$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/684A163061B8B37E1E50DCE9A72B2D544752D9B62E8637772EBEC99045E71403/0/323830333a396461303a3a2f33322d3438203d3e20323637373431.roa File: 323830333a396461303a3a2f33322d3438203d3e20323637373431.roa (raw, json) Hash identifier: 5hhz7mH4wZxsvbakAIux+mtst4Y1wFSDr73ZBg2ZFlM= Subject key identifier: 30:90:89:D1:EC:00:92:CF:F2:A4:A4:9B:C5:76:46:8C:AA:7A:56:E5 Certificate issuer: /CN=34A35E8BBBE176F35EA6FD0DBF546EAF6EB8A38F Certificate serial: 22BA73958C581BC358177A256B954CC0F0D87C48 Authority key identifier: 34:A3:5E:8B:BB:E1:76:F3:5E:A6:FD:0D:BF:54:6E:AF:6E:B8:A3:8F Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/34A35E8BBBE176F35EA6FD0DBF546EAF6EB8A38F.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/684A163061B8B37E1E50DCE9A72B2D544752D9B62E8637772EBEC99045E71403/0/323830333a396461303a3a2f33322d3438203d3e20323637373431.roa Signing time: Tue 04 Feb 2025 20:07:06 +0000 ROA not before: Tue 04 Feb 2025 20:02:06 +0000 ROA not after: Tue 03 Feb 2026 20:07:06 +0000 asID: 267741 IP address blocks: 2803:9da0::/32 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/684A163061B8B37E1E50DCE9A72B2D544752D9B62E8637772EBEC99045E71403/0/34A35E8BBBE176F35EA6FD0DBF546EAF6EB8A38F.crl rsync://repository.lacnic.net/rpki/lacnic/684A163061B8B37E1E50DCE9A72B2D544752D9B62E8637772EBEC99045E71403/0/34A35E8BBBE176F35EA6FD0DBF546EAF6EB8A38F.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/34A35E8BBBE176F35EA6FD0DBF546EAF6EB8A38F.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 18 Apr 2025 17:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ba:73:95:8c:58:1b:c3:58:17:7a:25:6b:95:4c:c0:f0:d8:7c:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34A35E8BBBE176F35EA6FD0DBF546EAF6EB8A38F Validity Not Before: Feb 4 20:02:06 2025 GMT Not After : Feb 3 20:07:06 2026 GMT Subject: CN=309089D1EC0092CFF2A4A49BC576468CAA7A56E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6c:6c:d0:47:15:d6:67:9e:81:a2:05:60:29: f2:8c:54:b8:de:0b:db:b5:bc:d6:76:33:54:1f:08: 3b:7a:89:1f:44:9a:3f:20:55:4a:4d:39:a8:ee:82: 80:e1:ce:bb:3b:95:a5:a8:b1:3c:b0:19:64:cd:e8: 3b:18:b0:43:a2:6c:61:79:95:19:f1:82:a9:66:94: 25:76:62:cf:05:86:07:1f:2b:e1:75:96:de:94:f5: c2:49:25:d8:50:5b:5f:d1:ad:de:b0:b1:ef:5f:3e: 80:a6:7e:08:20:73:cc:66:a5:b1:0e:85:2c:7e:3a: 55:62:7b:ec:3d:2c:72:4b:cb:e7:d0:f7:56:37:a6: 71:39:40:54:ec:3c:c9:10:82:39:07:39:87:65:15: 15:75:eb:0b:24:7b:52:18:bb:f4:a0:57:4b:a6:12: 9f:b2:12:08:35:3f:71:72:5c:37:c5:60:27:86:b0: 73:7a:26:5c:a0:ca:59:fc:0e:78:b4:87:b4:0a:0b: 51:ba:89:0f:2d:9c:95:33:fe:56:c9:98:0a:dd:b5: 78:26:6f:b6:85:c0:61:5b:af:57:d0:b1:ca:21:77: ae:32:1c:50:19:3d:0b:d9:75:d9:4f:ff:60:b6:8f: c9:35:b9:f4:e0:a6:9c:2e:0a:f7:1e:b0:22:e1:8f: f0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:90:89:D1:EC:00:92:CF:F2:A4:A4:9B:C5:76:46:8C:AA:7A:56:E5 X509v3 Authority Key Identifier: keyid:34:A3:5E:8B:BB:E1:76:F3:5E:A6:FD:0D:BF:54:6E:AF:6E:B8:A3:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/684A163061B8B37E1E50DCE9A72B2D544752D9B62E8637772EBEC99045E71403/0/34A35E8BBBE176F35EA6FD0DBF546EAF6EB8A38F.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/34A35E8BBBE176F35EA6FD0DBF546EAF6EB8A38F.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/684A163061B8B37E1E50DCE9A72B2D544752D9B62E8637772EBEC99045E71403/0/323830333a396461303a3a2f33322d3438203d3e20323637373431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:9da0::/32 Signature Algorithm: sha256WithRSAEncryption 3e:68:2b:79:e8:37:44:6d:43:18:79:b2:90:6a:43:1e:ba:e7: 78:58:bd:65:1e:ab:a6:de:8c:7d:73:f2:c7:aa:50:16:3c:c0: 26:d9:4e:62:79:e2:58:c6:ca:1b:22:37:dd:d5:20:4a:f1:11: c4:46:0d:86:aa:13:23:d1:e1:52:2e:05:d6:3c:08:13:7a:11: 00:8e:9c:1b:9e:04:7b:ce:65:d2:cb:8c:bb:26:3f:40:ee:f6: 78:ba:62:7e:b8:1e:52:9c:c1:09:6f:32:0b:38:b9:79:d5:ff: 69:45:ff:b2:60:42:01:cc:15:d4:1b:df:92:5e:a8:07:b9:e2: 26:f2:71:1d:d0:df:ca:70:41:47:f8:80:70:4e:62:df:6f:d3: 66:d4:be:12:7d:82:fc:50:5d:1f:cd:d3:61:23:e9:0b:fc:57: 38:a9:f1:25:a6:ba:87:f9:38:20:81:a8:d0:fe:d5:2d:ef:78: 9c:90:77:e7:c9:bf:89:3d:f1:31:a8:3d:3c:20:7f:7c:c1:99: 07:36:a0:37:ea:dd:db:d0:cd:db:cf:e0:eb:58:d3:c9:6c:e1: 76:0d:29:4f:04:cc:33:92:38:68:65:05:fc:aa:3c:89:4c:59: e1:c6:6c:dd:30:2e:a6:b6:19:6a:f4:33:2a:70:d3:81:80:f0: 09:68:8f:5a -----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgIUIrpzlYxYG8NYF3ola5VMwPDYfEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRBMzVFOEJCQkUxNzZGMzVFQTZGRDBEQkY1NDZFQUY2 RUI4QTM4RjAeFw0yNTAyMDQyMDAyMDZaFw0yNjAyMDMyMDA3MDZaMDMxMTAvBgNV BAMTKDMwOTA4OUQxRUMwMDkyQ0ZGMkE0QTQ5QkM1NzY0NjhDQUE3QTU2RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0bGzQRxXWZ56BogVgKfKMVLje C9u1vNZ2M1QfCDt6iR9Emj8gVUpNOajugoDhzrs7laWosTywGWTN6DsYsEOibGF5 lRnxgqlmlCV2Ys8FhgcfK+F1lt6U9cJJJdhQW1/Rrd6wse9fPoCmfgggc8xmpbEO hSx+OlVie+w9LHJLy+fQ91Y3pnE5QFTsPMkQgjkHOYdlFRV16wske1IYu/SgV0um Ep+yEgg1P3FyXDfFYCeGsHN6Jlygyln8Dni0h7QKC1G6iQ8tnJUz/lbJmArdtXgm b7aFwGFbr1fQscohd64yHFAZPQvZddlP/2C2j8k1ufTgppwuCvcesCLhj/AnAgMB AAGjggLJMIICxTAdBgNVHQ4EFgQUMJCJ0ewAks/ypKSbxXZGjKp6VuUwHwYDVR0j BBgwFoAUNKNei7vhdvNepv0Nv1Rur264o48wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy82ODRBMTYzMDYxQjhCMzdFMUU1MERDRTlBNzJCMkQ1NDQ3 NTJEOUI2MkU4NjM3NzcyRUJFQzk5MDQ1RTcxNDAzLzAvMzRBMzVFOEJCQkUxNzZG MzVFQTZGRDBEQkY1NDZFQUY2RUI4QTM4Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zNEEzNUU4QkJCRTE3NkYzNUVB NkZEMERCRjU0NkVBRjZFQjhBMzhGLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNjg0QTE2MzA2MUI4QjM3RTFFNTBEQ0U5QTcyQjJENTQ0NzUyRDlCNjJF ODYzNzc3MkVCRUM5OTA0NUU3MTQwMy8wLzMyMzgzMDMzM2EzOTY0NjEzMDNhM2Ey ZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzYzNzM3MzQzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDnaAw DQYJKoZIhvcNAQELBQADggEBAD5oK3noN0RtQxh5spBqQx6653hYvWUeq6bejH1z 8seqUBY8wCbZTmJ54ljGyhsiN93VIErxEcRGDYaqEyPR4VIuBdY8CBN6EQCOnBue BHvOZdLLjLsmP0Du9ni6Yn64HlKcwQlvMgs4uXnV/2lF/7JgQgHMFdQb35JeqAe5 4ibycR3Q38pwQUf4gHBOYt9v02bUvhJ9gvxQXR/N02Ej6Qv8Vzip8SWmuof5OCCB qND+1S3veJyQd+fJv4k98TGoPTwgf3zBmQc2oDfq3dvQzdvP4OtY08ls4XYNKU8E zDOSOGhlBfyqPIlMWeHGbN0wLqa2GWr0Mypw04GA8Aloj1o= -----END CERTIFICATE-----Generated at Tue Apr 15 04:10:20 2025 by rpki-client