This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/72EA4D136B20E59E7C2644AF459C7B77DF7EF53984D3A9388E6850324C266FF0/0/3133382e3230342e3135322e302f32322d3234203d3e20323633383038.roa File: 3133382e3230342e3135322e302f32322d3234203d3e20323633383038.roa (raw, json) Hash identifier: TK9/dTF97LAIn1G64Tg4R0rwnLA/up6NiHfdbA81WXc= Subject key identifier: 3F:6F:F1:BC:09:BA:F6:EE:F1:26:A6:2A:D1:C0:85:E9:E6:5C:22:64 Certificate issuer: /CN=EC10C9CADB7DBD590B08CF5996AE27024C9DD050 Certificate serial: 3090F6EF3AC4BBA57E0ACB728D4562959A0A0A3D Authority key identifier: EC:10:C9:CA:DB:7D:BD:59:0B:08:CF:59:96:AE:27:02:4C:9D:D0:50 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EC10C9CADB7DBD590B08CF5996AE27024C9DD050.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/72EA4D136B20E59E7C2644AF459C7B77DF7EF53984D3A9388E6850324C266FF0/0/3133382e3230342e3135322e302f32322d3234203d3e20323633383038.roa Signing time: Tue 06 Jan 2026 20:55:19 +0000 ROA not before: Tue 06 Jan 2026 20:50:19 +0000 ROA not after: Tue 05 Jan 2027 20:55:19 +0000 asID: 263808 IP address blocks: 138.204.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/72EA4D136B20E59E7C2644AF459C7B77DF7EF53984D3A9388E6850324C266FF0/0/EC10C9CADB7DBD590B08CF5996AE27024C9DD050.crl rsync://repository.lacnic.net/rpki/lacnic/72EA4D136B20E59E7C2644AF459C7B77DF7EF53984D3A9388E6850324C266FF0/0/EC10C9CADB7DBD590B08CF5996AE27024C9DD050.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EC10C9CADB7DBD590B08CF5996AE27024C9DD050.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 01 Feb 2026 15:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:90:f6:ef:3a:c4:bb:a5:7e:0a:cb:72:8d:45:62:95:9a:0a:0a:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC10C9CADB7DBD590B08CF5996AE27024C9DD050 Validity Not Before: Jan 6 20:50:19 2026 GMT Not After : Jan 5 20:55:19 2027 GMT Subject: CN=3F6FF1BC09BAF6EEF126A62AD1C085E9E65C2264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f3:23:a8:d7:1a:ae:b2:06:c6:3e:e7:76:06: f1:df:2a:16:d5:78:4e:71:d1:26:ac:2f:3f:f6:1c: 13:0e:0a:9a:ed:ef:5d:b3:d5:7d:d6:ef:03:11:85: b9:b4:16:67:71:9b:49:4b:06:7a:ee:89:cd:87:1d: c6:32:fa:b5:a6:18:0e:7d:42:33:56:b5:2a:e1:7b: dc:47:a5:9d:8d:46:b5:65:4d:61:ed:46:5f:c7:06: 64:67:65:0a:ac:93:e8:d1:45:ac:de:f1:2b:ff:ba: a8:36:02:b6:89:fc:53:f9:a0:d8:b9:ac:7a:e9:9d: 8d:e6:3d:95:70:bc:e1:b2:e8:ec:f2:ce:02:c6:99: 92:d6:ea:4a:a7:95:dc:c6:a8:e7:90:a3:30:6e:2b: 26:91:23:7f:14:89:3a:30:be:5f:e3:fe:9b:79:ad: d6:a4:16:88:0d:a0:11:da:74:27:6a:79:39:44:65: 1e:cb:79:1a:fd:46:2d:80:d1:17:e5:5b:f4:00:3e: 34:39:eb:35:58:12:49:d6:8f:01:d1:e4:14:c2:12: e9:a5:dc:03:a9:9a:51:be:7f:dc:d4:ab:70:e4:b1: 36:cb:7c:bf:c7:88:c0:ce:ea:8b:cc:1d:f1:c8:58: 39:6b:cb:fa:0b:9e:74:dc:35:f5:d7:0f:40:d3:45: ed:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6F:F1:BC:09:BA:F6:EE:F1:26:A6:2A:D1:C0:85:E9:E6:5C:22:64 X509v3 Authority Key Identifier: keyid:EC:10:C9:CA:DB:7D:BD:59:0B:08:CF:59:96:AE:27:02:4C:9D:D0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/72EA4D136B20E59E7C2644AF459C7B77DF7EF53984D3A9388E6850324C266FF0/0/EC10C9CADB7DBD590B08CF5996AE27024C9DD050.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EC10C9CADB7DBD590B08CF5996AE27024C9DD050.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/72EA4D136B20E59E7C2644AF459C7B77DF7EF53984D3A9388E6850324C266FF0/0/3133382e3230342e3135322e302f32322d3234203d3e20323633383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.204.152.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:01:ce:d1:5e:f5:de:a3:91:97:e7:21:30:d1:97:96:2f:a6: 2c:12:5c:2a:f3:22:b5:4b:e7:f9:89:37:0f:0d:c4:3e:26:0b: c2:cc:66:3d:61:c3:44:60:33:3a:1d:6d:7a:07:7c:72:5b:f6: 51:9d:bf:a7:e6:3e:b1:0c:eb:b3:57:ed:d7:b9:7f:30:95:55: 8f:b9:8c:0b:2e:36:45:47:28:e5:e9:6a:48:1b:ed:7d:ec:7d: 70:b4:1d:6f:f4:bc:8d:3e:84:9a:ab:b6:aa:e4:1a:a5:a5:34: 74:8f:2d:94:92:a7:df:73:1f:d3:23:4d:a9:8b:de:32:e3:5b: da:00:c0:61:9f:96:25:6a:b8:d6:5a:30:41:37:15:4c:2b:24: 3d:35:c2:41:66:2c:bb:42:0c:99:ba:e6:43:95:e3:c7:5b:25: 59:87:1f:45:56:fb:3f:31:5f:2b:59:13:2b:bf:98:9c:75:fd: 6b:67:7e:81:5b:6e:b9:0f:90:f6:21:76:14:23:59:61:0a:3f: d3:9f:58:83:a8:66:8a:7e:1c:06:99:e4:f2:9d:4f:cf:fe:3c: 4f:43:95:4c:9b:fc:05:57:be:c4:22:c0:b5:73:2c:2a:57:ec: 54:18:cd:14:b6:0d:e6:cf:f6:cb:1d:52:0f:83:f9:68:76:6f: a4:10:f4:e0 -----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgIUMJD27zrEu6V+CstyjUVilZoKCj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUMxMEM5Q0FEQjdEQkQ1OTBCMDhDRjU5OTZBRTI3MDI0 QzlERDA1MDAeFw0yNjAxMDYyMDUwMTlaFw0yNzAxMDUyMDU1MTlaMDMxMTAvBgNV BAMTKDNGNkZGMUJDMDlCQUY2RUVGMTI2QTYyQUQxQzA4NUU5RTY1QzIyNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr8yOo1xqusgbGPud2BvHfKhbV eE5x0SasLz/2HBMOCprt712z1X3W7wMRhbm0Fmdxm0lLBnruic2HHcYy+rWmGA59 QjNWtSrhe9xHpZ2NRrVlTWHtRl/HBmRnZQqsk+jRRaze8Sv/uqg2AraJ/FP5oNi5 rHrpnY3mPZVwvOGy6OzyzgLGmZLW6kqnldzGqOeQozBuKyaRI38UiTowvl/j/pt5 rdakFogNoBHadCdqeTlEZR7LeRr9Ri2A0RflW/QAPjQ56zVYEknWjwHR5BTCEuml 3AOpmlG+f9zUq3DksTbLfL/HiMDO6ovMHfHIWDlry/oLnnTcNfXXD0DTRe2XAgMB AAGjggLMMIICyDAdBgNVHQ4EFgQUP2/xvAm69u7xJqYq0cCF6eZcImQwHwYDVR0j BBgwFoAU7BDJytt9vVkLCM9Zlq4nAkyd0FAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy83MkVBNEQxMzZCMjBFNTlFN0MyNjQ0QUY0NTlDN0I3N0RG N0VGNTM5ODREM0E5Mzg4RTY4NTAzMjRDMjY2RkYwLzAvRUMxMEM5Q0FEQjdEQkQ1 OTBCMDhDRjU5OTZBRTI3MDI0QzlERDA1MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FQzEwQzlDQURCN0RCRDU5MEIw OENGNTk5NkFFMjcwMjRDOUREMDUwLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNzJFQTREMTM2QjIwRTU5RTdDMjY0NEFGNDU5QzdCNzdERjdFRjUzOTg0 RDNBOTM4OEU2ODUwMzI0QzI2NkZGMC8wLzMxMzMzODJlMzIzMDM0MmUzMTM1MzIy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2MzMzODMwMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKK zJgwDQYJKoZIhvcNAQELBQADggEBAGwBztFe9d6jkZfnITDRl5YvpiwSXCrzIrVL 5/mJNw8NxD4mC8LMZj1hw0RgMzodbXoHfHJb9lGdv6fmPrEM67NX7de5fzCVVY+5 jAsuNkVHKOXpakgb7X3sfXC0HW/0vI0+hJqrtqrkGqWlNHSPLZSSp99zH9MjTamL 3jLjW9oAwGGfliVquNZaMEE3FUwrJD01wkFmLLtCDJm65kOV48dbJVmHH0VW+z8x XytZEyu/mJx1/WtnfoFbbrkPkPYhdhQjWWEKP9OfWIOoZop+HAaZ5PKdT8/+PE9D lUyb/AVXvsQiwLVzLCpX7FQYzRS2DebP9ssdUg+D+Wh2b6QQ9OA= -----END CERTIFICATE-----Generated at Thu Jan 29 06:54:03 2026 by rpki-client