$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/272467CD58545DB3C91B9FD59703A48BA0F1BACF3D5C56AA7C90CBE691CC6F44/0/323830333a663234303a3a2f33322d3334203d3e203631353038.roa File: 323830333a663234303a3a2f33322d3334203d3e203631353038.roa (raw, json) Hash identifier: Z/McZ2fEmNJHYGKE2Kr8P7diIVWtrDM2d0vEubrvQ9U= Subject key identifier: C7:A7:8D:B6:89:39:D8:CC:BD:44:D4:78:B6:11:87:BE:47:48:07:B0 Certificate issuer: /CN=818F5B44DD813BA4BC8A04C7D255042F1AE4B2AD Certificate serial: 58A1B2BFE44C710CFD0EB4540965D1980C846E22 Authority key identifier: 81:8F:5B:44:DD:81:3B:A4:BC:8A:04:C7:D2:55:04:2F:1A:E4:B2:AD Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/818F5B44DD813BA4BC8A04C7D255042F1AE4B2AD.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/272467CD58545DB3C91B9FD59703A48BA0F1BACF3D5C56AA7C90CBE691CC6F44/0/323830333a663234303a3a2f33322d3334203d3e203631353038.roa Signing time: Tue 04 Feb 2025 18:28:50 +0000 ROA not before: Tue 04 Feb 2025 18:23:50 +0000 ROA not after: Tue 03 Feb 2026 18:28:50 +0000 asID: 61508 IP address blocks: 2803:f240::/32 maxlen: 34 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/272467CD58545DB3C91B9FD59703A48BA0F1BACF3D5C56AA7C90CBE691CC6F44/0/818F5B44DD813BA4BC8A04C7D255042F1AE4B2AD.crl rsync://repository.lacnic.net/rpki/lacnic/272467CD58545DB3C91B9FD59703A48BA0F1BACF3D5C56AA7C90CBE691CC6F44/0/818F5B44DD813BA4BC8A04C7D255042F1AE4B2AD.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/818F5B44DD813BA4BC8A04C7D255042F1AE4B2AD.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 04:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a1:b2:bf:e4:4c:71:0c:fd:0e:b4:54:09:65:d1:98:0c:84:6e:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=818F5B44DD813BA4BC8A04C7D255042F1AE4B2AD Validity Not Before: Feb 4 18:23:50 2025 GMT Not After : Feb 3 18:28:50 2026 GMT Subject: CN=C7A78DB68939D8CCBD44D478B61187BE474807B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:40:70:89:64:c4:da:49:04:3d:b7:22:45: c8:91:07:80:9b:72:a8:51:3f:a5:21:02:f4:bd:46: 45:8a:7b:d2:76:1a:21:5d:ba:cf:33:63:7e:80:55: f0:b7:e0:51:09:b9:fd:ef:42:b3:7a:00:b8:c8:b7: 1f:4e:96:5f:ec:0d:bf:c3:02:22:2e:c0:94:ca:90: 18:12:14:80:a5:ae:d7:57:5d:f8:fe:2c:fa:b5:30: 03:19:a2:39:83:9d:3e:7d:cc:b9:6c:02:cd:b4:98: 9e:7a:25:fa:81:ea:2a:2b:43:1f:a0:a3:c2:44:fd: b2:1f:5d:b8:d2:a9:1a:c6:a6:c9:40:e9:dc:05:3d: 15:de:8e:73:57:8a:79:80:7d:ac:0c:dd:c7:99:03: d6:6c:61:04:d1:47:55:c1:00:71:60:e9:22:6d:8b: 8d:a9:b0:85:d9:f8:06:29:08:55:e7:59:79:1a:16: 50:ae:16:74:16:58:e1:ac:77:14:13:5b:02:25:af: a6:5b:50:fc:32:77:73:a1:3b:60:7d:da:4a:08:b0: 25:6f:8a:d3:4b:19:a9:56:c4:6e:bf:c9:a0:ea:88: 16:57:e6:c3:35:27:c5:1e:97:84:69:04:99:65:d6: 9d:a5:e0:3f:71:74:40:a5:db:14:35:95:30:99:f9: 91:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A7:8D:B6:89:39:D8:CC:BD:44:D4:78:B6:11:87:BE:47:48:07:B0 X509v3 Authority Key Identifier: keyid:81:8F:5B:44:DD:81:3B:A4:BC:8A:04:C7:D2:55:04:2F:1A:E4:B2:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/272467CD58545DB3C91B9FD59703A48BA0F1BACF3D5C56AA7C90CBE691CC6F44/0/818F5B44DD813BA4BC8A04C7D255042F1AE4B2AD.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/818F5B44DD813BA4BC8A04C7D255042F1AE4B2AD.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/272467CD58545DB3C91B9FD59703A48BA0F1BACF3D5C56AA7C90CBE691CC6F44/0/323830333a663234303a3a2f33322d3334203d3e203631353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:f240::/32 Signature Algorithm: sha256WithRSAEncryption 18:35:6a:9f:d8:19:a6:40:0e:8e:75:67:2f:1b:3f:b5:fc:aa: f6:8c:11:47:aa:32:c6:a9:45:57:17:a5:90:92:42:44:5f:eb: 1a:02:24:29:68:d7:13:6e:e6:1a:95:0d:35:55:e0:1c:3b:98: b5:39:8b:37:e0:d1:ed:69:61:fb:40:53:22:26:95:00:f1:07: 6e:a1:bd:c8:a0:93:ad:21:17:dd:b4:69:f9:d2:e9:4a:df:c6: 1c:2e:a3:02:95:60:09:36:5a:02:c5:0f:8f:34:37:72:2f:57: a8:a5:e6:ef:da:b1:89:28:3e:bc:a8:34:3f:c0:02:fb:b5:15: 31:da:82:b9:e5:1a:7f:0a:0b:91:72:53:0b:10:08:d2:b7:22: 7c:d4:ad:7c:a3:c1:f5:39:da:14:6b:27:a8:e9:ef:c6:b0:63: ff:24:90:45:a9:3f:dc:91:26:ad:2d:d8:61:e8:97:e6:d1:b0: 67:20:ee:32:c3:98:3d:1e:69:bd:50:61:0f:05:eb:a1:81:94: cc:3f:59:af:0f:16:92:b1:fc:35:e7:af:e1:11:d5:ef:4b:9c: 96:82:9b:55:2d:ca:e0:59:fd:73:9c:81:a2:49:fa:c1:99:d1: 4c:a3:93:0e:73:b9:83:7b:da:39:3a:b2:7c:2a:f7:21:c2:5e: da:f2:cc:a0 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIUWKGyv+RMcQz9DrRUCWXRmAyEbiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODE4RjVCNDRERDgxM0JBNEJDOEEwNEM3RDI1NTA0MkYx QUU0QjJBRDAeFw0yNTAyMDQxODIzNTBaFw0yNjAyMDMxODI4NTBaMDMxMTAvBgNV BAMTKEM3QTc4REI2ODkzOUQ4Q0NCRDQ0RDQ3OEI2MTE4N0JFNDc0ODA3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1DUBwiWTE2kkEPbciRciRB4Cb cqhRP6UhAvS9RkWKe9J2GiFdus8zY36AVfC34FEJuf3vQrN6ALjItx9Oll/sDb/D AiIuwJTKkBgSFIClrtdXXfj+LPq1MAMZojmDnT59zLlsAs20mJ56JfqB6iorQx+g o8JE/bIfXbjSqRrGpslA6dwFPRXejnNXinmAfawM3ceZA9ZsYQTRR1XBAHFg6SJt i42psIXZ+AYpCFXnWXkaFlCuFnQWWOGsdxQTWwIlr6ZbUPwyd3OhO2B92koIsCVv itNLGalWxG6/yaDqiBZX5sM1J8Uel4RpBJll1p2l4D9xdECl2xQ1lTCZ+ZFFAgMB AAGjggLHMIICwzAdBgNVHQ4EFgQUx6eNtok52My9RNR4thGHvkdIB7AwHwYDVR0j BBgwFoAUgY9bRN2BO6S8igTH0lUELxrksq0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8yNzI0NjdDRDU4NTQ1REIzQzkxQjlGRDU5NzAzQTQ4QkEw RjFCQUNGM0Q1QzU2QUE3QzkwQ0JFNjkxQ0M2RjQ0LzAvODE4RjVCNDRERDgxM0JB NEJDOEEwNEM3RDI1NTA0MkYxQUU0QjJBRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84MThGNUI0NEREODEzQkE0QkM4 QTA0QzdEMjU1MDQyRjFBRTRCMkFELmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMjcyNDY3Q0Q1ODU0NURCM0M5MUI5RkQ1OTcwM0E0OEJBMEYxQkFDRjNE NUM1NkFBN0M5MENCRTY5MUNDNkY0NC8wLzMyMzgzMDMzM2E2NjMyMzQzMDNhM2Ey ZjMzMzIyZDMzMzQyMDNkM2UyMDM2MzEzNTMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA/JAMA0G CSqGSIb3DQEBCwUAA4IBAQAYNWqf2BmmQA6OdWcvGz+1/Kr2jBFHqjLGqUVXF6WQ kkJEX+saAiQpaNcTbuYalQ01VeAcO5i1OYs34NHtaWH7QFMiJpUA8Qduob3IoJOt IRfdtGn50ulK38YcLqMClWAJNloCxQ+PNDdyL1eopebv2rGJKD68qDQ/wAL7tRUx 2oK55Rp/CguRclMLEAjStyJ81K18o8H1OdoUayeo6e/GsGP/JJBFqT/ckSatLdhh 6Jfm0bBnIO4yw5g9Hmm9UGEPBeuhgZTMP1mvDxaSsfw156/hEdXvS5yWgptVLcrg Wf1znIGiSfrBmdFMo5MOc7mDe9o5OrJ8Kvchwl7a8syg -----END CERTIFICATE-----Generated at Sat Apr 5 23:08:59 2025 by rpki-client