$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3133382e3235352e39382e302f32342d3234203d3e20323633383037.roa File: 3133382e3235352e39382e302f32342d3234203d3e20323633383037.roa (raw, json) Hash identifier: y+lGbB3DfYaTihtTAa8Dc2riJ0cFD8kqxU07KjiZ2AE= Subject key identifier: F2:75:B0:FC:C9:55:85:65:03:C5:F0:43:F6:3D:A6:2B:30:37:58:31 Certificate issuer: /CN=3F4E1DE876140740F25E5B57D8F6BB5386023F5F Certificate serial: 695B1C376FA4DFB4318BD1C34F47962916EB916F Authority key identifier: 3F:4E:1D:E8:76:14:07:40:F2:5E:5B:57:D8:F6:BB:53:86:02:3F:5F Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F4E1DE876140740F25E5B57D8F6BB5386023F5F.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3133382e3235352e39382e302f32342d3234203d3e20323633383037.roa Signing time: Tue 05 Mar 2024 18:01:00 +0000 ROA not before: Tue 05 Mar 2024 17:56:00 +0000 ROA not after: Tue 04 Mar 2025 18:01:00 +0000 asID: 263807 IP address blocks: 138.255.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3F4E1DE876140740F25E5B57D8F6BB5386023F5F.crl rsync://repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3F4E1DE876140740F25E5B57D8F6BB5386023F5F.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F4E1DE876140740F25E5B57D8F6BB5386023F5F.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 23 Nov 2024 22:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:5b:1c:37:6f:a4:df:b4:31:8b:d1:c3:4f:47:96:29:16:eb:91:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F4E1DE876140740F25E5B57D8F6BB5386023F5F Validity Not Before: Mar 5 17:56:00 2024 GMT Not After : Mar 4 18:01:00 2025 GMT Subject: CN=F275B0FCC955856503C5F043F63DA62B30375831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:34:77:da:02:af:a3:43:89:0f:9e:5c:c4:66: 30:74:5c:c0:02:f3:53:5f:5b:dd:36:6d:e0:59:69: b8:68:a0:6c:87:47:e6:97:af:cf:8e:7f:e3:e5:c9: ff:c4:de:be:03:83:94:00:64:89:d0:17:f8:31:1e: eb:17:7e:d3:0e:60:90:2a:75:a8:ef:f5:62:45:13: fb:18:8e:d6:7e:fb:ac:27:2a:f2:33:1a:05:11:b9: fd:be:6d:fd:bf:88:8e:09:3f:5a:8d:c2:8f:e1:19: 15:7e:67:ca:1f:f2:98:48:c9:8c:4d:dc:2d:65:53: 23:e0:e0:8f:f7:46:f7:04:4f:3d:17:bb:a8:82:d5: 26:57:c3:b9:73:b6:38:d8:ea:a8:8e:f1:f0:30:db: 1f:e1:bf:71:e0:00:cf:4c:fe:06:7e:b8:d6:68:1b: 91:54:95:de:3c:e6:2e:f7:bf:4b:82:5e:79:d9:f1: ec:b5:77:ca:9a:b5:24:41:98:64:95:79:27:ee:8c: 28:4f:d5:51:1d:14:10:d1:18:b8:3a:6f:25:d9:a4: 69:d0:5e:75:0e:b6:5a:79:15:ca:03:e1:88:60:cd: e6:ee:db:6a:7f:78:85:22:7d:96:db:57:bb:54:62: 6b:a2:58:79:e8:73:52:25:05:be:b0:60:54:15:d1: fb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:75:B0:FC:C9:55:85:65:03:C5:F0:43:F6:3D:A6:2B:30:37:58:31 X509v3 Authority Key Identifier: keyid:3F:4E:1D:E8:76:14:07:40:F2:5E:5B:57:D8:F6:BB:53:86:02:3F:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3F4E1DE876140740F25E5B57D8F6BB5386023F5F.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F4E1DE876140740F25E5B57D8F6BB5386023F5F.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3133382e3235352e39382e302f32342d3234203d3e20323633383037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.255.98.0/24 Signature Algorithm: sha256WithRSAEncryption 46:c4:91:fd:24:2a:37:e6:33:bc:28:32:80:f7:7e:5e:f3:89: 99:93:0a:05:48:41:24:63:12:26:46:72:59:ef:39:a9:5b:1e: 9a:19:6d:e4:69:b5:d9:39:c2:15:d3:dd:2b:28:0e:b0:9b:51: 81:fc:62:62:99:ba:36:bc:8c:24:83:1c:ee:89:a6:59:f4:ff: 58:c1:4f:73:23:b8:12:c4:13:78:fe:aa:e5:e3:7f:37:1a:46: 9d:98:ed:c9:28:04:3c:93:72:65:fb:98:1f:27:99:d6:8c:03: 51:10:80:56:d3:f0:88:c0:2f:c7:1e:37:b8:13:8d:b0:68:ff: df:06:52:f2:0d:f5:84:4b:ec:71:e5:60:10:09:9a:74:45:35: a5:f7:ba:70:29:1a:12:4f:6b:3e:4a:8b:83:af:05:7b:a5:2e: 59:e4:43:37:7e:57:0a:1b:c6:bd:e6:88:6c:7b:7b:e9:70:94: 6f:e2:41:a6:84:08:3a:30:ea:cd:26:77:78:09:09:45:98:a6: ba:69:98:a5:7a:2f:d6:65:46:e7:94:b4:00:4c:1d:49:2c:44: 8d:72:6c:d6:2d:5d:6d:d5:b1:45:e2:19:50:10:b4:a2:21:56: ec:2d:6a:89:1a:59:7d:6a:20:93:0e:d2:e0:5f:68:40:28:54: 0c:ae:ae:bc -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUaVscN2+k37Qxi9HDT0eWKRbrkW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y0RTFERTg3NjE0MDc0MEYyNUU1QjU3RDhGNkJCNTM4 NjAyM0Y1RjAeFw0yNDAzMDUxNzU2MDBaFw0yNTAzMDQxODAxMDBaMDMxMTAvBgNV BAMTKEYyNzVCMEZDQzk1NTg1NjUwM0M1RjA0M0Y2M0RBNjJCMzAzNzU4MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6NHfaAq+jQ4kPnlzEZjB0XMAC 81NfW902beBZabhooGyHR+aXr8+Of+Plyf/E3r4Dg5QAZInQF/gxHusXftMOYJAq dajv9WJFE/sYjtZ++6wnKvIzGgURuf2+bf2/iI4JP1qNwo/hGRV+Z8of8phIyYxN 3C1lUyPg4I/3RvcETz0Xu6iC1SZXw7lztjjY6qiO8fAw2x/hv3HgAM9M/gZ+uNZo G5FUld485i73v0uCXnnZ8ey1d8qatSRBmGSVeSfujChP1VEdFBDRGLg6byXZpGnQ XnUOtlp5FcoD4Yhgzebu22p/eIUifZbbV7tUYmuiWHnoc1IlBb6wYFQV0fupAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQU8nWw/MlVhWUDxfBD9j2mKzA3WDEwHwYDVR0j BBgwFoAUP04d6HYUB0DyXltX2Pa7U4YCP18wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8yMTNEREM2QzUyNUFBMUQ0MzJGNDcwQTk2RDkyNjFDRjI4 RkUxQ0VENEVDN0MxQjhDMUY1QTAxOEY3NUVFRjRELzAvM0Y0RTFERTg3NjE0MDc0 MEYyNUU1QjU3RDhGNkJCNTM4NjAyM0Y1Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zRjRFMURFODc2MTQwNzQwRjI1 RTVCNTdEOEY2QkI1Mzg2MDIzRjVGLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMjEzRERDNkM1MjVBQTFENDMyRjQ3MEE5NkQ5MjYxQ0YyOEZFMUNFRDRF QzdDMUI4QzFGNUEwMThGNzVFRUY0RC8wLzMxMzMzODJlMzIzNTM1MmUzOTM4MmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjMzMzgzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAiv9i MA0GCSqGSIb3DQEBCwUAA4IBAQBGxJH9JCo35jO8KDKA935e84mZkwoFSEEkYxIm RnJZ7zmpWx6aGW3kabXZOcIV090rKA6wm1GB/GJimbo2vIwkgxzuiaZZ9P9YwU9z I7gSxBN4/qrl4383GkadmO3JKAQ8k3Jl+5gfJ5nWjANREIBW0/CIwC/HHje4E42w aP/fBlLyDfWES+xx5WAQCZp0RTWl97pwKRoST2s+SouDrwV7pS5Z5EM3flcKG8a9 5ohse3vpcJRv4kGmhAg6MOrNJnd4CQlFmKa6aZilei/WZUbnlLQATB1JLESNcmzW LV1t1bFF4hlQELSiIVbsLWqJGll9aiCTDtLgX2hAKFQMrq68 -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:32 2024 by rpki-client on console-fra.rpki-client.org