$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4C952DC0ACFFF908C6FA14C8A7AAE8B6331B30DAE0410F148E94CF1B47A832D9/0/3137302e3234352e3138382e302f32322d3234203d3e203238333934.roa File: 3137302e3234352e3138382e302f32322d3234203d3e203238333934.roa (raw, json) Hash identifier: kjGxhRSboyoxdVbo+qay7VTDzNqCoExfsGaSS4CipDA= Subject key identifier: B3:48:EC:47:74:F1:3B:A5:66:88:8A:D3:F5:13:35:DC:A0:5E:55:92 Certificate issuer: /CN=FF591A13316346A2BCEF07F6DF8D44DD0250F841 Certificate serial: 124AF06259215C5D9C525E900A72C135BB75153B Authority key identifier: FF:59:1A:13:31:63:46:A2:BC:EF:07:F6:DF:8D:44:DD:02:50:F8:41 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF591A13316346A2BCEF07F6DF8D44DD0250F841.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4C952DC0ACFFF908C6FA14C8A7AAE8B6331B30DAE0410F148E94CF1B47A832D9/0/3137302e3234352e3138382e302f32322d3234203d3e203238333934.roa Signing time: Mon 21 Jul 2025 19:25:59 +0000 ROA not before: Mon 21 Jul 2025 19:20:59 +0000 ROA not after: Mon 20 Jul 2026 19:25:59 +0000 asID: 28394 IP address blocks: 170.245.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/4C952DC0ACFFF908C6FA14C8A7AAE8B6331B30DAE0410F148E94CF1B47A832D9/0/FF591A13316346A2BCEF07F6DF8D44DD0250F841.crl rsync://repository.lacnic.net/rpki/lacnic/4C952DC0ACFFF908C6FA14C8A7AAE8B6331B30DAE0410F148E94CF1B47A832D9/0/FF591A13316346A2BCEF07F6DF8D44DD0250F841.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF591A13316346A2BCEF07F6DF8D44DD0250F841.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 05 Aug 2025 13:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:4a:f0:62:59:21:5c:5d:9c:52:5e:90:0a:72:c1:35:bb:75:15:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF591A13316346A2BCEF07F6DF8D44DD0250F841 Validity Not Before: Jul 21 19:20:59 2025 GMT Not After : Jul 20 19:25:59 2026 GMT Subject: CN=B348EC4774F13BA566888AD3F51335DCA05E5592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5d:f1:c8:f8:89:48:30:a4:4a:a0:20:24:44: 53:79:9a:d2:06:2f:52:e0:db:34:20:fb:43:b1:19: 67:cd:f9:04:a9:3e:07:e5:6f:bc:47:e2:f5:bd:a6: 2d:11:15:2c:13:b9:5c:a9:a1:ed:75:a5:34:42:f3: 5d:69:6a:42:ce:d5:e8:7e:33:65:16:e5:4c:00:b5: 0a:c4:06:6e:d3:d1:75:92:00:f5:d0:36:b2:f6:0e: 39:1b:16:70:e2:af:96:66:86:ec:49:7d:c3:c5:c2: cb:5a:fa:f2:cc:59:53:4d:08:32:7d:29:dd:d6:1e: 98:0b:95:f0:01:79:35:d2:95:15:e3:df:16:eb:f8: a5:a1:14:97:86:1f:91:90:9f:f0:10:e8:7f:5a:11: 65:07:a9:1b:7d:48:65:a7:0f:c9:8f:eb:a8:d4:c6: 0b:f6:46:a9:f7:e1:92:ba:73:90:fb:56:92:b5:ef: b2:a1:32:e0:87:38:b1:9a:91:6d:04:56:c4:7f:cd: 26:d9:ff:bc:58:e1:35:2d:17:04:3b:71:b4:4b:6e: a8:f3:19:f2:67:fd:4f:3a:aa:35:f6:dd:84:46:3e: a3:7d:d2:6a:67:9a:c5:dd:c8:49:7e:49:0f:33:79: 64:e2:eb:25:fc:ed:9b:b5:31:bf:6e:df:e6:94:81: 87:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:48:EC:47:74:F1:3B:A5:66:88:8A:D3:F5:13:35:DC:A0:5E:55:92 X509v3 Authority Key Identifier: keyid:FF:59:1A:13:31:63:46:A2:BC:EF:07:F6:DF:8D:44:DD:02:50:F8:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/4C952DC0ACFFF908C6FA14C8A7AAE8B6331B30DAE0410F148E94CF1B47A832D9/0/FF591A13316346A2BCEF07F6DF8D44DD0250F841.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF591A13316346A2BCEF07F6DF8D44DD0250F841.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4C952DC0ACFFF908C6FA14C8A7AAE8B6331B30DAE0410F148E94CF1B47A832D9/0/3137302e3234352e3138382e302f32322d3234203d3e203238333934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.245.188.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:13:b3:07:cc:6f:67:8a:18:b5:37:d3:ba:a4:06:f9:f3:6c: 5c:0f:ba:44:0a:d9:2b:42:0c:3d:29:fb:c0:3e:88:36:e6:1c: 7e:3d:1f:67:85:a4:c9:67:39:dc:f2:f7:b0:d3:0f:f8:4f:7e: 3f:7e:b8:fc:00:20:e3:05:8b:83:42:64:b5:de:ec:05:e2:e6: f9:de:e3:44:24:64:53:50:47:bb:cb:db:a2:32:0b:46:df:7a: 29:4f:78:35:e0:2a:24:0c:e5:e3:c5:6f:fd:24:f3:4c:06:a1: 9d:cc:7e:a8:4c:6f:cc:fa:68:9a:68:9e:9f:3a:15:15:99:c6: f9:3b:ba:db:0c:f9:2f:59:97:07:b3:85:21:be:6b:99:03:31: a0:29:8c:10:aa:fe:a8:e4:ac:6c:aa:14:52:9c:9f:11:d5:17: 85:59:13:12:2a:2a:d0:7a:72:26:65:c6:b8:a2:f4:af:7d:bc: 0e:6c:5c:c7:ef:e8:e7:c4:d2:2d:91:68:71:99:09:eb:b4:c7: 1f:11:eb:50:33:44:27:b0:27:c3:69:dc:3f:e7:34:7d:92:f8: 8a:78:9e:c9:e2:6b:62:da:de:61:77:00:d2:d5:d7:70:3e:e7: 89:72:fe:3d:c7:cf:c9:4f:02:50:52:f3:4b:fb:d8:9d:50:5f: d9:b8:79:25 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUEkrwYlkhXF2cUl6QCnLBNbt1FTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY1OTFBMTMzMTYzNDZBMkJDRUYwN0Y2REY4RDQ0REQw MjUwRjg0MTAeFw0yNTA3MjExOTIwNTlaFw0yNjA3MjAxOTI1NTlaMDMxMTAvBgNV BAMTKEIzNDhFQzQ3NzRGMTNCQTU2Njg4OEFEM0Y1MTMzNURDQTA1RTU1OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPXfHI+IlIMKRKoCAkRFN5mtIG L1Lg2zQg+0OxGWfN+QSpPgflb7xH4vW9pi0RFSwTuVypoe11pTRC811pakLO1eh+ M2UW5UwAtQrEBm7T0XWSAPXQNrL2DjkbFnDir5ZmhuxJfcPFwsta+vLMWVNNCDJ9 Kd3WHpgLlfABeTXSlRXj3xbr+KWhFJeGH5GQn/AQ6H9aEWUHqRt9SGWnD8mP66jU xgv2Rqn34ZK6c5D7VpK177KhMuCHOLGakW0EVsR/zSbZ/7xY4TUtFwQ7cbRLbqjz GfJn/U86qjX23YRGPqN90mpnmsXdyEl+SQ8zeWTi6yX87Zu1Mb9u3+aUgYdNAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUs0jsR3TxO6VmiIrT9RM13KBeVZIwHwYDVR0j BBgwFoAU/1kaEzFjRqK87wf2341E3QJQ+EEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy80Qzk1MkRDMEFDRkZGOTA4QzZGQTE0QzhBN0FBRThCNjMz MUIzMERBRTA0MTBGMTQ4RTk0Q0YxQjQ3QTgzMkQ5LzAvRkY1OTFBMTMzMTYzNDZB MkJDRUYwN0Y2REY4RDQ0REQwMjUwRjg0MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GRjU5MUExMzMxNjM0NkEyQkNF RjA3RjZERjhENDRERDAyNTBGODQxLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNEM5NTJEQzBBQ0ZGRjkwOEM2RkExNEM4QTdBQUU4QjYzMzFCMzBEQUUw NDEwRjE0OEU5NENGMUI0N0E4MzJEOS8wLzMxMzczMDJlMzIzNDM1MmUzMTM4Mzgy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM4MzMzOTM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqvW8 MA0GCSqGSIb3DQEBCwUAA4IBAQBME7MHzG9nihi1N9O6pAb582xcD7pECtkrQgw9 KfvAPog25hx+PR9nhaTJZznc8vew0w/4T34/frj8ACDjBYuDQmS13uwF4ub53uNE JGRTUEe7y9uiMgtG33opT3g14CokDOXjxW/9JPNMBqGdzH6oTG/M+miaaJ6fOhUV mcb5O7rbDPkvWZcHs4UhvmuZAzGgKYwQqv6o5KxsqhRSnJ8R1ReFWRMSKirQenIm Zca4ovSvfbwObFzH7+jnxNItkWhxmQnrtMcfEetQM0QnsCfDadw/5zR9kviKeJ7J 4mti2t5hdwDS1ddwPueJcv49x8/JTwJQUvNL+9idUF/ZuHkl -----END CERTIFICATE-----Generated at Fri Aug 1 18:24:25 2025 by rpki-client