47:bb:19:6d: 2c:f2:0c:41:09:da:9b:bd:36:d9:b3:a4:28:d8:58:8c:55:7a: ca:ce:1b:c7:92:e1:59:5a:e2:59:2a:39:de:f8:b3:f2:6d:9b: ad:e2:39:72:fe:58:4b:09:f7:29:41:92:be:49:3c:c6:9a:cd: 76:d9:c5:18:e2:9c:fa:ed:6c:57:6f:60:6a:c9:4c:26:fe:54: 13:6c:d7:b5:4e:20:0a:fb:62:96:3d:83:0d:66:a0:68:78:d2: 21:96:dc:b4:1e:89:74:3d:2b:75:90:b7:a4:eb:a4:a6:ee:e6: 77:4f:2b:a0:f8:ed:f0:e5:a2:8b:46:38:93:4d:f1:c3:95:06: 56:70:10:3d:5b:f8:4f:45:42:e3:e9:e1:bc:50:18:f6:da:79: bf:91:c6:69:59:b3:d6:2a:c6:e2:d8:ae:46:3a:19:92:f4:36: 38:e9:c6:08:db:ce:20:7e:e7:f4:2b:97:19:47:04:11:85:b8: 67:c9:e0:d8:b6:f3:71:32:36:23:cc:dc:d6:d0:aa:d2:b1:00: 56:18:7b:6e:72:a1:bf:6e:dc:cb:bf:a0:2d:91:fb:c2:d9:29: 16:b8:93:74 -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgIUIw4/LpGcNnY1zcOAmbau+MGPd4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IzNDkwNkNBMkJFNzExRTU2NUFEQTg0MzU2RERBREM2 QjQ4QUEzRTAeFw0yNTEyMDgwODQwMDFaFw0yNjEyMDcwODQ1MDFaMDMxMTAvBgNV BAMTKDI1MkU0RUY4RkEwQjRGMzIzQUYxMzMwOEEwNkU1QzkwN0I3RTlFRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnLbn7vqJYpzk+AsesGm7TLgQy IjJdZ+s1tg02wgNf5Vz8HmE7+Yint3L9JimwWShFatEVyj8g8AtYAxvQZoxanUd4 Y6blqkOlGlGsKJ0vFPbuvOSzNyn4JjIHbuhCxUf6wZ6QjmUFSZ9JmgzYOA95uhjN bTy3bwdlgXGdq8x7GmFcnAFNpvn9cGTDduICzaCavFHdHW0NhWMHuYIvsHDgpRBj +vvy3xi3uXnLgcZOZXoUYQek84gr9la7e4yUM+wPZrOaFnbkF3pE+ET9k66ErcPi VCog9LnO96aCawqyfN9s5VJ4i4Y/ycCK6umIsy0T88WiahG9mRCG8mVnXHGPAgMB AAGjggK7MIICtzAdBgNVHQ4EFgQUJS5O+PoLTzI68TMIoG5ckHt+nvYwHwYDVR0j BBgwFoAUOzSQbKK+cR5WWtqENW3a3GtIqj4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvM0IzNDkwNkNBMkJFNzEx RTU2NUFEQTg0MzU2RERBREM2QjQ4QUEzRS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zQjM0OTA2Q0EyQkU3MTFFNTY1 QURBODQzNTZEREFEQzZCNDhBQTNFLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODU0MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBCBggrBgEFBQcBBwEB/wQzMDEwHgQCAAEwGAMEBLHywAME AbH3sAMEA8mfwAMEAMmfzzAPBAIAAjAJAwcAKAYCYBAgMA0GCSqGSIb3DQEBCwUA A4IBAQDe2mALwCBumnmACGnbTKCOI5/2BUqoItbcTTAOIXV440e7GW0s8gxBCdqb vTbZs6Qo2FiMVXrKzhvHkuFZWuJZKjne+LPybZut4jly/lhLCfcpQZK+STzGms12 2cUY4pz67WxXb2BqyUwm/lQTbNe1TiAK+2KWPYMNZqBoeNIhlty0Hol0PSt1kLek 66Sm7uZ3Tyug+O3w5aKLRjiTTfHDlQZWcBA9W/hPRULj6eG8UBj22nm/kcZpWbPW Ksbi2K5GOhmS9DY46cYI284gfuf0K5cZRwQRhbhnyeDYtvNxMjYjzNzW0KrSsQBW GHtucqG/btzLv6AtkfvC2SkWuJN0 -----END CERTIFICATE-----Generated at Thu Dec 11 13:09:44 2025 by rpki-client