$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/36342e32382e3132382e302f32312d3231203d3e203238303637.roa File: 36342e32382e3132382e302f32312d3231203d3e203238303637.roa (raw, json) Hash identifier: f/vmHN7er8Oiv38gHFqrAlZkFPGNreDB7OrJqMgLkUY= Subject key identifier: 27:AB:4D:6E:ED:5A:27:80:36:23:54:8B:88:83:4E:E7:77:08:45:41 Certificate issuer: /CN=8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30 Certificate serial: 3E49B30D1FD76CC8745BDB0277232D28F3B72A97 Authority key identifier: 8F:CB:3D:AE:D8:FB:3A:82:F6:BD:E9:5F:BC:5A:C3:B7:9C:CE:FD:30 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/36342e32382e3132382e302f32312d3231203d3e203238303637.roa Signing time: Tue 04 Feb 2025 18:29:11 +0000 ROA not before: Tue 04 Feb 2025 18:24:11 +0000 ROA not after: Tue 03 Feb 2026 18:29:11 +0000 asID: 28067 IP address blocks: 64.28.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30.crl rsync://repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 04 Nov 2025 21:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:49:b3:0d:1f:d7:6c:c8:74:5b:db:02:77:23:2d:28:f3:b7:2a:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30 Validity Not Before: Feb 4 18:24:11 2025 GMT Not After : Feb 3 18:29:11 2026 GMT Subject: CN=27AB4D6EED5A27803623548B88834EE777084541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:8b:fc:c1:55:31:3d:a5:bb:d7:da:81:16:8f: e3:f9:6d:56:ff:70:0d:6d:9b:87:7b:d4:20:b7:19: f3:b6:04:41:23:ad:4c:b6:c2:6c:e2:ab:d0:5b:ac: f5:fd:71:88:83:66:3b:f4:9c:d7:c3:00:11:7f:b3: 95:f4:de:f2:e7:35:c5:95:c4:2f:e7:55:b1:97:a9: 3c:31:c0:1f:ce:b8:03:1b:88:4d:0c:53:2a:d1:d3: f0:87:a5:80:7e:8e:76:71:71:c6:fe:be:82:77:3f: f3:de:a7:e4:bd:f3:b1:a5:aa:35:ed:4e:bb:29:1e: 0d:8f:8c:88:4e:a2:45:36:82:37:28:c8:95:ed:f3: f3:69:4e:b2:1f:00:82:87:0e:74:c2:99:81:21:02: 35:bc:75:a9:8d:2e:d6:e8:80:a1:72:ef:07:c5:46: 94:85:f2:1e:f1:56:15:98:8b:d3:94:b9:65:e2:c6: 58:4b:38:b6:b6:58:f1:11:e0:40:25:da:3b:9c:f3: fb:40:64:b5:1c:fc:e8:e0:f5:46:d2:09:f7:0d:b0: 66:bc:5b:f0:f0:c2:e4:36:cc:98:e1:3c:c9:10:41: ed:4a:cf:5d:2d:c9:ba:90:6b:f8:b8:8d:cc:b1:a6: cf:1c:ce:b6:a6:83:04:12:29:37:05:92:c1:f4:bf: d7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:AB:4D:6E:ED:5A:27:80:36:23:54:8B:88:83:4E:E7:77:08:45:41 X509v3 Authority Key Identifier: keyid:8F:CB:3D:AE:D8:FB:3A:82:F6:BD:E9:5F:BC:5A:C3:B7:9C:CE:FD:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/36342e32382e3132382e302f32312d3231203d3e203238303637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.28.128.0/21 Signature Algorithm: sha256WithRSAEncryption 61:59:7d:3c:03:d2:6f:67:5f:9f:2e:53:f3:bc:8f:13:c7:7d: ba:1c:a6:d5:74:be:32:c6:55:58:31:f2:72:76:89:6e:7d:8f: a2:be:af:d0:90:aa:3b:7a:57:1e:4e:19:72:1d:ac:a5:af:1d: bd:54:6c:f7:1a:70:ae:ea:35:5d:0f:13:f9:97:22:21:11:e9: 24:e7:11:24:9f:fc:58:b1:23:2e:4e:88:47:43:6a:da:9d:b7: 03:d0:4c:d0:a7:05:c5:d3:5b:a6:cd:75:d7:07:6e:60:fd:6f: 8f:58:51:6b:07:c5:d4:50:13:a9:12:28:ad:c1:08:0a:da:94: 2a:57:64:37:43:19:fd:f3:01:09:ca:01:15:77:d3:63:8e:dc: b3:ed:b1:ba:34:ee:9b:d6:1a:d6:27:86:61:48:c8:23:63:fe: 51:7c:ef:f7:7a:fd:62:d6:36:90:0d:94:83:12:98:0e:45:42: 52:d4:81:64:36:dc:05:ce:4a:48:84:a7:4f:f3:1a:30:57:56: 6a:78:8d:12:06:5b:f6:f0:93:f3:3f:10:6b:9f:9e:0f:47:0f: 25:5a:51:0f:a7:c8:b9:20:7f:fd:91:c9:9a:88:ad:94:97:55: dc:b6:df:94:ac:5c:ec:75:43:1c:ae:a0:88:7b:4e:c5:5f:63: 8d:c4:27:4b -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUPkmzDR/XbMh0W9sCdyMtKPO3KpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDQjNEQUVEOEZCM0E4MkY2QkRFOTVGQkM1QUMzQjc5 Q0NFRkQzMDAeFw0yNTAyMDQxODI0MTFaFw0yNjAyMDMxODI5MTFaMDMxMTAvBgNV BAMTKDI3QUI0RDZFRUQ1QTI3ODAzNjIzNTQ4Qjg4ODM0RUU3NzcwODQ1NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDui/zBVTE9pbvX2oEWj+P5bVb/ cA1tm4d71CC3GfO2BEEjrUy2wmziq9BbrPX9cYiDZjv0nNfDABF/s5X03vLnNcWV xC/nVbGXqTwxwB/OuAMbiE0MUyrR0/CHpYB+jnZxccb+voJ3P/Pep+S987GlqjXt TrspHg2PjIhOokU2gjcoyJXt8/NpTrIfAIKHDnTCmYEhAjW8damNLtbogKFy7wfF RpSF8h7xVhWYi9OUuWXixlhLOLa2WPER4EAl2juc8/tAZLUc/Ojg9UbSCfcNsGa8 W/DwwuQ2zJjhPMkQQe1Kz10tybqQa/i4jcyxps8czramgwQSKTcFksH0v9cjAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUJ6tNbu1aJ4A2I1SLiINO53cIRUEwHwYDVR0j BBgwFoAUj8s9rtj7OoL2velfvFrDt5zO/TAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xOTkxNDlDQTQzRUM2NEEwNDczRDJCQzFDRjEzRjhFMTdG M0IxRTE5Q0I0MkUyNDY4OTFCMERGMEVEQ0M1ODYyLzAvOEZDQjNEQUVEOEZCM0E4 MkY2QkRFOTVGQkM1QUMzQjc5Q0NFRkQzMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84RkNCM0RBRUQ4RkIzQTgyRjZC REU5NUZCQzVBQzNCNzlDQ0VGRDMwLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMTk5MTQ5Q0E0M0VDNjRBMDQ3M0QyQkMxQ0YxM0Y4RTE3RjNCMUUxOUNC NDJFMjQ2ODkxQjBERjBFRENDNTg2Mi8wLzM2MzQyZTMyMzgyZTMxMzIzODJlMzAy ZjMyMzEyZDMyMzEyMDNkM2UyMDMyMzgzMDM2Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANAHIAwDQYJ KoZIhvcNAQELBQADggEBAGFZfTwD0m9nX58uU/O8jxPHfbocptV0vjLGVVgx8nJ2 iW59j6K+r9CQqjt6Vx5OGXIdrKWvHb1UbPcacK7qNV0PE/mXIiER6STnESSf/Fix Iy5OiEdDatqdtwPQTNCnBcXTW6bNddcHbmD9b49YUWsHxdRQE6kSKK3BCAralCpX ZDdDGf3zAQnKARV302OO3LPtsbo07pvWGtYnhmFIyCNj/lF87/d6/WLWNpANlIMS mA5FQlLUgWQ23AXOSkiEp0/zGjBXVmp4jRIGW/bwk/M/EGufng9HDyVaUQ+nyLkg f/2RyZqIrZSXVdy235SsXOx1QxyuoIh7TsVfY43EJ0s= -----END CERTIFICATE-----Generated at Sat Nov 1 17:46:59 2025 by rpki-client