This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/3230302e38322e3132382e302f31372d3234203d3e203231383236.roa File: 3230302e38322e3132382e302f31372d3234203d3e203231383236.roa (raw, json) Hash identifier: 8SgfK5/LdwY9Xx/sJapeB0ylPhy8WmB22qCuOAP1Xyg= Subject key identifier: 87:89:4A:76:33:B6:9E:F2:57:B0:DE:62:4F:49:DF:3C:C9:52:3E:7B Certificate issuer: /CN=165E0F133EF8A6DF2ECCBFDD6E915964893A4324 Certificate serial: 5D48A5111F4DC0117CD429075421CD06AA55CD0A Authority key identifier: 16:5E:0F:13:3E:F8:A6:DF:2E:CC:BF:DD:6E:91:59:64:89:3A:43:24 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/3230302e38322e3132382e302f31372d3234203d3e203231383236.roa Signing time: Tue 06 Jan 2026 19:37:43 +0000 ROA not before: Tue 06 Jan 2026 19:32:43 +0000 ROA not after: Tue 05 Jan 2027 19:37:43 +0000 asID: 21826 IP address blocks: 200.82.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.crl rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 01 Feb 2026 04:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:48:a5:11:1f:4d:c0:11:7c:d4:29:07:54:21:cd:06:aa:55:cd:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=165E0F133EF8A6DF2ECCBFDD6E915964893A4324 Validity Not Before: Jan 6 19:32:43 2026 GMT Not After : Jan 5 19:37:43 2027 GMT Subject: CN=87894A7633B69EF257B0DE624F49DF3CC9523E7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4c:73:d0:7f:92:4a:f5:f8:86:3f:f9:9d:aa: 0b:07:2b:54:1f:26:0e:1c:85:2e:b5:5f:e0:98:fa: 47:13:96:94:3c:28:f6:1a:e6:0d:12:76:de:16:77: 11:4e:59:75:95:ce:e1:d4:13:09:66:46:35:64:b6: c1:41:c0:84:cf:6b:41:44:ee:11:69:10:95:33:c2: b0:50:1f:58:5d:93:2b:e3:8e:f3:ad:63:2e:8c:57: 17:ad:7f:98:ca:d9:3f:46:82:cc:ef:32:d7:b9:49: 1c:bb:b9:1d:b2:d2:ed:d7:9a:c4:79:03:3d:fd:03: 84:ba:23:b9:00:9a:e7:e9:d0:6f:ca:0a:32:55:a0: f7:a1:ea:4b:bc:87:bb:ad:b9:ca:1f:53:c2:2a:74: c9:62:6a:12:31:b2:b9:ff:12:42:f1:7d:89:e4:a7: a6:db:cd:05:52:56:10:55:69:ef:82:e3:24:af:13: 4e:87:b3:34:fc:9a:22:d6:d7:34:c0:ac:f2:2e:13: 9a:a1:d0:33:6a:fc:7d:2e:c5:1e:65:e3:e1:34:b7: b9:56:f4:8c:0c:36:bd:1f:b5:c8:e9:98:c2:0b:ef: 07:a3:37:b5:67:1a:c8:1f:27:82:fb:2a:45:d5:3d: 9a:4e:2b:81:22:1c:1f:86:f2:db:44:b3:65:6e:25: 84:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:89:4A:76:33:B6:9E:F2:57:B0:DE:62:4F:49:DF:3C:C9:52:3E:7B X509v3 Authority Key Identifier: keyid:16:5E:0F:13:3E:F8:A6:DF:2E:CC:BF:DD:6E:91:59:64:89:3A:43:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/3230302e38322e3132382e302f31372d3234203d3e203231383236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.82.128.0/17 Signature Algorithm: sha256WithRSAEncryption 30:74:4f:20:d2:61:45:d9:2c:cc:a0:ab:31:c7:bb:57:85:24: 97:11:87:b7:08:b6:9a:e3:66:63:c6:a2:96:c1:19:3c:7b:4f: 47:b9:ac:fc:73:0b:ac:7a:62:cd:49:75:63:c9:03:da:1e:42: 39:40:b9:08:fb:ce:be:a9:51:b1:e9:7a:93:f8:91:4c:a3:f2: 62:a7:46:ed:8a:1d:99:1a:90:47:a1:fc:a9:6d:4e:90:19:a5: 22:fa:d3:a1:d1:25:6b:dc:e3:cf:7b:7d:1a:ac:ce:09:86:a0: cb:f7:7e:88:21:bd:e5:9e:14:72:0a:06:d4:2f:5f:df:39:32: d3:4d:f7:5c:0d:35:4a:eb:a4:23:ee:da:b7:c1:b4:50:84:36: 00:99:b4:7d:72:ef:ef:a6:08:c4:28:93:6c:3b:db:7a:a9:be: 88:36:b7:83:62:af:d7:93:cc:04:34:5f:9d:57:19:f9:0c:39: e9:52:b5:8b:82:b5:f2:af:ec:24:52:40:83:4d:ad:99:59:f2: ba:e3:76:cf:c5:bd:66:c9:f8:e7:58:0f:6d:da:2c:cc:27:7a: 90:cc:88:47:0f:38:67:53:6b:05:c1:99:5f:db:cc:4b:05:a1: bc:b5:a5:ea:36:6f:38:2d:8a:53:3b:45:b8:c1:84:09:27:e0: 68:b4:88:47 -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgIUXUilER9NwBF81CkHVCHNBqpVzQowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1RTBGMTMzRUY4QTZERjJFQ0NCRkRENkU5MTU5NjQ4 OTNBNDMyNDAeFw0yNjAxMDYxOTMyNDNaFw0yNzAxMDUxOTM3NDNaMDMxMTAvBgNV BAMTKDg3ODk0QTc2MzNCNjlFRjI1N0IwREU2MjRGNDlERjNDQzk1MjNFN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvTHPQf5JK9fiGP/mdqgsHK1Qf Jg4chS61X+CY+kcTlpQ8KPYa5g0Sdt4WdxFOWXWVzuHUEwlmRjVktsFBwITPa0FE 7hFpEJUzwrBQH1hdkyvjjvOtYy6MVxetf5jK2T9GgszvMte5SRy7uR2y0u3XmsR5 Az39A4S6I7kAmufp0G/KCjJVoPeh6ku8h7utucofU8IqdMliahIxsrn/EkLxfYnk p6bbzQVSVhBVae+C4ySvE06HszT8miLW1zTArPIuE5qh0DNq/H0uxR5l4+E0t7lW 9IwMNr0ftcjpmMIL7wejN7VnGsgfJ4L7KkXVPZpOK4EiHB+G8ttEs2VuJYStAgMB AAGjggLIMIICxDAdBgNVHQ4EFgQUh4lKdjO2nvJXsN5iT0nfPMlSPnswHwYDVR0j BBgwFoAUFl4PEz74pt8uzL/dbpFZZIk6QyQwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9CRkY5NzQ0RTY0QzU2RTEzOEFFQzUxN0Q5MTBGNjFEODk1 Q0FENjQ1Q0NGMjFDQjdDMTZBMjc4RDVDMkY5NDRDLzAvMTY1RTBGMTMzRUY4QTZE RjJFQ0NCRkRENkU5MTU5NjQ4OTNBNDMyNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8xNjVFMEYxMzNFRjhBNkRGMkVD Q0JGREQ2RTkxNTk2NDg5M0E0MzI0LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQkZGOTc0NEU2NEM1NkUxMzhBRUM1MTdEOTEwRjYxRDg5NUNBRDY0NUND RjIxQ0I3QzE2QTI3OEQ1QzJGOTQ0Qy8wLzMyMzAzMDJlMzgzMjJlMzEzMjM4MmUz MDJmMzEzNzJkMzIzNDIwM2QzZTIwMzIzMTM4MzIzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB8hSgDAN BgkqhkiG9w0BAQsFAAOCAQEAMHRPINJhRdkszKCrMce7V4UklxGHtwi2muNmY8ai lsEZPHtPR7ms/HMLrHpizUl1Y8kD2h5COUC5CPvOvqlRsel6k/iRTKPyYqdG7Yod mRqQR6H8qW1OkBmlIvrTodEla9zjz3t9GqzOCYagy/d+iCG95Z4UcgoG1C9f3zky 0033XA01SuukI+7at8G0UIQ2AJm0fXLv76YIxCiTbDvbeqm+iDa3g2Kv15PMBDRf nVcZ+Qw56VK1i4K18q/sJFJAg02tmVnyuuN2z8W9Zsn451gPbdoszCd6kMyIRw84 Z1NrBcGZX9vMSwWhvLWl6jZvOC2KUztFuMGECSfgaLSIRw== -----END CERTIFICATE-----Generated at Thu Jan 29 05:28:56 2026 by rpki-client