$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3230302e35382e39362e302f32302d3234203d3e203237383233.roa File: 3230302e35382e39362e302f32302d3234203d3e203237383233.roa (raw, json) Hash identifier: NHSLt3TRKtiY59qFr/COC6spkHmLSA4jap+kNK/XRuo= Subject key identifier: B1:D2:96:E1:76:B0:2A:A2:9B:1C:BA:C1:FA:40:FC:82:55:6A:1F:6C Certificate issuer: /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80 Certificate serial: 734A9E5149B114F29F8EE6289C9A39A19AD7EE47 Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3230302e35382e39362e302f32302d3234203d3e203237383233.roa Signing time: Tue 04 Feb 2025 18:08:24 +0000 ROA not before: Tue 04 Feb 2025 18:03:24 +0000 ROA not after: Tue 03 Feb 2026 18:08:24 +0000 asID: 27823 IP address blocks: 200.58.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 31 Mar 2025 05:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:4a:9e:51:49:b1:14:f2:9f:8e:e6:28:9c:9a:39:a1:9a:d7:ee:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80 Validity Not Before: Feb 4 18:03:24 2025 GMT Not After : Feb 3 18:08:24 2026 GMT Subject: CN=B1D296E176B02AA29B1CBAC1FA40FC82556A1F6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2a:d2:54:26:bf:f8:57:4c:25:87:dc:b6:67: 91:df:38:ab:1e:9f:76:db:0a:7f:0a:34:1f:ec:96: eb:9f:e6:de:fb:7d:db:21:76:0b:60:67:01:76:62: ee:10:47:cf:cc:5b:e0:d3:31:ab:49:be:88:75:4c: cf:14:56:0f:f9:be:18:bf:e6:55:9e:cb:ce:63:06: 90:db:3e:97:20:f6:40:b8:93:d9:c1:a9:ba:73:64: e0:81:64:ee:39:c2:0d:d0:15:a6:50:41:6f:58:55: 64:81:d4:92:2e:14:6f:67:52:5f:9b:68:8e:27:91: a1:15:e9:61:aa:5d:07:37:bc:67:de:11:fa:94:e0: 4d:e8:83:1b:d2:72:fc:4a:74:58:d8:58:59:8b:1a: 1c:fe:4a:e1:5f:52:af:e3:c0:83:68:86:96:b8:0c: 53:41:95:17:d6:14:ad:4a:c9:71:b7:31:45:be:5e: ae:22:be:83:e0:34:1a:6b:a5:5b:5b:15:7f:c5:9e: 38:88:f8:c6:53:8e:ea:6a:01:6b:44:fe:b7:15:ac: a0:08:d1:cf:e2:7f:63:7f:4a:17:9b:87:b3:a6:49: 8c:d8:38:73:b8:22:69:50:af:88:2e:5c:0f:8d:f0: 03:1f:60:41:b6:9a:fd:c2:05:f2:e0:5e:ef:bb:f3: 1e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D2:96:E1:76:B0:2A:A2:9B:1C:BA:C1:FA:40:FC:82:55:6A:1F:6C X509v3 Authority Key Identifier: keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3230302e35382e39362e302f32302d3234203d3e203237383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.58.96.0/20 Signature Algorithm: sha256WithRSAEncryption cb:fb:58:0a:21:7e:02:51:88:93:2b:13:2d:f1:f0:e3:dc:a6: 00:fd:fa:75:89:77:df:c9:2a:01:e1:1b:6b:f8:86:3f:c4:9a: 45:ef:b2:4d:c4:5b:43:ff:cb:3d:f5:9a:3a:91:1e:a8:c1:62: 31:ae:13:e8:75:85:cd:84:b2:cb:db:aa:3b:a3:ce:a3:20:64: 1d:38:f2:53:77:c7:6d:7c:7d:ef:be:2e:43:26:d6:c6:29:02: 5b:db:8c:a4:fb:e8:43:4d:6e:fe:65:71:ca:95:3e:3f:99:71: 64:f6:22:28:b2:ea:38:d5:11:88:5d:b2:58:84:03:02:5e:f3: 94:72:bd:30:76:a7:28:58:6f:7c:05:0e:3b:f5:e5:ab:a5:27: 54:ca:16:a0:fe:a0:5b:05:26:00:7b:9c:c4:dc:2e:d0:4f:28: 5a:0b:3b:47:f9:0b:b3:78:ee:bc:22:a3:fd:61:8a:6b:28:f6: 8b:f0:db:2f:a5:57:20:d8:35:af:dd:9a:59:b9:4f:35:8d:f7: f1:f9:d8:cf:68:5c:62:6a:5e:86:23:91:77:9a:2e:76:f0:73: c3:c1:18:f7:e1:44:21:55:dc:a7:67:d8:b9:02:c9:5b:d7:d6: 5f:eb:da:3d:3f:08:e4:f4:6e:25:74:d8:35:d4:8d:35:c4:3e: d4:39:d2:e9 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUc0qeUUmxFPKfjuYonJo5oZrX7kcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVDMzFEQ0E0MDYyRkJBOEZGNDE3NUM1MThFRjIyNDZD RjU3MEQ4MDAeFw0yNTAyMDQxODAzMjRaFw0yNjAyMDMxODA4MjRaMDMxMTAvBgNV BAMTKEIxRDI5NkUxNzZCMDJBQTI5QjFDQkFDMUZBNDBGQzgyNTU2QTFGNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsKtJUJr/4V0wlh9y2Z5HfOKse n3bbCn8KNB/sluuf5t77fdshdgtgZwF2Yu4QR8/MW+DTMatJvoh1TM8UVg/5vhi/ 5lWey85jBpDbPpcg9kC4k9nBqbpzZOCBZO45wg3QFaZQQW9YVWSB1JIuFG9nUl+b aI4nkaEV6WGqXQc3vGfeEfqU4E3ogxvScvxKdFjYWFmLGhz+SuFfUq/jwINohpa4 DFNBlRfWFK1KyXG3MUW+Xq4ivoPgNBprpVtbFX/FnjiI+MZTjupqAWtE/rcVrKAI 0c/if2N/Shebh7OmSYzYOHO4ImlQr4guXA+N8AMfYEG2mv3CBfLgXu+78x4xAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUsdKW4XawKqKbHLrB+kD8glVqH2wwHwYDVR0j BBgwFoAUpcMdykBi+6j/QXXFGO8iRs9XDYAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xNkIxQjU3QjE5Qjc0M0MxRTBCNjdEQzUwMjBFNzY5RkY2 OTdENUQ4RkU2NzY0NTQ0M0MwMTcwQTU5QTYyOEY0LzAvQTVDMzFEQ0E0MDYyRkJB OEZGNDE3NUM1MThFRjIyNDZDRjU3MEQ4MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BNUMzMURDQTQwNjJGQkE4RkY0 MTc1QzUxOEVGMjI0NkNGNTcwRDgwLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMTZCMUI1N0IxOUI3NDNDMUUwQjY3REM1MDIwRTc2OUZGNjk3RDVEOEZF Njc2NDU0NDNDMDE3MEE1OUE2MjhGNC8wLzMyMzAzMDJlMzUzODJlMzkzNjJlMzAy ZjMyMzAyZDMyMzQyMDNkM2UyMDMyMzczODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATIOmAwDQYJ KoZIhvcNAQELBQADggEBAMv7WAohfgJRiJMrEy3x8OPcpgD9+nWJd9/JKgHhG2v4 hj/EmkXvsk3EW0P/yz31mjqRHqjBYjGuE+h1hc2EssvbqjujzqMgZB048lN3x218 fe++LkMm1sYpAlvbjKT76ENNbv5lccqVPj+ZcWT2Iiiy6jjVEYhdsliEAwJe85Ry vTB2pyhYb3wFDjv15aulJ1TKFqD+oFsFJgB7nMTcLtBPKFoLO0f5C7N47rwio/1h imso9ovw2y+lVyDYNa/dmlm5TzWN9/H52M9oXGJqXoYjkXeaLnbwc8PBGPfhRCFV 3Kdn2LkCyVvX1l/r2j0/COT0biV02DXUjTXEPtQ50uk= -----END CERTIFICATE-----Generated at Thu Mar 27 00:37:44 2025 by rpki-client