$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/323830333a613034303a633030303a3a2f33342d3334203d3e20323633373530.roa File: 323830333a613034303a633030303a3a2f33342d3334203d3e20323633373530.roa (raw, json) Hash identifier: CeGAoc5qV6Jr932wz007lWmHagDRGveRKsrMhrRjrD4= Subject key identifier: 87:7B:D8:B7:5E:6B:36:07:43:57:61:4C:78:49:78:D0:33:1A:27:EA Certificate issuer: /CN=2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509 Certificate serial: 22E50E3617FBE35FE222B32DE54D37072F55E357 Authority key identifier: 2F:B4:7B:A0:2A:DB:C1:61:3D:B2:0F:1B:5E:C3:A1:AC:74:C5:25:09 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/323830333a613034303a633030303a3a2f33342d3334203d3e20323633373530.roa Signing time: Fri 29 Nov 2024 16:10:00 +0000 ROA not before: Fri 29 Nov 2024 16:05:00 +0000 ROA not after: Fri 28 Nov 2025 16:10:00 +0000 asID: 263750 IP address blocks: 2803:a040:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509.crl rsync://repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 08 Feb 2025 20:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:e5:0e:36:17:fb:e3:5f:e2:22:b3:2d:e5:4d:37:07:2f:55:e3:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509 Validity Not Before: Nov 29 16:05:00 2024 GMT Not After : Nov 28 16:10:00 2025 GMT Subject: CN=877BD8B75E6B36074357614C784978D0331A27EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:99:f5:1a:1a:93:7a:a9:6c:f6:5b:b4:bb:55: 8b:d0:74:3a:d1:00:de:bf:31:d1:1f:03:39:22:39: 61:3d:88:99:bb:73:e5:bd:5e:03:b5:6a:46:76:91: 43:e3:67:41:f8:d6:53:1c:8a:9f:e5:2e:53:3c:eb: 7f:7b:cf:9b:85:b6:a0:b8:53:02:89:00:37:e5:c2: 3e:bb:a5:5c:0a:ce:3f:6c:c2:c5:c2:f2:01:2f:58: fa:46:dc:66:f3:e4:04:75:ef:05:13:49:fb:a2:6e: dd:74:bd:59:65:04:f1:aa:d5:1d:08:a0:36:bd:23: f1:57:97:eb:09:ee:8f:b1:7e:94:03:10:db:57:b4: fd:1a:93:d4:cc:88:f5:2d:d0:14:0b:1c:9c:c6:7b: 9f:01:2a:eb:39:8f:86:96:f4:60:be:e8:9f:eb:d2: 23:6b:a3:96:bb:f0:e3:0b:92:db:04:6e:2f:c5:8e: e4:dd:14:5c:a4:b8:b6:86:93:31:d3:4d:00:f7:d3: 6c:e2:04:45:27:84:c5:30:11:b2:e9:dd:68:8d:96: b8:5b:b9:9a:ef:5d:7d:de:67:8a:c9:47:8d:f5:72: 83:47:79:7f:5e:6b:5d:e6:72:c6:e5:66:6e:15:cf: b7:c8:66:5c:ac:e9:d8:1b:fd:91:bb:0d:d2:b4:2e: 81:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:7B:D8:B7:5E:6B:36:07:43:57:61:4C:78:49:78:D0:33:1A:27:EA X509v3 Authority Key Identifier: keyid:2F:B4:7B:A0:2A:DB:C1:61:3D:B2:0F:1B:5E:C3:A1:AC:74:C5:25:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/323830333a613034303a633030303a3a2f33342d3334203d3e20323633373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:a040:c000::/34 Signature Algorithm: sha256WithRSAEncryption 4e:24:a3:72:dd:0b:43:c5:07:7d:11:34:63:1c:1f:71:fb:48: 0e:34:59:94:e4:32:a0:66:a9:d5:97:2d:0d:69:dc:0a:36:c7: 89:be:3c:32:83:9d:91:51:f3:a8:7b:c0:f5:8b:c7:cb:1d:e7: 9e:20:0d:40:5a:38:4b:eb:93:4d:0e:6e:58:64:91:2d:76:6c: b0:d4:31:07:fe:b5:98:6f:d0:0a:82:20:ff:d3:cf:a3:ca:f8: db:93:7e:e2:b5:fe:6e:97:b7:17:9d:3d:b8:53:84:27:ac:87: bf:67:dc:ef:46:a6:e6:bf:5c:d7:a2:0e:38:ca:c4:27:d4:39: f8:f4:f9:85:0d:75:87:f0:f6:17:9f:e5:93:5e:b9:a0:46:d5: 01:44:31:40:02:e7:9b:73:1f:a2:cc:07:db:bc:e1:ab:17:50: ca:7a:bf:95:1e:0e:dd:ac:02:57:ad:a1:9e:95:a0:4e:64:f2: 11:83:e4:af:c4:50:e4:04:fe:26:6c:77:d9:ce:df:20:c1:d6: b2:8f:3f:cf:5f:c0:e8:3c:84:d8:03:59:5e:88:0b:34:28:9f: 1e:fc:4c:73:4f:fc:03:25:29:b4:3f:f9:0c:b2:64:0a:58:95: 53:e0:67:c1:a0:7c:0d:04:67:da:cf:2b:fa:7d:a9:92:25:05: ed:6e:31:6b -----BEGIN CERTIFICATE----- MIIFyjCCBLKgAwIBAgIUIuUONhf741/iIrMt5U03By9V41cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZCNDdCQTAyQURCQzE2MTNEQjIwRjFCNUVDM0ExQUM3 NEM1MjUwOTAeFw0yNDExMjkxNjA1MDBaFw0yNTExMjgxNjEwMDBaMDMxMTAvBgNV BAMTKDg3N0JEOEI3NUU2QjM2MDc0MzU3NjE0Qzc4NDk3OEQwMzMxQTI3RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDImfUaGpN6qWz2W7S7VYvQdDrR AN6/MdEfAzkiOWE9iJm7c+W9XgO1akZ2kUPjZ0H41lMcip/lLlM86397z5uFtqC4 UwKJADflwj67pVwKzj9swsXC8gEvWPpG3Gbz5AR17wUTSfuibt10vVllBPGq1R0I oDa9I/FXl+sJ7o+xfpQDENtXtP0ak9TMiPUt0BQLHJzGe58BKus5j4aW9GC+6J/r 0iNro5a78OMLktsEbi/FjuTdFFykuLaGkzHTTQD302ziBEUnhMUwEbLp3WiNlrhb uZrvXX3eZ4rJR431coNHeX9ea13mcsblZm4Vz7fIZlys6dgb/ZG7DdK0LoH1AgMB AAGjggLUMIIC0DAdBgNVHQ4EFgQUh3vYt15rNgdDV2FMeEl40DMaJ+owHwYDVR0j BBgwFoAUL7R7oCrbwWE9sg8bXsOhrHTFJQkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8yQTc3MkE1RUEyNTI2MjQwNDQ4NDM4MThBQjhEQUI5REZG Q0I3MzQ2QzlEMkUxRTVDQTkzRkRFOUJBQUE5MkI0LzAvMkZCNDdCQTAyQURCQzE2 MTNEQjIwRjFCNUVDM0ExQUM3NEM1MjUwOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yRkI0N0JBMDJBREJDMTYxM0RC MjBGMUI1RUMzQTFBQzc0QzUyNTA5LmNlcjCB0QYIKwYBBQUHAQsEgcQwgcEwgb4G CCsGAQUFBzALhoGxcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMkE3NzJBNUVBMjUyNjI0MDQ0ODQzODE4QUI4REFCOURGRkNCNzM0NkM5 RDJFMUU1Q0E5M0ZERTlCQUFBOTJCNC8wLzMyMzgzMDMzM2E2MTMwMzQzMDNhNjMz MDMwMzAzYTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM2MzMzNzM1MzAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgYoA6BAwDANBgkqhkiG9w0BAQsFAAOCAQEATiSjct0LQ8UHfRE0YxwfcftI DjRZlOQyoGap1ZctDWncCjbHib48MoOdkVHzqHvA9YvHyx3nniANQFo4S+uTTQ5u WGSRLXZssNQxB/61mG/QCoIg/9PPo8r425N+4rX+bpe3F509uFOEJ6yHv2fc70am 5r9c16IOOMrEJ9Q5+PT5hQ11h/D2F5/lk165oEbVAUQxQALnm3MfoswH27zhqxdQ ynq/lR4O3awCV62hnpWgTmTyEYPkr8RQ5AT+Jmx32c7fIMHWso8/z1/A6DyE2ANZ XogLNCifHvxMc0/8AyUptD/5DLJkCliVU+BnwaB8DQRn2s8r+n2pkiUF7W4xaw== -----END CERTIFICATE-----Generated at Wed Feb 5 13:03:31 2025 by rpki-client