$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233362e302f32322d3234203d3e203237383233.roa File: 3133382e33362e3233362e302f32322d3234203d3e203237383233.roa (raw, json) Hash identifier: uWvCQvd7ytzWoN2+DfdqWyyb4TGMexMndR2zD4/wh3A= Subject key identifier: 4C:7E:36:69:CC:09:72:58:6C:EA:1C:01:65:0F:C3:66:B1:4E:E1:E6 Certificate issuer: /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80 Certificate serial: 68D15E6805F7317D84AC6379178B7EE921254BE3 Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233362e302f32322d3234203d3e203237383233.roa Signing time: Tue 04 Feb 2025 18:08:10 +0000 ROA not before: Tue 04 Feb 2025 18:03:10 +0000 ROA not after: Tue 03 Feb 2026 18:08:10 +0000 asID: 27823 IP address blocks: 138.36.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 31 Mar 2025 05:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d1:5e:68:05:f7:31:7d:84:ac:63:79:17:8b:7e:e9:21:25:4b:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80 Validity Not Before: Feb 4 18:03:10 2025 GMT Not After : Feb 3 18:08:10 2026 GMT Subject: CN=4C7E3669CC0972586CEA1C01650FC366B14EE1E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:20:c5:74:6f:f1:bf:0e:49:7c:2a:d6:3e:66: 8d:5f:e3:74:59:45:cd:9e:60:ea:df:14:31:0c:d4: 03:32:8b:59:18:c5:c5:e5:c4:ed:20:ab:64:64:52: 9d:51:85:21:15:27:7e:d8:0c:de:e0:d3:1a:f2:41: 28:d0:0f:ca:f5:49:87:9f:f3:60:fc:da:4a:ea:71: 6d:0b:8c:52:f5:02:d8:fd:2d:58:37:ab:cd:3e:14: 0d:aa:8f:b0:8f:f3:32:8f:f7:67:d1:71:f9:b4:f3: 99:4e:8a:21:b7:c2:9b:97:21:85:94:c2:e7:7e:40: e0:4d:9c:3d:98:0c:82:e1:df:58:06:48:cc:e3:a0: 29:cb:62:3d:49:42:15:d0:f4:f6:61:de:c2:3e:13: 48:23:14:b1:f8:48:8a:88:ac:68:cf:49:ca:30:52: 3c:b8:c3:51:b3:74:09:34:05:6f:28:7c:4b:09:0f: bd:57:65:f7:50:60:ec:18:c3:ad:0b:89:e3:3a:b3: dc:51:b5:0d:e9:48:ef:9a:d8:fd:0f:64:e6:bd:31: 28:3e:9a:4b:90:b9:ce:bf:bf:bb:21:b1:a7:e6:cb: de:58:49:0f:8f:a5:02:af:59:48:e9:5b:ce:7e:b0: 11:37:3a:c2:14:f9:fa:a1:83:9c:fa:41:55:3f:8d: ff:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:7E:36:69:CC:09:72:58:6C:EA:1C:01:65:0F:C3:66:B1:4E:E1:E6 X509v3 Authority Key Identifier: keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233362e302f32322d3234203d3e203237383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.36.236.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:5e:1d:74:e3:73:2f:53:31:2b:b2:02:2d:60:7f:b8:33:54: b5:a8:f2:4e:6b:7d:3c:8a:16:1b:97:5d:f6:d2:a6:e9:7d:37: e0:e5:b3:fe:9f:a3:50:88:17:d8:63:b9:43:18:df:2d:74:7d: 90:e9:09:ac:1f:65:1c:69:aa:e9:cd:43:69:62:ac:90:92:26: 1e:9d:f3:de:9e:70:93:38:16:41:b7:f2:95:0c:25:62:73:6f: 47:8f:7a:0f:91:87:61:be:69:7e:5a:cd:11:c8:11:0e:71:2f: c0:71:c5:6f:31:61:42:57:24:ae:d6:83:fb:6c:10:f8:59:5c: fc:8c:08:e7:4a:e3:44:29:c8:7d:b0:a6:d8:a3:a8:29:a5:23: 0e:af:d9:2d:10:ff:7e:ba:f9:5b:72:27:84:92:00:26:96:1b: 2b:0d:c0:b5:d7:dc:f5:75:1f:c5:5c:35:ca:ad:4a:cd:5b:92: ff:e1:61:66:e1:8b:5f:98:0f:af:71:36:80:ae:f2:9b:2f:aa: 36:ed:b4:b3:ad:b0:f8:0d:a1:35:a0:3e:49:44:b9:d7:ec:38: b2:19:f1:22:4b:25:11:c3:bf:3b:c6:4b:5f:87:6d:c9:62:05: cb:56:9e:32:16:56:5d:ce:70:ad:b5:64:d4:57:84:3f:b1:bf: 23:fd:30:9d -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgIUaNFeaAX3MX2ErGN5F4t+6SElS+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVDMzFEQ0E0MDYyRkJBOEZGNDE3NUM1MThFRjIyNDZD RjU3MEQ4MDAeFw0yNTAyMDQxODAzMTBaFw0yNjAyMDMxODA4MTBaMDMxMTAvBgNV BAMTKDRDN0UzNjY5Q0MwOTcyNTg2Q0VBMUMwMTY1MEZDMzY2QjE0RUUxRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZIMV0b/G/Dkl8KtY+Zo1f43RZ Rc2eYOrfFDEM1AMyi1kYxcXlxO0gq2RkUp1RhSEVJ37YDN7g0xryQSjQD8r1SYef 82D82krqcW0LjFL1Atj9LVg3q80+FA2qj7CP8zKP92fRcfm085lOiiG3wpuXIYWU wud+QOBNnD2YDILh31gGSMzjoCnLYj1JQhXQ9PZh3sI+E0gjFLH4SIqIrGjPScow Ujy4w1GzdAk0BW8ofEsJD71XZfdQYOwYw60LieM6s9xRtQ3pSO+a2P0PZOa9MSg+ mkuQuc6/v7shsafmy95YSQ+PpQKvWUjpW85+sBE3OsIU+fqhg5z6QVU/jf9RAgMB AAGjggLIMIICxDAdBgNVHQ4EFgQUTH42acwJclhs6hwBZQ/DZrFO4eYwHwYDVR0j BBgwFoAUpcMdykBi+6j/QXXFGO8iRs9XDYAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xNkIxQjU3QjE5Qjc0M0MxRTBCNjdEQzUwMjBFNzY5RkY2 OTdENUQ4RkU2NzY0NTQ0M0MwMTcwQTU5QTYyOEY0LzAvQTVDMzFEQ0E0MDYyRkJB OEZGNDE3NUM1MThFRjIyNDZDRjU3MEQ4MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BNUMzMURDQTQwNjJGQkE4RkY0 MTc1QzUxOEVGMjI0NkNGNTcwRDgwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMTZCMUI1N0IxOUI3NDNDMUUwQjY3REM1MDIwRTc2OUZGNjk3RDVEOEZF Njc2NDU0NDNDMDE3MEE1OUE2MjhGNC8wLzMxMzMzODJlMzMzNjJlMzIzMzM2MmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNzM4MzIzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAook7DAN BgkqhkiG9w0BAQsFAAOCAQEASl4ddONzL1MxK7ICLWB/uDNUtajyTmt9PIoWG5dd 9tKm6X034OWz/p+jUIgX2GO5QxjfLXR9kOkJrB9lHGmq6c1DaWKskJImHp3z3p5w kzgWQbfylQwlYnNvR496D5GHYb5pflrNEcgRDnEvwHHFbzFhQlckrtaD+2wQ+Flc /IwI50rjRCnIfbCm2KOoKaUjDq/ZLRD/frr5W3InhJIAJpYbKw3Atdfc9XUfxVw1 yq1KzVuS/+FhZuGLX5gPr3E2gK7ymy+qNu20s62w+A2hNaA+SUS51+w4shnxIksl EcO/O8ZLX4dtyWIFy1aeMhZWXc5wrbVk1FeEP7G/I/0wnQ== -----END CERTIFICATE-----Generated at Thu Mar 27 00:38:59 2025 by rpki-client