$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e37322e302f32312d3234203d3e20383334.roa File: 3136382e3234332e37322e302f32312d3234203d3e20383334.roa (raw, json) Hash identifier: zjR4gPLBW8SRPN3I1Q3QhYwZxwnJqucC96tfhlED4Ig= Subject key identifier: 43:D1:A4:F0:D6:2F:BC:47:C2:5A:1C:59:F0:52:28:A0:9C:E0:F3:63 Certificate issuer: /CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA Certificate serial: 7CCC6151C64E9E47BF8785C70324058E6A9811CA Authority key identifier: D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e37322e302f32312d3234203d3e20383334.roa Signing time: Tue 03 Mar 2026 14:32:35 +0000 ROA not before: Tue 03 Mar 2026 14:27:35 +0000 ROA not after: Tue 02 Mar 2027 14:32:35 +0000 asID: 834 IP address blocks: 168.243.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.crl rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 13 Mar 2026 23:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:cc:61:51:c6:4e:9e:47:bf:87:85:c7:03:24:05:8e:6a:98:11:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA Validity Not Before: Mar 3 14:27:35 2026 GMT Not After : Mar 2 14:32:35 2027 GMT Subject: CN=43D1A4F0D62FBC47C25A1C59F05228A09CE0F363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9f:0a:b6:c5:2a:e6:6c:e9:63:42:17:f3:cc: 4d:57:e3:20:2a:12:90:c1:61:9b:e9:02:dc:86:0c: 25:3d:63:c6:f8:e0:1a:44:f0:05:a2:cf:48:b9:c9: 26:e2:aa:10:38:2e:bf:69:f5:2e:be:76:92:bf:ed: 24:88:1a:e4:67:ce:2d:d2:7f:62:66:37:f1:06:31: 75:73:61:24:23:26:17:93:77:69:9c:68:00:ad:7c: a4:2b:32:18:30:d1:0d:b3:c4:3f:be:ec:6b:c2:71: 0a:ff:18:46:41:c6:6c:07:9f:5a:06:5e:53:82:40: 64:a9:f3:0f:2d:8f:d6:5e:8f:ef:8c:58:b9:47:d6: 95:7f:c4:7f:ec:a8:97:16:cd:f8:f7:5b:17:95:9a: c1:93:55:e3:97:80:87:d8:0b:2b:a9:00:ac:2c:8e: 64:4a:91:53:0c:66:f9:12:ab:a3:4d:e5:03:40:40: 5d:08:ef:7c:b4:24:e5:c6:8c:77:15:a4:2a:cd:ec: 8b:1a:b0:7c:27:ff:4f:1c:2c:22:e9:e5:73:15:de: 64:ee:05:17:ba:1d:a5:a0:54:33:3e:52:03:51:97: 3c:7f:ba:3e:11:2d:68:9c:7b:fd:c6:3e:49:84:5b: 9e:b2:cb:15:52:11:64:44:40:bb:ae:ce:2e:09:63: 29:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:D1:A4:F0:D6:2F:BC:47:C2:5A:1C:59:F0:52:28:A0:9C:E0:F3:63 X509v3 Authority Key Identifier: keyid:D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e37322e302f32312d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.243.72.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:ad:7f:3f:3b:43:b4:8d:4b:cd:5d:42:9c:b7:20:76:d6:1e: ce:8b:4b:1e:35:09:30:5e:2f:b8:bd:99:1f:ff:e3:bf:b0:83: 9e:f1:47:4a:e6:c4:c4:3e:e8:92:14:f3:f0:9e:4c:71:c8:17: da:01:11:a7:d9:a5:f5:bd:8b:9a:e0:c4:ae:6d:17:5a:50:34: ab:f3:a1:1a:6f:eb:5f:ba:b4:c7:7b:1f:41:b4:b8:51:9a:51: 64:8d:7a:55:e1:15:68:67:64:65:d9:d3:66:76:d0:dd:aa:da: 23:f0:45:ea:04:08:f1:ea:08:f8:82:cc:84:9c:8d:db:34:d4: d4:da:dc:ad:58:21:d5:aa:d2:ca:7b:f4:a1:bd:28:37:99:f7: d4:16:7c:39:e1:b1:73:a5:61:44:ad:3a:67:2d:70:1d:dd:eb: 58:12:2f:e0:03:fa:b4:3a:99:32:d6:49:ff:9f:54:0f:69:e6: 85:ef:80:14:c1:e3:d4:89:e2:9c:a0:8c:5e:0e:9e:00:de:da: 4c:ea:7e:e6:51:b9:5d:fa:0c:83:66:03:a6:1c:9f:8c:b5:6c: 59:2f:05:9e:8a:6e:48:a8:1a:06:c5:1f:10:61:5f:a6:9e:6c: 82:b9:49:a3:8e:94:6a:57:a7:0e:7f:51:78:da:d6:43:25:9f: 0d:58:c3:15 -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUfMxhUcZOnke/h4XHAyQFjmqYEcowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1MDNEMDNFM0Q0REZBMDc2N0Y2REZGM0JBNzFERDdC NjIzNkFGQTAeFw0yNjAzMDMxNDI3MzVaFw0yNzAzMDIxNDMyMzVaMDMxMTAvBgNV BAMTKDQzRDFBNEYwRDYyRkJDNDdDMjVBMUM1OUYwNTIyOEEwOUNFMEYzNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYnwq2xSrmbOljQhfzzE1X4yAq EpDBYZvpAtyGDCU9Y8b44BpE8AWiz0i5ySbiqhA4Lr9p9S6+dpK/7SSIGuRnzi3S f2JmN/EGMXVzYSQjJheTd2mcaACtfKQrMhgw0Q2zxD++7GvCcQr/GEZBxmwHn1oG XlOCQGSp8w8tj9Zej++MWLlH1pV/xH/sqJcWzfj3WxeVmsGTVeOXgIfYCyupAKws jmRKkVMMZvkSq6NN5QNAQF0I73y0JOXGjHcVpCrN7IsasHwn/08cLCLp5XMV3mTu BRe6HaWgVDM+UgNRlzx/uj4RLWice/3GPkmEW56yyxVSEWREQLuuzi4JYyl5AgMB AAGjggLEMIICwDAdBgNVHQ4EFgQUQ9Gk8NYvvEfCWhxZ8FIooJzg82MwHwYDVR0j BBgwFoAU01A9A+PU36B2f23/O6cd17YjavowDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8wQkIwNzFEOTZEOEZCRTJBODY5OTA5MDVEQzE3RTE5OTM3 MEE1NzA1MjM2QTAwMDY1RDY4NTYzRkFBREI4NUU2LzAvRDM1MDNEMDNFM0Q0REZB MDc2N0Y2REZGM0JBNzFERDdCNjIzNkFGQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EMzUwM0QwM0UzRDRERkEwNzY3 RjZERkYzQkE3MUREN0I2MjM2QUZBLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMEJCMDcxRDk2RDhGQkUyQTg2OTkwOTA1REMxN0UxOTkzNzBBNTcwNTIz NkEwMDA2NUQ2ODU2M0ZBQURCODVFNi8wLzMxMzYzODJlMzIzNDMzMmUzNzMyMmUz MDJmMzIzMTJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDqPNIMA0GCSqG SIb3DQEBCwUAA4IBAQCKrX8/O0O0jUvNXUKctyB21h7Oi0seNQkwXi+4vZkf/+O/ sIOe8UdK5sTEPuiSFPPwnkxxyBfaARGn2aX1vYua4MSubRdaUDSr86Eab+tfurTH ex9BtLhRmlFkjXpV4RVoZ2Rl2dNmdtDdqtoj8EXqBAjx6gj4gsyEnI3bNNTU2tyt WCHVqtLKe/ShvSg3mffUFnw54bFzpWFErTpnLXAd3etYEi/gA/q0Opky1kn/n1QP aeaF74AUwePUieKcoIxeDp4A3tpM6n7mUbld+gyDZgOmHJ+MtWxZLwWeim5IqBoG xR8QYV+mnmyCuUmjjpRqV6cOf1F42tZDJZ8NWMMV -----END CERTIFICATE-----Generated at Tue Mar 10 13:24:34 2026 by rpki-client