This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32392e302f32342d3234203d3e20323637363939.roa File: 3137302e3235342e32392e302f32342d3234203d3e20323637363939.roa (raw, json) Hash identifier: p/PJa4MKq3uErfTvGh/zW+ZLVyHosF7OSTczdA5cTn4= Subject key identifier: D9:FD:25:C0:B3:DA:1D:6A:13:B8:FA:0C:B1:62:36:50:50:4C:6F:69 Certificate issuer: /CN=DF4F03C5770C7BA39912813367B5E868005CCD99 Certificate serial: 5E1C99DB6BE4F1CF509931FF4819BD49703AF04B Authority key identifier: DF:4F:03:C5:77:0C:7B:A3:99:12:81:33:67:B5:E8:68:00:5C:CD:99 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF4F03C5770C7BA39912813367B5E868005CCD99.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32392e302f32342d3234203d3e20323637363939.roa Signing time: Tue 06 Jan 2026 20:55:43 +0000 ROA not before: Tue 06 Jan 2026 20:50:43 +0000 ROA not after: Tue 05 Jan 2027 20:55:43 +0000 asID: 267699 IP address blocks: 170.254.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/DF4F03C5770C7BA39912813367B5E868005CCD99.crl rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/DF4F03C5770C7BA39912813367B5E868005CCD99.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF4F03C5770C7BA39912813367B5E868005CCD99.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 12 Jan 2026 02:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:1c:99:db:6b:e4:f1:cf:50:99:31:ff:48:19:bd:49:70:3a:f0:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF4F03C5770C7BA39912813367B5E868005CCD99 Validity Not Before: Jan 6 20:50:43 2026 GMT Not After : Jan 5 20:55:43 2027 GMT Subject: CN=D9FD25C0B3DA1D6A13B8FA0CB1623650504C6F69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ab:e5:df:2c:47:58:1c:5d:cf:4e:ca:b7:49: 66:02:0b:0f:a1:39:65:2e:45:98:36:e4:9e:7f:f8: f3:1c:9f:64:bf:c9:5f:66:07:87:b8:3c:c9:dd:be: 9a:d1:43:09:97:37:b3:03:4c:25:b1:c7:a0:e2:25: 28:22:f8:4e:57:82:01:cd:77:0f:5f:c9:92:06:69: 5d:c9:5e:55:89:5b:3b:51:63:ca:93:55:25:26:13: 00:6e:71:5f:3a:ea:d7:a8:c8:0c:31:ed:2b:7f:dd: 35:e7:b3:65:92:4c:74:fb:33:58:95:64:35:5f:16: a3:b0:c3:42:44:53:21:4d:79:9e:f8:97:7c:bc:0c: 47:76:d7:26:03:dc:91:fb:f3:02:d4:9d:60:06:68: 6f:26:be:e2:70:47:25:26:20:12:7c:9b:83:36:16: 4e:77:82:76:db:6b:c0:78:ed:e5:d3:f7:2d:51:9a: e4:2f:0e:48:73:91:7e:ef:9e:e7:24:21:42:e2:10: 13:7b:22:4d:1a:92:96:0e:e8:e2:50:a6:79:cb:8f: 5e:5b:cd:35:d1:01:ab:3d:b9:66:46:71:8a:38:f2: 0d:ca:01:5a:77:53:a7:07:ba:48:fb:35:2c:3c:ce: 47:c2:28:2a:d3:bf:f9:60:fe:dd:f9:5a:33:51:af: 4e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FD:25:C0:B3:DA:1D:6A:13:B8:FA:0C:B1:62:36:50:50:4C:6F:69 X509v3 Authority Key Identifier: keyid:DF:4F:03:C5:77:0C:7B:A3:99:12:81:33:67:B5:E8:68:00:5C:CD:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/DF4F03C5770C7BA39912813367B5E868005CCD99.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF4F03C5770C7BA39912813367B5E868005CCD99.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32392e302f32342d3234203d3e20323637363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.254.29.0/24 Signature Algorithm: sha256WithRSAEncryption 60:46:bb:dc:04:1a:5f:b0:db:c9:b4:55:fe:11:56:fb:72:d2: 41:d5:85:5b:d8:52:26:52:25:27:99:4d:02:c8:71:f4:19:7d: c8:94:73:39:4d:91:4a:ae:8a:5f:03:7d:4b:9b:cc:98:a4:78: 80:85:0e:35:0a:de:c1:4b:89:2e:c1:80:4c:12:02:86:e7:7a: f5:e9:a5:ad:2c:ed:58:a3:7b:92:91:0f:85:b3:73:4d:09:20: 19:3c:b8:ed:2b:8a:cf:d1:61:9c:95:73:f3:e1:f0:e3:31:18: c0:d1:69:00:c4:1a:43:bc:d2:2b:91:33:39:cb:42:b2:ee:a5: 91:60:89:ed:bc:d4:b7:d9:c2:eb:51:27:ba:ac:52:39:82:e4: b4:8e:bf:54:43:59:97:36:53:f2:10:6b:10:b2:77:b3:e5:8c: 5c:5e:02:bc:a1:2f:81:ee:aa:83:60:2f:be:b4:0d:93:88:54: 79:c4:46:fd:f9:9a:0e:a2:23:71:0a:f0:f5:85:f2:a9:67:10: fd:16:98:6f:67:cb:93:d3:3d:47:cb:56:26:7f:c3:38:ae:32: 31:fb:d3:67:8e:6e:b5:86:10:94:ce:54:df:4e:29:3d:57:6d: b4:92:28:86:00:d9:e2:50:97:e3:6b:02:de:39:3d:93:e7:d3: 5e:bc:09:25 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUXhyZ22vk8c9QmTH/SBm9SXA68EswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY0RjAzQzU3NzBDN0JBMzk5MTI4MTMzNjdCNUU4Njgw MDVDQ0Q5OTAeFw0yNjAxMDYyMDUwNDNaFw0yNzAxMDUyMDU1NDNaMDMxMTAvBgNV BAMTKEQ5RkQyNUMwQjNEQTFENkExM0I4RkEwQ0IxNjIzNjUwNTA0QzZGNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqq+XfLEdYHF3PTsq3SWYCCw+h OWUuRZg25J5/+PMcn2S/yV9mB4e4PMndvprRQwmXN7MDTCWxx6DiJSgi+E5XggHN dw9fyZIGaV3JXlWJWztRY8qTVSUmEwBucV866teoyAwx7St/3TXns2WSTHT7M1iV ZDVfFqOww0JEUyFNeZ74l3y8DEd21yYD3JH78wLUnWAGaG8mvuJwRyUmIBJ8m4M2 Fk53gnbba8B47eXT9y1RmuQvDkhzkX7vnuckIULiEBN7Ik0akpYO6OJQpnnLj15b zTXRAas9uWZGcYo48g3KAVp3U6cHukj7NSw8zkfCKCrTv/lg/t35WjNRr05NAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQU2f0lwLPaHWoTuPoMsWI2UFBMb2kwHwYDVR0j BBgwFoAU308DxXcMe6OZEoEzZ7XoaABczZkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9FMDhEOTMzNjgyRjY4OEVEOEMzNkQwRkMxRjM0QjY4MzE1 MDUzRDNGMzcxRjY4NEI5QTM4N0E1RkE2NzA5RjE3LzAvREY0RjAzQzU3NzBDN0JB Mzk5MTI4MTMzNjdCNUU4NjgwMDVDQ0Q5OS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ERjRGMDNDNTc3MEM3QkEzOTkx MjgxMzM2N0I1RTg2ODAwNUNDRDk5LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRTA4RDkzMzY4MkY2ODhFRDhDMzZEMEZDMUYzNEI2ODMxNTA1M0QzRjM3 MUY2ODRCOUEzODdBNUZBNjcwOUYxNy8wLzMxMzczMDJlMzIzNTM0MmUzMjM5MmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM3MzYzOTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqv4d MA0GCSqGSIb3DQEBCwUAA4IBAQBgRrvcBBpfsNvJtFX+EVb7ctJB1YVb2FImUiUn mU0CyHH0GX3IlHM5TZFKropfA31Lm8yYpHiAhQ41Ct7BS4kuwYBMEgKG53r16aWt LO1Yo3uSkQ+Fs3NNCSAZPLjtK4rP0WGclXPz4fDjMRjA0WkAxBpDvNIrkTM5y0Ky 7qWRYIntvNS32cLrUSe6rFI5guS0jr9UQ1mXNlPyEGsQsnez5YxcXgK8oS+B7qqD YC++tA2TiFR5xEb9+ZoOoiNxCvD1hfKpZxD9FphvZ8uT0z1Hy1Ymf8M4rjIx+9Nn jm61hhCUzlTfTik9V220kiiGANniUJfjawLeOT2T59NevAkl -----END CERTIFICATE-----Generated at Wed Jan 7 22:49:57 2026 by rpki-client