$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/3133382e3131372e3132382e302f32332d3233203d3e203532333939.roa File: 3133382e3131372e3132382e302f32332d3233203d3e203532333939.roa (raw, json) Hash identifier: Q830yrb3QPvCFlbuTwOgEGj/cmSyPNxoT4kUd3Ypu1I= Subject key identifier: BF:85:60:C5:B0:43:99:43:66:3A:E4:A0:A0:D5:46:0A:25:26:2B:78 Certificate issuer: /CN=C2B7A28859947C52A387BB628764F91AAA1D05B9 Certificate serial: 34DE2A709DC59EAE8C345FB68F40F70D116271C5 Authority key identifier: C2:B7:A2:88:59:94:7C:52:A3:87:BB:62:87:64:F9:1A:AA:1D:05:B9 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/3133382e3131372e3132382e302f32332d3233203d3e203532333939.roa Signing time: Tue 04 Feb 2025 18:36:02 +0000 ROA not before: Tue 04 Feb 2025 18:31:02 +0000 ROA not after: Tue 03 Feb 2026 18:36:02 +0000 asID: 52399 IP address blocks: 138.117.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.crl rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 10 Feb 2025 14:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:de:2a:70:9d:c5:9e:ae:8c:34:5f:b6:8f:40:f7:0d:11:62:71:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2B7A28859947C52A387BB628764F91AAA1D05B9 Validity Not Before: Feb 4 18:31:02 2025 GMT Not After : Feb 3 18:36:02 2026 GMT Subject: CN=BF8560C5B0439943663AE4A0A0D5460A25262B78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:51:3b:5a:f4:a0:cf:68:78:90:51:12:5e:e5: 5b:52:0d:b1:55:28:57:08:66:30:87:1f:bd:c1:0c: 78:eb:0f:41:8a:91:e1:be:c5:23:23:65:6b:9e:b3: d0:1b:b5:71:2e:a3:df:27:62:60:a6:3e:c2:cf:c0: d9:81:bb:69:5a:d8:5d:34:46:45:ee:22:20:1c:91: 8a:45:cc:c1:82:45:ec:f0:38:5d:02:de:cf:c7:4f: 30:46:14:b4:10:fc:99:1d:5c:b6:0e:08:17:05:b1: f8:0b:6f:15:90:dc:66:69:90:88:48:46:bb:7e:20: f9:a2:02:99:9c:b5:14:db:57:05:4b:de:56:e6:27: f6:09:f7:1c:42:07:50:be:d6:90:ff:77:6b:a2:eb: 5e:f9:7f:f9:b8:3c:ec:aa:52:5d:3c:21:33:6b:52: 3a:42:b4:79:8f:eb:42:6c:fb:57:05:ac:08:00:b0: 77:a2:36:10:ba:60:06:0b:b7:97:7d:0d:9f:d6:c0: 96:f8:bb:ed:9d:fe:6f:03:e2:66:22:ab:dc:4d:24: e9:77:e0:70:6f:e1:d4:67:cf:f4:88:66:5e:21:d9: 55:15:7f:e2:ff:51:20:ce:73:76:78:ad:b0:24:fd: 2d:6f:a0:d2:1d:b1:19:78:4b:fb:bc:12:aa:b3:f9: 9a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:85:60:C5:B0:43:99:43:66:3A:E4:A0:A0:D5:46:0A:25:26:2B:78 X509v3 Authority Key Identifier: keyid:C2:B7:A2:88:59:94:7C:52:A3:87:BB:62:87:64:F9:1A:AA:1D:05:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/3133382e3131372e3132382e302f32332d3233203d3e203532333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.117.128.0/23 Signature Algorithm: sha256WithRSAEncryption 82:f9:c6:65:67:2a:3b:65:cc:3e:8d:90:0f:7a:1d:7b:93:96: 91:a2:5d:25:65:54:11:62:04:b6:c2:3e:14:05:b7:f5:88:a3: f5:b8:25:e7:5c:be:54:1e:8a:f0:6c:c4:54:12:19:55:49:e6: 3d:38:25:5c:4b:0f:d1:91:2d:57:78:f2:7b:51:e4:2e:3d:36: d1:15:f4:58:44:7e:9d:51:f2:ed:f9:80:21:30:3b:7d:d0:27: e9:6b:29:ba:7b:b8:a2:c4:cc:6f:08:b7:72:c0:31:98:7f:4a: 27:4d:d0:34:97:b6:cd:c9:ed:62:6c:f1:12:64:13:de:11:d8: e0:3a:44:58:4e:25:74:82:40:b7:7d:91:7a:5c:67:73:a7:af: c1:8f:5f:34:67:7e:35:ad:71:4c:23:70:aa:59:93:87:3d:c3: 92:45:f1:f9:34:36:c5:18:e1:8f:11:05:8b:7f:d3:3f:7e:0c: 70:20:0a:a8:89:bb:4f:10:21:28:6d:30:c5:99:1e:97:ed:9e: 82:96:c7:2f:8e:51:8e:0f:cf:a9:52:bb:c0:cc:41:e6:11:d4: 76:f0:88:d5:fc:67:ab:ae:0c:3f:7b:3b:74:b8:cb:ce:5e:0f: 11:06:60:bc:12:7a:8b:44:65:82:0f:cf:c0:33:c7:7e:4c:d9: ef:d5:b1:59 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUNN4qcJ3Fnq6MNF+2j0D3DRFiccUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJCN0EyODg1OTk0N0M1MkEzODdCQjYyODc2NEY5MUFB QTFEMDVCOTAeFw0yNTAyMDQxODMxMDJaFw0yNjAyMDMxODM2MDJaMDMxMTAvBgNV BAMTKEJGODU2MEM1QjA0Mzk5NDM2NjNBRTRBMEEwRDU0NjBBMjUyNjJCNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UTta9KDPaHiQURJe5VtSDbFV KFcIZjCHH73BDHjrD0GKkeG+xSMjZWues9AbtXEuo98nYmCmPsLPwNmBu2la2F00 RkXuIiAckYpFzMGCRezwOF0C3s/HTzBGFLQQ/JkdXLYOCBcFsfgLbxWQ3GZpkIhI Rrt+IPmiApmctRTbVwVL3lbmJ/YJ9xxCB1C+1pD/d2ui6175f/m4POyqUl08ITNr UjpCtHmP60Js+1cFrAgAsHeiNhC6YAYLt5d9DZ/WwJb4u+2d/m8D4mYiq9xNJOl3 4HBv4dRnz/SIZl4h2VUVf+L/USDOc3Z4rbAk/S1voNIdsRl4S/u8Eqqz+Zo/AgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUv4VgxbBDmUNmOuSgoNVGCiUmK3gwHwYDVR0j BBgwFoAUwreiiFmUfFKjh7tih2T5GqodBbkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zNDJBQjQ4REYyNEY0RDg1REFBNDlCREFCNzc2MDlFNURC NUIzNzcxMkNGRDlERTdBNUNFOUY5ODA3NjAxMEYyLzAvQzJCN0EyODg1OTk0N0M1 MkEzODdCQjYyODc2NEY5MUFBQTFEMDVCOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DMkI3QTI4ODU5OTQ3QzUyQTM4 N0JCNjI4NzY0RjkxQUFBMUQwNUI5LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMzQyQUI0OERGMjRGNEQ4NURBQTQ5QkRBQjc3NjA5RTVEQjVCMzc3MTJD RkQ5REU3QTVDRTlGOTgwNzYwMTBGMi8wLzMxMzMzODJlMzEzMTM3MmUzMTMyMzgy ZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNTMyMzMzOTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBinWA MA0GCSqGSIb3DQEBCwUAA4IBAQCC+cZlZyo7Zcw+jZAPeh17k5aRol0lZVQRYgS2 wj4UBbf1iKP1uCXnXL5UHorwbMRUEhlVSeY9OCVcSw/RkS1XePJ7UeQuPTbRFfRY RH6dUfLt+YAhMDt90Cfpaym6e7iixMxvCLdywDGYf0onTdA0l7bNye1ibPESZBPe EdjgOkRYTiV0gkC3fZF6XGdzp6/Bj180Z341rXFMI3CqWZOHPcOSRfH5NDbFGOGP EQWLf9M/fgxwIAqoibtPECEobTDFmR6X7Z6ClscvjlGOD8+pUrvAzEHmEdR28IjV /Gerrgw/ezt0uMvOXg8RBmC8EnqLRGWCD8/AM8d+TNnv1bFZ -----END CERTIFICATE-----Generated at Sun Feb 9 15:37:18 2025 by rpki-client