This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/34352e3136342e3130382e302f32322d3234203d3e203238343431.roa File: 34352e3136342e3130382e302f32322d3234203d3e203238343431.roa (raw, json) Hash identifier: Z1/fMwDRngfi187rEBqz5wwEhc5KqcE6VM9oy89ZYQc= Subject key identifier: CD:D3:83:6C:C6:02:E4:92:4A:6F:C2:FA:DC:AC:8E:4C:68:7D:55:8C Certificate issuer: /CN=291BF264E3DFBE29A5D52AE24CE1243DF6F398C2 Certificate serial: 329B323F1FA58A1316BB29B24F67FCB7A75C3C32 Authority key identifier: 29:1B:F2:64:E3:DF:BE:29:A5:D5:2A:E2:4C:E1:24:3D:F6:F3:98:C2 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/34352e3136342e3130382e302f32322d3234203d3e203238343431.roa Signing time: Tue 06 Jan 2026 19:38:46 +0000 ROA not before: Tue 06 Jan 2026 19:33:46 +0000 ROA not after: Tue 05 Jan 2027 19:38:46 +0000 asID: 28441 IP address blocks: 45.164.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.crl rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 28 Jan 2026 23:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:9b:32:3f:1f:a5:8a:13:16:bb:29:b2:4f:67:fc:b7:a7:5c:3c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=291BF264E3DFBE29A5D52AE24CE1243DF6F398C2 Validity Not Before: Jan 6 19:33:46 2026 GMT Not After : Jan 5 19:38:46 2027 GMT Subject: CN=CDD3836CC602E4924A6FC2FADCAC8E4C687D558C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:06:c0:98:81:8b:dd:f7:30:05:ec:0b:a4:19: 6c:d1:40:9f:5a:ed:7d:d2:b8:df:f7:a9:05:19:87: 79:f5:74:64:35:a0:be:72:03:23:56:03:8d:6f:25: b2:94:f3:23:3c:15:a7:42:0a:e0:49:82:f4:ca:53: eb:32:d7:0f:d0:10:e7:ac:66:cf:ac:bb:96:01:cd: 3d:93:7b:3f:06:57:59:89:d7:02:07:f3:20:34:ea: 14:43:7c:32:df:9a:36:ba:2e:14:d3:47:45:41:ec: 34:c6:40:c4:9b:eb:05:63:b8:93:35:b8:fa:8b:4b: eb:e0:05:be:4a:a7:34:88:cd:cd:2b:40:b0:4e:28: 48:85:8a:75:70:15:e3:de:7e:24:dc:18:44:10:ad: 84:72:49:a6:f7:dc:5e:c2:e5:69:6e:3c:cb:1f:44: 0d:b6:a3:fc:31:18:54:74:58:d2:e4:ed:ab:81:92: e7:8f:22:f8:37:77:0b:52:a8:97:53:a3:ed:33:b2: 41:d9:2f:a0:b3:58:c3:e3:3a:3a:ce:2d:78:9b:da: 18:db:93:a1:ea:f1:9d:d2:be:59:e4:74:9b:89:de: a9:61:bb:04:89:0a:09:32:38:92:29:7c:11:d2:f3: 51:08:32:f0:2f:de:2d:da:06:ab:e6:88:2b:ae:0c: ca:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D3:83:6C:C6:02:E4:92:4A:6F:C2:FA:DC:AC:8E:4C:68:7D:55:8C X509v3 Authority Key Identifier: keyid:29:1B:F2:64:E3:DF:BE:29:A5:D5:2A:E2:4C:E1:24:3D:F6:F3:98:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/34352e3136342e3130382e302f32322d3234203d3e203238343431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.164.108.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:31:f0:c8:fa:a9:59:ca:03:eb:fc:2f:97:70:e9:b5:9e:2a: f4:c8:e9:ad:0f:d1:a3:ab:fd:83:0d:bb:52:ee:cf:51:b3:00: 72:0c:ac:b8:80:2d:b1:7b:6e:47:b3:79:fb:6d:32:7a:41:6c: 7a:53:c6:bd:56:35:64:2f:85:4d:93:7e:7f:b3:27:cd:c0:c6: 0b:0a:ba:aa:cc:85:e6:86:3a:7b:37:3e:45:02:f2:01:c0:8c: 4b:c3:46:8f:59:d8:8b:fd:dc:44:bf:02:8b:d5:30:4f:99:ee: 86:85:58:a4:8b:0a:19:d8:4f:aa:13:d1:e1:1c:96:3a:d4:92: 98:5c:58:85:43:c9:0a:11:6c:29:ad:44:4a:b6:ef:22:92:35: 38:55:0c:29:29:ba:1e:c1:8f:74:44:08:61:dc:6a:4e:9e:2c: b6:e6:44:8c:7e:e2:52:1a:e2:6d:22:fd:19:dc:86:d7:3f:3b: a1:d8:11:bd:54:2a:96:38:55:57:46:cb:25:c5:b6:83:1a:e6: cf:db:92:27:ba:56:2e:dc:1b:c6:c5:4c:bb:fc:1c:25:bb:cf: d7:d9:25:34:5a:b8:e6:41:d3:9c:6a:d6:44:47:45:8d:85:1e: 51:8e:59:de:1b:82:12:c0:a2:b5:43:65:c2:45:2a:59:8a:8f: 26:b5:cc:4e -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgIUMpsyPx+lihMWuymyT2f8t6dcPDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjkxQkYyNjRFM0RGQkUyOUE1RDUyQUUyNENFMTI0M0RG NkYzOThDMjAeFw0yNjAxMDYxOTMzNDZaFw0yNzAxMDUxOTM4NDZaMDMxMTAvBgNV BAMTKENERDM4MzZDQzYwMkU0OTI0QTZGQzJGQURDQUM4RTRDNjg3RDU1OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMBsCYgYvd9zAF7AukGWzRQJ9a 7X3SuN/3qQUZh3n1dGQ1oL5yAyNWA41vJbKU8yM8FadCCuBJgvTKU+sy1w/QEOes Zs+su5YBzT2Tez8GV1mJ1wIH8yA06hRDfDLfmja6LhTTR0VB7DTGQMSb6wVjuJM1 uPqLS+vgBb5KpzSIzc0rQLBOKEiFinVwFePefiTcGEQQrYRySab33F7C5WluPMsf RA22o/wxGFR0WNLk7auBkuePIvg3dwtSqJdTo+0zskHZL6CzWMPjOjrOLXib2hjb k6Hq8Z3SvlnkdJuJ3qlhuwSJCgkyOJIpfBHS81EIMvAv3i3aBqvmiCuuDMq3AgMB AAGjggLIMIICxDAdBgNVHQ4EFgQUzdODbMYC5JJKb8L63KyOTGh9VYwwHwYDVR0j BBgwFoAUKRvyZOPfviml1SriTOEkPfbzmMIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zRkE3NzEzNzdBMzUzMDgxODg4MURDMjIyNjcwNUE1OEIx OTVCRDZFQzAzNTEwMzgyMTE3RTkyRUU5NjFEM0E5LzAvMjkxQkYyNjRFM0RGQkUy OUE1RDUyQUUyNENFMTI0M0RGNkYzOThDMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yOTFCRjI2NEUzREZCRTI5QTVE NTJBRTI0Q0UxMjQzREY2RjM5OEMyLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvM0ZBNzcxMzc3QTM1MzA4MTg4ODFEQzIyMjY3MDVBNThCMTk1QkQ2RUMw MzUxMDM4MjExN0U5MkVFOTYxRDNBOS8wLzM0MzUyZTMxMzYzNDJlMzEzMDM4MmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzODM0MzQzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2kbDAN BgkqhkiG9w0BAQsFAAOCAQEAKjHwyPqpWcoD6/wvl3DptZ4q9MjprQ/Ro6v9gw27 Uu7PUbMAcgysuIAtsXtuR7N5+20yekFselPGvVY1ZC+FTZN+f7MnzcDGCwq6qsyF 5oY6ezc+RQLyAcCMS8NGj1nYi/3cRL8Ci9UwT5nuhoVYpIsKGdhPqhPR4RyWOtSS mFxYhUPJChFsKa1ESrbvIpI1OFUMKSm6HsGPdEQIYdxqTp4stuZEjH7iUhribSL9 GdyG1z87odgRvVQqljhVV0bLJcW2gxrmz9uSJ7pWLtwbxsVMu/wcJbvP19klNFq4 5kHTnGrWREdFjYUeUY5Z3huCEsCitUNlwkUqWYqPJrXMTg== -----END CERTIFICATE-----Generated at Sun Jan 25 20:57:18 2026 by rpki-client