$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F75C5DD42F618DE30876EDFECA2D3910CEF8D1AF22AF4EC460290515F1A8887/0/3137302e3233332e3137362e302f32322d3234203d3e203532323638.roa File: 3137302e3233332e3137362e302f32322d3234203d3e203532323638.roa (raw, json) Hash identifier: oI8DEfOZz9Yo2khBgG/Ev1ZM8GcH50SbZtaOc51gmGU= Subject key identifier: 00:60:8A:AB:3E:0C:00:FC:CA:74:7D:D0:DD:A9:2D:B3:36:FA:E4:BF Certificate issuer: /CN=A79979549298C107B25C6C7E7FC2C7DBB295FC02 Certificate serial: 6DC83C75CE73302598B5096735485741EACBB71F Authority key identifier: A7:99:79:54:92:98:C1:07:B2:5C:6C:7E:7F:C2:C7:DB:B2:95:FC:02 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A79979549298C107B25C6C7E7FC2C7DBB295FC02.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F75C5DD42F618DE30876EDFECA2D3910CEF8D1AF22AF4EC460290515F1A8887/0/3137302e3233332e3137362e302f32322d3234203d3e203532323638.roa Signing time: Tue 04 Feb 2025 18:49:29 +0000 ROA not before: Tue 04 Feb 2025 18:44:29 +0000 ROA not after: Tue 03 Feb 2026 18:49:29 +0000 asID: 52268 IP address blocks: 170.233.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/4F75C5DD42F618DE30876EDFECA2D3910CEF8D1AF22AF4EC460290515F1A8887/0/A79979549298C107B25C6C7E7FC2C7DBB295FC02.crl rsync://repository.lacnic.net/rpki/lacnic/4F75C5DD42F618DE30876EDFECA2D3910CEF8D1AF22AF4EC460290515F1A8887/0/A79979549298C107B25C6C7E7FC2C7DBB295FC02.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A79979549298C107B25C6C7E7FC2C7DBB295FC02.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 20:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c8:3c:75:ce:73:30:25:98:b5:09:67:35:48:57:41:ea:cb:b7:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A79979549298C107B25C6C7E7FC2C7DBB295FC02 Validity Not Before: Feb 4 18:44:29 2025 GMT Not After : Feb 3 18:49:29 2026 GMT Subject: CN=00608AAB3E0C00FCCA747DD0DDA92DB336FAE4BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:55:d5:f2:ca:3f:aa:f4:f8:8b:5a:35:b2:06: fa:9c:53:3d:f8:f1:66:0e:f7:86:09:2b:af:99:ee: dc:6c:8a:9c:75:5e:11:bd:14:6c:9b:eb:88:3f:a0: fd:90:8c:b3:6c:a2:65:59:ce:e7:ba:2a:e3:4e:6b: d7:13:9c:5b:0e:00:9b:3d:0e:b6:41:d6:a3:e8:9f: a8:67:44:5a:41:b8:79:00:5c:c5:6e:d4:40:4b:de: f7:c5:01:9f:6b:39:b0:c5:2e:a8:f2:ee:f3:4e:55: c9:b3:36:ed:af:b3:0a:93:d7:8e:34:17:9e:e3:a7: e2:36:28:00:37:17:33:59:ed:ed:76:1b:55:14:40: 00:a7:26:a0:bd:89:9f:7d:2f:e9:10:49:13:a8:c1: 19:97:8e:3a:33:72:b5:fe:58:35:82:bc:0f:af:83: 0c:04:4c:eb:40:e7:44:10:1f:ed:ef:92:c9:1a:a3: 94:be:a4:36:b4:3e:c7:0a:71:fe:0e:3f:e6:c7:69: 76:23:fa:74:a2:67:83:34:b8:12:bc:42:a1:2b:93: 12:2e:df:83:35:bf:c9:22:96:7e:71:17:04:62:4c: d3:58:b7:8e:ea:c9:82:f0:8f:b9:94:39:04:12:c3: 89:19:c1:ed:d9:21:cd:7c:0a:c0:e2:a7:09:c9:a4: d8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:60:8A:AB:3E:0C:00:FC:CA:74:7D:D0:DD:A9:2D:B3:36:FA:E4:BF X509v3 Authority Key Identifier: keyid:A7:99:79:54:92:98:C1:07:B2:5C:6C:7E:7F:C2:C7:DB:B2:95:FC:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/4F75C5DD42F618DE30876EDFECA2D3910CEF8D1AF22AF4EC460290515F1A8887/0/A79979549298C107B25C6C7E7FC2C7DBB295FC02.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A79979549298C107B25C6C7E7FC2C7DBB295FC02.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F75C5DD42F618DE30876EDFECA2D3910CEF8D1AF22AF4EC460290515F1A8887/0/3137302e3233332e3137362e302f32322d3234203d3e203532323638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.176.0/22 Signature Algorithm: sha256WithRSAEncryption 45:2a:14:81:01:77:08:0e:d0:22:b5:3c:3d:87:c0:91:b1:17: 73:83:eb:67:d6:bb:da:1b:7c:dc:73:5c:bf:87:b0:cc:05:43: 74:da:43:56:7f:75:38:a9:5c:49:ed:75:53:22:3d:b4:e0:a1: 4a:78:b1:5a:65:76:b2:15:77:ba:fb:c1:c1:4a:1e:17:65:8c: 3a:32:64:f7:ec:a8:32:83:1d:74:cb:44:5d:38:cb:8f:1e:69: 86:ea:f9:9a:15:90:65:49:d7:82:45:86:2c:72:7f:ba:ed:9e: 92:e4:22:21:c4:df:84:cc:fd:82:c1:81:c8:06:a5:5a:fb:02: 76:22:e6:ed:0b:8e:a3:2a:d1:fa:8c:5d:cb:57:8b:7c:90:98: c6:56:77:9c:cf:5b:48:9a:5a:34:62:a1:04:58:3e:43:ce:07: 97:9b:22:1e:ed:ec:a9:3e:2d:cc:c8:df:70:83:86:ee:4b:f4: 53:d4:7f:2f:79:2b:aa:bd:d5:10:af:90:27:ee:61:29:e7:11: fe:3c:1f:3b:29:65:8e:f5:be:30:01:bb:ee:1f:5b:bb:73:5c: 1c:45:0d:d0:2d:2e:7b:e8:31:a0:78:5a:57:c2:1b:bd:c2:b3: c7:df:a5:92:b7:59:f9:20:4b:bd:a0:32:3c:dd:b7:c2:83:bd: 7e:9a:59:94 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUbcg8dc5zMCWYtQlnNUhXQerLtx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc5OTc5NTQ5Mjk4QzEwN0IyNUM2QzdFN0ZDMkM3REJC Mjk1RkMwMjAeFw0yNTAyMDQxODQ0MjlaFw0yNjAyMDMxODQ5MjlaMDMxMTAvBgNV BAMTKDAwNjA4QUFCM0UwQzAwRkNDQTc0N0REMEREQTkyREIzMzZGQUU0QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpVdXyyj+q9PiLWjWyBvqcUz34 8WYO94YJK6+Z7txsipx1XhG9FGyb64g/oP2QjLNsomVZzue6KuNOa9cTnFsOAJs9 DrZB1qPon6hnRFpBuHkAXMVu1EBL3vfFAZ9rObDFLqjy7vNOVcmzNu2vswqT1440 F57jp+I2KAA3FzNZ7e12G1UUQACnJqC9iZ99L+kQSROowRmXjjozcrX+WDWCvA+v gwwETOtA50QQH+3vkskao5S+pDa0PscKcf4OP+bHaXYj+nSiZ4M0uBK8QqErkxIu 34M1v8kiln5xFwRiTNNYt47qyYLwj7mUOQQSw4kZwe3ZIc18CsDipwnJpNiFAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUAGCKqz4MAPzKdH3Q3aktszb65L8wHwYDVR0j BBgwFoAUp5l5VJKYwQeyXGx+f8LH27KV/AIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy80Rjc1QzVERDQyRjYxOERFMzA4NzZFREZFQ0EyRDM5MTBD RUY4RDFBRjIyQUY0RUM0NjAyOTA1MTVGMUE4ODg3LzAvQTc5OTc5NTQ5Mjk4QzEw N0IyNUM2QzdFN0ZDMkM3REJCMjk1RkMwMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BNzk5Nzk1NDkyOThDMTA3QjI1 QzZDN0U3RkMyQzdEQkIyOTVGQzAyLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNEY3NUM1REQ0MkY2MThERTMwODc2RURGRUNBMkQzOTEwQ0VGOEQxQUYy MkFGNEVDNDYwMjkwNTE1RjFBODg4Ny8wLzMxMzczMDJlMzIzMzMzMmUzMTM3MzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNTMyMzIzNjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqumw MA0GCSqGSIb3DQEBCwUAA4IBAQBFKhSBAXcIDtAitTw9h8CRsRdzg+tn1rvaG3zc c1y/h7DMBUN02kNWf3U4qVxJ7XVTIj204KFKeLFaZXayFXe6+8HBSh4XZYw6MmT3 7Kgygx10y0RdOMuPHmmG6vmaFZBlSdeCRYYscn+67Z6S5CIhxN+EzP2CwYHIBqVa +wJ2IubtC46jKtH6jF3LV4t8kJjGVnecz1tImlo0YqEEWD5DzgeXmyIe7eypPi3M yN9wg4buS/RT1H8veSuqvdUQr5An7mEp5xH+PB87KWWO9b4wAbvuH1u7c1wcRQ3Q LS576DGgeFpXwhu9wrPH36WSt1n5IEu9oDI83bfCg71+mlmU -----END CERTIFICATE-----Generated at Fri Apr 18 21:07:42 2025 by rpki-client