$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/10B48349104E477689FE38A7B967A5093DC8388A9216FC61564B3CA14BA89C88/0/3136382e3139372e3235312e302f32342d3234203d3e203532353037.roa File: 3136382e3139372e3235312e302f32342d3234203d3e203532353037.roa (raw, json) Hash identifier: OM7nkYOV8AFf6j6MrkYx0VlnmQOoRMvsIXJgHfikKLg= Subject key identifier: 2B:EC:95:8A:59:9D:02:4D:69:4C:6A:D4:99:A8:94:5D:E9:9D:AA:4D Certificate issuer: /CN=21412A097D724851BE961D093E8521CC77A7B163 Certificate serial: 48A58F43573B91F144C03050409A56B149066DD6 Authority key identifier: 21:41:2A:09:7D:72:48:51:BE:96:1D:09:3E:85:21:CC:77:A7:B1:63 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21412A097D724851BE961D093E8521CC77A7B163.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/10B48349104E477689FE38A7B967A5093DC8388A9216FC61564B3CA14BA89C88/0/3136382e3139372e3235312e302f32342d3234203d3e203532353037.roa Signing time: Tue 04 Feb 2025 18:02:35 +0000 ROA not before: Tue 04 Feb 2025 17:57:35 +0000 ROA not after: Tue 03 Feb 2026 18:02:35 +0000 asID: 52507 IP address blocks: 168.197.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/10B48349104E477689FE38A7B967A5093DC8388A9216FC61564B3CA14BA89C88/0/21412A097D724851BE961D093E8521CC77A7B163.crl rsync://repository.lacnic.net/rpki/lacnic/10B48349104E477689FE38A7B967A5093DC8388A9216FC61564B3CA14BA89C88/0/21412A097D724851BE961D093E8521CC77A7B163.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21412A097D724851BE961D093E8521CC77A7B163.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 04 Nov 2025 02:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:a5:8f:43:57:3b:91:f1:44:c0:30:50:40:9a:56:b1:49:06:6d:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21412A097D724851BE961D093E8521CC77A7B163 Validity Not Before: Feb 4 17:57:35 2025 GMT Not After : Feb 3 18:02:35 2026 GMT Subject: CN=2BEC958A599D024D694C6AD499A8945DE99DAA4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a2:a0:f0:7b:00:bd:11:6c:14:48:4e:54:6b: f9:ba:c0:f1:e2:db:9a:aa:c2:be:8c:28:c7:5c:fe: 41:7f:41:0b:03:a9:87:ee:67:cd:93:98:e9:aa:00: 6d:1e:fe:1d:58:2b:6c:d5:4c:26:d6:12:7b:28:9b: 30:35:92:5e:ec:d6:98:b1:cc:6b:17:0d:01:9d:7b: b5:6d:1b:ff:b3:88:87:da:d2:44:bf:22:59:db:40: b1:d0:54:8b:46:32:80:72:3b:74:29:41:21:25:70: b1:b4:66:6d:95:b8:db:c7:35:0a:79:9e:da:00:4b: 17:24:69:21:86:55:ec:04:34:a5:02:7a:3d:9b:1e: 29:a7:82:34:53:31:b8:99:29:ed:d2:20:5a:1a:90: c0:37:a4:51:6e:a4:f4:25:f2:44:56:4a:ef:cd:86: 08:eb:67:a5:8c:dd:05:bd:b2:ef:df:dc:a8:2e:94: cb:38:1a:f0:65:f4:af:7d:98:fe:b2:43:0d:84:0b: 27:58:a9:4a:99:20:ba:8e:37:e4:40:7a:8f:a2:07: 30:0a:4a:dc:f2:83:62:51:a1:57:a4:9b:a7:f4:33: 2d:01:8d:a7:7a:5d:7f:2d:6e:25:a8:88:97:d4:88: 75:93:46:c3:2d:e6:72:cd:97:dc:6d:46:b2:7a:5a: cb:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EC:95:8A:59:9D:02:4D:69:4C:6A:D4:99:A8:94:5D:E9:9D:AA:4D X509v3 Authority Key Identifier: keyid:21:41:2A:09:7D:72:48:51:BE:96:1D:09:3E:85:21:CC:77:A7:B1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/10B48349104E477689FE38A7B967A5093DC8388A9216FC61564B3CA14BA89C88/0/21412A097D724851BE961D093E8521CC77A7B163.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21412A097D724851BE961D093E8521CC77A7B163.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/10B48349104E477689FE38A7B967A5093DC8388A9216FC61564B3CA14BA89C88/0/3136382e3139372e3235312e302f32342d3234203d3e203532353037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.197.251.0/24 Signature Algorithm: sha256WithRSAEncryption 45:83:48:65:f3:e2:68:a9:be:4b:98:70:e6:f3:c5:d2:02:00: c2:68:2c:41:0d:cc:f2:e1:6d:24:b9:17:16:e8:df:8e:d7:70: 55:5c:2b:4a:5e:16:76:6d:25:33:39:31:44:90:9d:f3:58:8d: 7f:45:89:58:58:8d:35:df:7f:18:6e:29:62:d8:e8:d4:b9:6f: 4f:4f:09:db:e5:68:78:3e:fa:bf:d3:f6:f4:bb:81:fd:7d:02: 1f:19:a7:c2:ad:f1:1a:55:67:71:3d:65:4c:0f:d4:40:9d:f2: 41:cb:fe:a3:02:27:f7:81:30:df:eb:2b:d0:f3:b3:55:dd:91: 84:9e:87:d6:4b:57:49:8f:bf:e6:32:a9:c6:59:5c:94:54:e5: 46:e2:a4:a1:bb:be:c5:ed:78:8a:a1:70:bf:ea:bf:e5:bc:c0: e4:ed:e7:5f:2a:ee:1f:92:20:fe:81:78:c4:3a:e9:5a:a3:c9: 5a:5c:40:f6:4a:26:74:f0:e2:3c:56:92:28:77:0b:ff:cd:ba: 7f:b3:ef:df:e9:90:da:1e:c9:aa:80:13:7f:16:61:09:bf:5b: e8:43:b1:50:42:24:07:cd:57:39:1d:b5:06:f1:3f:1c:59:d5: 9d:3b:93:f3:12:c1:42:9e:6f:38:89:5f:e5:db:c7:d8:18:60: 63:8d:0c:96 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUSKWPQ1c7kfFEwDBQQJpWsUkGbdYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE0MTJBMDk3RDcyNDg1MUJFOTYxRDA5M0U4NTIxQ0M3 N0E3QjE2MzAeFw0yNTAyMDQxNzU3MzVaFw0yNjAyMDMxODAyMzVaMDMxMTAvBgNV BAMTKDJCRUM5NThBNTk5RDAyNEQ2OTRDNkFENDk5QTg5NDVERTk5REFBNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIoqDwewC9EWwUSE5Ua/m6wPHi 25qqwr6MKMdc/kF/QQsDqYfuZ82TmOmqAG0e/h1YK2zVTCbWEnsomzA1kl7s1pix zGsXDQGde7VtG/+ziIfa0kS/IlnbQLHQVItGMoByO3QpQSElcLG0Zm2VuNvHNQp5 ntoASxckaSGGVewENKUCej2bHimngjRTMbiZKe3SIFoakMA3pFFupPQl8kRWSu/N hgjrZ6WM3QW9su/f3KgulMs4GvBl9K99mP6yQw2ECydYqUqZILqON+RAeo+iBzAK Stzyg2JRoVekm6f0My0Bjad6XX8tbiWoiJfUiHWTRsMt5nLNl9xtRrJ6WstZAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUK+yVilmdAk1pTGrUmaiUXemdqk0wHwYDVR0j BBgwFoAUIUEqCX1ySFG+lh0JPoUhzHensWMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xMEI0ODM0OTEwNEU0Nzc2ODlGRTM4QTdCOTY3QTUwOTNE QzgzODhBOTIxNkZDNjE1NjRCM0NBMTRCQTg5Qzg4LzAvMjE0MTJBMDk3RDcyNDg1 MUJFOTYxRDA5M0U4NTIxQ0M3N0E3QjE2My5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yMTQxMkEwOTdENzI0ODUxQkU5 NjFEMDkzRTg1MjFDQzc3QTdCMTYzLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMTBCNDgzNDkxMDRFNDc3Njg5RkUzOEE3Qjk2N0E1MDkzREM4Mzg4QTky MTZGQzYxNTY0QjNDQTE0QkE4OUM4OC8wLzMxMzYzODJlMzEzOTM3MmUzMjM1MzEy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMyMzUzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqMX7 MA0GCSqGSIb3DQEBCwUAA4IBAQBFg0hl8+Joqb5LmHDm88XSAgDCaCxBDczy4W0k uRcW6N+O13BVXCtKXhZ2bSUzOTFEkJ3zWI1/RYlYWI01338Ybili2OjUuW9PTwnb 5Wh4Pvq/0/b0u4H9fQIfGafCrfEaVWdxPWVMD9RAnfJBy/6jAif3gTDf6yvQ87NV 3ZGEnofWS1dJj7/mMqnGWVyUVOVG4qShu77F7XiKoXC/6r/lvMDk7edfKu4fkiD+ gXjEOulao8laXED2SiZ08OI8VpIodwv/zbp/s+/f6ZDaHsmqgBN/FmEJv1voQ7FQ QiQHzVc5HbUG8T8cWdWdO5PzEsFCnm84iV/l28fYGGBjjQyW -----END CERTIFICATE-----Generated at Thu Oct 30 19:55:52 2025 by rpki-client