$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/3133382e3131372e3133312e302f32342d3234203d3e203532333939.roa File: 3133382e3131372e3133312e302f32342d3234203d3e203532333939.roa (raw, json) Hash identifier: kOTNVY8aqcLKSXxasjp++CLJb6xjID3I+PccekeUCyU= Subject key identifier: 26:56:19:A2:AA:2D:C1:52:F6:13:79:86:AA:7E:FE:FE:07:37:5B:AF Certificate issuer: /CN=C2B7A28859947C52A387BB628764F91AAA1D05B9 Certificate serial: 1DCE035C94B9715E5EC2BB97451516611139B843 Authority key identifier: C2:B7:A2:88:59:94:7C:52:A3:87:BB:62:87:64:F9:1A:AA:1D:05:B9 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/3133382e3131372e3133312e302f32342d3234203d3e203532333939.roa Signing time: Tue 05 Mar 2024 17:43:02 +0000 ROA not before: Tue 05 Mar 2024 17:38:02 +0000 ROA not after: Tue 04 Mar 2025 17:43:02 +0000 asID: 52399 IP address blocks: 138.117.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.crl rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 09 May 2024 20:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ce:03:5c:94:b9:71:5e:5e:c2:bb:97:45:15:16:61:11:39:b8:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2B7A28859947C52A387BB628764F91AAA1D05B9 Validity Not Before: Mar 5 17:38:02 2024 GMT Not After : Mar 4 17:43:02 2025 GMT Subject: CN=265619A2AA2DC152F6137986AA7EFEFE07375BAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:87:ff:83:e5:bc:5f:96:43:45:00:27:0f:76: d2:71:4e:89:e9:80:2b:03:0a:8d:ed:90:4a:ac:a7: 1e:a1:c6:15:1c:6c:32:68:99:f0:42:2a:c0:e4:a0: 50:45:17:1a:9b:bd:b5:79:0f:d1:29:99:60:4e:bc: c7:e3:a5:94:d7:a3:17:47:dd:aa:9e:25:4d:9d:f6: 1d:00:42:b5:d3:ec:13:c4:c5:88:89:8d:cb:b5:b3: 5b:fb:82:c2:6c:c1:40:74:a7:7b:03:68:dc:72:75: f1:cb:77:5a:39:5a:ec:e9:d2:87:da:45:da:29:ee: b8:91:31:15:03:d1:eb:9a:5d:5d:58:18:9b:95:5e: 11:15:24:e1:04:0a:1c:cf:db:b3:f2:4a:95:76:0e: 66:16:0b:cb:54:0d:c8:a9:92:68:8f:db:12:db:c4: 0f:f1:5d:31:7b:5c:83:3c:48:55:b3:86:70:34:1e: 8c:af:ca:2b:ee:56:a0:f7:ce:9b:66:22:2a:ed:fe: 74:f5:2c:8e:72:4a:7b:b0:37:42:24:8b:43:8f:b1: c0:7c:c2:43:ad:00:52:8a:d3:a0:4a:77:4a:b7:02: 7b:71:05:84:11:23:91:44:66:3b:51:58:d7:be:12: 60:b9:9e:25:73:e2:55:43:f6:ab:e7:c0:d5:f2:2e: c3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:56:19:A2:AA:2D:C1:52:F6:13:79:86:AA:7E:FE:FE:07:37:5B:AF X509v3 Authority Key Identifier: keyid:C2:B7:A2:88:59:94:7C:52:A3:87:BB:62:87:64:F9:1A:AA:1D:05:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B7A28859947C52A387BB628764F91AAA1D05B9.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/342AB48DF24F4D85DAA49BDAB77609E5DB5B37712CFD9DE7A5CE9F98076010F2/0/3133382e3131372e3133312e302f32342d3234203d3e203532333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.117.131.0/24 Signature Algorithm: sha256WithRSAEncryption 93:44:58:f7:80:06:60:54:5d:25:3a:cf:25:09:04:4a:a8:78: 08:85:6a:96:1e:02:f1:50:f1:bf:b9:25:65:bb:66:4d:3a:19: 63:08:f2:70:60:e9:e4:07:24:9f:4e:42:c3:ea:85:a3:49:f9: b9:d5:d7:28:c8:40:82:2e:48:73:cf:2a:68:92:39:51:0f:f2: 31:5f:aa:40:e7:68:b9:ac:e7:66:c0:02:b4:e0:89:02:df:2d: e4:7d:49:ab:06:7b:d5:46:59:a4:10:39:6a:9a:cf:f3:b0:11: 6a:f4:40:c9:76:e3:54:03:96:f4:2c:53:08:31:09:ec:2f:e5: 4a:87:08:df:df:4f:f7:8d:77:c2:6c:88:13:09:d4:68:d9:4c: 4f:5b:bb:fb:6e:5c:69:1b:88:50:16:41:f7:20:c9:ea:db:44: 6a:42:4c:ae:a0:2c:99:da:78:5e:29:20:5d:e7:66:70:47:22: 3b:25:85:82:2c:80:6f:93:e3:fb:6e:04:a9:97:7b:60:76:0d: 78:bf:49:f8:77:a3:b4:a7:c1:af:41:85:42:2d:55:27:ab:b8: 5a:de:30:f4:8c:d0:dc:ec:a0:49:33:6c:46:a9:33:80:06:0e: 7c:35:22:10:99:8b:bc:69:5d:9d:59:55:4a:d1:92:f2:ce:eb: 94:87:62:61 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUHc4DXJS5cV5ewruXRRUWYRE5uEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJCN0EyODg1OTk0N0M1MkEzODdCQjYyODc2NEY5MUFB QTFEMDVCOTAeFw0yNDAzMDUxNzM4MDJaFw0yNTAzMDQxNzQzMDJaMDMxMTAvBgNV BAMTKDI2NTYxOUEyQUEyREMxNTJGNjEzNzk4NkFBN0VGRUZFMDczNzVCQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgh/+D5bxflkNFACcPdtJxTonp gCsDCo3tkEqspx6hxhUcbDJomfBCKsDkoFBFFxqbvbV5D9EpmWBOvMfjpZTXoxdH 3aqeJU2d9h0AQrXT7BPExYiJjcu1s1v7gsJswUB0p3sDaNxydfHLd1o5Wuzp0ofa Rdop7riRMRUD0euaXV1YGJuVXhEVJOEEChzP27PySpV2DmYWC8tUDcipkmiP2xLb xA/xXTF7XIM8SFWzhnA0HoyvyivuVqD3zptmIirt/nT1LI5ySnuwN0Iki0OPscB8 wkOtAFKK06BKd0q3AntxBYQRI5FEZjtRWNe+EmC5niVz4lVD9qvnwNXyLsOFAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUJlYZoqotwVL2E3mGqn7+/gc3W68wHwYDVR0j BBgwFoAUwreiiFmUfFKjh7tih2T5GqodBbkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zNDJBQjQ4REYyNEY0RDg1REFBNDlCREFCNzc2MDlFNURC NUIzNzcxMkNGRDlERTdBNUNFOUY5ODA3NjAxMEYyLzAvQzJCN0EyODg1OTk0N0M1 MkEzODdCQjYyODc2NEY5MUFBQTFEMDVCOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DMkI3QTI4ODU5OTQ3QzUyQTM4 N0JCNjI4NzY0RjkxQUFBMUQwNUI5LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMzQyQUI0OERGMjRGNEQ4NURBQTQ5QkRBQjc3NjA5RTVEQjVCMzc3MTJD RkQ5REU3QTVDRTlGOTgwNzYwMTBGMi8wLzMxMzMzODJlMzEzMTM3MmUzMTMzMzEy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMyMzMzOTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAinWD MA0GCSqGSIb3DQEBCwUAA4IBAQCTRFj3gAZgVF0lOs8lCQRKqHgIhWqWHgLxUPG/ uSVlu2ZNOhljCPJwYOnkBySfTkLD6oWjSfm51dcoyECCLkhzzypokjlRD/IxX6pA 52i5rOdmwAK04IkC3y3kfUmrBnvVRlmkEDlqms/zsBFq9EDJduNUA5b0LFMIMQns L+VKhwjf30/3jXfCbIgTCdRo2UxPW7v7blxpG4hQFkH3IMnq20RqQkyuoCyZ2nhe KSBd52ZwRyI7JYWCLIBvk+P7bgSpl3tgdg14v0n4d6O0p8GvQYVCLVUnq7ha3jD0 jNDc7KBJM2xGqTOABg58NSIQmYu8aV2dWVVK0ZLyzuuUh2Jh -----END CERTIFICATE-----Generated at Mon May 6 14:38:44 2024 by rpki-client on console-fra.rpki-client.org