$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/323830333a383338303a3a2f33322d3332203d3e203631343536.roa File: 323830333a383338303a3a2f33322d3332203d3e203631343536.roa (raw, json) Hash identifier: ugJJMQ/VR+xvtZfo5m9dI5gzHfynGLb9FffpYbGUZ/k= Subject key identifier: 57:4D:CC:F2:7A:9E:42:95:CE:E5:11:83:8F:3E:FE:CB:A2:1C:93:A8 Certificate issuer: /CN=89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE Certificate serial: 3713875F3A8A0744C549F39859DD86A9DB25ED28 Authority key identifier: 89:C8:23:AD:60:CB:A4:B0:7B:90:92:FB:3D:0B:F1:A0:B8:C1:5A:BE Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/323830333a383338303a3a2f33322d3332203d3e203631343536.roa Signing time: Tue 04 Feb 2025 18:43:50 +0000 ROA not before: Tue 04 Feb 2025 18:38:50 +0000 ROA not after: Tue 03 Feb 2026 18:43:50 +0000 asID: 61456 IP address blocks: 2803:8380::/32 maxlen: 32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.crl rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 09 Nov 2025 01:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:13:87:5f:3a:8a:07:44:c5:49:f3:98:59:dd:86:a9:db:25:ed:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE Validity Not Before: Feb 4 18:38:50 2025 GMT Not After : Feb 3 18:43:50 2026 GMT Subject: CN=574DCCF27A9E4295CEE511838F3EFECBA21C93A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:01:76:72:50:c7:cc:6a:36:17:ca:58:2b:29: 82:54:a7:6d:2c:5f:c9:95:25:e8:22:9b:96:2d:b1: 3b:df:42:06:d6:b4:87:1f:32:3c:13:a7:75:a7:2f: a0:5c:14:e5:2d:48:42:fd:b4:14:8f:3e:36:1c:63: 75:43:a6:b5:e6:ad:77:e8:fa:a2:77:47:76:a7:20: 9c:3f:99:3f:57:f7:b6:d9:89:54:ee:c8:ee:4e:ef: 31:b0:cf:07:c9:c7:75:ab:b9:93:89:1d:fc:04:3b: 62:3b:d2:f5:e6:a1:39:30:3d:40:6c:9b:f8:01:ed: b8:44:0c:98:10:6c:fe:3d:d8:33:13:e1:fa:54:05: d2:8b:e5:11:90:39:ad:72:99:00:87:63:54:f5:15: 4f:c0:22:dc:f2:e2:70:14:84:68:b7:0a:da:74:6e: 3e:bb:b7:33:d0:01:e5:5d:0b:94:26:a3:6c:0a:20: 33:be:d5:25:52:a2:a7:8e:34:42:d0:0f:2f:28:0d: 98:79:ef:b9:22:47:08:36:d6:17:10:ac:6b:99:b1: 26:b5:f2:0b:8c:82:9d:b8:15:bd:02:f9:8c:02:34: c8:a8:89:c7:c4:37:99:b6:e5:76:c7:98:11:a0:53: 30:95:45:fa:26:c8:72:66:72:86:a7:79:70:b6:a8: bd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4D:CC:F2:7A:9E:42:95:CE:E5:11:83:8F:3E:FE:CB:A2:1C:93:A8 X509v3 Authority Key Identifier: keyid:89:C8:23:AD:60:CB:A4:B0:7B:90:92:FB:3D:0B:F1:A0:B8:C1:5A:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/323830333a383338303a3a2f33322d3332203d3e203631343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:8380::/32 Signature Algorithm: sha256WithRSAEncryption a5:d1:a2:21:60:1e:8a:53:5f:75:6c:ab:5f:d9:e4:7f:03:49: 94:4f:8e:f3:40:fe:a4:6c:f0:91:d9:53:75:17:7e:5b:ad:45: a3:a4:f8:c4:33:0c:9b:ff:6a:37:4f:6f:1b:ae:9d:11:0e:af: 2f:88:e1:5a:c9:ff:b9:cd:30:a7:ec:06:22:52:e4:2c:f7:1c: 43:ad:2c:5e:c8:ca:15:2f:74:b2:dc:c3:37:6f:74:0f:fc:b5: 15:fa:02:ad:ed:20:85:18:9c:46:f7:e0:f6:6c:03:d7:d4:6e: d6:96:6e:1a:e2:65:c5:4e:d9:1e:47:1c:29:37:84:db:d2:fb: 11:e0:ce:97:40:da:53:e1:e5:02:df:3a:27:0b:8c:1d:73:e3: 2c:45:84:39:3f:4a:c6:5e:de:6c:7a:12:e5:fe:20:cf:82:df: fa:a8:e7:cd:3b:55:8c:02:ec:cf:73:25:35:76:12:f9:55:0d: 3b:51:7a:32:5b:87:d9:ef:88:5e:e6:72:c9:cb:8a:ac:1e:79: cd:46:fa:80:05:b5:9a:76:2e:a2:f5:b9:a2:b6:96:52:3e:f7: 22:a2:33:c6:7d:0e:95:24:68:e2:65:ee:02:2c:3b:4c:72:b4: c1:e5:cb:6b:d2:b1:c1:b0:d2:45:48:61:ca:0f:9f:b1:f4:7a: 48:39:8f:32 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIUNxOHXzqKB0TFSfOYWd2Gqdsl7SgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlDODIzQUQ2MENCQTRCMDdCOTA5MkZCM0QwQkYxQTBC OEMxNUFCRTAeFw0yNTAyMDQxODM4NTBaFw0yNjAyMDMxODQzNTBaMDMxMTAvBgNV BAMTKDU3NERDQ0YyN0E5RTQyOTVDRUU1MTE4MzhGM0VGRUNCQTIxQzkzQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8AXZyUMfMajYXylgrKYJUp20s X8mVJegim5YtsTvfQgbWtIcfMjwTp3WnL6BcFOUtSEL9tBSPPjYcY3VDprXmrXfo +qJ3R3anIJw/mT9X97bZiVTuyO5O7zGwzwfJx3WruZOJHfwEO2I70vXmoTkwPUBs m/gB7bhEDJgQbP492DMT4fpUBdKL5RGQOa1ymQCHY1T1FU/AItzy4nAUhGi3Ctp0 bj67tzPQAeVdC5Qmo2wKIDO+1SVSoqeONELQDy8oDZh577kiRwg21hcQrGuZsSa1 8guMgp24Fb0C+YwCNMioicfEN5m25XbHmBGgUzCVRfomyHJmcoaneXC2qL39AgMB AAGjggLHMIICwzAdBgNVHQ4EFgQUV03M8nqeQpXO5RGDjz7+y6Ick6gwHwYDVR0j BBgwFoAUicgjrWDLpLB7kJL7PQvxoLjBWr4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zMjE3MkEyM0JFNzdBODYwQTIyNDlGNTU0MTNBMTY0NTBB NTk2NzFFRjlBMkY4MTJBOTQyRUMwN0Q5RDA1QzBGLzAvODlDODIzQUQ2MENCQTRC MDdCOTA5MkZCM0QwQkYxQTBCOEMxNUFCRS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84OUM4MjNBRDYwQ0JBNEIwN0I5 MDkyRkIzRDBCRjFBMEI4QzE1QUJFLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMzIxNzJBMjNCRTc3QTg2MEEyMjQ5RjU1NDEzQTE2NDUwQTU5NjcxRUY5 QTJGODEyQTk0MkVDMDdEOUQwNUMwRi8wLzMyMzgzMDMzM2EzODMzMzgzMDNhM2Ey ZjMzMzIyZDMzMzIyMDNkM2UyMDM2MzEzNDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA4OAMA0G CSqGSIb3DQEBCwUAA4IBAQCl0aIhYB6KU191bKtf2eR/A0mUT47zQP6kbPCR2VN1 F35brUWjpPjEMwyb/2o3T28brp0RDq8viOFayf+5zTCn7AYiUuQs9xxDrSxeyMoV L3Sy3MM3b3QP/LUV+gKt7SCFGJxG9+D2bAPX1G7Wlm4a4mXFTtkeRxwpN4Tb0vsR 4M6XQNpT4eUC3zonC4wdc+MsRYQ5P0rGXt5sehLl/iDPgt/6qOfNO1WMAuzPcyU1 dhL5VQ07UXoyW4fZ74he5nLJy4qsHnnNRvqABbWadi6i9bmitpZSPvciojPGfQ6V JGjiZe4CLDtMcrTB5ctr0rHBsNJFSGHKD5+x9HpIOY8y -----END CERTIFICATE-----Generated at Wed Nov 5 12:28:50 2025 by rpki-client