$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3139302e3135302e3230302e302f32322d3234203d3e203237373733.roa File: 3139302e3135302e3230302e302f32322d3234203d3e203237373733.roa (raw, json) Hash identifier: 5n+sx+A4vaI1aBavkgVA1n8bcFoDyVqcSpytfgYvGwM= Subject key identifier: B2:B7:F0:A3:82:25:AD:1E:25:79:8A:28:D4:83:75:F2:4F:34:4F:C5 Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208 Certificate serial: 3AB4F357A16EC9CDBA51426D3315ADB9A5FAA4DB Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3139302e3135302e3230302e302f32322d3234203d3e203237373733.roa Signing time: Tue 04 Feb 2025 20:02:11 +0000 ROA not before: Tue 04 Feb 2025 19:57:11 +0000 ROA not after: Tue 03 Feb 2026 20:02:11 +0000 asID: 27773 IP address blocks: 190.150.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b4:f3:57:a1:6e:c9:cd:ba:51:42:6d:33:15:ad:b9:a5:fa:a4:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208 Validity Not Before: Feb 4 19:57:11 2025 GMT Not After : Feb 3 20:02:11 2026 GMT Subject: CN=B2B7F0A38225AD1E25798A28D48375F24F344FC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c9:fe:c2:5f:be:6b:cc:1c:fb:8a:ea:36:71: be:73:df:75:c0:70:e7:2d:29:c6:08:ca:8f:d1:99: fd:a2:0e:a2:a6:78:26:df:3d:21:27:47:13:d2:e5: 71:50:85:a5:a8:02:2e:3c:d8:ea:8a:b9:40:4c:97: 7c:40:6c:4c:ce:47:a1:97:89:df:9b:39:a7:46:dc: 72:7c:90:ea:ed:a8:fa:21:2f:a0:6f:1d:5d:65:46: 8c:c6:a6:f8:b2:3e:f6:33:4f:40:3a:88:6a:59:6d: d0:4f:a0:bd:bb:5f:29:9f:7e:d1:ba:ac:ab:d9:7b: 7e:3a:45:ee:58:87:ee:8b:7b:4d:b9:c6:fd:3f:ac: 0b:e5:47:c9:e9:d0:40:49:84:25:37:b1:17:91:2b: bc:a7:2d:9e:3b:a2:ce:ea:77:c9:5a:bb:18:cf:18: d8:27:cc:9f:a8:ab:cc:fe:26:32:0a:a1:30:54:c7: db:40:4c:ae:70:fd:a7:f6:3a:1e:9d:6d:db:0a:37: 6e:ca:0e:a5:46:81:65:53:fc:69:31:80:b3:20:b6: 73:cc:7f:79:97:15:98:cc:e5:75:3b:45:be:78:07: ec:0f:e2:76:49:04:6b:f6:0e:40:bc:35:6c:e2:76: 2d:05:3f:1b:7e:54:1d:40:37:98:05:13:0a:be:76: 21:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B7:F0:A3:82:25:AD:1E:25:79:8A:28:D4:83:75:F2:4F:34:4F:C5 X509v3 Authority Key Identifier: keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3139302e3135302e3230302e302f32322d3234203d3e203237373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 190.150.200.0/22 Signature Algorithm: sha256WithRSAEncryption a3:5e:43:4d:d4:3c:ad:c5:5a:a6:5b:85:aa:85:fb:ac:f8:5c: 28:21:e6:d2:43:38:78:77:86:d8:1c:f6:64:cc:55:d1:c6:3d: 1a:8f:e5:5d:c4:cc:e0:77:a0:7a:5c:85:1b:f7:a3:b4:8b:8b: 67:1a:a2:08:5b:c7:9c:4c:c5:37:a6:7a:bc:5a:06:8d:d8:bc: 97:66:99:56:d0:c2:4f:0e:60:95:0f:44:2c:fb:9e:92:40:a6: 2e:d6:eb:f1:a6:08:06:0e:24:df:92:56:ef:f6:a9:4b:e8:8f: 64:11:d9:a4:37:3c:5a:1b:5a:9f:a2:72:79:f0:42:4f:73:a0: 5e:05:c8:a2:53:6f:76:03:d9:9e:5c:c8:07:0e:7b:2b:cc:74: ed:36:48:98:bf:f2:14:99:30:39:3e:cd:8e:e9:db:f7:35:33: d6:7e:a4:76:eb:fd:4e:16:29:c6:91:d3:3c:4e:2e:23:fe:fe: 65:b5:ba:a8:8d:71:51:58:69:5f:d2:d0:06:da:e1:94:07:9d: 8a:8f:37:20:ab:26:22:29:33:73:51:7a:e9:eb:db:fd:63:1f: bd:c2:eb:c6:3c:55:cd:0a:be:85:eb:46:50:59:5e:c0:77:c3: 60:be:11:99:e0:48:b5:4c:ac:0f:1a:7a:52:ef:ef:7f:e9:09: a6:52:76:12 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUOrTzV6Fuyc26UUJtMxWtuaX6pNswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJDQ0JENjhFQjIyQzM3Qjg4NkQ4MUJERkM4QkE3N0NE NzMxMjIwODAeFw0yNTAyMDQxOTU3MTFaFw0yNjAyMDMyMDAyMTFaMDMxMTAvBgNV BAMTKEIyQjdGMEEzODIyNUFEMUUyNTc5OEEyOEQ0ODM3NUYyNEYzNDRGQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9yf7CX75rzBz7iuo2cb5z33XA cOctKcYIyo/Rmf2iDqKmeCbfPSEnRxPS5XFQhaWoAi482OqKuUBMl3xAbEzOR6GX id+bOadG3HJ8kOrtqPohL6BvHV1lRozGpviyPvYzT0A6iGpZbdBPoL27XymfftG6 rKvZe346Re5Yh+6Le025xv0/rAvlR8np0EBJhCU3sReRK7ynLZ47os7qd8lauxjP GNgnzJ+oq8z+JjIKoTBUx9tATK5w/af2Oh6dbdsKN27KDqVGgWVT/GkxgLMgtnPM f3mXFZjM5XU7Rb54B+wP4nZJBGv2DkC8NWzidi0FPxt+VB1AN5gFEwq+diFBAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUsrfwo4IlrR4leYoo1IN18k80T8UwHwYDVR0j BBgwFoAUm8y9aOsiw3uIbYG9/IunfNcxIggwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zQTVGMkY4N0QxMTc4NkZCM0ZDQURBQTA0MzQzMUVCMDEz Q0RCQUQwMDI0N0VEQjdBNjUwMkJGRkQ4QjRDQzI0LzAvOUJDQ0JENjhFQjIyQzM3 Qjg4NkQ4MUJERkM4QkE3N0NENzMxMjIwOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85QkNDQkQ2OEVCMjJDMzdCODg2 RDgxQkRGQzhCQTc3Q0Q3MzEyMjA4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvM0E1RjJGODdEMTE3ODZGQjNGQ0FEQUEwNDM0MzFFQjAxM0NEQkFEMDAy NDdFREI3QTY1MDJCRkZEOEI0Q0MyNC8wLzMxMzkzMDJlMzEzNTMwMmUzMjMwMzAy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM3MzczNzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvpbI MA0GCSqGSIb3DQEBCwUAA4IBAQCjXkNN1DytxVqmW4Wqhfus+FwoIebSQzh4d4bY HPZkzFXRxj0aj+VdxMzgd6B6XIUb96O0i4tnGqIIW8ecTMU3pnq8WgaN2LyXZplW 0MJPDmCVD0Qs+56SQKYu1uvxpggGDiTfklbv9qlL6I9kEdmkNzxaG1qfonJ58EJP c6BeBciiU292A9meXMgHDnsrzHTtNkiYv/IUmTA5Ps2O6dv3NTPWfqR26/1OFinG kdM8Ti4j/v5ltbqojXFRWGlf0tAG2uGUB52KjzcgqyYiKTNzUXrp69v9Yx+9wuvG PFXNCr6F60ZQWV7Ad8NgvhGZ4Ei1TKwPGnpS7+9/6QmmUnYS -----END CERTIFICATE-----Generated at Sat Apr 5 16:31:40 2025 by rpki-client