This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BCB60AC9EFA584B742892EF53EC4195F891D189DBFAE247F374A43D67E306B65/0/323830333a383035303a313030303a3a2f34302d3634203d3e20323733303930.roa File: 323830333a383035303a313030303a3a2f34302d3634203d3e20323733303930.roa (raw, json) Hash identifier: Y38njSirEJmtdLZ1RuEYp7tD5vnuLU8xYMxnegltVik= Subject key identifier: D5:A0:BE:0E:48:C7:8E:D0:5B:F6:3D:C0:08:35:4B:80:42:7E:81:1C Certificate issuer: /CN=83FF6BF78A661262789ABB6D53B59E4B553F45BC Certificate serial: 4EB99CB73E96D2DA66272019A26B5CC25A180BA7 Authority key identifier: 83:FF:6B:F7:8A:66:12:62:78:9A:BB:6D:53:B5:9E:4B:55:3F:45:BC Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/83FF6BF78A661262789ABB6D53B59E4B553F45BC.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BCB60AC9EFA584B742892EF53EC4195F891D189DBFAE247F374A43D67E306B65/0/323830333a383035303a313030303a3a2f34302d3634203d3e20323733303930.roa Signing time: Tue 18 Nov 2025 00:52:58 +0000 ROA not before: Tue 18 Nov 2025 00:47:58 +0000 ROA not after: Tue 17 Nov 2026 00:52:58 +0000 asID: 273090 IP address blocks: 2803:8050:1000::/40 maxlen: 64 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/BCB60AC9EFA584B742892EF53EC4195F891D189DBFAE247F374A43D67E306B65/0/83FF6BF78A661262789ABB6D53B59E4B553F45BC.crl rsync://repository.lacnic.net/rpki/lacnic/BCB60AC9EFA584B742892EF53EC4195F891D189DBFAE247F374A43D67E306B65/0/83FF6BF78A661262789ABB6D53B59E4B553F45BC.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/83FF6BF78A661262789ABB6D53B59E4B553F45BC.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 29 Nov 2025 20:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:b9:9c:b7:3e:96:d2:da:66:27:20:19:a2:6b:5c:c2:5a:18:0b:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83FF6BF78A661262789ABB6D53B59E4B553F45BC Validity Not Before: Nov 18 00:47:58 2025 GMT Not After : Nov 17 00:52:58 2026 GMT Subject: CN=D5A0BE0E48C78ED05BF63DC008354B80427E811C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:56:0a:f6:a4:70:44:f8:71:b3:28:7e:32:c5: d1:dc:1d:67:77:cc:ec:d4:dd:75:7a:ec:47:b5:93: 64:e3:a2:30:26:65:bf:c2:da:c1:a0:35:18:2e:8d: 88:85:c0:23:c4:e3:7b:a0:f3:78:cd:bb:5d:67:fa: a0:40:ce:40:70:2f:9b:3b:c3:22:00:98:57:d6:ce: cf:42:4e:5a:9b:b2:9c:90:aa:0a:d1:4f:f0:51:a2: fd:30:65:b0:1d:61:a7:a2:7b:e0:15:c6:12:0f:71: 45:71:77:94:d5:33:b1:b2:4e:70:1b:1e:f5:3d:15: b7:7d:4d:f4:f3:36:7d:57:26:bd:a6:01:3e:1e:48: bf:d8:90:5d:15:87:85:7b:26:b5:e4:45:71:e1:d5: d0:14:39:69:f4:d8:3a:9b:97:06:19:bc:c8:a6:5e: 9a:d4:84:f1:67:be:5f:a1:66:b0:87:eb:e6:8c:0c: 27:f6:01:fe:5c:ab:8b:1e:66:40:0d:65:19:13:f8: a4:56:ba:4a:bb:a7:a8:f2:fa:02:20:7f:cf:7f:67: 83:a1:11:ca:34:48:b3:23:a7:ed:89:79:c3:a3:b8: a2:b6:2c:8d:c9:c2:6d:4d:5e:9c:ed:2e:1d:d0:1e: 08:ce:47:42:a0:5a:6a:ed:c1:b8:ab:ce:99:eb:15: 60:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A0:BE:0E:48:C7:8E:D0:5B:F6:3D:C0:08:35:4B:80:42:7E:81:1C X509v3 Authority Key Identifier: keyid:83:FF:6B:F7:8A:66:12:62:78:9A:BB:6D:53:B5:9E:4B:55:3F:45:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/BCB60AC9EFA584B742892EF53EC4195F891D189DBFAE247F374A43D67E306B65/0/83FF6BF78A661262789ABB6D53B59E4B553F45BC.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/83FF6BF78A661262789ABB6D53B59E4B553F45BC.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BCB60AC9EFA584B742892EF53EC4195F891D189DBFAE247F374A43D67E306B65/0/323830333a383035303a313030303a3a2f34302d3634203d3e20323733303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:8050:1000::/40 Signature Algorithm: sha256WithRSAEncryption 9b:42:87:67:3d:12:38:3d:d2:b1:9e:96:3e:d4:90:9f:ea:38: 75:81:0a:ac:78:b1:85:5e:b0:72:93:c7:3a:f4:f8:7b:f6:13: c0:f6:1d:ad:a6:a0:55:19:cd:75:00:11:9d:8e:a1:9b:04:a5: 28:c6:ab:2a:0a:9e:c6:c7:ec:71:d7:d9:8d:91:55:40:16:38: bf:2f:05:f2:e9:7d:9c:43:5b:9a:a9:c2:b2:48:ff:09:ff:14: e4:b6:63:44:32:a0:7c:ea:e3:c0:ac:6b:d9:11:c7:0d:bb:d9: ec:14:de:bb:71:8a:f2:b4:35:cb:a6:bc:a0:46:bb:29:f8:15: cc:eb:f7:6a:8d:ae:09:21:a1:9b:f3:50:4e:a9:e2:32:b1:7e: cd:a0:12:b1:75:f6:c8:88:92:6f:db:c5:29:25:44:5e:e4:2d: 22:29:c0:f8:90:d0:00:3a:7f:08:99:3b:6b:35:24:6e:18:26: 16:a6:77:5d:80:b8:ef:c7:5f:14:32:6c:fc:ad:00:57:c3:ab: 4a:66:aa:28:a8:84:f9:92:04:19:d2:1c:58:50:da:4d:ee:42: 2a:95:65:8f:19:05:78:87:f8:06:95:8d:18:2b:30:8e:9f:63: 63:85:9c:9a:42:a5:cd:98:7e:0f:1a:2b:e6:dd:98:9f:61:b6: f1:1d:1a:5c -----BEGIN CERTIFICATE----- MIIFyjCCBLKgAwIBAgIUTrmctz6W0tpmJyAZomtcwloYC6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNGRjZCRjc4QTY2MTI2Mjc4OUFCQjZENTNCNTlFNEI1 NTNGNDVCQzAeFw0yNTExMTgwMDQ3NThaFw0yNjExMTcwMDUyNThaMDMxMTAvBgNV BAMTKEQ1QTBCRTBFNDhDNzhFRDA1QkY2M0RDMDA4MzU0QjgwNDI3RTgxMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqVgr2pHBE+HGzKH4yxdHcHWd3 zOzU3XV67Ee1k2TjojAmZb/C2sGgNRgujYiFwCPE43ug83jNu11n+qBAzkBwL5s7 wyIAmFfWzs9CTlqbspyQqgrRT/BRov0wZbAdYaeie+AVxhIPcUVxd5TVM7GyTnAb HvU9Fbd9TfTzNn1XJr2mAT4eSL/YkF0Vh4V7JrXkRXHh1dAUOWn02DqblwYZvMim XprUhPFnvl+hZrCH6+aMDCf2Af5cq4seZkANZRkT+KRWukq7p6jy+gIgf89/Z4Oh Eco0SLMjp+2JecOjuKK2LI3Jwm1NXpztLh3QHgjOR0KgWmrtwbirzpnrFWAlAgMB AAGjggLUMIIC0DAdBgNVHQ4EFgQU1aC+DkjHjtBb9j3ACDVLgEJ+gRwwHwYDVR0j BBgwFoAUg/9r94pmEmJ4mrttU7WeS1U/RbwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9CQ0I2MEFDOUVGQTU4NEI3NDI4OTJFRjUzRUM0MTk1Rjg5 MUQxODlEQkZBRTI0N0YzNzRBNDNENjdFMzA2QjY1LzAvODNGRjZCRjc4QTY2MTI2 Mjc4OUFCQjZENTNCNTlFNEI1NTNGNDVCQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84M0ZGNkJGNzhBNjYxMjYyNzg5 QUJCNkQ1M0I1OUU0QjU1M0Y0NUJDLmNlcjCB0QYIKwYBBQUHAQsEgcQwgcEwgb4G CCsGAQUFBzALhoGxcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQkNCNjBBQzlFRkE1ODRCNzQyODkyRUY1M0VDNDE5NUY4OTFEMTg5REJG QUUyNDdGMzc0QTQzRDY3RTMwNkI2NS8wLzMyMzgzMDMzM2EzODMwMzUzMDNhMzEz MDMwMzAzYTNhMmYzNDMwMmQzNjM0MjAzZDNlMjAzMjM3MzMzMDM5MzAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAoA4BQEDANBgkqhkiG9w0BAQsFAAOCAQEAm0KHZz0SOD3SsZ6WPtSQn+o4 dYEKrHixhV6wcpPHOvT4e/YTwPYdraagVRnNdQARnY6hmwSlKMarKgqexsfscdfZ jZFVQBY4vy8F8ul9nENbmqnCskj/Cf8U5LZjRDKgfOrjwKxr2RHHDbvZ7BTeu3GK 8rQ1y6a8oEa7KfgVzOv3ao2uCSGhm/NQTqniMrF+zaASsXX2yIiSb9vFKSVEXuQt IinA+JDQADp/CJk7azUkbhgmFqZ3XYC478dfFDJs/K0AV8OrSmaqKKiE+ZIEGdIc WFDaTe5CKpVljxkFeIf4BpWNGCswjp9jY4WcmkKlzZh+Dxor5t2Yn2G28R0aXA== -----END CERTIFICATE-----Generated at Tue Nov 25 18:45:43 2025 by rpki-client