$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a313a3a2f34382d3438203d3e20323732393039.roa File: 323830313a3161393a313a3a2f34382d3438203d3e20323732393039.roa (raw, json) Hash identifier: MHwjKnPfFiWifCAARHkgAqmkoQtUP4/3oCj9tT/fC9I= Subject key identifier: 26:AC:C4:B0:4C:47:86:48:D4:E4:63:D0:DC:54:26:ED:49:EB:14:A4 Certificate issuer: /CN=BDDC3BF7FCA3B086A7E32760A12D6D60036CC131 Certificate serial: 7CD38B6DEFED1A7E4C38F2960D8F51BB17A219EB Authority key identifier: BD:DC:3B:F7:FC:A3:B0:86:A7:E3:27:60:A1:2D:6D:60:03:6C:C1:31 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a313a3a2f34382d3438203d3e20323732393039.roa Signing time: Tue 04 Feb 2025 18:40:38 +0000 ROA not before: Tue 04 Feb 2025 18:35:38 +0000 ROA not after: Tue 03 Feb 2026 18:40:38 +0000 asID: 272909 IP address blocks: 2801:1a9:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.crl rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d3:8b:6d:ef:ed:1a:7e:4c:38:f2:96:0d:8f:51:bb:17:a2:19:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDDC3BF7FCA3B086A7E32760A12D6D60036CC131 Validity Not Before: Feb 4 18:35:38 2025 GMT Not After : Feb 3 18:40:38 2026 GMT Subject: CN=26ACC4B04C478648D4E463D0DC5426ED49EB14A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4b:8b:49:48:04:e1:9e:b0:9c:d1:48:fa:27: 74:6f:37:0c:25:f7:0c:fe:5f:90:6d:31:0e:3c:46: 05:52:f2:f5:89:84:07:6e:1c:6d:d3:c6:94:5f:65: 21:a4:d4:66:ee:d5:70:84:24:7c:fd:09:09:a4:05: 59:5d:50:e3:f8:1a:38:5d:93:b5:a6:71:03:3c:b9: 2b:0e:af:34:41:b5:f2:56:ce:a4:10:58:62:00:eb: ec:f4:50:9b:a3:ad:03:e3:02:45:d7:ba:ae:a4:98: 19:90:14:29:8e:02:01:18:ea:44:91:d7:e4:b7:9b: 1b:ec:54:c7:56:c9:d7:92:6e:0d:74:a4:f4:9a:09: 5b:88:03:ff:e7:b4:e0:f0:1d:ae:58:7c:4f:b9:2a: 57:c2:12:d3:83:25:e2:fb:dc:24:b8:06:91:76:30: 89:6b:fe:49:57:79:a3:46:38:08:91:24:5a:63:9c: 0c:19:87:08:51:80:e2:48:22:07:04:5d:2a:78:f6: a5:cf:44:78:4f:b7:65:e8:e1:51:0a:3c:d7:2a:65: 10:46:8b:cc:82:2b:25:47:45:6a:11:e0:6f:2c:b6: 00:1d:32:c4:e6:bc:7b:6d:5f:7d:f8:85:ab:f9:c8: 91:fc:7d:1b:5d:85:13:8e:61:e4:01:36:09:c6:e9: 92:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:AC:C4:B0:4C:47:86:48:D4:E4:63:D0:DC:54:26:ED:49:EB:14:A4 X509v3 Authority Key Identifier: keyid:BD:DC:3B:F7:FC:A3:B0:86:A7:E3:27:60:A1:2D:6D:60:03:6C:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a313a3a2f34382d3438203d3e20323732393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2801:1a9:1::/48 Signature Algorithm: sha256WithRSAEncryption 48:8b:1f:2b:d8:7f:8f:93:3b:65:c5:0e:f0:ad:c2:c6:82:1d: d4:69:60:15:c6:bc:d5:a4:88:90:da:a0:96:d5:3b:4c:ee:af: 83:eb:4e:1b:ab:ea:4d:47:bb:9d:a9:fd:b8:37:05:26:28:c4: e4:26:1a:55:15:9a:91:52:33:19:60:ba:31:e7:bc:87:57:76: bb:2f:a3:ef:16:03:7f:dc:25:db:f6:19:87:73:0e:31:b1:38: 17:d5:53:d0:3c:66:e0:97:dd:e7:ea:f8:80:80:10:f2:b7:05: a6:52:b9:d8:7e:f2:49:9e:30:14:86:c6:76:ef:99:40:99:f8: c0:b8:f9:a6:17:8f:74:1c:7a:cc:89:6c:a7:f1:b5:55:db:5f: 24:62:c0:ee:a4:fa:63:9f:4e:00:94:0b:14:ed:b3:fc:67:95: 95:b6:7c:17:2b:7a:e6:90:10:f3:06:e8:03:d9:9a:59:04:4f: f0:06:1e:7e:a2:c9:37:89:98:55:e5:10:3e:ac:c8:b1:74:fc: 24:63:93:53:88:35:49:12:7f:88:ee:cc:d4:3f:3b:36:c9:74: 16:fd:89:d0:83:08:b8:e2:30:63:19:19:41:52:5b:63:e8:e5: df:10:32:7c:7f:35:40:d6:11:2d:0b:2e:2f:1f:a7:eb:b4:ad: 6c:f2:d8:20 -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgIUfNOLbe/tGn5MOPKWDY9RuxeiGeswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkREQzNCRjdGQ0EzQjA4NkE3RTMyNzYwQTEyRDZENjAw MzZDQzEzMTAeFw0yNTAyMDQxODM1MzhaFw0yNjAyMDMxODQwMzhaMDMxMTAvBgNV BAMTKDI2QUNDNEIwNEM0Nzg2NDhENEU0NjNEMERDNTQyNkVENDlFQjE0QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8S4tJSAThnrCc0Uj6J3RvNwwl 9wz+X5BtMQ48RgVS8vWJhAduHG3TxpRfZSGk1Gbu1XCEJHz9CQmkBVldUOP4Gjhd k7WmcQM8uSsOrzRBtfJWzqQQWGIA6+z0UJujrQPjAkXXuq6kmBmQFCmOAgEY6kSR 1+S3mxvsVMdWydeSbg10pPSaCVuIA//ntODwHa5YfE+5KlfCEtODJeL73CS4BpF2 MIlr/klXeaNGOAiRJFpjnAwZhwhRgOJIIgcEXSp49qXPRHhPt2Xo4VEKPNcqZRBG i8yCKyVHRWoR4G8stgAdMsTmvHttX334hav5yJH8fRtdhROOYeQBNgnG6ZJVAgMB AAGjggLNMIICyTAdBgNVHQ4EFgQUJqzEsExHhkjU5GPQ3FQm7UnrFKQwHwYDVR0j BBgwFoAUvdw79/yjsIan4ydgoS1tYANswTEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy80REYzNzk5RTlGQzQ5MURCM0FGRTcwQjVFQzZBQzcyMkVG MzQxNzY5NDM4RDA0QUQ1ODBFRkNENzZBOEQwM0YyLzAvQkREQzNCRjdGQ0EzQjA4 NkE3RTMyNzYwQTEyRDZENjAwMzZDQzEzMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CRERDM0JGN0ZDQTNCMDg2QTdF MzI3NjBBMTJENkQ2MDAzNkNDMTMxLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNERGMzc5OUU5RkM0OTFEQjNBRkU3MEI1RUM2QUM3MjJFRjM0MTc2OTQz OEQwNEFENTgwRUZDRDc2QThEMDNGMi8wLzMyMzgzMDMxM2EzMTYxMzkzYTMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzNzMyMzkzMDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKAEB qQABMA0GCSqGSIb3DQEBCwUAA4IBAQBIix8r2H+PkztlxQ7wrcLGgh3UaWAVxrzV pIiQ2qCW1TtM7q+D604bq+pNR7udqf24NwUmKMTkJhpVFZqRUjMZYLox57yHV3a7 L6PvFgN/3CXb9hmHcw4xsTgX1VPQPGbgl93n6viAgBDytwWmUrnYfvJJnjAUhsZ2 75lAmfjAuPmmF490HHrMiWyn8bVV218kYsDupPpjn04AlAsU7bP8Z5WVtnwXK3rm kBDzBugD2ZpZBE/wBh5+osk3iZhV5RA+rMixdPwkY5NTiDVJEn+I7szUPzs2yXQW /YnQgwi44jBjGRlBUltj6OXfEDJ8fzVA1hEtCy4vH6frtK1s8tgg -----END CERTIFICATE-----Generated at Sat Apr 5 08:06:47 2025 by rpki-client