$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3230312e3230382e302e302f31342d3234203d3e2038303438.roa File: 3230312e3230382e302e302f31342d3234203d3e2038303438.roa (raw, json) Hash identifier: qshq+rZrYwuJEvDBFU9i1NQEbj1EdFGQvdkms1c5xUU= Subject key identifier: 53:C4:E9:07:C6:20:32:7F:6D:1F:12:36:EC:3D:8C:C8:57:EA:DD:3E Certificate issuer: /CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4 Certificate serial: 618FFD5A367AE231A9970186B2BF8AA9D779BEA8 Authority key identifier: 9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3230312e3230382e302e302f31342d3234203d3e2038303438.roa Signing time: Tue 04 Feb 2025 18:55:36 +0000 ROA not before: Tue 04 Feb 2025 18:50:36 +0000 ROA not after: Tue 03 Feb 2026 18:55:36 +0000 asID: 8048 IP address blocks: 201.208.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.crl rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8f:fd:5a:36:7a:e2:31:a9:97:01:86:b2:bf:8a:a9:d7:79:be:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4 Validity Not Before: Feb 4 18:50:36 2025 GMT Not After : Feb 3 18:55:36 2026 GMT Subject: CN=53C4E907C620327F6D1F1236EC3D8CC857EADD3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b9:26:d0:2b:36:9e:92:c2:40:06:e1:f8:72: 7d:5d:9b:73:3c:8f:bf:35:ea:77:80:6f:61:56:3c: 96:a0:ec:56:fb:e3:6f:eb:f0:33:05:2d:b6:62:d1: 7f:89:14:0f:1f:f0:80:03:92:31:c5:b9:f3:97:30: 3e:e0:a0:50:a0:89:1c:08:d5:30:59:30:73:b3:94: 80:06:ff:70:b9:5a:dd:98:d4:a5:53:a8:f8:b9:ce: df:fe:1a:c3:67:a5:10:b4:ed:85:a8:6f:f7:dc:ad: 20:39:b4:61:de:cb:68:97:08:0e:c1:d2:b1:5b:c7: c5:52:04:bd:ef:e5:87:3f:45:6c:70:94:d5:4f:7e: 5d:a8:2d:5a:8c:7b:3a:6e:f4:76:27:cc:4a:d0:6d: 71:81:6c:98:b4:9b:2b:e1:89:3f:20:60:4a:55:35: 91:1e:c1:c0:21:9e:13:e1:c3:68:16:0d:b5:ab:6f: 32:7c:14:f1:71:04:90:b3:0c:33:63:cf:56:93:e0: d6:23:19:d5:b9:5d:f9:5c:a4:16:11:3f:a0:9f:8a: fd:d7:0c:c1:2e:c1:ac:e2:e9:fa:f2:0f:f5:38:fa: d8:a5:89:e6:ab:86:4a:05:d2:fc:63:a2:c6:f6:82: 3e:04:33:e6:91:a1:52:0a:03:02:35:e1:74:d2:f5: 20:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C4:E9:07:C6:20:32:7F:6D:1F:12:36:EC:3D:8C:C8:57:EA:DD:3E X509v3 Authority Key Identifier: keyid:9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3230312e3230382e302e302f31342d3234203d3e2038303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 201.208.0.0/14 Signature Algorithm: sha256WithRSAEncryption ae:ca:84:5b:67:44:ba:ae:f7:ef:7d:6f:0d:1e:57:b2:e2:7d: 81:a3:58:37:08:9f:99:e0:91:7f:83:64:a5:71:77:8d:2d:4d: 8c:0c:30:50:c1:a8:2c:f2:67:fb:2d:d3:d9:cc:4a:9a:cd:5b: 23:9d:a6:64:c0:a8:77:c9:65:3a:36:0d:40:f3:70:ec:ee:61: bf:15:1e:10:5e:c2:21:90:d3:94:75:36:b2:66:70:0d:25:cf: 22:e7:73:04:d3:95:fb:a1:31:dc:21:3e:19:4f:5f:1e:ea:5d: b3:68:c0:06:56:53:19:44:d0:9b:4d:81:8d:06:db:11:94:1e: 08:98:7a:28:83:bd:25:c4:ea:d5:16:dc:6b:b5:b5:cb:7a:d6: 7c:2a:02:b2:79:fa:99:d3:d8:00:63:72:0e:5e:ad:04:80:5a: 14:bc:dc:69:8e:a3:b3:dc:61:02:57:d0:23:c8:0f:6a:a8:88: 11:af:36:b3:ba:b6:89:8e:dd:61:a8:66:ca:c2:b1:27:9c:34: fa:e3:84:c8:2c:6d:71:98:7f:7d:a3:63:28:90:01:aa:a0:2a: 3c:03:93:5f:b4:8b:fa:26:c1:43:f7:92:9f:30:f4:f4:19:52: dc:5f:ba:50:19:26:df:ac:7a:1f:82:3c:0b:4c:57:05:ca:a2: e6:73:09:69 -----BEGIN CERTIFICATE----- MIIFuTCCBKGgAwIBAgIUYY/9WjZ64jGplwGGsr+Kqdd5vqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY1NkZDMjNBOEM1RkMwNjdCN0QwQkZENjA1QzBGNUEz M0QwMzZCNDAeFw0yNTAyMDQxODUwMzZaFw0yNjAyMDMxODU1MzZaMDMxMTAvBgNV BAMTKDUzQzRFOTA3QzYyMDMyN0Y2RDFGMTIzNkVDM0Q4Q0M4NTdFQUREM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAuSbQKzaeksJABuH4cn1dm3M8 j7816neAb2FWPJag7Fb742/r8DMFLbZi0X+JFA8f8IADkjHFufOXMD7goFCgiRwI 1TBZMHOzlIAG/3C5Wt2Y1KVTqPi5zt/+GsNnpRC07YWob/fcrSA5tGHey2iXCA7B 0rFbx8VSBL3v5Yc/RWxwlNVPfl2oLVqMezpu9HYnzErQbXGBbJi0myvhiT8gYEpV NZEewcAhnhPhw2gWDbWrbzJ8FPFxBJCzDDNjz1aT4NYjGdW5XflcpBYRP6Cfiv3X DMEuwazi6fryD/U4+tiliearhkoF0vxjosb2gj4EM+aRoVIKAwI14XTS9SD5AgMB AAGjggLDMIICvzAdBgNVHQ4EFgQUU8TpB8YgMn9tHxI27D2MyFfq3T4wHwYDVR0j BBgwFoAUn1b8I6jF/AZ7fQv9YFwPWjPQNrQwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy80M0NDNTcwNDIzRkFGODE2M0Q4NkNDMjFGMUJBMDNEODk1 MDJBRTlDMTI0RkVGODlBRjYxRjQwMkVBRUU4QjgzLzAvOUY1NkZDMjNBOEM1RkMw NjdCN0QwQkZENjA1QzBGNUEzM0QwMzZCNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85RjU2RkMyM0E4QzVGQzA2N0I3 RDBCRkQ2MDVDMEY1QTMzRDAzNkI0LmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNDNDQzU3MDQyM0ZBRjgxNjNEODZDQzIxRjFCQTAzRDg5NTAyQUU5QzEy NEZFRjg5QUY2MUY0MDJFQUVFOEI4My8wLzMyMzAzMTJlMzIzMDM4MmUzMDJlMzAy ZjMxMzQyZDMyMzQyMDNkM2UyMDM4MzAzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCydAwDQYJKoZI hvcNAQELBQADggEBAK7KhFtnRLqu9+99bw0eV7LifYGjWDcIn5ngkX+DZKVxd40t TYwMMFDBqCzyZ/st09nMSprNWyOdpmTAqHfJZTo2DUDzcOzuYb8VHhBewiGQ05R1 NrJmcA0lzyLncwTTlfuhMdwhPhlPXx7qXbNowAZWUxlE0JtNgY0G2xGUHgiYeiiD vSXE6tUW3Gu1tct61nwqArJ5+pnT2ABjcg5erQSAWhS83GmOo7PcYQJX0CPID2qo iBGvNrO6tomO3WGoZsrCsSecNPrjhMgsbXGYf32jYyiQAaqgKjwDk1+0i/omwUP3 kp8w9PQZUtxfulAZJt+seh+CPAtMVwXKouZzCWk= -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:59 2025 by rpki-client