$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/af887a49fb11da9e9ab23facbe36ce0d475c8d83.roa File: af887a49fb11da9e9ab23facbe36ce0d475c8d83.roa (raw, json) Hash identifier: RcJeH16eJ4g+1RRTSQpY+2vNBTlUiUazP/Ghi7jHGv4= Subject key identifier: BB:27:94:21:72:65:45:63:64:57:B9:C4:91:5B:8C:F9:1C:C7:E7:78 Certificate issuer: /CN=f48a793247cd1f645923603f197e3d287d051040 Certificate serial: 0C3E10 Authority key identifier: 79:3A:BC:6F:D4:8E:32:89:36:F7:E8:BA:DB:7E:2A:91:8E:39:B9:8A Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f48a793247cd1f645923603f197e3d287d051040.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/af887a49fb11da9e9ab23facbe36ce0d475c8d83.roa Signing time: Wed 24 Mar 2021 14:46:10 +0000 ROA not before: Wed 24 Mar 2021 14:46:10 +0000 ROA not after: Tue 24 Mar 2026 14:46:10 +0000 asID: 267800 IP address blocks: 45.172.10.0/24 maxlen: 26 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/f48a793247cd1f645923603f197e3d287d051040.crl rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/f48a793247cd1f645923603f197e3d287d051040.mft rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f48a793247cd1f645923603f197e3d287d051040.cer rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 31 Mar 2024 03:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 802320 (0xc3e10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f48a793247cd1f645923603f197e3d287d051040 Validity Not Before: Mar 24 14:46:10 2021 GMT Not After : Mar 24 14:46:10 2026 GMT Subject: CN=af887a49fb11da9e9ab23facbe36ce0d475c8d83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:37:64:a0:5f:72:35:29:ed:19:9c:94:1d:bf: 82:85:5c:38:a3:01:af:78:84:28:f3:14:b2:d9:6a: 7a:62:a7:d5:e7:c1:57:e1:8e:d7:ef:ce:38:6b:b8: 1f:97:bb:63:69:6f:69:3f:1a:6f:96:25:b6:0d:24: c3:ae:99:51:ff:79:c7:98:40:5f:db:eb:b3:9b:51: 90:b2:5b:5c:2b:ba:10:61:7f:3a:03:84:14:4b:43: 85:18:59:51:91:37:26:6b:36:8b:9b:3c:b5:d6:04: f6:ed:b7:d4:3f:4b:df:1f:80:cf:0e:3d:a8:8b:9c: 23:55:1e:e3:ef:74:f4:7a:34:43:b3:bd:bb:4a:e7: b2:2f:5a:85:a8:93:11:03:d1:f6:c0:76:3f:ec:14: 31:d9:d3:66:6e:cb:16:96:64:d1:e3:f3:4d:33:1d: 70:da:55:7f:53:e7:25:ee:32:6a:59:a5:e6:75:20: 15:84:6c:05:54:af:f3:db:91:19:16:74:e6:81:e2: bd:e2:53:53:e2:45:2b:c4:de:37:0c:5e:fe:93:9a: d6:0a:af:5e:9f:a6:29:ea:f8:cc:16:51:4a:f8:95: 32:9a:71:ce:85:11:3d:03:01:22:ed:4e:96:9f:ad: 27:5b:bb:ef:27:3e:a8:1b:ef:43:9d:f0:0f:07:f3: 6c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:27:94:21:72:65:45:63:64:57:B9:C4:91:5B:8C:F9:1C:C7:E7:78 X509v3 Authority Key Identifier: keyid:79:3A:BC:6F:D4:8E:32:89:36:F7:E8:BA:DB:7E:2A:91:8E:39:B9:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f48a793247cd1f645923603f197e3d287d051040.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/af887a49fb11da9e9ab23facbe36ce0d475c8d83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/f48a793247cd1f645923603f197e3d287d051040.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.172.10.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:08:59:1e:48:59:80:e0:37:89:1c:65:53:4a:ea:00:36:81: c1:d9:1a:d7:24:dd:4a:90:e9:fc:8c:07:6c:8e:d9:dc:d8:64: 2e:86:83:93:ab:b1:ab:42:87:d6:f3:2a:bf:a4:ee:12:ad:33: 3c:25:14:f9:23:a0:62:d3:a6:f8:14:94:d3:fb:0d:65:f2:e3: d2:06:e2:46:54:e8:fc:ed:bf:68:99:9b:19:e5:9a:18:e9:e0: 1f:ad:6f:f8:db:b9:52:20:b1:c8:df:02:c6:c1:e3:bf:29:48: 8c:b1:96:5b:5f:48:91:6b:55:d2:2d:a5:de:f9:66:1a:88:0b: c0:e4:6b:e2:87:28:ea:20:f0:cc:f8:80:c1:6e:77:ac:ef:8c: 54:60:20:3b:48:87:71:88:80:2a:73:38:66:96:54:44:52:77: 58:8b:5a:8b:09:c1:05:74:6b:53:3b:76:ca:5c:a9:14:d2:c4: a2:00:73:af:25:65:67:d8:a6:32:f0:f3:bd:8d:fa:d4:e7:2c: bb:15:61:4f:d9:91:4c:3a:f5:d7:9a:84:44:eb:f3:ed:81:33: 36:66:37:87:2d:85:12:38:f4:5e:26:dc:25:82:14:a4:e3:2b: ae:6f:ad:64:41:67:7a:45:4d:38:68:37:6f:b1:ab:17:37:76: 1f:50:bc:a4 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDDD4QMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGY0 OGE3OTMyNDdjZDFmNjQ1OTIzNjAzZjE5N2UzZDI4N2QwNTEwNDAwHhcNMjEwMzI0 MTQ0NjEwWhcNMjYwMzI0MTQ0NjEwWjAzMTEwLwYDVQQDEyhhZjg4N2E0OWZiMTFk YTllOWFiMjNmYWNiZTM2Y2UwZDQ3NWM4ZDgzMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAhzdkoF9yNSntGZyUHb+ChVw4owGveIQo8xSy2Wp6YqfV58FX 4Y7X7844a7gfl7tjaW9pPxpvliW2DSTDrplR/3nHmEBf2+uzm1GQsltcK7oQYX86 A4QUS0OFGFlRkTcmazaLmzy11gT27bfUP0vfH4DPDj2oi5wjVR7j73T0ejRDs727 SueyL1qFqJMRA9H2wHY/7BQx2dNmbssWlmTR4/NNMx1w2lV/U+cl7jJqWaXmdSAV hGwFVK/z25EZFnTmgeK94lNT4kUrxN43DF7+k5rWCq9en6Yp6vjMFlFK+JUymnHO hRE9AwEi7U6Wn60nW7vvJz6oG+9DnfAPB/NsowIDAQABo4ICWzCCAlcwHQYDVR0O BBYEFLsnlCFyZUVjZFe5xJFbjPkcx+d4MB8GA1UdIwQYMBaAFHk6vG/UjjKJNvfo utt+KpGOObmKMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZjQ4YTc5 MzI0N2NkMWY2NDU5MjM2MDNmMTk3ZTNkMjg3ZDA1MTA0MC5jZXIwgZoGCCsGAQUF BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p Yy5uZXQvcnBraS9sYWNuaWMvNGRkODg3YmQtMGVhOC00NTliLWI5NDUtZGFlYTdh ZGE2MTgzL2FmODg3YTQ5ZmIxMWRhOWU5YWIyM2ZhY2JlMzZjZTBkNDc1YzhkODMu cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj bmljLm5ldC9ycGtpL2xhY25pYy80ZGQ4ODdiZC0wZWE4LTQ1OWItYjk0NS1kYWVh N2FkYTYxODMvZjQ4YTc5MzI0N2NkMWY2NDU5MjM2MDNmMTk3ZTNkMjg3ZDA1MTA0 MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAC2sCjANBgkqhkiG9w0BAQsFAAOCAQEADwhZHkhZgOA3iRxl U0rqADaBwdka1yTdSpDp/IwHbI7Z3NhkLoaDk6uxq0KH1vMqv6TuEq0zPCUU+SOg YtOm+BSU0/sNZfLj0gbiRlTo/O2/aJmbGeWaGOngH61v+Nu5UiCxyN8CxsHjvylI jLGWW19IkWtV0i2l3vlmGogLwORr4oco6iDwzPiAwW53rO+MVGAgO0iHcYiAKnM4 ZpZURFJ3WItaiwnBBXRrUzt2ylypFNLEogBzryVlZ9imMvDzvY361OcsuxVhT9mR TDr115qEROvz7YEzNmY3hy2FEjj0XibcJYIUpOMrrm+tZEFnekVNOGg3b7GrFzd2 H1C8pA== -----END CERTIFICATE-----Generated at Thu Mar 28 08:35:56 2024 by rpki-client on console-fra.rpki-client.org