$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4C06A3ADEB087B55AE44DCC0734CACC44857784EF58E633A7A10DE1FF2B7B4BE/0/3137302e3233392e38382e302f32322d3234203d3e20323632323239.roa File: 3137302e3233392e38382e302f32322d3234203d3e20323632323239.roa (raw, json) Hash identifier: NPzTG6BBY6cWiQhgufnbqF9vmDZY84hyr/NbVssWTNg= Subject key identifier: D9:E3:8B:0F:3D:08:25:17:CE:87:D9:3A:80:23:DD:27:59:F6:04:1B Certificate issuer: /CN=ECF5A899DE0FEE8D12C39B98D7EB8FA8D5DFDB6A Certificate serial: 799F07CBE272460F5417A5757E1399153D77FE07 Authority key identifier: EC:F5:A8:99:DE:0F:EE:8D:12:C3:9B:98:D7:EB:8F:A8:D5:DF:DB:6A Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ECF5A899DE0FEE8D12C39B98D7EB8FA8D5DFDB6A.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4C06A3ADEB087B55AE44DCC0734CACC44857784EF58E633A7A10DE1FF2B7B4BE/0/3137302e3233392e38382e302f32322d3234203d3e20323632323239.roa Signing time: Tue 04 Feb 2025 18:42:12 +0000 ROA not before: Tue 04 Feb 2025 18:37:12 +0000 ROA not after: Tue 03 Feb 2026 18:42:12 +0000 asID: 262229 IP address blocks: 170.239.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/4C06A3ADEB087B55AE44DCC0734CACC44857784EF58E633A7A10DE1FF2B7B4BE/0/ECF5A899DE0FEE8D12C39B98D7EB8FA8D5DFDB6A.crl rsync://repository.lacnic.net/rpki/lacnic/4C06A3ADEB087B55AE44DCC0734CACC44857784EF58E633A7A10DE1FF2B7B4BE/0/ECF5A899DE0FEE8D12C39B98D7EB8FA8D5DFDB6A.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ECF5A899DE0FEE8D12C39B98D7EB8FA8D5DFDB6A.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 10 Apr 2025 01:50:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:9f:07:cb:e2:72:46:0f:54:17:a5:75:7e:13:99:15:3d:77:fe:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECF5A899DE0FEE8D12C39B98D7EB8FA8D5DFDB6A Validity Not Before: Feb 4 18:37:12 2025 GMT Not After : Feb 3 18:42:12 2026 GMT Subject: CN=D9E38B0F3D082517CE87D93A8023DD2759F6041B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b9:71:57:d8:cc:cf:78:09:94:bc:83:dc:9d: 8c:7f:c0:da:60:39:16:10:f5:25:47:05:5e:b5:36: 62:92:cb:0c:00:b8:41:2d:b5:3f:e0:4b:92:8c:0f: 65:23:e3:e1:34:b5:e1:4b:ee:23:c2:c6:50:43:19: 1d:af:86:61:70:d5:75:cf:3d:8e:6f:f2:ad:fd:1f: c6:b4:c0:eb:0c:95:b1:f3:6a:a3:6b:3f:cb:a9:42: 2f:93:50:33:57:9b:85:cc:c6:3f:dd:8d:12:44:38: 13:cc:89:6f:23:63:ca:9e:6d:1a:ac:47:00:3f:7b: 60:10:a2:07:80:80:13:34:ad:61:9b:23:4c:0d:a8: 82:d8:b4:51:bb:a2:4f:4d:3a:be:20:bd:69:6e:5d: 80:b4:93:96:1a:bc:0f:d3:ff:dd:e0:66:22:96:3e: 78:4b:d2:08:85:bf:14:1e:ee:8b:2e:1e:64:8c:ee: d4:57:b9:3a:55:8c:8d:58:95:a9:92:df:52:35:f4: 9a:98:e1:01:87:4f:25:41:d0:d2:b9:bf:82:89:10: 47:b4:9a:bc:32:5f:8b:15:e7:9a:16:1b:56:af:d5: 7e:1c:34:78:0f:20:e8:ec:62:1d:e3:ad:ed:70:9e: 02:c2:24:87:38:b8:a1:31:46:c1:6f:9e:a0:b7:70: 06:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E3:8B:0F:3D:08:25:17:CE:87:D9:3A:80:23:DD:27:59:F6:04:1B X509v3 Authority Key Identifier: keyid:EC:F5:A8:99:DE:0F:EE:8D:12:C3:9B:98:D7:EB:8F:A8:D5:DF:DB:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/4C06A3ADEB087B55AE44DCC0734CACC44857784EF58E633A7A10DE1FF2B7B4BE/0/ECF5A899DE0FEE8D12C39B98D7EB8FA8D5DFDB6A.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ECF5A899DE0FEE8D12C39B98D7EB8FA8D5DFDB6A.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4C06A3ADEB087B55AE44DCC0734CACC44857784EF58E633A7A10DE1FF2B7B4BE/0/3137302e3233392e38382e302f32322d3234203d3e20323632323239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.239.88.0/22 Signature Algorithm: sha256WithRSAEncryption 04:97:88:95:0b:a3:d4:ab:c1:96:d7:85:8d:73:89:c9:a5:e8: a9:7b:46:4f:db:64:1e:6a:c5:3d:e1:d7:d7:d0:cc:e9:ea:95: ba:f1:b7:a2:43:8c:5e:ac:cb:6a:9c:f5:36:b9:a0:f0:6f:37: 7a:92:6c:76:03:88:46:85:e1:50:95:a8:fc:62:88:7a:e7:11: fa:06:2c:37:87:1d:a7:ba:b2:5b:2f:6e:5b:d3:2a:d1:04:ca: 96:ba:01:d5:21:76:b9:9c:d2:0e:88:c0:ad:de:5b:d3:75:a1: 88:6b:c8:b3:32:e9:17:f3:5e:4f:2d:96:00:03:81:c6:92:95: ef:93:76:27:a3:43:11:e9:bf:fa:50:f9:01:f7:a6:bb:b7:e4: 10:4d:a4:fe:c7:92:6f:e7:0a:fa:ee:cf:81:9e:34:44:21:f3: c6:85:2c:02:5b:d3:1a:57:62:17:8c:9b:02:53:45:ba:c4:06: d0:94:a1:37:3f:f1:28:d6:d5:d6:fd:fc:ad:08:1b:c6:00:d5: 25:bf:91:20:d3:d3:95:cc:4f:be:41:4b:de:ba:27:bc:ab:2d: 14:76:b0:ff:3a:07:ff:0f:4d:be:31:3c:a4:34:fc:aa:c9:48: 4b:a6:18:08:33:4b:f5:eb:d3:61:bf:cf:e1:de:f4:5c:4a:91: ce:6a:fe:9e -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUeZ8Hy+JyRg9UF6V1fhOZFT13/gcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUNGNUE4OTlERTBGRUU4RDEyQzM5Qjk4RDdFQjhGQThE NURGREI2QTAeFw0yNTAyMDQxODM3MTJaFw0yNjAyMDMxODQyMTJaMDMxMTAvBgNV BAMTKEQ5RTM4QjBGM0QwODI1MTdDRTg3RDkzQTgwMjNERDI3NTlGNjA0MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCquXFX2MzPeAmUvIPcnYx/wNpg ORYQ9SVHBV61NmKSywwAuEEttT/gS5KMD2Uj4+E0teFL7iPCxlBDGR2vhmFw1XXP PY5v8q39H8a0wOsMlbHzaqNrP8upQi+TUDNXm4XMxj/djRJEOBPMiW8jY8qebRqs RwA/e2AQogeAgBM0rWGbI0wNqILYtFG7ok9NOr4gvWluXYC0k5YavA/T/93gZiKW PnhL0giFvxQe7osuHmSM7tRXuTpVjI1YlamS31I19JqY4QGHTyVB0NK5v4KJEEe0 mrwyX4sV55oWG1av1X4cNHgPIOjsYh3jre1wngLCJIc4uKExRsFvnqC3cAZBAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQU2eOLDz0IJRfOh9k6gCPdJ1n2BBswHwYDVR0j BBgwFoAU7PWomd4P7o0Sw5uY1+uPqNXf22owDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy80QzA2QTNBREVCMDg3QjU1QUU0NERDQzA3MzRDQUNDNDQ4 NTc3ODRFRjU4RTYzM0E3QTEwREUxRkYyQjdCNEJFLzAvRUNGNUE4OTlERTBGRUU4 RDEyQzM5Qjk4RDdFQjhGQThENURGREI2QS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FQ0Y1QTg5OURFMEZFRThEMTJD MzlCOThEN0VCOEZBOEQ1REZEQjZBLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNEMwNkEzQURFQjA4N0I1NUFFNDREQ0MwNzM0Q0FDQzQ0ODU3Nzg0RUY1 OEU2MzNBN0ExMERFMUZGMkI3QjRCRS8wLzMxMzczMDJlMzIzMzM5MmUzODM4MmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjMyMzIzMjM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqu9Y MA0GCSqGSIb3DQEBCwUAA4IBAQAEl4iVC6PUq8GW14WNc4nJpeipe0ZP22QeasU9 4dfX0Mzp6pW68beiQ4xerMtqnPU2uaDwbzd6kmx2A4hGheFQlaj8Yoh65xH6Biw3 hx2nurJbL25b0yrRBMqWugHVIXa5nNIOiMCt3lvTdaGIa8izMukX815PLZYAA4HG kpXvk3Yno0MR6b/6UPkB96a7t+QQTaT+x5Jv5wr67s+BnjREIfPGhSwCW9MaV2IX jJsCU0W6xAbQlKE3P/Eo1tXW/fytCBvGANUlv5Eg09OVzE++QUveuie8qy0UdrD/ Ogf/D02+MTykNPyqyUhLphgIM0v169Nhv8/h3vRcSpHOav6e -----END CERTIFICATE-----Generated at Sun Apr 6 09:24:40 2025 by rpki-client