$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/323830333a623230303a3a2f33322d3438203d3e203532323431.roa File: 323830333a623230303a3a2f33322d3438203d3e203532323431.roa (raw, json) Hash identifier: 3On1XVpEl3GN2nuqEyHkkVcnUfGWvNLDTKqn000MRF0= Subject key identifier: 60:12:8C:8E:B4:14:98:7D:FC:1B:ED:23:37:FC:2D:51:1D:26:EE:AB Certificate issuer: /CN=D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B Certificate serial: 6858880FA5EE811B1D7BCACFE09FDD34D4CEF990 Authority key identifier: D7:A4:86:F4:E8:E3:2E:BB:7C:A3:2A:25:A9:EF:E1:07:EF:5F:B2:5B Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/323830333a623230303a3a2f33322d3438203d3e203532323431.roa Signing time: Tue 04 Feb 2025 18:47:49 +0000 ROA not before: Tue 04 Feb 2025 18:42:49 +0000 ROA not after: Tue 03 Feb 2026 18:47:49 +0000 asID: 52241 IP address blocks: 2803:b200::/32 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B.crl rsync://repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 13 Apr 2025 04:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:58:88:0f:a5:ee:81:1b:1d:7b:ca:cf:e0:9f:dd:34:d4:ce:f9:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B Validity Not Before: Feb 4 18:42:49 2025 GMT Not After : Feb 3 18:47:49 2026 GMT Subject: CN=60128C8EB414987DFC1BED2337FC2D511D26EEAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3a:4f:8c:b2:d7:f6:4c:3b:97:9f:ac:b2:5d: a0:c1:7b:6c:bd:80:89:e6:4f:0e:cc:56:ef:31:cd: de:24:bb:5b:b1:fa:24:71:8a:38:10:50:9d:9b:bf: 8d:94:24:56:18:0a:6c:c0:f8:6a:b4:e9:30:99:d7: 3b:bd:90:ba:2b:9b:8a:22:1d:33:5f:de:57:7d:bd: fd:cd:84:d5:50:e5:f0:02:3d:2f:3b:6b:12:03:19: 9d:f5:f9:ca:f4:a0:5e:6f:dd:e1:dd:9f:b2:cc:5e: b8:55:83:3b:1c:58:3b:f4:ab:46:03:35:ed:d8:26: c0:28:ef:f1:85:f9:fe:0a:d5:8d:25:d0:a8:b4:eb: bf:f0:d9:b5:0a:6c:48:20:9b:fb:61:bd:a2:48:48: f5:b3:6f:33:19:db:77:39:55:8e:9f:cf:f4:6f:46: ee:b1:5d:3e:d2:bd:6d:50:bc:6e:a9:94:60:fd:05: c7:f2:28:2b:d9:bf:ac:14:4c:32:0d:62:81:7c:3c: bd:cf:3c:19:1f:81:ac:5a:01:7f:a9:1a:0a:a5:03: 61:68:13:dc:55:32:ad:1a:08:c0:d9:98:50:ef:08: 0d:b5:a1:08:16:de:ce:83:54:97:95:3a:07:6c:79: 9c:62:0e:62:94:d3:6a:d2:66:f7:d3:be:10:e5:33: 64:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:12:8C:8E:B4:14:98:7D:FC:1B:ED:23:37:FC:2D:51:1D:26:EE:AB X509v3 Authority Key Identifier: keyid:D7:A4:86:F4:E8:E3:2E:BB:7C:A3:2A:25:A9:EF:E1:07:EF:5F:B2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/323830333a623230303a3a2f33322d3438203d3e203532323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:b200::/32 Signature Algorithm: sha256WithRSAEncryption 85:21:87:91:b0:11:a3:69:8f:df:5c:39:ed:11:cf:7c:73:a2: 85:f8:6b:9d:94:6a:28:b9:8a:7f:7c:70:8f:13:b6:59:e6:2a: ee:47:cb:ee:3f:0c:2f:2a:7d:6d:bc:c5:11:49:51:64:55:1a: 6f:a9:e4:86:3d:a0:7c:2f:04:83:93:ab:5a:76:b3:1e:11:8f: 3d:a6:f1:46:87:0d:7f:a3:28:ce:99:c6:83:31:1d:7c:35:b5: fb:40:fe:53:e5:a0:46:d8:ec:68:09:a0:b4:62:cb:72:47:0a: 14:00:ba:c8:52:7d:2c:05:b8:1b:86:a9:0b:00:dc:a3:c6:d1: 0a:d9:b2:dc:0a:4c:45:94:46:20:6a:85:31:e3:f7:42:4f:49: 3c:76:79:28:ac:25:9a:af:d8:c1:bb:75:b3:ad:b4:55:34:a1: f6:3f:cb:81:06:98:19:71:03:4f:42:72:78:11:8d:fb:1c:e4: f4:75:4d:1d:7b:31:27:7d:58:9a:d4:49:81:53:4c:e9:23:57: 20:c3:24:1c:6a:56:d3:e1:f3:e9:97:23:9a:94:71:6a:cb:c0: c2:28:42:5d:c4:b6:31:58:98:5a:91:7f:d4:e4:84:b6:77:54: 3d:70:ca:7f:2a:13:ad:58:66:e9:ef:55:1f:0d:63:ec:a1:d2: 8d:21:51:07 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIUaFiID6XugRsde8rP4J/dNNTO+ZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdBNDg2RjRFOEUzMkVCQjdDQTMyQTI1QTlFRkUxMDdF RjVGQjI1QjAeFw0yNTAyMDQxODQyNDlaFw0yNjAyMDMxODQ3NDlaMDMxMTAvBgNV BAMTKDYwMTI4QzhFQjQxNDk4N0RGQzFCRUQyMzM3RkMyRDUxMUQyNkVFQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuOk+Mstf2TDuXn6yyXaDBe2y9 gInmTw7MVu8xzd4ku1ux+iRxijgQUJ2bv42UJFYYCmzA+Gq06TCZ1zu9kLorm4oi HTNf3ld9vf3NhNVQ5fACPS87axIDGZ31+cr0oF5v3eHdn7LMXrhVgzscWDv0q0YD Ne3YJsAo7/GF+f4K1Y0l0Ki067/w2bUKbEggm/thvaJISPWzbzMZ23c5VY6fz/Rv Ru6xXT7SvW1QvG6plGD9BcfyKCvZv6wUTDINYoF8PL3PPBkfgaxaAX+pGgqlA2Fo E9xVMq0aCMDZmFDvCA21oQgW3s6DVJeVOgdseZxiDmKU02rSZvfTvhDlM2T1AgMB AAGjggLHMIICwzAdBgNVHQ4EFgQUYBKMjrQUmH38G+0jN/wtUR0m7qswHwYDVR0j BBgwFoAU16SG9OjjLrt8oyolqe/hB+9fslswDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zNjUwRDU5QzE0RDI4MjQxOUMxRkZDNkQ1MzRBRDBCNDYw MDY5ODA3NzIzNTVBMjFENTg3MTAyNUY4MkM5ODgzLzAvRDdBNDg2RjRFOEUzMkVC QjdDQTMyQTI1QTlFRkUxMDdFRjVGQjI1Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EN0E0ODZGNEU4RTMyRUJCN0NB MzJBMjVBOUVGRTEwN0VGNUZCMjVCLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMzY1MEQ1OUMxNEQyODI0MTlDMUZGQzZENTM0QUQwQjQ2MDA2OTgwNzcy MzU1QTIxRDU4NzEwMjVGODJDOTg4My8wLzMyMzgzMDMzM2E2MjMyMzAzMDNhM2Ey ZjMzMzIyZDM0MzgyMDNkM2UyMDM1MzIzMjM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA7IAMA0G CSqGSIb3DQEBCwUAA4IBAQCFIYeRsBGjaY/fXDntEc98c6KF+GudlGoouYp/fHCP E7ZZ5iruR8vuPwwvKn1tvMURSVFkVRpvqeSGPaB8LwSDk6tadrMeEY89pvFGhw1/ oyjOmcaDMR18NbX7QP5T5aBG2OxoCaC0YstyRwoUALrIUn0sBbgbhqkLANyjxtEK 2bLcCkxFlEYgaoUx4/dCT0k8dnkorCWar9jBu3WzrbRVNKH2P8uBBpgZcQNPQnJ4 EY37HOT0dU0dezEnfVia1EmBU0zpI1cgwyQcalbT4fPplyOalHFqy8DCKEJdxLYx WJhakX/U5IS2d1Q9cMp/KhOtWGbp71UfDWPsodKNIVEH -----END CERTIFICATE-----Generated at Wed Apr 9 12:20:31 2025 by rpki-client