$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/7dba9e96df2509d284917a71f369d75f5eefe26b.roa File: 7dba9e96df2509d284917a71f369d75f5eefe26b.roa (raw, json) Hash identifier: 3bgGgmLKgGlxxovWa9G4A6cE4ZTvJ8vLA82T7PjoZRw= Subject key identifier: 88:B2:2E:B8:EC:B9:31:D2:EA:3C:47:C8:A5:E4:5E:1A:B7:91:23:76 Certificate issuer: /CN=44d1fb45b2ba74749f3b3780a0a39138e86370e1 Certificate serial: 0DDD3B Authority key identifier: C8:A1:58:9A:F5:F4:0C:D2:32:13:33:72:36:B0:DF:84:AE:F8:2E:89 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44d1fb45b2ba74749f3b3780a0a39138e86370e1.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/7dba9e96df2509d284917a71f369d75f5eefe26b.roa Signing time: Wed 24 Mar 2021 14:41:30 +0000 ROA not before: Wed 24 Mar 2021 14:41:30 +0000 ROA not after: Tue 24 Mar 2026 14:41:30 +0000 asID: 264744 IP address blocks: 2803:af40::/32 maxlen: 35 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/44d1fb45b2ba74749f3b3780a0a39138e86370e1.crl rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/44d1fb45b2ba74749f3b3780a0a39138e86370e1.mft rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44d1fb45b2ba74749f3b3780a0a39138e86370e1.cer rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 31 Mar 2024 03:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 908603 (0xddd3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44d1fb45b2ba74749f3b3780a0a39138e86370e1 Validity Not Before: Mar 24 14:41:30 2021 GMT Not After : Mar 24 14:41:30 2026 GMT Subject: CN=7dba9e96df2509d284917a71f369d75f5eefe26b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a0:4a:56:f1:de:38:b7:c8:c3:7b:3f:88:cd: 07:6b:1e:8d:43:77:31:da:5e:c9:5e:2f:78:b0:4a: f4:18:67:19:a1:ab:26:41:9d:07:dc:8d:4c:9e:82: 00:5f:a2:60:4b:c8:e0:7b:d3:9a:3d:c2:f7:4d:cd: 07:83:26:94:e4:53:e7:a5:e9:fe:b4:15:8f:1c:97: 5b:79:c6:05:d3:ae:52:45:02:34:6d:2e:76:f7:72: 67:fa:e9:eb:b3:62:2a:b9:3a:41:a7:c9:4c:86:14: c5:16:67:5d:9b:8b:33:f2:d5:d0:7d:5e:cb:0c:24: 49:6d:b3:fe:29:72:54:88:90:ad:f4:7c:42:fc:cd: 47:e5:7b:6a:4c:34:98:75:e9:62:3d:3e:1c:a1:e4: b0:9d:cf:2d:99:d7:65:0f:1d:32:9f:6b:b2:7f:02: b9:40:1c:7d:2a:70:62:d9:e9:ee:99:41:be:76:da: a5:b4:99:ba:1b:2b:b0:20:ec:55:1b:62:df:05:5f: 11:a7:4b:a7:1b:7c:ba:81:19:a3:b0:32:57:b2:a7: b5:12:c3:7b:b4:5c:ca:2b:28:9e:63:c4:06:9d:17: f0:0b:61:2e:f6:ef:81:bc:92:bb:41:bc:1b:1a:11: bb:26:4a:4a:ae:b1:2f:e9:4d:51:ca:7f:5e:33:62: 76:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B2:2E:B8:EC:B9:31:D2:EA:3C:47:C8:A5:E4:5E:1A:B7:91:23:76 X509v3 Authority Key Identifier: keyid:C8:A1:58:9A:F5:F4:0C:D2:32:13:33:72:36:B0:DF:84:AE:F8:2E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44d1fb45b2ba74749f3b3780a0a39138e86370e1.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/7dba9e96df2509d284917a71f369d75f5eefe26b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/44d1fb45b2ba74749f3b3780a0a39138e86370e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:af40::/32 Signature Algorithm: sha256WithRSAEncryption 2d:53:66:98:1d:e1:f1:9f:75:e9:24:d4:4f:f2:20:e2:da:67: 0c:6f:f7:ba:b8:1c:d1:38:01:f9:0c:d0:97:95:91:7c:de:96: c9:21:16:49:e1:5e:cd:dc:03:21:fe:ae:1b:04:d2:a7:e7:dc: ab:d3:54:47:c6:91:b3:01:91:1f:cf:24:f1:ec:53:61:39:b4: c4:1c:2f:b7:93:10:a3:28:48:f2:1f:35:d5:c3:38:59:b9:5c: ec:df:23:d7:fb:68:85:d5:65:eb:53:cf:dc:64:de:a0:38:d9: 35:e3:90:bc:7c:ee:d5:bd:77:99:64:37:6f:db:9a:f5:a8:7a: be:21:cc:3d:e4:97:d4:8e:c5:41:7f:a3:f9:ec:c8:21:c4:81: 65:03:9d:d3:76:db:c6:1e:4d:b3:76:08:2d:77:ce:74:1a:39: 8f:5f:d4:3b:20:f8:7d:b4:b6:86:05:83:27:04:7f:57:b2:7a: 28:b2:99:dc:e9:e5:dc:fd:17:81:7c:43:a6:b1:72:55:ee:ad: d5:e1:e6:da:c3:05:8c:99:25:d0:00:2a:c3:5c:77:80:83:a1: 58:37:25:08:43:be:53:ac:fb:4f:02:7e:5c:6a:9e:19:31:bc: 84:ad:1c:33:36:37:1e:42:7e:f0:63:e3:2e:0d:5d:bb:c5:96: 90:99:27:53 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIDDd07MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDQ0 ZDFmYjQ1YjJiYTc0NzQ5ZjNiMzc4MGEwYTM5MTM4ZTg2MzcwZTEwHhcNMjEwMzI0 MTQ0MTMwWhcNMjYwMzI0MTQ0MTMwWjAzMTEwLwYDVQQDEyg3ZGJhOWU5NmRmMjUw OWQyODQ5MTdhNzFmMzY5ZDc1ZjVlZWZlMjZiMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEArqBKVvHeOLfIw3s/iM0Hax6NQ3cx2l7JXi94sEr0GGcZoasm QZ0H3I1MnoIAX6JgS8jge9OaPcL3Tc0HgyaU5FPnpen+tBWPHJdbecYF065SRQI0 bS5293Jn+unrs2IquTpBp8lMhhTFFmddm4sz8tXQfV7LDCRJbbP+KXJUiJCt9HxC /M1H5XtqTDSYdeliPT4coeSwnc8tmddlDx0yn2uyfwK5QBx9KnBi2enumUG+dtql tJm6GyuwIOxVG2LfBV8Rp0unG3y6gRmjsDJXsqe1EsN7tFzKKyieY8QGnRfwC2Eu 9u+BvJK7QbwbGhG7JkpKrrEv6U1Ryn9eM2J2qQIDAQABo4ICXDCCAlgwHQYDVR0O BBYEFIiyLrjsuTHS6jxHyKXkXhq3kSN2MB8GA1UdIwQYMBaAFMihWJr19AzSMhMz cjaw34Su+C6JMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNDRkMWZi NDViMmJhNzQ3NDlmM2IzNzgwYTBhMzkxMzhlODYzNzBlMS5jZXIwgZoGCCsGAQUF BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p Yy5uZXQvcnBraS9sYWNuaWMvNGRiOTgzZGQtYmMwOS00NmQ1LTg5YjktZTIxN2Vj YmNmZGQxLzdkYmE5ZTk2ZGYyNTA5ZDI4NDkxN2E3MWYzNjlkNzVmNWVlZmUyNmIu cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj bmljLm5ldC9ycGtpL2xhY25pYy80ZGI5ODNkZC1iYzA5LTQ2ZDUtODliOS1lMjE3 ZWNiY2ZkZDEvNDRkMWZiNDViMmJhNzQ3NDlmM2IzNzgwYTBhMzkxMzhlODYzNzBl MS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACgDr0AwDQYJKoZIhvcNAQELBQADggEBAC1TZpgd4fGfdekk 1E/yIOLaZwxv97q4HNE4AfkM0JeVkXzelskhFknhXs3cAyH+rhsE0qfn3KvTVEfG kbMBkR/PJPHsU2E5tMQcL7eTEKMoSPIfNdXDOFm5XOzfI9f7aIXVZetTz9xk3qA4 2TXjkLx87tW9d5lkN2/bmvWoer4hzD3kl9SOxUF/o/nsyCHEgWUDndN228YeTbN2 CC13znQaOY9f1Dsg+H20toYFgycEf1eyeiiymdzp5dz9F4F8Q6axclXurdXh5trD BYyZJdAAKsNcd4CDoVg3JQhDvlOs+08CflxqnhkxvIStHDM2Nx5CfvBj4y4NXbvF lpCZJ1M= -----END CERTIFICATE-----Generated at Thu Mar 28 04:54:53 2024 by rpki-client on console-ams.rpki-client.org