This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/3230312e3232302e302e302f32302d3234203d3e203237373831.roa File: 3230312e3232302e302e302f32302d3234203d3e203237373831.roa (raw, json) Hash identifier: CKJATZzOGfuRvMYDMnD75YPh5FxeAquPq+PAlMO1fqg= Subject key identifier: FD:B6:4E:4D:5A:9E:51:61:AE:45:B6:74:E3:01:F5:C0:F4:3D:9C:6B Certificate issuer: /CN=8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118 Certificate serial: 3B55AB699873E995E8C4F782E80566AD636E6DE4 Authority key identifier: 83:34:A3:FB:4A:FA:5A:2B:29:BE:AD:E3:3F:59:57:C1:DA:DE:51:18 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/3230312e3232302e302e302f32302d3234203d3e203237373831.roa Signing time: Tue 06 Jan 2026 19:36:27 +0000 ROA not before: Tue 06 Jan 2026 19:31:27 +0000 ROA not after: Tue 05 Jan 2027 19:36:27 +0000 asID: 27781 IP address blocks: 201.220.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.crl rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 25 Jan 2026 00:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:55:ab:69:98:73:e9:95:e8:c4:f7:82:e8:05:66:ad:63:6e:6d:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118 Validity Not Before: Jan 6 19:31:27 2026 GMT Not After : Jan 5 19:36:27 2027 GMT Subject: CN=FDB64E4D5A9E5161AE45B674E301F5C0F43D9C6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4e:29:3c:17:48:f7:e1:df:63:73:2d:12:21: 48:ee:27:fd:80:22:7c:03:14:e1:b7:47:6d:c7:46: 55:fc:df:ea:27:a5:72:0d:9e:bd:48:e3:79:47:89: 19:e7:5b:d7:b2:31:44:8b:ee:08:4c:88:39:ab:78: f7:0e:c4:4f:57:92:11:90:a8:b1:a4:72:0b:96:6a: 6e:cd:d5:a7:3c:bc:30:f3:db:58:52:5c:fd:d8:c7: 6b:03:1e:d2:5c:ba:10:35:ef:77:f4:45:b1:ac:23: c9:59:3e:14:d5:34:7a:48:fe:4a:90:38:a0:4d:0d: c9:86:1a:a6:8a:c3:47:6e:2a:32:5d:b2:e5:78:b2: 6e:bb:4a:9f:02:12:47:c2:ff:80:8c:7f:4d:e3:29: a9:9d:20:5c:93:6f:7f:b1:0f:62:82:7d:1a:bc:5a: ab:50:6d:05:13:42:94:46:4d:b7:a7:af:05:fd:f8: 9e:17:57:94:91:9f:64:6f:a3:37:e3:58:cd:e7:c4: 18:80:4e:b4:a6:3a:83:eb:62:55:ec:ce:d7:ef:66: 1b:8f:02:c0:81:70:db:a8:d8:a7:96:c2:a0:c8:fd: 4b:7e:a7:7c:99:83:a8:dc:59:a1:c8:6c:be:a8:3c: 4a:34:bd:9f:70:9a:a9:d5:3d:a7:2b:70:fa:17:b3: f1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B6:4E:4D:5A:9E:51:61:AE:45:B6:74:E3:01:F5:C0:F4:3D:9C:6B X509v3 Authority Key Identifier: keyid:83:34:A3:FB:4A:FA:5A:2B:29:BE:AD:E3:3F:59:57:C1:DA:DE:51:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/3230312e3232302e302e302f32302d3234203d3e203237373831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 201.220.0.0/20 Signature Algorithm: sha256WithRSAEncryption 2f:35:b6:f7:de:fc:51:de:b1:c3:8b:46:69:6a:73:28:57:f9: 07:37:6c:34:be:6e:28:dc:0a:73:71:a3:b4:c1:7c:13:80:84: 6f:49:29:3c:ba:46:74:02:09:7c:fc:57:fb:8f:98:88:2e:ab: 4b:0a:bc:e9:ab:ac:f5:45:6c:a7:e2:c9:b9:2e:f2:23:df:21: e3:43:f2:a0:02:e3:47:99:77:7a:22:f3:ff:32:83:7b:d8:0f: 27:8d:78:33:02:1a:65:5c:09:76:03:36:e8:4c:c2:48:ed:59: dd:b0:d8:05:d1:f8:83:1f:14:fb:b9:e5:b0:28:ec:24:24:22: 9e:62:d4:ee:26:ea:0c:83:e0:d6:f8:95:62:08:15:2e:0c:b0: 1d:16:bd:98:fd:e2:83:a9:90:ed:e3:3d:c4:c0:22:ac:65:4f: ee:83:05:57:34:1c:3a:cc:a4:22:03:e2:fe:dc:5e:9d:ea:47: 5e:09:2b:b1:59:82:a4:ee:81:25:7f:22:e2:98:27:0c:07:3f: 76:0d:2c:ea:8c:a7:c1:0a:57:cf:48:a1:47:b3:20:c7:a9:99: 2d:0b:d5:d3:d9:6f:d1:b9:c6:39:5c:0c:1d:a5:8d:3e:8a:e2: 18:11:6b:fb:11:50:28:7d:ae:db:94:40:5f:7e:3c:7b:1e:9c: e3:f6:21:23 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUO1WraZhz6ZXoxPeC6AVmrWNubeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODMzNEEzRkI0QUZBNUEyQjI5QkVBREUzM0Y1OTU3QzFE QURFNTExODAeFw0yNjAxMDYxOTMxMjdaFw0yNzAxMDUxOTM2MjdaMDMxMTAvBgNV BAMTKEZEQjY0RTRENUE5RTUxNjFBRTQ1QjY3NEUzMDFGNUMwRjQzRDlDNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Tik8F0j34d9jcy0SIUjuJ/2A InwDFOG3R23HRlX83+onpXINnr1I43lHiRnnW9eyMUSL7ghMiDmrePcOxE9XkhGQ qLGkcguWam7N1ac8vDDz21hSXP3Yx2sDHtJcuhA173f0RbGsI8lZPhTVNHpI/kqQ OKBNDcmGGqaKw0duKjJdsuV4sm67Sp8CEkfC/4CMf03jKamdIFyTb3+xD2KCfRq8 WqtQbQUTQpRGTbenrwX9+J4XV5SRn2RvozfjWM3nxBiATrSmOoPrYlXsztfvZhuP AsCBcNuo2KeWwqDI/Ut+p3yZg6jcWaHIbL6oPEo0vZ9wmqnVPacrcPoXs/F/AgMB AAGjggLGMIICwjAdBgNVHQ4EFgQU/bZOTVqeUWGuRbZ04wH1wPQ9nGswHwYDVR0j BBgwFoAUgzSj+0r6Wispvq3jP1lXwdreURgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9GMDY3NjQ5MTkwNkI2NDY0NjE0NkYyQTY3NTFCQTBFM0FB OEUwMzkzNzg3MUVEMzkyOTk1QkFFMzY1RDc1NDQ5LzAvODMzNEEzRkI0QUZBNUEy QjI5QkVBREUzM0Y1OTU3QzFEQURFNTExOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84MzM0QTNGQjRBRkE1QTJCMjlC RUFERTMzRjU5NTdDMURBREU1MTE4LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRjA2NzY0OTE5MDZCNjQ2NDYxNDZGMkE2NzUxQkEwRTNBQThFMDM5Mzc4 NzFFRDM5Mjk5NUJBRTM2NUQ3NTQ0OS8wLzMyMzAzMTJlMzIzMjMwMmUzMDJlMzAy ZjMyMzAyZDMyMzQyMDNkM2UyMDMyMzczNzM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATJ3AAwDQYJ KoZIhvcNAQELBQADggEBAC81tvfe/FHescOLRmlqcyhX+Qc3bDS+bijcCnNxo7TB fBOAhG9JKTy6RnQCCXz8V/uPmIguq0sKvOmrrPVFbKfiybku8iPfIeND8qAC40eZ d3oi8/8yg3vYDyeNeDMCGmVcCXYDNuhMwkjtWd2w2AXR+IMfFPu55bAo7CQkIp5i 1O4m6gyD4Nb4lWIIFS4MsB0WvZj94oOpkO3jPcTAIqxlT+6DBVc0HDrMpCID4v7c Xp3qR14JK7FZgqTugSV/IuKYJwwHP3YNLOqMp8EKV89IoUezIMepmS0L1dPZb9G5 xjlcDB2ljT6K4hgRa/sRUCh9rtuUQF9+PHsenOP2ISM= -----END CERTIFICATE-----Generated at Tue Jan 20 11:42:57 2026 by rpki-client