$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/323830303a6237303a323a3a2f34372d3438203d3e20323632313931.roa File: 323830303a6237303a323a3a2f34372d3438203d3e20323632313931.roa (raw, json) Hash identifier: sgwtO58BIlfmhAfZUe8D/TGnRTJD5eJtiDzE91/WGxE= Subject key identifier: 84:2B:01:B3:9F:21:A2:D8:5E:DE:1F:79:3B:2F:93:B0:DB:67:0B:F0 Certificate issuer: /CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD Certificate serial: 5FF57BA0C8A86F0991280038504505D4E3059519 Authority key identifier: 85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/323830303a6237303a323a3a2f34372d3438203d3e20323632313931.roa Signing time: Tue 04 Feb 2025 20:04:40 +0000 ROA not before: Tue 04 Feb 2025 19:59:40 +0000 ROA not after: Tue 03 Feb 2026 20:04:40 +0000 asID: 262191 IP address blocks: 2800:b70:2::/47 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 14 Apr 2025 13:06:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:f5:7b:a0:c8:a8:6f:09:91:28:00:38:50:45:05:d4:e3:05:95:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD Validity Not Before: Feb 4 19:59:40 2025 GMT Not After : Feb 3 20:04:40 2026 GMT Subject: CN=842B01B39F21A2D85EDE1F793B2F93B0DB670BF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:02:24:fc:7f:46:9e:27:5e:d7:04:96:91:2f: c0:8e:89:66:a2:4b:22:80:38:02:be:0b:c2:e3:f4: ce:da:73:90:b5:4a:48:53:d5:13:b7:57:d0:41:fe: 41:e4:c9:4b:f6:24:66:4a:d6:33:1b:d0:72:a6:ce: 14:94:4e:0b:4b:ab:b7:95:0e:84:6c:01:24:b4:01: 4e:dc:e1:35:95:a2:1f:fc:10:60:aa:eb:43:0b:3d: 7e:4b:c1:ca:9a:90:c1:e7:f4:d0:e0:6c:c1:2c:2c: a0:b5:57:37:e9:16:5a:77:05:01:6e:47:f8:aa:28: 5a:dd:a6:79:52:c2:46:43:01:3a:77:f3:23:3d:aa: 48:2a:f4:b9:29:18:dc:93:c3:8b:51:35:95:49:b7: 7e:d6:7a:e2:e5:6a:aa:98:06:49:c1:53:df:e0:08: 12:f0:14:70:21:83:e4:13:78:83:43:f2:2d:ab:73: c7:96:a1:57:ca:16:5c:70:ae:30:04:c1:b7:3a:9e: 6c:14:16:07:ef:82:26:c4:90:de:bd:56:7d:b3:81: 8a:a1:30:e4:04:02:88:89:c6:dd:b6:9e:39:28:4a: c0:f2:f7:9f:4e:1b:ab:61:d1:77:cc:c4:04:d9:31: 14:7b:9a:36:83:ac:88:b3:6d:9b:35:e7:ce:53:ca: de:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:2B:01:B3:9F:21:A2:D8:5E:DE:1F:79:3B:2F:93:B0:DB:67:0B:F0 X509v3 Authority Key Identifier: keyid:85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/323830303a6237303a323a3a2f34372d3438203d3e20323632313931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2800:b70:2::/47 Signature Algorithm: sha256WithRSAEncryption a5:60:eb:9c:ef:e1:1a:88:89:34:f1:88:25:1b:ea:81:5a:ad: 96:df:01:4d:1f:2a:b5:05:e5:11:b6:fb:d1:14:76:6c:5b:59: 12:23:f7:8f:80:92:1e:cc:b2:d5:ac:4a:0a:0e:d7:53:6d:01: 31:5d:49:3a:53:64:34:1e:c8:b7:ca:8d:99:c8:3c:c3:d5:f9: 6f:71:3c:72:a7:f0:91:e6:12:d7:d3:77:e2:ba:70:6d:70:a3: 49:0c:21:d0:76:74:aa:80:88:0f:59:80:4d:83:dc:33:33:8d: 35:ce:93:fa:40:87:b5:eb:5a:b4:f8:9b:60:51:b7:a7:4c:72: 22:63:c4:25:8f:86:86:a2:41:ca:a4:dc:fb:a9:c5:5e:a0:9e: 07:69:e6:45:1f:b4:d0:91:ea:27:77:21:90:07:21:d2:90:45: 8f:af:03:b4:6f:c3:5c:0d:43:bb:28:65:29:c0:be:ce:3a:ed: 17:bb:b5:dd:ea:97:c8:7a:6f:6a:69:66:55:1c:a3:f3:25:4b: 83:1c:29:14:da:85:83:07:c7:1b:68:51:27:bb:60:e6:ea:fd: 36:08:03:89:fe:4e:2d:b9:a6:8b:8b:f3:03:1b:d0:e1:37:3a: f6:45:de:6a:a1:65:1d:1b:40:78:aa:58:2b:51:34:8e:b9:0f: ca:b6:e4:de -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgIUX/V7oMiobwmRKAA4UEUF1OMFlRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVEOUU3RDlCRUVGRUQwQjlFMTg4REI3RThDQzNCNjQ4 OTA2NkRDRDAeFw0yNTAyMDQxOTU5NDBaFw0yNjAyMDMyMDA0NDBaMDMxMTAvBgNV BAMTKDg0MkIwMUIzOUYyMUEyRDg1RURFMUY3OTNCMkY5M0IwREI2NzBCRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUAiT8f0aeJ17XBJaRL8COiWai SyKAOAK+C8Lj9M7ac5C1SkhT1RO3V9BB/kHkyUv2JGZK1jMb0HKmzhSUTgtLq7eV DoRsASS0AU7c4TWVoh/8EGCq60MLPX5LwcqakMHn9NDgbMEsLKC1VzfpFlp3BQFu R/iqKFrdpnlSwkZDATp38yM9qkgq9LkpGNyTw4tRNZVJt37WeuLlaqqYBknBU9/g CBLwFHAhg+QTeIND8i2rc8eWoVfKFlxwrjAEwbc6nmwUFgfvgibEkN69Vn2zgYqh MOQEAoiJxt22njkoSsDy959OG6th0XfMxATZMRR7mjaDrIizbZs1585Tyt6xAgMB AAGjggLNMIICyTAdBgNVHQ4EFgQUhCsBs58hothe3h95Oy+TsNtnC/AwHwYDVR0j BBgwFoAUhdnn2b7v7QueGI236Mw7ZIkGbc0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xQUQ3MjYxQzdGRDFFNEVGRUNFQkU2RjM2MkZDRDBDNzU2 OTdFMDZCNDE0NzRCRUE4Q0FCQzcwNkY3OUVDRjNELzAvODVEOUU3RDlCRUVGRUQw QjlFMTg4REI3RThDQzNCNjQ4OTA2NkRDRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NUQ5RTdEOUJFRUZFRDBCOUUx ODhEQjdFOENDM0I2NDg5MDY2RENELmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMUFENzI2MUM3RkQxRTRFRkVDRUJFNkYzNjJGQ0QwQzc1Njk3RTA2QjQx NDc0QkVBOENBQkM3MDZGNzlFQ0YzRC8wLzMyMzgzMDMwM2E2MjM3MzAzYTMyM2Ez YTJmMzQzNzJkMzQzODIwM2QzZTIwMzIzNjMyMzEzOTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBKAAL cAACMA0GCSqGSIb3DQEBCwUAA4IBAQClYOuc7+EaiIk08YglG+qBWq2W3wFNHyq1 BeURtvvRFHZsW1kSI/ePgJIezLLVrEoKDtdTbQExXUk6U2Q0Hsi3yo2ZyDzD1flv cTxyp/CR5hLX03fiunBtcKNJDCHQdnSqgIgPWYBNg9wzM401zpP6QIe161q0+Jtg UbenTHIiY8Qlj4aGokHKpNz7qcVeoJ4HaeZFH7TQkeondyGQByHSkEWPrwO0b8Nc DUO7KGUpwL7OOu0Xu7Xd6pfIem9qaWZVHKPzJUuDHCkU2oWDB8cbaFEnu2Dm6v02 CAOJ/k4tuaaLi/MDG9DhNzr2Rd5qoWUdG0B4qlgrUTSOuQ/KtuTe -----END CERTIFICATE-----Generated at Fri Apr 11 12:16:55 2025 by rpki-client