$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3133382e3132312e31322e302f32322d3232203d3e203233353230.roa File: 3133382e3132312e31322e302f32322d3232203d3e203233353230.roa (raw, json) Hash identifier: 7gmSvvFv+TIkpTm+z9qN+6Nc38dN+lX7/KrseU+WhW8= Subject key identifier: 9D:DE:09:C1:26:B2:6E:1A:07:9C:D5:5E:AF:C4:63:78:34:9D:EF:49 Certificate issuer: /CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD Certificate serial: 4F096DE3A60ED759CEDA51FB76FCF41E4C1E47F9 Authority key identifier: 85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3133382e3132312e31322e302f32322d3232203d3e203233353230.roa Signing time: Tue 04 Feb 2025 20:04:36 +0000 ROA not before: Tue 04 Feb 2025 19:59:36 +0000 ROA not after: Tue 03 Feb 2026 20:04:36 +0000 asID: 23520 IP address blocks: 138.121.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 14 Apr 2025 13:06:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:09:6d:e3:a6:0e:d7:59:ce:da:51:fb:76:fc:f4:1e:4c:1e:47:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD Validity Not Before: Feb 4 19:59:36 2025 GMT Not After : Feb 3 20:04:36 2026 GMT Subject: CN=9DDE09C126B26E1A079CD55EAFC46378349DEF49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c3:7e:94:50:0b:4e:a3:c5:66:c2:38:7a:d2: d0:98:fc:ca:5f:c4:fc:8c:d5:70:97:1c:fb:b8:17: 82:25:13:1f:5d:fa:4a:2c:b0:85:5d:eb:b0:2e:2c: de:fa:e8:c5:4a:a4:b0:b3:24:f6:78:cc:a2:d5:04: d9:7f:56:e5:c8:b4:20:b3:2d:b8:b5:19:69:79:37: 99:d3:fa:90:64:83:61:23:7c:48:90:08:a7:cb:cf: 2c:33:21:46:5c:2d:c0:c8:ac:03:de:68:4b:1e:3e: 2d:8c:e2:18:01:75:2f:11:61:2e:30:b4:d6:16:ac: f6:95:56:06:1e:b2:88:d5:9f:4b:36:2f:ec:af:47: 45:b1:09:98:31:b3:e0:74:6f:19:2f:0d:ff:75:73: 4b:cf:25:fc:70:35:f9:bb:80:84:56:28:a4:15:86: 9f:00:fd:6a:d1:80:41:d0:ec:5a:f1:31:a8:c0:45: 3d:20:fe:4b:0a:15:93:01:be:e8:a9:8c:be:e0:fe: 32:01:f9:a4:65:41:8c:60:e7:df:f8:36:5d:3f:6e: fb:ac:37:21:8c:29:2a:31:1d:75:0b:9e:92:78:58: 9f:86:15:3b:00:ba:66:26:5f:0e:65:14:b8:db:b0: c8:3d:2c:c4:98:ef:ef:de:34:86:e9:3c:8d:9d:47: 45:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DE:09:C1:26:B2:6E:1A:07:9C:D5:5E:AF:C4:63:78:34:9D:EF:49 X509v3 Authority Key Identifier: keyid:85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3133382e3132312e31322e302f32322d3232203d3e203233353230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.12.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:96:27:42:58:2b:c0:82:78:8c:69:2f:4c:a9:fa:14:a1:a6: 4e:ce:6e:21:98:81:7e:4d:53:91:9d:28:10:28:58:3f:0c:2e: 2e:5e:2a:3c:68:2d:bd:a5:e2:f3:80:c0:f5:ca:f7:e7:4b:78: bb:86:98:4d:f5:91:6f:94:27:e0:7b:bc:1e:d8:fb:c7:65:a9: d2:07:e0:1c:9f:62:80:b3:7d:4c:2c:df:d3:2f:98:33:91:59: 7c:ae:c1:bb:3b:61:5a:c8:5b:27:a3:e7:07:1e:6b:38:5c:2e: fb:8d:11:b3:0e:09:14:52:a9:47:96:4f:f4:c4:96:fc:b6:e3: 5e:28:09:04:91:6a:ff:f9:26:0f:f0:58:38:f5:0e:1d:0c:c7: 58:5a:15:57:6e:9d:9f:d0:1c:f8:3d:c7:b9:08:11:08:c9:56: ef:dc:35:23:77:20:3e:9e:ba:f1:37:a5:a2:3b:75:e0:45:f9: 43:02:49:a3:0e:ea:79:b7:e6:bd:34:c6:4d:e3:9c:0b:ee:7b: 14:b8:20:7b:d7:1c:0f:39:22:ed:f3:bf:ea:20:ff:a6:9a:45: f0:c2:08:2b:ac:4d:20:ba:c6:ec:07:7a:31:f1:52:73:fe:b9: a6:9f:ff:dd:fb:d3:71:ee:17:3b:5b:32:08:f9:69:1a:fa:e2: fe:9a:2f:c3 -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgIUTwlt46YO11nO2lH7dvz0HkweR/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVEOUU3RDlCRUVGRUQwQjlFMTg4REI3RThDQzNCNjQ4 OTA2NkRDRDAeFw0yNTAyMDQxOTU5MzZaFw0yNjAyMDMyMDA0MzZaMDMxMTAvBgNV BAMTKDlEREUwOUMxMjZCMjZFMUEwNzlDRDU1RUFGQzQ2Mzc4MzQ5REVGNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnw36UUAtOo8Vmwjh60tCY/Mpf xPyM1XCXHPu4F4IlEx9d+kossIVd67AuLN766MVKpLCzJPZ4zKLVBNl/VuXItCCz Lbi1GWl5N5nT+pBkg2EjfEiQCKfLzywzIUZcLcDIrAPeaEsePi2M4hgBdS8RYS4w tNYWrPaVVgYesojVn0s2L+yvR0WxCZgxs+B0bxkvDf91c0vPJfxwNfm7gIRWKKQV hp8A/WrRgEHQ7FrxMajART0g/ksKFZMBvuipjL7g/jIB+aRlQYxg59/4Nl0/bvus NyGMKSoxHXULnpJ4WJ+GFTsAumYmXw5lFLjbsMg9LMSY7+/eNIbpPI2dR0WVAgMB AAGjggLIMIICxDAdBgNVHQ4EFgQUnd4JwSaybhoHnNVer8RjeDSd70kwHwYDVR0j BBgwFoAUhdnn2b7v7QueGI236Mw7ZIkGbc0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xQUQ3MjYxQzdGRDFFNEVGRUNFQkU2RjM2MkZDRDBDNzU2 OTdFMDZCNDE0NzRCRUE4Q0FCQzcwNkY3OUVDRjNELzAvODVEOUU3RDlCRUVGRUQw QjlFMTg4REI3RThDQzNCNjQ4OTA2NkRDRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NUQ5RTdEOUJFRUZFRDBCOUUx ODhEQjdFOENDM0I2NDg5MDY2RENELmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMUFENzI2MUM3RkQxRTRFRkVDRUJFNkYzNjJGQ0QwQzc1Njk3RTA2QjQx NDc0QkVBOENBQkM3MDZGNzlFQ0YzRC8wLzMxMzMzODJlMzEzMjMxMmUzMTMyMmUz MDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzMzM1MzIzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAop5DDAN BgkqhkiG9w0BAQsFAAOCAQEAa5YnQlgrwIJ4jGkvTKn6FKGmTs5uIZiBfk1TkZ0o EChYPwwuLl4qPGgtvaXi84DA9cr350t4u4aYTfWRb5Qn4Hu8Htj7x2Wp0gfgHJ9i gLN9TCzf0y+YM5FZfK7BuzthWshbJ6PnBx5rOFwu+40Rsw4JFFKpR5ZP9MSW/Lbj XigJBJFq//kmD/BYOPUOHQzHWFoVV26dn9Ac+D3HuQgRCMlW79w1I3cgPp668Tel ojt14EX5QwJJow7qebfmvTTGTeOcC+57FLgge9ccDzki7fO/6iD/pppF8MIIK6xN ILrG7Ad6MfFSc/65pp//3fvTce4XO1syCPlpGvri/povww== -----END CERTIFICATE-----Generated at Fri Apr 11 12:41:46 2025 by rpki-client