$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/323830303a3830303a3a2f33362d3438203d3e203134303830.roa File: 323830303a3830303a3a2f33362d3438203d3e203134303830.roa (raw, json) Hash identifier: UQ61OTS39/G8diQNfmVjptC0inTkh5gkBVMvzyCufls= Subject key identifier: 37:D0:63:BA:7E:A8:FB:3B:12:0B:92:A1:F6:88:40:77:9B:8B:F6:06 Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5 Certificate serial: 5D0D9F9E4960186D29531AB380285386B4C4E2C8 Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/323830303a3830303a3a2f33362d3438203d3e203134303830.roa Signing time: Tue 04 Feb 2025 18:05:14 +0000 ROA not before: Tue 04 Feb 2025 18:00:14 +0000 ROA not after: Tue 03 Feb 2026 18:05:14 +0000 asID: 14080 IP address blocks: 2800:800::/36 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:0d:9f:9e:49:60:18:6d:29:53:1a:b3:80:28:53:86:b4:c4:e2:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5 Validity Not Before: Feb 4 18:00:14 2025 GMT Not After : Feb 3 18:05:14 2026 GMT Subject: CN=37D063BA7EA8FB3B120B92A1F68840779B8BF606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:77:d1:d3:d3:a9:47:e1:41:9a:5e:ab:3d:79: c2:86:c5:5e:f8:07:71:5f:cf:d9:61:d8:9b:f6:0a: d3:94:19:42:9d:2f:00:38:4c:18:93:2b:10:57:28: 6b:b1:72:dd:6c:5b:f7:fa:e3:65:37:1f:94:d8:e5: 7d:91:e6:ce:05:c8:94:56:04:d9:3f:02:6a:49:37: 8d:de:6f:a3:bc:8c:19:44:82:9b:20:a5:2a:39:ef: fc:3d:d7:72:5f:6b:b3:e6:b5:c4:36:d3:ca:ee:db: 68:22:2f:dd:0f:af:c4:88:95:50:18:96:5f:72:f6: ac:5f:de:fd:06:48:8c:46:96:cd:8b:34:b1:44:11: 73:ed:b3:0f:23:86:0e:84:30:a5:37:7f:f2:bc:55: fc:a4:49:23:7b:6b:1e:50:16:d3:cf:d9:7d:61:5c: 2d:1a:b0:ea:79:87:d0:b2:43:d2:23:9b:db:0f:7d: be:a0:dd:0c:91:a1:35:d7:45:3c:1f:e8:6d:71:53: 51:36:61:10:c2:c4:1e:e4:17:ff:2e:0e:04:f0:35: 2c:e8:a8:fe:5e:33:8c:c4:7b:20:cb:dc:6c:c6:fa: 02:61:56:78:0c:ff:89:c4:30:2d:fd:8e:fe:97:a3: e6:3a:1b:c0:65:dd:20:5e:67:a8:2e:c8:05:b7:0e: bb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:D0:63:BA:7E:A8:FB:3B:12:0B:92:A1:F6:88:40:77:9B:8B:F6:06 X509v3 Authority Key Identifier: keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/323830303a3830303a3a2f33362d3438203d3e203134303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2800:800::/36 Signature Algorithm: sha256WithRSAEncryption 0e:d0:33:bd:67:75:3c:18:af:b8:4b:ef:c8:6a:ec:8e:90:9e: ba:8e:74:71:87:d9:6e:17:07:63:39:5f:4d:42:08:ee:8a:3b: 94:70:41:24:db:17:05:43:58:33:5f:1f:46:2e:68:6e:a1:93: b6:77:3f:d7:b1:d6:62:8c:1a:d0:a2:59:8e:2e:c4:26:af:6c: dd:2e:5c:30:c4:4b:41:af:b0:63:a9:3b:9a:b4:0a:9c:cd:99: e5:42:60:40:3e:59:53:26:a3:d4:34:34:cc:74:fb:16:66:ff: 11:b0:87:3b:c9:24:1c:0f:df:61:9c:5d:5a:5c:93:45:de:1b: 23:ea:10:09:87:17:22:18:8f:79:46:bb:c1:ee:7a:bb:e5:d1: 71:0f:72:2c:9b:1c:99:91:ff:45:2b:ca:72:9b:2a:3b:17:a1: 6e:17:f0:46:ee:a6:be:34:83:c5:c3:59:12:d5:5c:f7:d6:2f: 68:72:6e:70:01:f5:33:ab:90:9e:70:c2:1d:b2:06:00:d5:dd: ed:7a:f4:f7:0a:21:c2:76:09:65:37:52:e0:4d:7a:32:f7:7c: 34:6e:69:5c:92:88:78:43:42:94:89:d5:96:91:b3:21:9c:9e: d8:46:f3:c4:38:82:63:92:17:0a:76:e1:23:85:b4:0a:bc:2d: e3:51:a1:a6 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUXQ2fnklgGG0pUxqzgChThrTE4sgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNGRjFDOEFFMEI0NzU3RTY4RUREMDhBRTFBRUIyQURB RDg2NTNENTAeFw0yNTAyMDQxODAwMTRaFw0yNjAyMDMxODA1MTRaMDMxMTAvBgNV BAMTKDM3RDA2M0JBN0VBOEZCM0IxMjBCOTJBMUY2ODg0MDc3OUI4QkY2MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyd9HT06lH4UGaXqs9ecKGxV74 B3Ffz9lh2Jv2CtOUGUKdLwA4TBiTKxBXKGuxct1sW/f642U3H5TY5X2R5s4FyJRW BNk/AmpJN43eb6O8jBlEgpsgpSo57/w913Jfa7PmtcQ208ru22giL90Pr8SIlVAY ll9y9qxf3v0GSIxGls2LNLFEEXPtsw8jhg6EMKU3f/K8VfykSSN7ax5QFtPP2X1h XC0asOp5h9CyQ9Ijm9sPfb6g3QyRoTXXRTwf6G1xU1E2YRDCxB7kF/8uDgTwNSzo qP5eM4zEeyDL3GzG+gJhVngM/4nEMC39jv6Xo+Y6G8Bl3SBeZ6guyAW3DruVAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUN9Bjun6o+zsSC5Kh9ohAd5uL9gYwHwYDVR0j BBgwFoAUQ/8ciuC0dX5o7dCK4a6yra2GU9UwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81MTI0MEU3OTYyQjkzODBBM0U2MjdDOTQ0NDFFQTZCQjJD Q0EzREIxRDIyRTkzNEI2Q0M5REM1QjYzNUVGNDkxLzAvNDNGRjFDOEFFMEI0NzU3 RTY4RUREMDhBRTFBRUIyQURBRDg2NTNENS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80M0ZGMUM4QUUwQjQ3NTdFNjhF REQwOEFFMUFFQjJBREFEODY1M0Q1LmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNTEyNDBFNzk2MkI5MzgwQTNFNjI3Qzk0NDQxRUE2QkIyQ0NBM0RCMUQy MkU5MzRCNkNDOURDNUI2MzVFRjQ5MS8wLzMyMzgzMDMwM2EzODMwMzAzYTNhMmYz MzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKAAIAAAwDQYJ KoZIhvcNAQELBQADggEBAA7QM71ndTwYr7hL78hq7I6QnrqOdHGH2W4XB2M5X01C CO6KO5RwQSTbFwVDWDNfH0YuaG6hk7Z3P9ex1mKMGtCiWY4uxCavbN0uXDDES0Gv sGOpO5q0CpzNmeVCYEA+WVMmo9Q0NMx0+xZm/xGwhzvJJBwP32GcXVpck0XeGyPq EAmHFyIYj3lGu8Huervl0XEPciybHJmR/0UrynKbKjsXoW4X8Ebupr40g8XDWRLV XPfWL2hybnAB9TOrkJ5wwh2yBgDV3e169PcKIcJ2CWU3UuBNejL3fDRuaVySiHhD QpSJ1ZaRsyGcnthG88Q4gmOSFwp24SOFtAq8LeNRoaY= -----END CERTIFICATE-----Generated at Sat Apr 5 18:59:05 2025 by rpki-client