$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/323830363a3238353a3a2f33322d3332203d3e20323635353233.roa File: 323830363a3238353a3a2f33322d3332203d3e20323635353233.roa (raw, json) Hash identifier: jQKcoKRKjlIhW8KEkg4zd5MfD33t0d4aVCIh5hhlOlo= Subject key identifier: 0B:88:0A:BE:6B:27:FC:67:26:AF:E2:D1:DC:2E:71:F1:C4:C4:9F:A2 Certificate issuer: /CN=40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F Certificate serial: 471D6DC2BFDA4BE962496693880B4082DEBCBFEB Authority key identifier: 40:48:6D:CD:4F:F9:A7:DB:63:55:71:FB:C2:CC:D6:D2:AD:B8:62:5F Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/323830363a3238353a3a2f33322d3332203d3e20323635353233.roa Signing time: Tue 04 Feb 2025 18:25:32 +0000 ROA not before: Tue 04 Feb 2025 18:20:32 +0000 ROA not after: Tue 03 Feb 2026 18:25:32 +0000 asID: 265523 IP address blocks: 2806:285::/32 maxlen: 32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.crl rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 20:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:1d:6d:c2:bf:da:4b:e9:62:49:66:93:88:0b:40:82:de:bc:bf:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F Validity Not Before: Feb 4 18:20:32 2025 GMT Not After : Feb 3 18:25:32 2026 GMT Subject: CN=0B880ABE6B27FC6726AFE2D1DC2E71F1C4C49FA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:78:3b:4d:7e:31:10:17:06:1c:4c:eb:20:53: cc:cf:f7:67:01:4d:cc:6b:3f:3b:3c:6b:77:d7:c4: d1:aa:ad:d3:2c:8f:78:c6:5e:cb:8c:bd:da:64:33: 1c:e6:7c:a1:a7:ce:8f:02:2d:2f:f9:c1:08:e3:b2: cf:28:d9:cb:3f:a0:b4:e7:ce:8c:04:21:b7:1f:3a: af:7e:a7:fd:1b:75:33:bf:46:f9:f4:84:2d:fd:a0: 38:54:9b:75:95:bb:c9:9b:ea:82:55:92:17:b3:d1: d9:28:d8:40:a6:ea:63:13:c9:46:8a:94:40:02:b5: 7d:ea:90:bd:ba:b1:d5:d8:81:e7:c3:f6:87:81:25: 5f:0d:71:62:99:c0:73:ab:72:76:d5:1e:e6:49:25: af:b8:d4:b1:24:de:86:93:46:30:70:f8:82:08:ad: 59:53:ac:e2:a4:e7:3c:5d:de:9c:05:72:03:fe:a3: 88:22:40:15:ad:83:fa:03:36:c2:78:46:8e:a1:8b: 09:f7:8a:82:61:c1:d6:b1:d6:21:4c:3a:c1:f1:44: a6:23:87:1a:b4:f4:a6:bf:c5:c3:ed:23:4d:2d:58: e1:89:91:1d:ff:a0:12:26:80:48:27:30:e9:3e:7c: 52:69:f0:6b:76:14:5e:e3:ed:db:d9:db:7c:56:bf: 99:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:88:0A:BE:6B:27:FC:67:26:AF:E2:D1:DC:2E:71:F1:C4:C4:9F:A2 X509v3 Authority Key Identifier: keyid:40:48:6D:CD:4F:F9:A7:DB:63:55:71:FB:C2:CC:D6:D2:AD:B8:62:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/323830363a3238353a3a2f33322d3332203d3e20323635353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2806:285::/32 Signature Algorithm: sha256WithRSAEncryption ef:7a:24:15:35:00:8d:e5:fb:dc:23:81:13:08:44:61:7d:6c: e9:5d:fc:cc:f2:d6:fb:b4:86:aa:80:ca:e2:ba:6d:f2:b4:1e: d7:c1:e3:c2:fc:8f:06:75:a2:1c:06:71:62:48:a7:eb:ad:2b: a1:b3:e3:46:0a:4a:ee:cc:73:07:8a:8c:d8:cd:a7:a0:3c:4b: 0c:67:d2:75:44:1b:a7:d4:24:53:8b:ce:83:07:fa:3f:5d:54: 72:80:97:31:5f:4d:14:0d:9e:4e:47:a6:b7:68:d4:18:94:d7: 4c:d4:a4:fb:42:26:88:b4:5a:ea:63:36:9b:d1:b7:6f:85:a1: 5a:3d:ff:04:b9:e4:82:ca:62:7d:af:d6:54:91:b1:aa:c9:0e: ea:ea:00:65:a9:a4:27:f4:af:ba:d6:c9:d2:9f:57:8b:97:5d: 57:eb:79:7e:11:3f:eb:07:4e:82:c6:52:a9:4e:dd:8b:a9:59: b9:02:89:be:f2:20:06:22:6b:86:3d:1a:b8:de:11:5d:51:42: 14:e3:9f:06:0c:ca:c7:15:36:3d:79:78:ce:8d:db:4b:af:f9: 2a:4d:72:81:55:26:68:ea:38:c1:a3:d0:d1:3e:7d:08:51:ce: 3d:54:2c:d2:05:86:b2:c9:4a:32:de:b9:5f:03:7f:09:55:2c: 10:64:52:39 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIURx1twr/aS+liSWaTiAtAgt68v+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA0ODZEQ0Q0RkY5QTdEQjYzNTU3MUZCQzJDQ0Q2RDJB REI4NjI1RjAeFw0yNTAyMDQxODIwMzJaFw0yNjAyMDMxODI1MzJaMDMxMTAvBgNV BAMTKDBCODgwQUJFNkIyN0ZDNjcyNkFGRTJEMURDMkU3MUYxQzRDNDlGQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9eDtNfjEQFwYcTOsgU8zP92cB TcxrPzs8a3fXxNGqrdMsj3jGXsuMvdpkMxzmfKGnzo8CLS/5wQjjss8o2cs/oLTn zowEIbcfOq9+p/0bdTO/Rvn0hC39oDhUm3WVu8mb6oJVkhez0dko2ECm6mMTyUaK lEACtX3qkL26sdXYgefD9oeBJV8NcWKZwHOrcnbVHuZJJa+41LEk3oaTRjBw+III rVlTrOKk5zxd3pwFcgP+o4giQBWtg/oDNsJ4Ro6hiwn3ioJhwdax1iFMOsHxRKYj hxq09Ka/xcPtI00tWOGJkR3/oBImgEgnMOk+fFJp8Gt2FF7j7dvZ23xWv5mBAgMB AAGjggLHMIICwzAdBgNVHQ4EFgQUC4gKvmsn/Gcmr+LR3C5x8cTEn6IwHwYDVR0j BBgwFoAUQEhtzU/5p9tjVXH7wszW0q24Yl8wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xOTNBQkVDMjcxMTU4MThDMzQzQUZGQUVCOUM0RUNEMjJD OTBFODRDNzlFMzBGRjMzNjQ0ODgxREFFRTZDMjBFLzAvNDA0ODZEQ0Q0RkY5QTdE QjYzNTU3MUZCQzJDQ0Q2RDJBREI4NjI1Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80MDQ4NkRDRDRGRjlBN0RCNjM1 NTcxRkJDMkNDRDZEMkFEQjg2MjVGLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMTkzQUJFQzI3MTE1ODE4QzM0M0FGRkFFQjlDNEVDRDIyQzkwRTg0Qzc5 RTMwRkYzMzY0NDg4MURBRUU2QzIwRS8wLzMyMzgzMDM2M2EzMjM4MzUzYTNhMmYz MzMyMmQzMzMyMjAzZDNlMjAzMjM2MzUzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoBgKFMA0G CSqGSIb3DQEBCwUAA4IBAQDveiQVNQCN5fvcI4ETCERhfWzpXfzM8tb7tIaqgMri um3ytB7XwePC/I8GdaIcBnFiSKfrrSuhs+NGCkruzHMHiozYzaegPEsMZ9J1RBun 1CRTi86DB/o/XVRygJcxX00UDZ5OR6a3aNQYlNdM1KT7QiaItFrqYzab0bdvhaFa Pf8EueSCymJ9r9ZUkbGqyQ7q6gBlqaQn9K+61snSn1eLl11X63l+ET/rB06CxlKp Tt2LqVm5Aom+8iAGImuGPRq43hFdUUIU458GDMrHFTY9eXjOjdtLr/kqTXKBVSZo 6jjBo9DRPn0IUc49VCzSBYayyUoy3rlfA38JVSwQZFI5 -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:14 2025 by rpki-client