This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/323830303a3238303a3a2f33322d3634203d3e203237373831.roa File: 323830303a3238303a3a2f33322d3634203d3e203237373831.roa (raw, json) Hash identifier: pBIu0GqdpcMaKP62jbO/7ACZzQHq7W/oOaJznvn8ktk= Subject key identifier: 59:AF:46:A8:EE:64:AA:4D:73:52:EB:24:B4:C2:16:B9:40:09:5D:6B Certificate issuer: /CN=8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118 Certificate serial: 1EB779B9B224DDB45F9AB56F822E8654F0AD3D59 Authority key identifier: 83:34:A3:FB:4A:FA:5A:2B:29:BE:AD:E3:3F:59:57:C1:DA:DE:51:18 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/323830303a3238303a3a2f33322d3634203d3e203237373831.roa Signing time: Tue 06 Jan 2026 19:36:28 +0000 ROA not before: Tue 06 Jan 2026 19:31:28 +0000 ROA not after: Tue 05 Jan 2027 19:36:28 +0000 asID: 27781 IP address blocks: 2800:280::/32 maxlen: 64 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.crl rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 25 Jan 2026 00:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:b7:79:b9:b2:24:dd:b4:5f:9a:b5:6f:82:2e:86:54:f0:ad:3d:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118 Validity Not Before: Jan 6 19:31:28 2026 GMT Not After : Jan 5 19:36:28 2027 GMT Subject: CN=59AF46A8EE64AA4D7352EB24B4C216B940095D6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:65:c5:54:a6:87:82:df:69:1e:49:ef:de:5b: 64:5f:bb:23:bf:73:d1:ea:92:ab:ae:a1:d7:24:c2: b7:34:cc:1f:6d:cb:9a:b2:7d:fe:eb:7d:10:8c:11: a9:bc:64:0d:6d:67:53:fb:a6:a7:64:c2:92:92:08: 17:4b:1d:fb:42:f6:4a:fa:90:75:95:71:d0:25:f6: 07:d4:a6:36:7a:57:2b:28:07:eb:1c:8d:78:69:71: a2:ca:30:48:e4:68:22:c3:7d:17:98:91:cb:89:35: ab:b4:67:96:03:36:a7:82:d6:51:44:57:bd:67:85: af:99:0b:5a:61:39:c1:54:4d:48:d8:02:64:9d:8d: a1:91:6d:5c:39:d8:ed:d1:1a:16:df:52:35:28:f5: 10:02:52:85:cb:d8:09:a0:dc:ad:99:b8:e3:89:71: 2e:c6:e2:b9:8b:79:67:8c:fc:af:06:07:94:58:30: f9:d3:9f:b1:f2:af:ca:8d:88:26:26:04:b9:a2:64: db:16:39:32:9f:74:94:fa:8e:fc:3e:5f:ef:5f:37: 31:58:5e:a6:9b:8c:d8:90:93:bd:65:ec:83:0d:91: 96:90:a6:49:32:cb:ce:73:14:8a:76:73:29:5d:10: 20:5e:2a:9d:c7:6f:86:fd:ce:f8:45:66:6d:39:48: 75:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AF:46:A8:EE:64:AA:4D:73:52:EB:24:B4:C2:16:B9:40:09:5D:6B X509v3 Authority Key Identifier: keyid:83:34:A3:FB:4A:FA:5A:2B:29:BE:AD:E3:3F:59:57:C1:DA:DE:51:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8334A3FB4AFA5A2B29BEADE33F5957C1DADE5118.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F0676491906B64646146F2A6751BA0E3AA8E03937871ED392995BAE365D75449/0/323830303a3238303a3a2f33322d3634203d3e203237373831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2800:280::/32 Signature Algorithm: sha256WithRSAEncryption 48:cd:8d:4b:04:42:3d:68:eb:f9:c2:0f:64:1c:d2:6e:82:b3: dd:da:45:2f:a5:f4:8b:b0:30:39:23:63:82:6e:08:3d:1e:18: a6:39:ac:be:89:74:64:a1:b1:c6:cb:f9:dd:ff:ff:fd:64:c4: f2:31:83:56:89:70:1b:f3:ac:3e:55:85:af:44:e1:fa:6c:f5: 78:fb:5a:26:aa:58:a7:b1:29:ca:ca:d8:46:54:da:33:3c:17: 5f:9f:93:11:bd:50:93:56:45:7e:9d:fc:e8:c4:53:0f:13:57: 26:e7:84:56:08:ef:47:f7:88:bf:eb:2a:12:b5:83:6d:d0:21: 22:36:64:10:aa:e3:24:07:0e:0e:d7:ec:ab:94:8f:49:c4:4b: a7:cf:e9:98:f6:4b:76:1f:72:10:d9:58:da:1b:c1:0d:5a:38: 9f:cd:42:7e:78:39:ca:00:f7:d9:15:fe:88:f0:6c:28:70:9b: 9c:f2:81:b3:e4:a0:81:ad:39:80:04:b4:b0:15:cc:3a:b3:c8: ab:c9:04:45:6d:10:3d:ed:5f:33:c2:40:ee:59:31:26:2b:9a: 49:e8:35:7a:31:2e:86:2e:1a:9b:9a:cb:66:64:c1:28:09:6b: bf:02:94:c3:4f:08:c6:ac:66:2e:6a:50:9a:56:4e:b3:ac:5d: 05:ab:e5:67 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgIUHrd5ubIk3bRfmrVvgi6GVPCtPVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODMzNEEzRkI0QUZBNUEyQjI5QkVBREUzM0Y1OTU3QzFE QURFNTExODAeFw0yNjAxMDYxOTMxMjhaFw0yNzAxMDUxOTM2MjhaMDMxMTAvBgNV BAMTKDU5QUY0NkE4RUU2NEFBNEQ3MzUyRUIyNEI0QzIxNkI5NDAwOTVENkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ZcVUpoeC32keSe/eW2RfuyO/ c9Hqkquuodckwrc0zB9ty5qyff7rfRCMEam8ZA1tZ1P7pqdkwpKSCBdLHftC9kr6 kHWVcdAl9gfUpjZ6VysoB+scjXhpcaLKMEjkaCLDfReYkcuJNau0Z5YDNqeC1lFE V71nha+ZC1phOcFUTUjYAmSdjaGRbVw52O3RGhbfUjUo9RACUoXL2Amg3K2ZuOOJ cS7G4rmLeWeM/K8GB5RYMPnTn7Hyr8qNiCYmBLmiZNsWOTKfdJT6jvw+X+9fNzFY XqabjNiQk71l7IMNkZaQpkkyy85zFIp2cyldECBeKp3Hb4b9zvhFZm05SHUFAgMB AAGjggLFMIICwTAdBgNVHQ4EFgQUWa9GqO5kqk1zUusktMIWuUAJXWswHwYDVR0j BBgwFoAUgzSj+0r6Wispvq3jP1lXwdreURgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9GMDY3NjQ5MTkwNkI2NDY0NjE0NkYyQTY3NTFCQTBFM0FB OEUwMzkzNzg3MUVEMzkyOTk1QkFFMzY1RDc1NDQ5LzAvODMzNEEzRkI0QUZBNUEy QjI5QkVBREUzM0Y1OTU3QzFEQURFNTExOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84MzM0QTNGQjRBRkE1QTJCMjlC RUFERTMzRjU5NTdDMURBREU1MTE4LmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRjA2NzY0OTE5MDZCNjQ2NDYxNDZGMkE2NzUxQkEwRTNBQThFMDM5Mzc4 NzFFRDM5Mjk5NUJBRTM2NUQ3NTQ0OS8wLzMyMzgzMDMwM2EzMjM4MzAzYTNhMmYz MzMyMmQzNjM0MjAzZDNlMjAzMjM3MzczODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKAACgDANBgkq hkiG9w0BAQsFAAOCAQEASM2NSwRCPWjr+cIPZBzSboKz3dpFL6X0i7AwOSNjgm4I PR4Ypjmsvol0ZKGxxsv53f///WTE8jGDVolwG/OsPlWFr0Th+mz1ePtaJqpYp7Ep ysrYRlTaMzwXX5+TEb1Qk1ZFfp386MRTDxNXJueEVgjvR/eIv+sqErWDbdAhIjZk EKrjJAcODtfsq5SPScRLp8/pmPZLdh9yENlY2hvBDVo4n81Cfng5ygD32RX+iPBs KHCbnPKBs+Sgga05gAS0sBXMOrPIq8kERW0QPe1fM8JA7lkxJiuaSeg1ejEuhi4a m5rLZmTBKAlrvwKUw08IxqxmLmpQmlZOs6xdBavlZw== -----END CERTIFICATE-----Generated at Tue Jan 20 11:46:42 2026 by rpki-client