$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e3231362e302f32332d3234203d3e203236363131.roa File: 3139312e3135362e3231362e302f32332d3234203d3e203236363131.roa (raw, json) Hash identifier: SWgSrj5Q7K23yHG8fvhEc6HNcISNHs8Z6BVXl2F7mrY= Subject key identifier: A1:D5:90:A8:2A:F5:B9:70:4E:E4:33:C9:58:CC:32:43:41:32:FC:3D Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5 Certificate serial: 79A3DF2E8492CE2AF005FA3341C1AAE5E6AF3FB3 Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e3231362e302f32332d3234203d3e203236363131.roa Signing time: Tue 05 Mar 2024 18:01:00 +0000 ROA not before: Tue 05 Mar 2024 17:56:00 +0000 ROA not after: Tue 04 Mar 2025 18:01:00 +0000 asID: 26611 IP address blocks: 191.156.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 29 Nov 2024 03:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:a3:df:2e:84:92:ce:2a:f0:05:fa:33:41:c1:aa:e5:e6:af:3f:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5 Validity Not Before: Mar 5 17:56:00 2024 GMT Not After : Mar 4 18:01:00 2025 GMT Subject: CN=A1D590A82AF5B9704EE433C958CC32434132FC3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:93:72:29:d2:f5:d0:aa:c4:87:a8:f6:26:50: 29:0a:f6:bd:de:41:ab:b9:f3:b1:33:1f:b3:32:e4: 48:8f:6b:00:4a:44:63:6f:10:e9:41:44:06:11:16: 8e:c9:d9:65:f4:a4:e2:ca:67:cc:b2:13:6d:29:82: 04:66:5e:98:a4:49:65:cf:7f:d7:2c:d7:35:d1:6a: 0c:95:74:e4:be:0a:69:b9:52:e3:fe:75:c4:be:c8: ab:31:60:09:23:92:c9:a3:b3:5a:b7:b5:a4:4f:11: 6d:c8:40:8a:92:bd:7b:df:69:49:a5:b4:c8:52:89: f6:bd:ae:0e:ec:32:aa:00:d3:17:40:41:db:f7:d3: 13:72:f6:75:df:44:6d:a6:fe:0d:21:a7:6f:7c:ff: 93:c1:8f:18:0e:a6:d6:4d:50:ac:9e:65:65:c0:91: 75:b0:7e:9e:d8:fb:76:ee:57:3e:a8:53:b9:47:a4: e2:09:57:c8:c3:b2:4e:b6:e0:07:a3:c7:76:8e:40: 8f:79:32:18:bb:e1:0e:e7:26:9b:a7:72:d9:0c:fc: 6e:cb:88:43:d8:a7:f4:54:51:4f:78:3f:d2:8f:00: d4:0c:78:6f:d3:eb:d6:dc:fc:a4:88:70:fc:f7:66: 43:ba:74:41:0c:23:2e:5d:a6:c6:11:7a:b9:86:d6: a4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D5:90:A8:2A:F5:B9:70:4E:E4:33:C9:58:CC:32:43:41:32:FC:3D X509v3 Authority Key Identifier: keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e3231362e302f32332d3234203d3e203236363131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 191.156.216.0/23 Signature Algorithm: sha256WithRSAEncryption 76:56:48:6b:01:f5:8d:c8:a1:49:ec:17:12:8d:77:27:ce:b5: 0c:09:75:a1:9f:b9:e6:e1:cf:63:45:be:a4:d7:2d:78:b5:30: 60:21:53:f9:0a:9d:44:3d:a8:5c:32:fa:61:17:76:f3:c4:67: ef:51:a5:41:01:02:94:9d:f9:bf:6d:bd:92:dc:92:11:bc:b7: ba:b9:f4:4e:78:37:03:e9:48:cf:3a:06:fc:28:ac:27:60:c5: 6a:18:88:e2:dd:de:40:92:ea:9a:50:0f:da:09:11:a3:d0:fb: 91:dc:fc:9f:e9:ec:c5:b6:2b:d6:5e:3d:14:96:6a:df:0b:f6: d3:3a:92:f8:31:70:cc:ac:e6:1c:ca:4e:e7:c8:c1:45:c1:c4: 8b:da:a0:99:82:f5:ea:aa:d9:fd:89:3e:3f:18:44:d5:c2:91: cd:f8:90:9e:15:ef:64:ac:d6:d9:11:04:7a:8e:1e:f4:35:8c: 37:08:ce:b4:29:4f:87:3b:89:ec:a2:9a:97:f2:eb:90:0e:42: 6a:44:15:c2:23:9d:95:d9:6d:46:df:f2:d9:40:fa:ed:57:c3: e9:4d:ca:4d:49:98:3c:84:83:28:d1:0e:61:70:e5:f7:fd:0b: 35:9d:f9:d0:40:02:fc:ff:b0:4d:6c:69:d2:af:1d:fe:38:fb: cb:02:ef:53 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUeaPfLoSSzirwBfozQcGq5eavP7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNGRjFDOEFFMEI0NzU3RTY4RUREMDhBRTFBRUIyQURB RDg2NTNENTAeFw0yNDAzMDUxNzU2MDBaFw0yNTAzMDQxODAxMDBaMDMxMTAvBgNV BAMTKEExRDU5MEE4MkFGNUI5NzA0RUU0MzNDOTU4Q0MzMjQzNDEzMkZDM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmk3Ip0vXQqsSHqPYmUCkK9r3e Qau587EzH7My5EiPawBKRGNvEOlBRAYRFo7J2WX0pOLKZ8yyE20pggRmXpikSWXP f9cs1zXRagyVdOS+Cmm5UuP+dcS+yKsxYAkjksmjs1q3taRPEW3IQIqSvXvfaUml tMhSifa9rg7sMqoA0xdAQdv30xNy9nXfRG2m/g0hp298/5PBjxgOptZNUKyeZWXA kXWwfp7Y+3buVz6oU7lHpOIJV8jDsk624Aejx3aOQI95Mhi74Q7nJpunctkM/G7L iEPYp/RUUU94P9KPANQMeG/T69bc/KSIcPz3ZkO6dEEMIy5dpsYRermG1qRxAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUodWQqCr1uXBO5DPJWMwyQ0Ey/D0wHwYDVR0j BBgwFoAUQ/8ciuC0dX5o7dCK4a6yra2GU9UwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81MTI0MEU3OTYyQjkzODBBM0U2MjdDOTQ0NDFFQTZCQjJD Q0EzREIxRDIyRTkzNEI2Q0M5REM1QjYzNUVGNDkxLzAvNDNGRjFDOEFFMEI0NzU3 RTY4RUREMDhBRTFBRUIyQURBRDg2NTNENS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80M0ZGMUM4QUUwQjQ3NTdFNjhF REQwOEFFMUFFQjJBREFEODY1M0Q1LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNTEyNDBFNzk2MkI5MzgwQTNFNjI3Qzk0NDQxRUE2QkIyQ0NBM0RCMUQy MkU5MzRCNkNDOURDNUI2MzVFRjQ5MS8wLzMxMzkzMTJlMzEzNTM2MmUzMjMxMzYy ZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMjM2MzYzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBv5zY MA0GCSqGSIb3DQEBCwUAA4IBAQB2VkhrAfWNyKFJ7BcSjXcnzrUMCXWhn7nm4c9j Rb6k1y14tTBgIVP5Cp1EPahcMvphF3bzxGfvUaVBAQKUnfm/bb2S3JIRvLe6ufRO eDcD6UjPOgb8KKwnYMVqGIji3d5AkuqaUA/aCRGj0PuR3Pyf6ezFtivWXj0Ulmrf C/bTOpL4MXDMrOYcyk7nyMFFwcSL2qCZgvXqqtn9iT4/GETVwpHN+JCeFe9krNbZ EQR6jh70NYw3CM60KU+HO4nsopqX8uuQDkJqRBXCI52V2W1G3/LZQPrtV8PpTcpN SZg8hIMo0Q5hcOX3/Qs1nfnQQAL8/7BNbGnSrx3+OPvLAu9T -----END CERTIFICATE-----Generated at Sun Nov 24 15:29:12 2024 by rpki-client on console-ams.rpki-client.org