$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FB4FA6DE1E1C424F1F3EDED7073AB81312FC4A68EAD020ADF2F6168B79FDE8FD/0/34352e3233302e32302e302f32342d3234203d3e20323032.roa File: 34352e3233302e32302e302f32342d3234203d3e20323032.roa (raw, json) Hash identifier: lfRekhqkn41PSLMQpSPfaMpIdHZ3F8ZwTFR+W0mASD8= Subject key identifier: B0:36:A5:2D:33:A4:86:7E:B1:30:3D:FB:F7:77:CF:BA:78:EC:D9:C8 Certificate issuer: /CN=964EB984A6CDAD66DD3CC717D70D6E7DCD4FFE96 Certificate serial: 577F750B72C0CCEA012A5F7F34DEF2A38B898137 Authority key identifier: 96:4E:B9:84:A6:CD:AD:66:DD:3C:C7:17:D7:0D:6E:7D:CD:4F:FE:96 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/964EB984A6CDAD66DD3CC717D70D6E7DCD4FFE96.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FB4FA6DE1E1C424F1F3EDED7073AB81312FC4A68EAD020ADF2F6168B79FDE8FD/0/34352e3233302e32302e302f32342d3234203d3e20323032.roa Signing time: Fri 27 Mar 2026 19:36:21 +0000 ROA not before: Fri 27 Mar 2026 19:31:21 +0000 ROA not after: Fri 26 Mar 2027 19:36:21 +0000 asID: 202 IP address blocks: 45.230.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/FB4FA6DE1E1C424F1F3EDED7073AB81312FC4A68EAD020ADF2F6168B79FDE8FD/0/964EB984A6CDAD66DD3CC717D70D6E7DCD4FFE96.crl rsync://repository.lacnic.net/rpki/lacnic/FB4FA6DE1E1C424F1F3EDED7073AB81312FC4A68EAD020ADF2F6168B79FDE8FD/0/964EB984A6CDAD66DD3CC717D70D6E7DCD4FFE96.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/964EB984A6CDAD66DD3CC717D70D6E7DCD4FFE96.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 12 Apr 2026 00:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:7f:75:0b:72:c0:cc:ea:01:2a:5f:7f:34:de:f2:a3:8b:89:81:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=964EB984A6CDAD66DD3CC717D70D6E7DCD4FFE96 Validity Not Before: Mar 27 19:31:21 2026 GMT Not After : Mar 26 19:36:21 2027 GMT Subject: CN=B036A52D33A4867EB1303DFBF777CFBA78ECD9C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d2:70:6a:40:31:a7:a8:22:d0:f6:af:40:b9: ec:7a:52:7f:bc:81:0f:85:06:a0:97:9e:5f:33:78: 39:c5:c2:4c:7e:d1:ef:65:85:d2:ed:f6:ce:ed:a7: 8c:32:ab:40:4a:4c:7b:29:18:57:e3:15:26:46:34: 0a:1d:1d:fe:54:ef:cb:d8:f0:8f:00:27:3e:74:99: 70:83:6f:24:37:1d:f8:97:b3:b2:c6:c4:7a:6b:b2: 3e:21:ad:57:43:b9:03:77:1a:40:63:35:b7:7b:d4: 2b:8e:27:09:25:df:fc:3d:1a:f7:08:70:8a:31:b2: e5:a6:e7:22:2c:94:8c:b6:a9:aa:9c:63:2f:5e:52: 5f:23:31:6d:7f:5e:f5:e9:1f:73:0e:31:4b:ac:cb: dd:d3:3f:11:a4:c3:b0:54:44:23:ab:18:13:74:2d: cd:57:69:d8:60:f0:10:1c:45:77:f2:e3:cb:93:15: 3b:84:13:62:0d:4f:ed:38:09:27:fd:a9:1a:1a:7c: 26:31:9b:84:94:95:4a:fb:3b:dd:0c:2c:ed:0c:cd: 59:07:84:4b:25:a7:77:d4:ee:1a:7d:d3:a8:35:86: 4a:a9:52:ec:4e:96:66:2e:d0:15:4a:e4:c9:c9:69: b2:50:e9:2d:1a:ca:ce:31:d7:d9:82:c7:cd:59:16: 15:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:36:A5:2D:33:A4:86:7E:B1:30:3D:FB:F7:77:CF:BA:78:EC:D9:C8 X509v3 Authority Key Identifier: keyid:96:4E:B9:84:A6:CD:AD:66:DD:3C:C7:17:D7:0D:6E:7D:CD:4F:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/FB4FA6DE1E1C424F1F3EDED7073AB81312FC4A68EAD020ADF2F6168B79FDE8FD/0/964EB984A6CDAD66DD3CC717D70D6E7DCD4FFE96.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/964EB984A6CDAD66DD3CC717D70D6E7DCD4FFE96.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FB4FA6DE1E1C424F1F3EDED7073AB81312FC4A68EAD020ADF2F6168B79FDE8FD/0/34352e3233302e32302e302f32342d3234203d3e20323032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.230.20.0/24 Signature Algorithm: sha256WithRSAEncryption 67:91:1f:d6:67:19:19:1b:cf:87:c7:09:70:c0:b4:f0:36:62: 62:04:06:98:fe:2c:b5:b0:5b:eb:2b:03:d9:27:89:c3:9c:10: 6d:44:9a:83:be:39:14:e6:62:c3:ea:6b:d6:c5:d4:e9:39:4d: ab:33:f1:ff:31:ff:d3:be:0e:65:25:b4:2f:5c:92:f6:61:28: 36:c4:8d:c1:ec:8c:88:ca:ac:36:66:3c:43:47:95:5c:de:cb: 86:3b:0a:48:c6:1e:61:51:2d:47:1f:e6:2c:f9:4b:a8:3d:72: c0:3a:ff:8f:ef:38:aa:fc:f0:03:dd:14:20:a7:16:70:34:2b: 4e:31:d9:3d:37:30:65:38:0a:15:90:3a:70:84:d1:0c:20:af: c1:b4:07:f0:63:6d:44:16:5e:77:99:38:fe:5b:1d:12:4c:28: 6e:9c:76:16:4a:88:67:a3:a1:68:af:e1:88:d8:03:ff:73:35: f8:1d:6e:11:f3:d4:35:51:10:8a:0d:f9:23:2e:9c:12:df:57: 78:75:1e:00:27:52:19:7e:14:cd:2e:c8:fd:c4:7f:79:d1:cc: 71:93:fc:7b:49:5f:59:4a:ce:4d:d7:64:dc:ec:47:7a:06:63: c8:24:d1:41:3e:94:1c:24:c2:1d:d9:90:09:ab:98:29:e0:79: fe:91:da:bc -----BEGIN CERTIFICATE----- MIIFuDCCBKCgAwIBAgIUV391C3LAzOoBKl9/NN7yo4uJgTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY0RUI5ODRBNkNEQUQ2NkREM0NDNzE3RDcwRDZFN0RD RDRGRkU5NjAeFw0yNjAzMjcxOTMxMjFaFw0yNzAzMjYxOTM2MjFaMDMxMTAvBgNV BAMTKEIwMzZBNTJEMzNBNDg2N0VCMTMwM0RGQkY3NzdDRkJBNzhFQ0Q5QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe0nBqQDGnqCLQ9q9Auex6Un+8 gQ+FBqCXnl8zeDnFwkx+0e9lhdLt9s7tp4wyq0BKTHspGFfjFSZGNAodHf5U78vY 8I8AJz50mXCDbyQ3HfiXs7LGxHprsj4hrVdDuQN3GkBjNbd71CuOJwkl3/w9GvcI cIoxsuWm5yIslIy2qaqcYy9eUl8jMW1/XvXpH3MOMUusy93TPxGkw7BURCOrGBN0 Lc1Xadhg8BAcRXfy48uTFTuEE2INT+04CSf9qRoafCYxm4SUlUr7O90MLO0MzVkH hEslp3fU7hp906g1hkqpUuxOlmYu0BVK5MnJabJQ6S0ays4x19mCx81ZFhXRAgMB AAGjggLCMIICvjAdBgNVHQ4EFgQUsDalLTOkhn6xMD3793fPunjs2cgwHwYDVR0j BBgwFoAUlk65hKbNrWbdPMcX1w1ufc1P/pYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9GQjRGQTZERTFFMUM0MjRGMUYzRURFRDcwNzNBQjgxMzEy RkM0QTY4RUFEMDIwQURGMkY2MTY4Qjc5RkRFOEZELzAvOTY0RUI5ODRBNkNEQUQ2 NkREM0NDNzE3RDcwRDZFN0RDRDRGRkU5Ni5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85NjRFQjk4NEE2Q0RBRDY2REQz Q0M3MTdENzBENkU3RENENEZGRTk2LmNlcjCBwQYIKwYBBQUHAQsEgbQwgbEwga4G CCsGAQUFBzALhoGhcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRkI0RkE2REUxRTFDNDI0RjFGM0VERUQ3MDczQUI4MTMxMkZDNEE2OEVB RDAyMEFERjJGNjE2OEI3OUZERThGRC8wLzM0MzUyZTMyMzMzMDJlMzIzMDJlMzAy ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC3mFDANBgkqhkiG 9w0BAQsFAAOCAQEAZ5Ef1mcZGRvPh8cJcMC08DZiYgQGmP4stbBb6ysD2SeJw5wQ bUSag745FOZiw+pr1sXU6TlNqzPx/zH/074OZSW0L1yS9mEoNsSNweyMiMqsNmY8 Q0eVXN7LhjsKSMYeYVEtRx/mLPlLqD1ywDr/j+84qvzwA90UIKcWcDQrTjHZPTcw ZTgKFZA6cITRDCCvwbQH8GNtRBZed5k4/lsdEkwobpx2FkqIZ6OhaK/hiNgD/3M1 +B1uEfPUNVEQig35Iy6cEt9XeHUeACdSGX4UzS7I/cR/edHMcZP8e0lfWUrOTddk 3OxHegZjyCTRQT6UHCTCHdmQCauYKeB5/pHavA== -----END CERTIFICATE-----Generated at Wed Apr 8 09:18:31 2026 by rpki-client