This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/3136372e3234392e3235322e302f32322d3232203d3e203238343038.roa File: 3136372e3234392e3235322e302f32322d3232203d3e203238343038.roa (raw, json) Hash identifier: 0IdzAMSTj/VhBocyVGWR/H6RK529wm/bXLwxzjEt7xc= Subject key identifier: 1E:DD:21:4A:DB:89:72:42:32:32:06:A6:26:3D:AC:7D:87:7C:38:96 Certificate issuer: /CN=FC239C74A9FF2A748422668CEC9CB03F6D9A3FC2 Certificate serial: 1ED92E06700F664CCAE9B43838B5B4AC43DA0A5C Authority key identifier: FC:23:9C:74:A9:FF:2A:74:84:22:66:8C:EC:9C:B0:3F:6D:9A:3F:C2 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FC239C74A9FF2A748422668CEC9CB03F6D9A3FC2.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/3136372e3234392e3235322e302f32322d3232203d3e203238343038.roa Signing time: Thu 20 Nov 2025 23:50:00 +0000 ROA not before: Thu 20 Nov 2025 23:45:00 +0000 ROA not after: Thu 19 Nov 2026 23:50:00 +0000 asID: 28408 IP address blocks: 167.249.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/FC239C74A9FF2A748422668CEC9CB03F6D9A3FC2.crl rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/FC239C74A9FF2A748422668CEC9CB03F6D9A3FC2.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FC239C74A9FF2A748422668CEC9CB03F6D9A3FC2.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 15 Dec 2025 08:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d9:2e:06:70:0f:66:4c:ca:e9:b4:38:38:b5:b4:ac:43:da:0a:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC239C74A9FF2A748422668CEC9CB03F6D9A3FC2 Validity Not Before: Nov 20 23:45:00 2025 GMT Not After : Nov 19 23:50:00 2026 GMT Subject: CN=1EDD214ADB897242323206A6263DAC7D877C3896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dc:90:99:56:a2:d4:eb:b9:c8:f3:2f:c0:28: 40:74:96:db:22:b2:a7:05:7f:6d:0b:8f:74:bb:82: d1:37:90:0f:a2:f2:e0:d9:5c:08:0d:19:c6:6d:8c: 1e:ec:a8:cd:94:28:97:4c:db:34:56:2f:5b:0a:14: c9:6c:b3:c5:41:0a:cc:89:6a:36:1e:5a:2d:69:ff: 0e:57:aa:3f:32:01:ca:96:13:47:05:a3:f8:52:3c: a1:42:30:1d:a9:5c:27:b7:c7:d0:de:07:25:8d:8c: 86:40:6a:40:41:81:73:3b:80:e6:10:b3:82:cb:b6: 20:71:1b:48:8a:10:eb:41:4a:0e:ee:b0:b8:51:30: 43:8b:68:d0:e0:15:92:8e:96:6d:80:3a:6a:59:95: 65:6b:04:aa:19:73:dd:7a:0e:83:91:77:4c:23:84: 93:76:ee:29:d6:ae:4a:06:4c:c5:fd:ec:ba:44:ea: 8d:9d:1b:0a:76:7e:9e:f2:3c:67:b4:97:cd:c7:b0: bf:5d:6b:0c:8b:3c:9e:71:e1:90:13:8b:c3:e8:ea: e2:94:3a:03:a2:87:3f:cc:bd:42:fe:a2:27:db:7c: db:ec:0b:81:e4:10:fb:77:6e:31:7c:0a:41:4a:cc: 5c:4c:be:ec:41:95:50:95:f1:95:fb:b1:72:e8:2c: 31:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DD:21:4A:DB:89:72:42:32:32:06:A6:26:3D:AC:7D:87:7C:38:96 X509v3 Authority Key Identifier: keyid:FC:23:9C:74:A9:FF:2A:74:84:22:66:8C:EC:9C:B0:3F:6D:9A:3F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/FC239C74A9FF2A748422668CEC9CB03F6D9A3FC2.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FC239C74A9FF2A748422668CEC9CB03F6D9A3FC2.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/3136372e3234392e3235322e302f32322d3232203d3e203238343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.249.252.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:9d:bb:d8:02:26:73:47:67:37:47:71:94:16:df:f3:4c:bf: 44:2e:fa:f3:6d:31:c3:74:d3:0d:40:34:f3:62:4b:6e:6a:7d: 53:4e:a6:e1:4e:2f:27:d8:f8:95:76:f0:d3:e2:33:81:06:35: 5b:6c:2a:1f:e1:55:5e:ae:16:af:ce:ea:8e:aa:59:a4:af:b6: f6:c8:12:71:bb:eb:99:2c:1f:0c:6e:3b:72:9c:5c:23:78:b1: 52:93:fb:35:f2:19:2d:87:13:2a:63:3e:d8:1e:1c:1c:86:fb: c9:83:88:6a:17:3b:89:13:0b:b4:88:16:bb:13:7c:e6:0c:15: 34:c7:e3:c2:21:9b:73:31:d6:e5:c7:6f:fe:7e:b9:c6:00:e0: 43:ee:fc:13:82:d5:6d:98:d7:3d:df:8a:bd:c6:56:14:2f:99: 5d:39:7d:41:16:d4:c9:68:22:19:33:19:a8:24:78:ae:11:d8: b7:a6:ef:e7:19:72:4b:73:71:aa:cc:09:c5:eb:67:bc:9b:b5: 9c:59:60:f6:d5:9f:8c:73:96:de:83:ed:e4:0d:ca:2d:9e:55: d7:33:65:0c:36:d7:8d:a2:17:de:1b:5e:5b:4d:1c:9d:4c:0d: 64:da:e4:36:76:65:29:08:e5:d5:7a:e5:dd:50:32:33:84:e0: 93:b6:a4:64 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUHtkuBnAPZkzK6bQ4OLW0rEPaClwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkMyMzlDNzRBOUZGMkE3NDg0MjI2NjhDRUM5Q0IwM0Y2 RDlBM0ZDMjAeFw0yNTExMjAyMzQ1MDBaFw0yNjExMTkyMzUwMDBaMDMxMTAvBgNV BAMTKDFFREQyMTRBREI4OTcyNDIzMjMyMDZBNjI2M0RBQzdEODc3QzM4OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC63JCZVqLU67nI8y/AKEB0ltsi sqcFf20Lj3S7gtE3kA+i8uDZXAgNGcZtjB7sqM2UKJdM2zRWL1sKFMlss8VBCsyJ ajYeWi1p/w5Xqj8yAcqWE0cFo/hSPKFCMB2pXCe3x9DeByWNjIZAakBBgXM7gOYQ s4LLtiBxG0iKEOtBSg7usLhRMEOLaNDgFZKOlm2AOmpZlWVrBKoZc916DoORd0wj hJN27inWrkoGTMX97LpE6o2dGwp2fp7yPGe0l83HsL9dawyLPJ5x4ZATi8Po6uKU OgOihz/MvUL+oifbfNvsC4HkEPt3bjF8CkFKzFxMvuxBlVCV8ZX7sXLoLDE1AgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUHt0hStuJckIyMgamJj2sfYd8OJYwHwYDVR0j BBgwFoAU/COcdKn/KnSEImaM7JywP22aP8IwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9DRDk2QTEwQTY1MUUwMUMwMzJGN0YyNUFBMjBBRjMxMUJG RTM2RjA0Nzc2NjA2MTI1RDM3MEE2Mjc3Mjc2RjI5LzAvRkMyMzlDNzRBOUZGMkE3 NDg0MjI2NjhDRUM5Q0IwM0Y2RDlBM0ZDMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GQzIzOUM3NEE5RkYyQTc0ODQy MjY2OENFQzlDQjAzRjZEOUEzRkMyLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQ0Q5NkExMEE2NTFFMDFDMDMyRjdGMjVBQTIwQUYzMTFCRkUzNkYwNDc3 NjYwNjEyNUQzNzBBNjI3NzI3NkYyOS8wLzMxMzYzNzJlMzIzNDM5MmUzMjM1MzIy ZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMjM4MzQzMDM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCp/n8 MA0GCSqGSIb3DQEBCwUAA4IBAQBrnbvYAiZzR2c3R3GUFt/zTL9ELvrzbTHDdNMN QDTzYktuan1TTqbhTi8n2PiVdvDT4jOBBjVbbCof4VVerhavzuqOqlmkr7b2yBJx u+uZLB8MbjtynFwjeLFSk/s18hkthxMqYz7YHhwchvvJg4hqFzuJEwu0iBa7E3zm DBU0x+PCIZtzMdblx2/+frnGAOBD7vwTgtVtmNc934q9xlYUL5ldOX1BFtTJaCIZ MxmoJHiuEdi3pu/nGXJLc3GqzAnF62e8m7WcWWD21Z+Mc5beg+3kDcotnlXXM2UM NteNohfeG15bTRydTA1k2uQ2dmUpCOXVeuXdUDIzhOCTtqRk -----END CERTIFICATE-----Generated at Thu Dec 11 11:59:45 2025 by rpki-client