This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/91F3C1ECF874A453A4947E40E8F04A99F468AD3BF17A8132380702EE8748718C/0/3137302e3234342e3230382e302f32322d3234203d3e203532343638.roa File: 3137302e3234342e3230382e302f32322d3234203d3e203532343638.roa (raw, json) Hash identifier: vJuqMo3FOvAjQjUwkJLglGJUvssmWIzn1UeqJnPQlog= Subject key identifier: D5:B2:4F:8B:16:8B:EA:76:80:57:D5:40:5C:FD:85:F2:18:82:C6:BC Certificate issuer: /CN=089B798E1BD051786195E5F9D02238D550A5EAD7 Certificate serial: 3D748BD7E9AFC2055DCE41F3F54867142C09A43C Authority key identifier: 08:9B:79:8E:1B:D0:51:78:61:95:E5:F9:D0:22:38:D5:50:A5:EA:D7 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/089B798E1BD051786195E5F9D02238D550A5EAD7.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/91F3C1ECF874A453A4947E40E8F04A99F468AD3BF17A8132380702EE8748718C/0/3137302e3234342e3230382e302f32322d3234203d3e203532343638.roa Signing time: Tue 04 Feb 2025 18:32:15 +0000 ROA not before: Tue 04 Feb 2025 18:27:15 +0000 ROA not after: Tue 03 Feb 2026 18:32:15 +0000 asID: 52468 IP address blocks: 170.244.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/91F3C1ECF874A453A4947E40E8F04A99F468AD3BF17A8132380702EE8748718C/0/089B798E1BD051786195E5F9D02238D550A5EAD7.crl rsync://repository.lacnic.net/rpki/lacnic/91F3C1ECF874A453A4947E40E8F04A99F468AD3BF17A8132380702EE8748718C/0/089B798E1BD051786195E5F9D02238D550A5EAD7.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/089B798E1BD051786195E5F9D02238D550A5EAD7.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 06 Dec 2025 21:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:74:8b:d7:e9:af:c2:05:5d:ce:41:f3:f5:48:67:14:2c:09:a4:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=089B798E1BD051786195E5F9D02238D550A5EAD7 Validity Not Before: Feb 4 18:27:15 2025 GMT Not After : Feb 3 18:32:15 2026 GMT Subject: CN=D5B24F8B168BEA768057D5405CFD85F21882C6BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:10:44:63:0b:9a:15:9d:d1:39:8d:19:75:4d: cd:f0:d0:57:19:33:d5:bf:b8:41:57:b6:15:f9:cb: 5e:ff:b7:90:9c:63:d9:ff:8d:96:70:99:86:d0:fe: 1c:78:3a:17:79:5a:6e:5e:c8:0c:02:49:a8:91:50: 2d:6d:ee:f1:52:53:d9:bd:61:c0:b1:90:96:20:49: e5:bd:7c:5e:30:3b:66:bc:61:eb:18:89:43:e6:9e: f7:5d:c2:ed:7a:09:92:2c:81:9f:cd:c0:1f:66:0a: b8:83:50:e5:f8:39:89:e7:1c:db:f6:cc:53:61:51: ae:a1:04:00:c3:18:d6:7a:02:91:60:69:65:19:70: ec:5e:e5:41:b3:f0:b4:a6:d2:2b:08:46:f0:9f:10: 80:06:83:b2:79:0f:62:ec:4b:68:60:ac:93:57:8b: 35:90:78:8c:84:84:91:3f:71:71:74:5d:e4:8c:17: d3:19:c9:9f:8f:f9:ee:2d:37:b8:4e:25:4c:a1:37: 8d:63:ba:ce:41:f7:ea:bd:f7:cd:98:31:63:0c:55: e8:66:77:ed:b4:e4:dd:7f:d3:f8:a3:9f:13:f5:0e: de:7e:88:73:54:79:07:49:77:07:ef:c5:cf:4c:69: c9:9b:e8:03:c2:b3:e2:09:f3:20:17:cc:bb:66:5c: 80:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B2:4F:8B:16:8B:EA:76:80:57:D5:40:5C:FD:85:F2:18:82:C6:BC X509v3 Authority Key Identifier: keyid:08:9B:79:8E:1B:D0:51:78:61:95:E5:F9:D0:22:38:D5:50:A5:EA:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/91F3C1ECF874A453A4947E40E8F04A99F468AD3BF17A8132380702EE8748718C/0/089B798E1BD051786195E5F9D02238D550A5EAD7.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/089B798E1BD051786195E5F9D02238D550A5EAD7.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/91F3C1ECF874A453A4947E40E8F04A99F468AD3BF17A8132380702EE8748718C/0/3137302e3234342e3230382e302f32322d3234203d3e203532343638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.244.208.0/22 Signature Algorithm: sha256WithRSAEncryption 53:10:ed:f2:81:aa:66:c0:bd:72:d8:b3:49:06:c2:e5:07:cf: 90:e5:94:59:ce:3d:f7:0e:26:d6:d2:9e:95:93:da:f0:43:50: 34:82:4c:ce:93:51:c7:4d:91:46:36:6e:f8:6d:29:76:e8:93: 95:20:6b:7c:f6:df:14:e9:fe:5c:88:4d:b3:36:c2:a1:a1:a5: 3a:cd:cd:00:da:d4:2a:8b:4c:ab:ce:e0:c6:b5:31:34:28:c2: fe:66:d3:d5:e7:f3:ee:ef:02:fd:0a:9c:b5:82:e8:9e:31:c4: 2e:af:1f:4a:b3:ce:2e:4a:eb:58:11:21:1c:56:6d:43:2f:94: 53:e7:54:63:dc:fc:2c:5e:c1:3d:32:43:4f:1f:09:1f:e8:94: 7c:17:cf:60:29:7b:60:85:c7:49:54:60:c9:ad:97:10:a4:12: 31:56:47:90:4d:4f:d4:53:d1:b2:a3:26:ac:1b:1d:c9:59:d9: 04:69:93:84:ef:a2:1d:76:b8:5d:9c:dd:e6:5e:0f:46:b8:4a: de:7a:83:9c:8a:15:f4:92:e7:5c:29:24:80:e6:9a:9b:b6:c3: 84:f6:ad:21:5d:17:e3:43:50:47:c9:db:e3:54:db:25:f4:be: c9:fb:4c:46:c5:9c:c2:75:26:c1:6c:b4:7b:42:92:83:98:2e: 64:42:2f:f4 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUPXSL1+mvwgVdzkHz9UhnFCwJpDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg5Qjc5OEUxQkQwNTE3ODYxOTVFNUY5RDAyMjM4RDU1 MEE1RUFENzAeFw0yNTAyMDQxODI3MTVaFw0yNjAyMDMxODMyMTVaMDMxMTAvBgNV BAMTKEQ1QjI0RjhCMTY4QkVBNzY4MDU3RDU0MDVDRkQ4NUYyMTg4MkM2QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfEERjC5oVndE5jRl1Tc3w0FcZ M9W/uEFXthX5y17/t5CcY9n/jZZwmYbQ/hx4Ohd5Wm5eyAwCSaiRUC1t7vFSU9m9 YcCxkJYgSeW9fF4wO2a8YesYiUPmnvddwu16CZIsgZ/NwB9mCriDUOX4OYnnHNv2 zFNhUa6hBADDGNZ6ApFgaWUZcOxe5UGz8LSm0isIRvCfEIAGg7J5D2LsS2hgrJNX izWQeIyEhJE/cXF0XeSMF9MZyZ+P+e4tN7hOJUyhN41jus5B9+q9982YMWMMVehm d+205N1/0/ijnxP1Dt5+iHNUeQdJdwfvxc9Macmb6APCs+IJ8yAXzLtmXIBbAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQU1bJPixaL6naAV9VAXP2F8hiCxrwwHwYDVR0j BBgwFoAUCJt5jhvQUXhhleX50CI41VCl6tcwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy85MUYzQzFFQ0Y4NzRBNDUzQTQ5NDdFNDBFOEYwNEE5OUY0 NjhBRDNCRjE3QTgxMzIzODA3MDJFRTg3NDg3MThDLzAvMDg5Qjc5OEUxQkQwNTE3 ODYxOTVFNUY5RDAyMjM4RDU1MEE1RUFENy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wODlCNzk4RTFCRDA1MTc4NjE5 NUU1RjlEMDIyMzhENTUwQTVFQUQ3LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvOTFGM0MxRUNGODc0QTQ1M0E0OTQ3RTQwRThGMDRBOTlGNDY4QUQzQkYx N0E4MTMyMzgwNzAyRUU4NzQ4NzE4Qy8wLzMxMzczMDJlMzIzNDM0MmUzMjMwMzgy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNTMyMzQzNjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqvTQ MA0GCSqGSIb3DQEBCwUAA4IBAQBTEO3ygapmwL1y2LNJBsLlB8+Q5ZRZzj33DibW 0p6Vk9rwQ1A0gkzOk1HHTZFGNm74bSl26JOVIGt89t8U6f5ciE2zNsKhoaU6zc0A 2tQqi0yrzuDGtTE0KML+ZtPV5/Pu7wL9Cpy1guieMcQurx9Ks84uSutYESEcVm1D L5RT51Rj3PwsXsE9MkNPHwkf6JR8F89gKXtghcdJVGDJrZcQpBIxVkeQTU/UU9Gy oyasGx3JWdkEaZOE76IddrhdnN3mXg9GuEreeoOcihX0kudcKSSA5pqbtsOE9q0h XRfjQ1BHydvjVNsl9L7J+0xGxZzCdSbBbLR7QpKDmC5kQi/0 -----END CERTIFICATE-----Generated at Wed Dec 3 08:34:19 2025 by rpki-client