$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D88BB9FDF17855E64284BB8CF1A5D0DC97D0D6A0402B4656FFA761571E1443FB/0/3230312e3133312e3132322e302f32332d3234203d3e203139353531.roa File: 3230312e3133312e3132322e302f32332d3234203d3e203139353531.roa (raw, json) Hash identifier: 2lY1OF4W+oeIcQrhKofjRck7LX+NlAUcZj6ZQ7tShHU= Subject key identifier: DD:CB:66:29:56:C5:CC:3D:2A:B3:20:D0:80:E8:D6:B7:11:3C:9B:29 Certificate issuer: /CN=AFDB6EB0A526B5C5EB6BD01566C38DFB7FDD181D Certificate serial: 32C35722F5113502EACAD614A0A2522A70CCC923 Authority key identifier: AF:DB:6E:B0:A5:26:B5:C5:EB:6B:D0:15:66:C3:8D:FB:7F:DD:18:1D Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AFDB6EB0A526B5C5EB6BD01566C38DFB7FDD181D.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D88BB9FDF17855E64284BB8CF1A5D0DC97D0D6A0402B4656FFA761571E1443FB/0/3230312e3133312e3132322e302f32332d3234203d3e203139353531.roa Signing time: Sat 12 Jul 2025 16:55:00 +0000 ROA not before: Sat 12 Jul 2025 16:50:00 +0000 ROA not after: Sat 11 Jul 2026 16:55:00 +0000 asID: 19551 IP address blocks: 201.131.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D88BB9FDF17855E64284BB8CF1A5D0DC97D0D6A0402B4656FFA761571E1443FB/0/AFDB6EB0A526B5C5EB6BD01566C38DFB7FDD181D.crl rsync://repository.lacnic.net/rpki/lacnic/D88BB9FDF17855E64284BB8CF1A5D0DC97D0D6A0402B4656FFA761571E1443FB/0/AFDB6EB0A526B5C5EB6BD01566C38DFB7FDD181D.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AFDB6EB0A526B5C5EB6BD01566C38DFB7FDD181D.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 25 Jul 2025 04:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c3:57:22:f5:11:35:02:ea:ca:d6:14:a0:a2:52:2a:70:cc:c9:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFDB6EB0A526B5C5EB6BD01566C38DFB7FDD181D Validity Not Before: Jul 12 16:50:00 2025 GMT Not After : Jul 11 16:55:00 2026 GMT Subject: CN=DDCB662956C5CC3D2AB320D080E8D6B7113C9B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:21:85:27:0f:1d:14:1d:db:47:fd:fc:b8:71: 60:52:7b:ac:de:69:61:ee:bf:09:f6:51:3a:06:3c: be:a9:b9:81:84:80:19:8f:0d:26:01:34:c9:5c:e6: 2b:81:30:58:0b:f7:31:0d:fc:4f:26:6c:10:ec:eb: 98:75:54:e8:e6:1c:4d:f1:ef:de:39:23:bb:50:b3: ea:10:d0:e2:71:2e:46:2a:5d:ef:e6:90:c8:1b:48: 81:56:01:bc:d6:9a:2c:84:6a:f1:40:62:07:8c:a8: 1a:33:3d:2d:bf:d6:e7:5c:79:5e:80:0a:e5:55:0a: cb:93:18:ae:cf:54:54:e1:83:04:b2:ef:cc:a9:8a: df:8b:5d:d3:b6:37:58:1b:aa:ac:14:b9:f7:16:b5: db:f6:09:60:9d:81:70:81:6e:ef:c2:64:bc:b0:26: 09:6e:72:4c:e9:5b:77:df:7b:f8:ae:b7:7c:08:ac: 50:1b:ad:c0:2f:46:cc:19:b9:99:cf:69:b4:a5:4b: 37:6e:7f:93:b8:7e:87:38:04:12:61:97:f4:a3:89: 6e:5b:b2:59:c1:0c:e1:97:24:76:4a:5a:cf:5c:5a: 13:2c:f2:23:47:59:7c:89:e1:fb:17:04:30:d4:cd: 02:22:e3:96:7b:29:01:5e:f6:37:71:f7:db:3b:0a: 5d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CB:66:29:56:C5:CC:3D:2A:B3:20:D0:80:E8:D6:B7:11:3C:9B:29 X509v3 Authority Key Identifier: keyid:AF:DB:6E:B0:A5:26:B5:C5:EB:6B:D0:15:66:C3:8D:FB:7F:DD:18:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D88BB9FDF17855E64284BB8CF1A5D0DC97D0D6A0402B4656FFA761571E1443FB/0/AFDB6EB0A526B5C5EB6BD01566C38DFB7FDD181D.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AFDB6EB0A526B5C5EB6BD01566C38DFB7FDD181D.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D88BB9FDF17855E64284BB8CF1A5D0DC97D0D6A0402B4656FFA761571E1443FB/0/3230312e3133312e3132322e302f32332d3234203d3e203139353531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 201.131.122.0/23 Signature Algorithm: sha256WithRSAEncryption 76:e7:c9:f8:8c:ba:a8:14:63:bd:e6:4e:65:4b:b5:34:27:ae: 04:94:00:73:12:1c:ed:5f:5b:1c:d3:c8:fd:7f:bd:cc:6f:de: 78:71:ea:80:d7:01:e3:9b:67:ff:37:90:76:c5:83:cc:80:14: 1e:e5:e3:c5:39:62:06:3c:b8:45:d6:a1:0a:54:df:36:07:37: d1:83:0d:16:c7:e8:55:08:14:ec:aa:9a:86:fa:36:ed:b9:73: aa:ee:4e:14:2b:a8:70:b7:04:e5:4c:18:6b:fd:91:3c:c9:c3: 72:2f:b2:f8:da:32:ef:59:3c:ac:43:ce:9d:f6:73:99:6c:3a: 29:4a:88:af:99:3c:70:aa:4c:a5:9b:8f:60:2c:28:f6:8b:81: 90:fc:e8:96:85:cc:3e:fe:ed:bc:15:73:eb:b4:ed:93:ad:25: 18:ab:02:08:d0:4b:9d:84:56:05:b6:cd:13:86:ba:c2:b5:cb: aa:18:03:57:a4:25:58:ea:96:ef:7a:d8:65:ea:53:45:21:62: 0f:79:dd:ec:a8:12:51:3f:c9:86:96:62:18:ec:03:1f:6f:4d: 34:39:34:bf:36:ce:16:98:97:cd:eb:47:cc:65:e0:ed:0b:3c: f6:81:d5:5e:53:6e:2c:2e:6c:26:cb:58:f8:49:30:bb:13:b7: 22:95:a5:10 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUMsNXIvURNQLqytYUoKJSKnDMySMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZEQjZFQjBBNTI2QjVDNUVCNkJEMDE1NjZDMzhERkI3 RkREMTgxRDAeFw0yNTA3MTIxNjUwMDBaFw0yNjA3MTExNjU1MDBaMDMxMTAvBgNV BAMTKEREQ0I2NjI5NTZDNUNDM0QyQUIzMjBEMDgwRThENkI3MTEzQzlCMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxIYUnDx0UHdtH/fy4cWBSe6ze aWHuvwn2UToGPL6puYGEgBmPDSYBNMlc5iuBMFgL9zEN/E8mbBDs65h1VOjmHE3x 7945I7tQs+oQ0OJxLkYqXe/mkMgbSIFWAbzWmiyEavFAYgeMqBozPS2/1udceV6A CuVVCsuTGK7PVFThgwSy78ypit+LXdO2N1gbqqwUufcWtdv2CWCdgXCBbu/CZLyw JgluckzpW3ffe/iut3wIrFAbrcAvRswZuZnPabSlSzduf5O4foc4BBJhl/SjiW5b slnBDOGXJHZKWs9cWhMs8iNHWXyJ4fsXBDDUzQIi45Z7KQFe9jdx99s7Cl0nAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQU3ctmKVbFzD0qsyDQgOjWtxE8mykwHwYDVR0j BBgwFoAUr9tusKUmtcXra9AVZsON+3/dGB0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EODhCQjlGREYxNzg1NUU2NDI4NEJCOENGMUE1RDBEQzk3 RDBENkEwNDAyQjQ2NTZGRkE3NjE1NzFFMTQ0M0ZCLzAvQUZEQjZFQjBBNTI2QjVD NUVCNkJEMDE1NjZDMzhERkI3RkREMTgxRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BRkRCNkVCMEE1MjZCNUM1RUI2 QkQwMTU2NkMzOERGQjdGREQxODFELmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDg4QkI5RkRGMTc4NTVFNjQyODRCQjhDRjFBNUQwREM5N0QwRDZBMDQw MkI0NjU2RkZBNzYxNTcxRTE0NDNGQi8wLzMyMzAzMTJlMzEzMzMxMmUzMTMyMzIy ZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM5MzUzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByYN6 MA0GCSqGSIb3DQEBCwUAA4IBAQB258n4jLqoFGO95k5lS7U0J64ElABzEhztX1sc 08j9f73Mb954ceqA1wHjm2f/N5B2xYPMgBQe5ePFOWIGPLhF1qEKVN82BzfRgw0W x+hVCBTsqpqG+jbtuXOq7k4UK6hwtwTlTBhr/ZE8ycNyL7L42jLvWTysQ86d9nOZ bDopSoivmTxwqkylm49gLCj2i4GQ/OiWhcw+/u28FXPrtO2TrSUYqwII0EudhFYF ts0ThrrCtcuqGANXpCVY6pbvethl6lNFIWIPed3sqBJRP8mGlmIY7AMfb000OTS/ Ns4WmJfN60fMZeDtCzz2gdVeU24sLmwmy1j4STC7E7cilaUQ -----END CERTIFICATE-----Generated at Mon Jul 21 18:48:42 2025 by rpki-client