$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0653CF7224244D73885E34B62A8054D31B523340F5A630C5FD699F299AFF2CD3/0/323830313a3137323a323a3a2f34382d3438203d3e203237393531.roa File: 323830313a3137323a323a3a2f34382d3438203d3e203237393531.roa (raw, json) Hash identifier: Rb9y9DwnR6tHMoVEq1jQr1oPiLPO/N9wM0q5+pYQLp8= Subject key identifier: B9:55:FF:18:22:2E:FA:C4:9B:C8:B3:AB:0E:13:85:ED:C1:37:4B:18 Certificate issuer: /CN=C4B95FE3CE8CD6143789324F89D2791DABBB5AD8 Certificate serial: 5577EF28182CD2BFA2ADBC6FBD80928E383382D1 Authority key identifier: C4:B9:5F:E3:CE:8C:D6:14:37:89:32:4F:89:D2:79:1D:AB:BB:5A:D8 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C4B95FE3CE8CD6143789324F89D2791DABBB5AD8.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0653CF7224244D73885E34B62A8054D31B523340F5A630C5FD699F299AFF2CD3/0/323830313a3137323a323a3a2f34382d3438203d3e203237393531.roa Signing time: Tue 04 Feb 2025 18:32:12 +0000 ROA not before: Tue 04 Feb 2025 18:27:12 +0000 ROA not after: Tue 03 Feb 2026 18:32:12 +0000 asID: 27951 IP address blocks: 2801:172:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/0653CF7224244D73885E34B62A8054D31B523340F5A630C5FD699F299AFF2CD3/0/C4B95FE3CE8CD6143789324F89D2791DABBB5AD8.crl rsync://repository.lacnic.net/rpki/lacnic/0653CF7224244D73885E34B62A8054D31B523340F5A630C5FD699F299AFF2CD3/0/C4B95FE3CE8CD6143789324F89D2791DABBB5AD8.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C4B95FE3CE8CD6143789324F89D2791DABBB5AD8.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:77:ef:28:18:2c:d2:bf:a2:ad:bc:6f:bd:80:92:8e:38:33:82:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4B95FE3CE8CD6143789324F89D2791DABBB5AD8 Validity Not Before: Feb 4 18:27:12 2025 GMT Not After : Feb 3 18:32:12 2026 GMT Subject: CN=B955FF18222EFAC49BC8B3AB0E1385EDC1374B18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:70:d3:b0:3b:e5:1d:bb:99:a4:a6:e7:c2:3d: be:2d:c2:e0:ad:38:f4:00:c4:4f:3c:f5:49:9f:21: e0:8e:d5:3e:d8:b1:5c:d8:ba:01:b2:a4:c5:78:f6: 1a:c0:37:b7:2c:5e:27:82:77:93:ad:f3:14:30:e7: 44:5c:aa:12:df:48:89:49:93:56:13:29:45:5e:b5: 5f:3b:50:1e:c4:6a:87:b0:70:6d:95:4f:37:3e:f5: b3:94:af:c4:c2:64:bd:30:bb:87:d4:58:4e:bc:a9: 54:4c:d4:2d:5c:5a:f7:18:c1:3f:19:c6:a1:b5:bf: 1f:70:3e:c5:a2:14:cd:ba:be:55:6d:1a:4b:fa:85: 43:65:8b:8f:6d:fb:48:49:1b:1d:85:99:a4:21:8f: 71:6d:cc:88:d1:00:92:f5:c3:57:d9:a9:9f:03:f9: dc:1b:9e:da:f6:a5:fe:2f:c0:d8:18:9d:18:db:e2: 75:4b:e8:d4:31:7e:7c:f1:2c:0d:a8:dd:84:69:c4: 51:91:86:1b:7d:2d:c4:0a:fd:a7:4b:f6:85:86:f8: f6:de:a4:c9:bb:88:9a:ba:53:f8:ff:a2:92:d9:67: 46:65:8e:a0:c2:e4:c7:fc:3b:ae:26:a2:a2:c9:ea: 3e:69:a6:7d:5e:91:0e:d5:40:c1:75:52:68:3d:98: 49:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:55:FF:18:22:2E:FA:C4:9B:C8:B3:AB:0E:13:85:ED:C1:37:4B:18 X509v3 Authority Key Identifier: keyid:C4:B9:5F:E3:CE:8C:D6:14:37:89:32:4F:89:D2:79:1D:AB:BB:5A:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/0653CF7224244D73885E34B62A8054D31B523340F5A630C5FD699F299AFF2CD3/0/C4B95FE3CE8CD6143789324F89D2791DABBB5AD8.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C4B95FE3CE8CD6143789324F89D2791DABBB5AD8.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0653CF7224244D73885E34B62A8054D31B523340F5A630C5FD699F299AFF2CD3/0/323830313a3137323a323a3a2f34382d3438203d3e203237393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2801:172:2::/48 Signature Algorithm: sha256WithRSAEncryption a2:50:89:41:d6:40:83:50:8e:7e:0f:b4:c5:7f:e0:a4:95:8f: 40:0d:7f:38:2a:76:eb:bd:e0:41:4c:8c:db:79:70:6c:3f:96: f5:bf:8f:92:09:2e:da:72:76:11:c4:8a:8c:97:4d:ee:87:3b: 62:cc:28:92:7a:89:4b:17:01:66:fc:d6:26:b5:6e:5a:b6:c7: 69:fa:9b:2b:88:d1:c6:50:19:dd:91:01:c2:5b:32:b9:f6:f3: 45:c4:85:32:9b:1a:8d:eb:e5:d3:c7:d9:97:f3:be:90:39:68: 1b:2d:a7:53:30:ab:ab:0c:68:1b:c8:95:a9:c6:a2:cc:6f:68: 9b:90:48:10:4f:b3:b2:a9:c2:25:a2:5f:21:40:51:6f:6a:b9: 4f:78:f7:14:7a:30:6f:47:b6:c4:d4:5f:d6:e5:e3:82:c6:fd: e4:7e:08:26:ee:3f:75:5b:a7:f4:2d:86:23:c6:92:f8:4e:ac: 0f:3a:79:a3:1d:6b:9f:97:27:65:25:da:6f:a4:11:57:c5:1e: d8:e8:d6:b5:d5:1f:a3:5c:b5:72:1d:41:1f:6f:01:7c:e2:97: 80:11:c0:63:4b:52:ca:eb:99:22:df:a2:26:e4:02:a1:71:07: a1:eb:2c:75:3a:60:1d:d8:1b:6d:c8:54:bb:21:86:dc:65:33: 4f:c1:8d:38 -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgIUVXfvKBgs0r+irbxvvYCSjjgzgtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzRCOTVGRTNDRThDRDYxNDM3ODkzMjRGODlEMjc5MURB QkJCNUFEODAeFw0yNTAyMDQxODI3MTJaFw0yNjAyMDMxODMyMTJaMDMxMTAvBgNV BAMTKEI5NTVGRjE4MjIyRUZBQzQ5QkM4QjNBQjBFMTM4NUVEQzEzNzRCMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3cNOwO+Udu5mkpufCPb4twuCt OPQAxE889UmfIeCO1T7YsVzYugGypMV49hrAN7csXieCd5Ot8xQw50RcqhLfSIlJ k1YTKUVetV87UB7EaoewcG2VTzc+9bOUr8TCZL0wu4fUWE68qVRM1C1cWvcYwT8Z xqG1vx9wPsWiFM26vlVtGkv6hUNli49t+0hJGx2FmaQhj3FtzIjRAJL1w1fZqZ8D +dwbntr2pf4vwNgYnRjb4nVL6NQxfnzxLA2o3YRpxFGRhht9LcQK/adL9oWG+Pbe pMm7iJq6U/j/opLZZ0ZljqDC5Mf8O64moqLJ6j5ppn1ekQ7VQMF1Umg9mEn1AgMB AAGjggLLMIICxzAdBgNVHQ4EFgQUuVX/GCIu+sSbyLOrDhOF7cE3SxgwHwYDVR0j BBgwFoAUxLlf486M1hQ3iTJPidJ5Hau7WtgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8wNjUzQ0Y3MjI0MjQ0RDczODg1RTM0QjYyQTgwNTREMzFC NTIzMzQwRjVBNjMwQzVGRDY5OUYyOTlBRkYyQ0QzLzAvQzRCOTVGRTNDRThDRDYx NDM3ODkzMjRGODlEMjc5MURBQkJCNUFEOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DNEI5NUZFM0NFOENENjE0Mzc4 OTMyNEY4OUQyNzkxREFCQkI1QUQ4LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMDY1M0NGNzIyNDI0NEQ3Mzg4NUUzNEI2MkE4MDU0RDMxQjUyMzM0MEY1 QTYzMEM1RkQ2OTlGMjk5QUZGMkNEMy8wLzMyMzgzMDMxM2EzMTM3MzIzYTMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzNzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACgBAXIA AjANBgkqhkiG9w0BAQsFAAOCAQEAolCJQdZAg1COfg+0xX/gpJWPQA1/OCp2673g QUyM23lwbD+W9b+Pkgku2nJ2EcSKjJdN7oc7YswoknqJSxcBZvzWJrVuWrbHafqb K4jRxlAZ3ZEBwlsyufbzRcSFMpsajevl08fZl/O+kDloGy2nUzCrqwxoG8iVqcai zG9om5BIEE+zsqnCJaJfIUBRb2q5T3j3FHowb0e2xNRf1uXjgsb95H4IJu4/dVun 9C2GI8aS+E6sDzp5ox1rn5cnZSXab6QRV8Ue2OjWtdUfo1y1ch1BH28BfOKXgBHA Y0tSyuuZIt+iJuQCoXEHoessdTpgHdgbbchUuyGG3GUzT8GNOA== -----END CERTIFICATE-----Generated at Sat Apr 5 23:06:24 2025 by rpki-client