$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a323a3a2f34382d3438203d3e20323732393039.roa File: 323830313a3161393a323a3a2f34382d3438203d3e20323732393039.roa (raw, json) Hash identifier: NpaYWsDHkg/qzFR3K2MmC3aw/0KJzlpXZde4nJfF/9U= Subject key identifier: A6:17:00:76:5A:F7:B7:B0:97:C2:D9:85:13:6E:44:FA:A7:7E:E8:2F Certificate issuer: /CN=BDDC3BF7FCA3B086A7E32760A12D6D60036CC131 Certificate serial: 75BF5D476F8719427FA5D005732B3F8EBE6EEB19 Authority key identifier: BD:DC:3B:F7:FC:A3:B0:86:A7:E3:27:60:A1:2D:6D:60:03:6C:C1:31 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a323a3a2f34382d3438203d3e20323732393039.roa Signing time: Tue 05 Mar 2024 17:44:22 +0000 ROA not before: Tue 05 Mar 2024 17:39:22 +0000 ROA not after: Tue 04 Mar 2025 17:44:22 +0000 asID: 272909 IP address blocks: 2801:1a9:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.crl rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Nov 2024 23:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:bf:5d:47:6f:87:19:42:7f:a5:d0:05:73:2b:3f:8e:be:6e:eb:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDDC3BF7FCA3B086A7E32760A12D6D60036CC131 Validity Not Before: Mar 5 17:39:22 2024 GMT Not After : Mar 4 17:44:22 2025 GMT Subject: CN=A61700765AF7B7B097C2D985136E44FAA77EE82F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8a:96:41:bb:c4:21:c9:db:b5:9b:13:2e:4d: b6:c3:bf:8e:3d:8f:30:ad:3e:67:7b:f5:d8:7d:41: a9:87:fe:ec:1f:78:26:e6:0d:37:27:ed:c0:70:a4: af:ba:fa:21:de:cd:e1:f6:83:9f:a1:3d:20:fa:6e: b9:2a:d8:ef:1a:0c:71:e6:ca:b2:44:42:8a:02:b7: d0:a7:60:ce:cb:fc:89:c3:12:52:c7:c8:2f:d8:42: 49:1f:9a:82:3b:96:c6:d3:8d:f6:f7:4c:0b:af:31: e6:43:47:40:aa:fd:9f:80:1d:4a:3d:00:48:36:d5: bf:eb:6a:63:37:ed:93:a7:17:cf:c1:16:75:b1:55: 49:12:88:ac:d9:e3:56:53:0d:2a:01:57:d0:03:2b: 81:23:00:5d:c9:ae:57:d6:f3:e9:91:e3:7c:c3:f5: f3:f5:9f:c1:f9:53:8a:3c:d6:b0:48:89:12:2b:4b: 43:9b:70:c5:5a:9e:95:23:c0:99:21:10:67:3e:98: 5c:71:2b:03:cf:7f:f4:38:0c:f4:df:d3:2a:7b:af: 33:6e:db:7b:75:a3:42:b5:31:8f:5e:25:e6:91:21: 9a:f1:4c:1c:48:03:07:28:3a:87:2e:bc:d1:a3:cd: f3:89:75:af:72:c2:ac:d1:17:27:be:49:bc:07:a0: f6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:17:00:76:5A:F7:B7:B0:97:C2:D9:85:13:6E:44:FA:A7:7E:E8:2F X509v3 Authority Key Identifier: keyid:BD:DC:3B:F7:FC:A3:B0:86:A7:E3:27:60:A1:2D:6D:60:03:6C:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a323a3a2f34382d3438203d3e20323732393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2801:1a9:2::/48 Signature Algorithm: sha256WithRSAEncryption 13:52:ba:48:06:ac:61:e7:e7:0f:2c:2c:b4:cb:5c:97:4e:63: 15:bf:d3:81:b4:84:58:81:dc:70:6c:cc:03:c8:f2:0d:3a:c9: b0:af:cf:49:2e:0f:30:88:36:40:53:09:b7:d6:89:89:ac:0b: 80:22:ac:1a:64:cb:fa:ba:90:25:b5:26:6d:e7:d4:5e:f5:cd: b2:76:83:7e:33:a1:db:28:a2:42:d4:e8:60:a1:ed:94:f2:b4: 37:a4:cd:3d:4d:53:c1:6e:99:2d:c2:5a:f3:94:97:7a:9e:fd: d0:41:f5:a7:08:0d:f9:9a:82:af:d0:1d:a3:27:44:c6:32:b2: 7f:2f:0f:1c:19:ef:e3:da:c3:84:30:f9:36:42:0f:6e:21:f3: e8:09:15:8a:28:52:ff:96:c4:1e:94:96:c7:0a:06:a9:0c:4b: dd:87:3a:82:1a:d4:d9:aa:5e:34:91:81:84:24:e3:49:2b:8d: 29:c2:43:1d:c1:18:5e:9d:a1:39:53:db:55:c9:8a:02:72:d9: bd:c9:bd:39:78:6a:51:9e:44:e3:07:86:c5:7c:b4:ce:57:c0: 7d:b8:c1:72:ee:82:4a:4d:9f:22:6b:d4:33:db:a0:86:06:4d: f8:1f:d4:60:c2:4d:0f:7a:10:3b:b0:84:98:12:56:2a:6a:40: 35:e3:ec:67 -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgIUdb9dR2+HGUJ/pdAFcys/jr5u6xkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkREQzNCRjdGQ0EzQjA4NkE3RTMyNzYwQTEyRDZENjAw MzZDQzEzMTAeFw0yNDAzMDUxNzM5MjJaFw0yNTAzMDQxNzQ0MjJaMDMxMTAvBgNV BAMTKEE2MTcwMDc2NUFGN0I3QjA5N0MyRDk4NTEzNkU0NEZBQTc3RUU4MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ipZBu8Qhydu1mxMuTbbDv449 jzCtPmd79dh9QamH/uwfeCbmDTcn7cBwpK+6+iHezeH2g5+hPSD6brkq2O8aDHHm yrJEQooCt9CnYM7L/InDElLHyC/YQkkfmoI7lsbTjfb3TAuvMeZDR0Cq/Z+AHUo9 AEg21b/ramM37ZOnF8/BFnWxVUkSiKzZ41ZTDSoBV9ADK4EjAF3JrlfW8+mR43zD 9fP1n8H5U4o81rBIiRIrS0ObcMVanpUjwJkhEGc+mFxxKwPPf/Q4DPTf0yp7rzNu 23t1o0K1MY9eJeaRIZrxTBxIAwcoOocuvNGjzfOJda9ywqzRFye+SbwHoPaBAgMB AAGjggLNMIICyTAdBgNVHQ4EFgQUphcAdlr3t7CXwtmFE25E+qd+6C8wHwYDVR0j BBgwFoAUvdw79/yjsIan4ydgoS1tYANswTEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy80REYzNzk5RTlGQzQ5MURCM0FGRTcwQjVFQzZBQzcyMkVG MzQxNzY5NDM4RDA0QUQ1ODBFRkNENzZBOEQwM0YyLzAvQkREQzNCRjdGQ0EzQjA4 NkE3RTMyNzYwQTEyRDZENjAwMzZDQzEzMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CRERDM0JGN0ZDQTNCMDg2QTdF MzI3NjBBMTJENkQ2MDAzNkNDMTMxLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNERGMzc5OUU5RkM0OTFEQjNBRkU3MEI1RUM2QUM3MjJFRjM0MTc2OTQz OEQwNEFENTgwRUZDRDc2QThEMDNGMi8wLzMyMzgzMDMxM2EzMTYxMzkzYTMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzNzMyMzkzMDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKAEB qQACMA0GCSqGSIb3DQEBCwUAA4IBAQATUrpIBqxh5+cPLCy0y1yXTmMVv9OBtIRY gdxwbMwDyPINOsmwr89JLg8wiDZAUwm31omJrAuAIqwaZMv6upAltSZt59Re9c2y doN+M6HbKKJC1Ohgoe2U8rQ3pM09TVPBbpktwlrzlJd6nv3QQfWnCA35moKv0B2j J0TGMrJ/Lw8cGe/j2sOEMPk2Qg9uIfPoCRWKKFL/lsQelJbHCgapDEvdhzqCGtTZ ql40kYGEJONJK40pwkMdwRhenaE5U9tVyYoCctm9yb05eGpRnkTjB4bFfLTOV8B9 uMFy7oJKTZ8ia9Qz26CGBk34H9Rgwk0PehA7sISYElYqakA14+xn -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:22 2024 by rpki-client on console-ams.rpki-client.org