$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0c78a68b-2682-4308-b76e-0a5c356d0025/8f68e60b4828f6edb22f951c1f782caefbb8e0c1.roa File: 8f68e60b4828f6edb22f951c1f782caefbb8e0c1.roa (raw, json) Hash identifier: SrKLSg3kZOvnK4j5Z8atfX+TjDdGkyfiM6Coi9Epi6M= Subject key identifier: 5E:BF:0B:F8:E2:7A:7B:BD:B3:F9:6C:91:9E:64:F3:5B:CF:F0:DB:60 Certificate issuer: /CN=b0951c16b2e21e742562516097161ba7ad928df5 Certificate serial: 016D56 Authority key identifier: A5:E8:4E:79:BB:FB:BD:10:EB:18:C8:95:E7:DD:3C:63:49:B4:59:B4 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b0951c16b2e21e742562516097161ba7ad928df5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0c78a68b-2682-4308-b76e-0a5c356d0025/8f68e60b4828f6edb22f951c1f782caefbb8e0c1.roa Signing time: Wed 06 Dec 2023 18:12:31 +0000 ROA not before: Wed 06 Dec 2023 18:12:31 +0000 ROA not after: Sat 06 Dec 2025 18:12:31 +0000 asID: 28001 IP address blocks: 2801:165::/44 maxlen: 47 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/0c78a68b-2682-4308-b76e-0a5c356d0025/b0951c16b2e21e742562516097161ba7ad928df5.crl rsync://repository.lacnic.net/rpki/lacnic/0c78a68b-2682-4308-b76e-0a5c356d0025/b0951c16b2e21e742562516097161ba7ad928df5.mft rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b0951c16b2e21e742562516097161ba7ad928df5.cer rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 09 Dec 2023 21:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93526 (0x16d56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0951c16b2e21e742562516097161ba7ad928df5 Validity Not Before: Dec 6 18:12:31 2023 GMT Not After : Dec 6 18:12:31 2025 GMT Subject: CN=8f68e60b4828f6edb22f951c1f782caefbb8e0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3f:e2:4f:3f:57:c5:8c:1f:8c:a0:9e:26:b4: 84:d8:72:97:5c:4f:e8:21:20:93:3a:25:a8:5c:cb: 26:d9:b4:e7:46:b6:1a:ca:15:93:40:04:3a:56:d7: fc:5b:d6:d6:d5:7b:41:ae:3e:88:d8:f9:c3:59:2d: e3:5d:9e:81:16:52:a9:37:8d:c3:91:96:8d:a7:99: 60:25:00:64:35:22:1c:12:3a:45:58:0a:d7:5f:43: d0:82:45:d2:a6:24:e4:5c:eb:74:01:3a:b1:e3:71: d1:fb:a9:06:e8:8c:82:71:71:f0:11:7b:fd:8e:f5: a8:75:fb:40:e9:3f:8f:75:dc:7b:03:f5:1b:f4:36: ac:37:4b:30:f9:a8:04:d4:be:d1:d1:4c:65:1f:63: 18:5d:c3:74:f9:02:9c:5b:2c:1c:df:99:58:06:e7: 55:79:4a:81:99:9d:54:fd:a2:c3:77:26:94:79:c7: e4:96:00:02:ee:da:e1:b7:89:92:42:f5:fe:d8:18: 1a:af:dc:f5:d8:da:31:79:6a:11:15:0b:0a:bb:e1: fb:a4:ee:aa:bb:49:95:5e:55:b6:56:2b:18:8e:49: fe:86:44:04:9d:d2:4e:c7:4c:92:c1:40:33:9a:c9: 96:40:52:6e:f6:c0:b5:bb:76:ba:19:89:2f:59:8b: 56:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:BF:0B:F8:E2:7A:7B:BD:B3:F9:6C:91:9E:64:F3:5B:CF:F0:DB:60 X509v3 Authority Key Identifier: keyid:A5:E8:4E:79:BB:FB:BD:10:EB:18:C8:95:E7:DD:3C:63:49:B4:59:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b0951c16b2e21e742562516097161ba7ad928df5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0c78a68b-2682-4308-b76e-0a5c356d0025/8f68e60b4828f6edb22f951c1f782caefbb8e0c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/0c78a68b-2682-4308-b76e-0a5c356d0025/b0951c16b2e21e742562516097161ba7ad928df5.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2801:165::/44 Signature Algorithm: sha256WithRSAEncryption 88:00:db:32:da:9b:9e:a3:75:b5:1d:c0:a4:b2:c3:95:0b:94: db:f6:ce:4c:8e:d8:93:5b:94:fc:d1:7f:de:fc:0c:8d:25:44: 5e:6a:d8:6d:e0:6b:50:e0:e2:a1:a2:d3:a5:63:52:3d:00:3f: 3a:3c:53:3f:15:b6:27:51:84:01:62:ae:2b:0c:94:d2:0f:00: da:71:6b:50:2f:3a:19:40:6f:cf:ba:83:34:03:7a:5a:ea:25: 78:4a:f3:1d:d5:a6:c1:11:63:c7:19:4a:e3:4e:8d:4c:a6:21: 3f:15:30:38:54:85:c7:a6:e9:61:cc:bb:eb:75:7c:e3:16:12: c3:c9:f0:40:85:9b:81:23:ff:1b:bc:7f:e4:b9:8c:52:8b:fc: 09:80:02:97:ce:c3:da:ba:e0:73:8e:da:01:e3:dc:23:ab:d0: 84:7f:2d:04:58:11:fc:b7:16:f0:e4:8a:6d:2e:d5:6d:d6:b9: 55:b3:8a:7d:9c:95:e3:ce:5b:7e:bf:0e:bd:ad:6e:66:bc:1e: e4:25:7c:1a:18:13:a4:5d:27:ac:d6:3b:44:ab:5c:d9:ab:5a: 94:1b:5e:6d:c8:3f:09:af:1c:de:a8:07:7c:46:fe:26:71:fe: 6c:89:2a:40:23:74:52:5c:aa:52:5b:98:2c:7f:6e:f7:b3:d4: 41:b9:8d:03 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIDAW1WMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGIw OTUxYzE2YjJlMjFlNzQyNTYyNTE2MDk3MTYxYmE3YWQ5MjhkZjUwHhcNMjMxMjA2 MTgxMjMxWhcNMjUxMjA2MTgxMjMxWjAzMTEwLwYDVQQDEyg4ZjY4ZTYwYjQ4Mjhm NmVkYjIyZjk1MWMxZjc4MmNhZWZiYjhlMGMxMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEArz/iTz9XxYwfjKCeJrSE2HKXXE/oISCTOiWoXMsm2bTnRrYa yhWTQAQ6Vtf8W9bW1XtBrj6I2PnDWS3jXZ6BFlKpN43DkZaNp5lgJQBkNSIcEjpF WArXX0PQgkXSpiTkXOt0ATqx43HR+6kG6IyCcXHwEXv9jvWodftA6T+Pddx7A/Ub 9DasN0sw+agE1L7R0UxlH2MYXcN0+QKcWywc35lYBudVeUqBmZ1U/aLDdyaUecfk lgAC7trht4mSQvX+2Bgar9z12NoxeWoRFQsKu+H7pO6qu0mVXlW2VisYjkn+hkQE ndJOx0ySwUAzmsmWQFJu9sC1u3a6GYkvWYtWtwIDAQABo4ICXjCCAlowHQYDVR0O BBYEFF6/C/jienu9s/lskZ5k81vP8NtgMB8GA1UdIwQYMBaAFKXoTnm7+70Q6xjI lefdPGNJtFm0MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYjA5NTFj MTZiMmUyMWU3NDI1NjI1MTYwOTcxNjFiYTdhZDkyOGRmNS5jZXIwgZoGCCsGAQUF BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p Yy5uZXQvcnBraS9sYWNuaWMvMGM3OGE2OGItMjY4Mi00MzA4LWI3NmUtMGE1YzM1 NmQwMDI1LzhmNjhlNjBiNDgyOGY2ZWRiMjJmOTUxYzFmNzgyY2FlZmJiOGUwYzEu cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj bmljLm5ldC9ycGtpL2xhY25pYy8wYzc4YTY4Yi0yNjgyLTQzMDgtYjc2ZS0wYTVj MzU2ZDAwMjUvYjA5NTFjMTZiMmUyMWU3NDI1NjI1MTYwOTcxNjFiYTdhZDkyOGRm NS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHBCgBAWUAADANBgkqhkiG9w0BAQsFAAOCAQEAiADbMtqbnqN1 tR3ApLLDlQuU2/bOTI7Yk1uU/NF/3vwMjSVEXmrYbeBrUODioaLTpWNSPQA/OjxT PxW2J1GEAWKuKwyU0g8A2nFrUC86GUBvz7qDNAN6WuoleErzHdWmwRFjxxlK406N TKYhPxUwOFSFx6bpYcy763V84xYSw8nwQIWbgSP/G7x/5LmMUov8CYACl87D2rrg c47aAePcI6vQhH8tBFgR/LcW8OSKbS7Vbda5VbOKfZyV485bfr8Ova1uZrwe5CV8 GhgTpF0nrNY7RKtc2atalBtebcg/Ca8c3qgHfEb+JnH+bIkqQCN0UlyqUluYLH9u 97PUQbmNAw== -----END CERTIFICATE-----Generated at Wed Dec 6 20:14:32 2023 by rpki-client on console-ams.rpki-client.org