$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/8fffe9df665838216467efaee92cdc9c83a8b095.roa File: 8fffe9df665838216467efaee92cdc9c83a8b095.roa (raw, json) Hash identifier: y/5ERCXXiqs2CvPow81FAKrVUU2trA52WtqbDAqsCyg= Subject key identifier: 43:6A:F8:A0:1F:C0:36:B1:8F:40:39:E5:AE:86:6D:C0:68:41:46:F8 Certificate issuer: /CN=297e119ebe51a00d6560ab73fd79c51ada403f19 Certificate serial: 013435 Authority key identifier: 07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/8fffe9df665838216467efaee92cdc9c83a8b095.roa Signing time: Wed 14 Sep 2022 14:20:27 +0000 ROA not before: Fri 19 Aug 2022 16:19:05 +0000 ROA not after: Mon 19 Aug 2024 16:19:05 +0000 asID: 27823 IP address blocks: 179.43.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.mft rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 31 Mar 2024 03:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78901 (0x13435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297e119ebe51a00d6560ab73fd79c51ada403f19 Validity Not Before: Aug 19 16:19:05 2022 GMT Not After : Aug 19 16:19:05 2024 GMT Subject: CN=8fffe9df665838216467efaee92cdc9c83a8b095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ad:6c:68:e7:4d:e4:a1:68:ed:9a:d4:15:52: 4d:96:b5:f8:58:fd:38:c3:22:17:17:4c:f8:8f:a1: b3:34:3c:bc:06:77:d7:e2:db:82:1d:dc:70:d0:5b: a3:0d:9c:80:bb:33:de:25:c5:c8:30:f7:60:c1:fe: 2c:3a:26:ed:e5:74:65:1e:3b:37:fd:21:ed:d2:9c: a3:ef:f8:96:3f:b3:e0:8c:3f:b1:6d:de:4d:b7:2e: 39:76:cd:15:85:28:4e:c5:ca:68:9d:4b:8b:d3:77: cf:c8:f8:1c:76:3e:3d:78:02:d3:37:21:76:02:5c: 3e:4f:85:c8:87:3f:60:19:30:d9:c6:78:28:9a:29: c4:99:98:34:2f:3b:c7:09:db:a1:11:fd:8b:a7:2b: f9:e3:90:7d:b1:2a:e2:c7:be:e3:05:e6:f0:4d:da: f7:b1:b4:fb:28:12:af:cb:e0:a9:0f:ed:d1:c1:fc: 76:af:68:bb:6d:3a:a8:7f:97:84:d6:61:96:4d:28: f7:63:bd:f8:ba:71:38:b8:33:40:f2:03:49:1f:9e: 7d:03:13:c9:29:62:bc:ec:13:2b:c5:2e:11:8e:b9: 97:6c:a5:2c:9f:e8:0f:6e:a2:72:9d:9c:da:2d:35: 45:a9:30:b2:4e:0e:26:19:f2:65:26:c4:b9:56:a4: 95:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:6A:F8:A0:1F:C0:36:B1:8F:40:39:E5:AE:86:6D:C0:68:41:46:F8 X509v3 Authority Key Identifier: keyid:07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/8fffe9df665838216467efaee92cdc9c83a8b095.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 179.43.117.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:26:2d:e1:25:aa:6e:c3:f2:dc:f0:d6:53:1e:98:3d:1a:de: 14:85:01:07:da:5d:79:a9:a4:dc:df:fd:7b:2f:f4:bb:9c:81: 01:bb:fb:96:58:23:be:31:47:b0:16:24:38:3c:c7:45:1b:18: 4b:f6:08:37:c6:9d:4f:b2:b6:5f:fa:73:a5:b9:15:21:f5:a8: 9c:7d:3e:09:84:49:e8:12:e6:df:08:a7:09:ce:40:b7:2e:f2: bf:c1:c7:a4:87:22:09:a7:89:6d:e7:cb:fd:c3:d5:c5:36:3d: 17:70:eb:79:10:a2:fb:95:5d:63:36:d1:b8:9b:a4:c2:11:ea: ab:4d:b8:fa:6e:43:f3:e5:6e:5e:ae:ea:31:3c:e7:b8:90:8e: 38:16:53:a3:d3:fb:73:65:41:48:db:1a:dc:ee:5c:c3:5d:22: 1b:1f:81:1c:9c:65:6d:30:6d:54:27:76:b2:e3:53:4e:1c:a7: 1d:9c:f1:14:67:bb:79:55:ca:9b:f3:d2:a4:44:71:c9:e0:ec: 68:bb:6f:6c:8e:58:a8:82:af:48:e5:3f:82:46:0e:04:c4:65: 23:fb:0b:f5:a1:9b:6f:2e:5f:fe:8b:ca:8f:d6:95:71:75:1a: 6f:99:e2:18:41:cd:7b:00:93:5a:2b:e7:a3:35:b7:b0:89:92: b5:09:bc:37 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDATQ1MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDI5 N2UxMTllYmU1MWEwMGQ2NTYwYWI3M2ZkNzljNTFhZGE0MDNmMTkwHhcNMjIwODE5 MTYxOTA1WhcNMjQwODE5MTYxOTA1WjAzMTEwLwYDVQQDEyg4ZmZmZTlkZjY2NTgz ODIxNjQ2N2VmYWVlOTJjZGM5YzgzYThiMDk1MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAnq1saOdN5KFo7ZrUFVJNlrX4WP04wyIXF0z4j6GzNDy8BnfX 4tuCHdxw0FujDZyAuzPeJcXIMPdgwf4sOibt5XRlHjs3/SHt0pyj7/iWP7PgjD+x bd5Nty45ds0VhShOxcponUuL03fPyPgcdj49eALTNyF2Alw+T4XIhz9gGTDZxngo minEmZg0LzvHCduhEf2Lpyv545B9sSrix77jBebwTdr3sbT7KBKvy+CpD+3Rwfx2 r2i7bTqof5eE1mGWTSj3Y734unE4uDNA8gNJH559AxPJKWK87BMrxS4RjrmXbKUs n+gPbqJynZzaLTVFqTCyTg4mGfJlJsS5VqSV7wIDAQABo4ICWzCCAlcwHQYDVR0O BBYEFENq+KAfwDaxj0A55a6GbcBoQUb4MB8GA1UdIwQYMBaAFAcJN4jtSoDCDN7O EKf/uzEhonKeMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMjk3ZTEx OWViZTUxYTAwZDY1NjBhYjczZmQ3OWM1MWFkYTQwM2YxOS5jZXIwgZoGCCsGAQUF BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p Yy5uZXQvcnBraS9sYWNuaWMvNGQ4ZGYwZjAtNDFjNC00MDFkLWFjMTUtZGUwZGI0 MGFjOWNiLzhmZmZlOWRmNjY1ODM4MjE2NDY3ZWZhZWU5MmNkYzljODNhOGIwOTUu cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj bmljLm5ldC9ycGtpL2xhY25pYy80ZDhkZjBmMC00MWM0LTQwMWQtYWMxNS1kZTBk YjQwYWM5Y2IvMjk3ZTExOWViZTUxYTAwZDY1NjBhYjczZmQ3OWM1MWFkYTQwM2Yx OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEALMrdTANBgkqhkiG9w0BAQsFAAOCAQEAPSYt4SWqbsPy3PDW Ux6YPRreFIUBB9pdeamk3N/9ey/0u5yBAbv7llgjvjFHsBYkODzHRRsYS/YIN8ad T7K2X/pzpbkVIfWonH0+CYRJ6BLm3winCc5Aty7yv8HHpIciCaeJbefL/cPVxTY9 F3DreRCi+5VdYzbRuJukwhHqq024+m5D8+VuXq7qMTznuJCOOBZTo9P7c2VBSNsa 3O5cw10iGx+BHJxlbTBtVCd2suNTThynHZzxFGe7eVXKm/PSpERxyeDsaLtvbI5Y qIKvSOU/gkYOBMRlI/sL9aGbby5f/ovKj9aVcXUab5niGEHNewCTWivnozW3sImS tQm8Nw== -----END CERTIFICATE-----Generated at Thu Mar 28 10:47:04 2024 by rpki-client on console-ams.rpki-client.org