$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/323830313a3162393a333a3a2f34382d3438203d3e20323732393532.roa File: 323830313a3162393a333a3a2f34382d3438203d3e20323732393532.roa (raw, json) Hash identifier: XYX+vIHjRTiqMWaXPlCX5u5a6yqoH+ffjf7wI7giRkk= Subject key identifier: 5D:EE:7B:1B:8C:16:BC:60:05:AA:DD:B9:C4:D8:C2:8B:1D:DE:87:EB Certificate issuer: /CN=721723EE6C96BAE63225C18652977F8E404DBD28 Certificate serial: 4AFBD0C1F08F858C4582C4E11F3DE8A06820E844 Authority key identifier: 72:17:23:EE:6C:96:BA:E6:32:25:C1:86:52:97:7F:8E:40:4D:BD:28 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/721723EE6C96BAE63225C18652977F8E404DBD28.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/323830313a3162393a333a3a2f34382d3438203d3e20323732393532.roa Signing time: Tue 04 Feb 2025 18:13:49 +0000 ROA not before: Tue 04 Feb 2025 18:08:49 +0000 ROA not after: Tue 03 Feb 2026 18:13:49 +0000 asID: 272952 IP address blocks: 2801:1b9:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/721723EE6C96BAE63225C18652977F8E404DBD28.crl rsync://repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/721723EE6C96BAE63225C18652977F8E404DBD28.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/721723EE6C96BAE63225C18652977F8E404DBD28.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 14 Apr 2025 09:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:fb:d0:c1:f0:8f:85:8c:45:82:c4:e1:1f:3d:e8:a0:68:20:e8:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=721723EE6C96BAE63225C18652977F8E404DBD28 Validity Not Before: Feb 4 18:08:49 2025 GMT Not After : Feb 3 18:13:49 2026 GMT Subject: CN=5DEE7B1B8C16BC6005AADDB9C4D8C28B1DDE87EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c7:03:4c:44:df:34:5d:47:f5:d9:52:c8:e3: 78:63:bc:54:94:51:d0:8f:83:6a:75:c9:f6:ad:4f: c7:7e:be:4c:33:53:77:bb:c6:be:f5:f6:bb:88:51: 5d:1a:f5:5a:88:81:44:25:71:4d:0f:9d:fe:11:5a: 0e:6a:26:90:29:e1:f8:61:8f:57:22:6d:a8:2e:8b: 41:6e:e9:40:bb:0b:58:29:95:07:2b:03:2e:30:1e: 45:64:62:1b:5a:a5:ae:75:41:22:04:ed:f9:88:55: 37:c2:1d:91:8d:c6:ab:5d:57:61:d8:cb:88:6e:8e: 65:9f:19:e9:11:60:cd:1f:a6:49:f0:2d:1a:cb:39: cd:69:f0:73:f2:84:a0:a3:48:13:0c:6e:8f:9d:a0: 6c:0a:51:6c:a1:ba:2c:5a:54:77:ff:6e:ac:3d:95: 9d:2f:a0:73:84:25:09:3c:6e:b7:b0:c2:ca:3d:8d: 49:f3:d8:f6:e7:8c:bd:dc:61:58:31:7b:f7:c9:59: fd:b2:ce:2d:65:e1:9f:e5:84:51:fc:d3:d5:9e:83: 02:4d:34:30:29:8a:e4:ff:80:8c:c0:d3:f0:cf:b3: 55:8e:b9:b2:15:4f:d3:cf:e1:a9:87:4f:6d:d9:e5: ad:ba:7b:09:19:2b:0a:d2:f2:7e:a0:bf:c4:12:3f: d2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:EE:7B:1B:8C:16:BC:60:05:AA:DD:B9:C4:D8:C2:8B:1D:DE:87:EB X509v3 Authority Key Identifier: keyid:72:17:23:EE:6C:96:BA:E6:32:25:C1:86:52:97:7F:8E:40:4D:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/721723EE6C96BAE63225C18652977F8E404DBD28.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/721723EE6C96BAE63225C18652977F8E404DBD28.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/323830313a3162393a333a3a2f34382d3438203d3e20323732393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2801:1b9:3::/48 Signature Algorithm: sha256WithRSAEncryption 9a:e3:b0:5f:71:78:e3:f0:dd:65:72:2d:a7:68:0b:d5:a7:d3: a8:62:a6:9a:8a:46:47:6d:df:f8:16:5b:99:60:68:7a:46:a4: e0:d1:c4:c5:2e:63:3d:00:2b:0c:0a:88:ad:c1:a1:45:1d:ce: 0e:80:41:8f:5b:00:5c:d4:8e:fc:12:51:0a:b9:7d:3b:48:6e: d2:50:d4:9c:2b:e0:94:bd:4c:6c:eb:ef:86:90:68:12:89:81: 74:b2:09:f6:74:77:75:69:68:25:b5:86:d7:d6:9b:2d:af:c4: f8:32:b3:63:36:b9:b6:36:d1:b4:4a:f1:2b:f1:55:2e:86:36: d8:a1:84:5b:93:17:68:c8:41:23:57:84:79:d7:52:85:8f:3c: 9e:27:80:20:fd:1a:3f:28:f8:10:4c:26:91:70:dc:db:fb:c8: ca:e0:05:39:df:bd:9b:61:75:0c:e1:58:4b:51:20:68:89:d4: f5:1c:6c:bb:b7:d9:03:f3:d5:67:ce:15:d6:34:7e:b5:bd:d7: 9b:c0:47:7f:24:b5:c3:2b:74:c1:ac:d6:5b:5e:fc:84:5e:99: c7:bf:3a:dc:06:ea:07:2f:82:eb:cd:b6:8b:bd:1a:bc:26:83: b8:9c:2b:33:d4:95:dc:7c:7c:bc:9f:80:6b:ff:bf:ac:93:71: ce:fd:0d:a6 -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgIUSvvQwfCPhYxFgsThHz3ooGgg6EQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzIxNzIzRUU2Qzk2QkFFNjMyMjVDMTg2NTI5NzdGOEU0 MDREQkQyODAeFw0yNTAyMDQxODA4NDlaFw0yNjAyMDMxODEzNDlaMDMxMTAvBgNV BAMTKDVERUU3QjFCOEMxNkJDNjAwNUFBRERCOUM0RDhDMjhCMURERTg3RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZxwNMRN80XUf12VLI43hjvFSU UdCPg2p1yfatT8d+vkwzU3e7xr719ruIUV0a9VqIgUQlcU0Pnf4RWg5qJpAp4fhh j1cibagui0Fu6UC7C1gplQcrAy4wHkVkYhtapa51QSIE7fmIVTfCHZGNxqtdV2HY y4hujmWfGekRYM0fpknwLRrLOc1p8HPyhKCjSBMMbo+doGwKUWyhuixaVHf/bqw9 lZ0voHOEJQk8brewwso9jUnz2PbnjL3cYVgxe/fJWf2yzi1l4Z/lhFH809WegwJN NDApiuT/gIzA0/DPs1WOubIVT9PP4amHT23Z5a26ewkZKwrS8n6gv8QSP9IFAgMB AAGjggLNMIICyTAdBgNVHQ4EFgQUXe57G4wWvGAFqt25xNjCix3eh+swHwYDVR0j BBgwFoAUchcj7myWuuYyJcGGUpd/jkBNvSgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy80QkEzN0E0NTlGMjkzQzMwMDM2MjE2QkI0NEZFOTlGQzE0 N0NEOEJGRkRFMkZGM0M1RTY3NTM3Mjg3NDgxRTYwLzAvNzIxNzIzRUU2Qzk2QkFF NjMyMjVDMTg2NTI5NzdGOEU0MDREQkQyOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83MjE3MjNFRTZDOTZCQUU2MzIy NUMxODY1Mjk3N0Y4RTQwNERCRDI4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNEJBMzdBNDU5RjI5M0MzMDAzNjIxNkJCNDRGRTk5RkMxNDdDRDhCRkZE RTJGRjNDNUU2NzUzNzI4NzQ4MUU2MC8wLzMyMzgzMDMxM2EzMTYyMzkzYTMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzNzMyMzkzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKAEB uQADMA0GCSqGSIb3DQEBCwUAA4IBAQCa47BfcXjj8N1lci2naAvVp9OoYqaaikZH bd/4FluZYGh6RqTg0cTFLmM9ACsMCoitwaFFHc4OgEGPWwBc1I78ElEKuX07SG7S UNScK+CUvUxs6++GkGgSiYF0sgn2dHd1aWgltYbX1pstr8T4MrNjNrm2NtG0SvEr 8VUuhjbYoYRbkxdoyEEjV4R511KFjzyeJ4Ag/Ro/KPgQTCaRcNzb+8jK4AU5372b YXUM4VhLUSBoidT1HGy7t9kD89VnzhXWNH61vdebwEd/JLXDK3TBrNZbXvyEXpnH vzrcBuoHL4LrzbaLvRq8JoO4nCsz1JXcfHy8n4Br/7+sk3HO/Q2m -----END CERTIFICATE-----Generated at Fri Apr 11 05:32:21 2025 by rpki-client