$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3230302e302f32322d3232203d3e203232313232.roa File: 3134382e3230392e3230302e302f32322d3232203d3e203232313232.roa (raw, json) Hash identifier: CTx5bqL08Fgd1OnFH79B6WTVtMA/oMzwmgZVwaDH2qg= Subject key identifier: A3:6A:4D:A5:FA:0F:C4:DC:08:22:C8:D3:CE:44:02:CD:48:45:2B:8B Certificate issuer: /CN=8D67A138567146B2E89E0918237CB2D076D67AFA Certificate serial: 1B29CC33219043D49B23A2DD14BD0D4764185C09 Authority key identifier: 8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3230302e302f32322d3232203d3e203232313232.roa Signing time: Tue 04 Feb 2025 18:38:53 +0000 ROA not before: Tue 04 Feb 2025 18:33:53 +0000 ROA not after: Tue 03 Feb 2026 18:38:53 +0000 asID: 22122 IP address blocks: 148.209.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:29:cc:33:21:90:43:d4:9b:23:a2:dd:14:bd:0d:47:64:18:5c:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D67A138567146B2E89E0918237CB2D076D67AFA Validity Not Before: Feb 4 18:33:53 2025 GMT Not After : Feb 3 18:38:53 2026 GMT Subject: CN=A36A4DA5FA0FC4DC0822C8D3CE4402CD48452B8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e3:67:a3:41:13:d8:a3:82:cc:10:69:c8:1e: c7:c0:3c:e2:06:b8:44:f8:ea:d5:6e:78:da:6f:65: 58:c6:38:63:e2:71:35:ab:32:0b:63:39:91:91:10: 3b:55:23:46:b0:ab:d4:34:14:85:e7:a0:a8:4e:80: fd:fc:81:13:85:be:97:e3:d3:64:79:21:f7:7a:84: b5:5d:fa:00:34:6b:29:d4:e8:05:b0:3f:1f:3e:d4: 7c:81:c1:47:8e:4d:68:9e:b1:86:1e:6a:c3:b9:50: b2:5e:8d:f4:4b:a8:9e:93:48:7e:01:2f:35:21:3e: 08:6e:47:cc:cd:81:f4:32:fd:1b:31:57:ad:ef:94: 7c:81:4a:3e:62:74:6c:e4:c3:62:e9:23:b8:5a:f3: 2c:1c:61:87:fa:31:8d:eb:a5:5c:01:22:37:ce:cb: bf:64:e0:47:88:60:b7:01:ab:13:03:b3:d4:55:f9: 7a:6d:f3:60:48:e8:dd:a9:eb:08:5a:d9:1b:aa:e9: 9e:79:70:f3:dc:78:28:44:c2:59:21:66:3a:3f:90: 1a:c4:54:1d:a5:d5:77:f5:27:6b:2a:68:68:76:6b: d6:70:f2:c0:f8:66:a2:c7:4c:4f:c4:83:e2:02:dc: 58:b7:79:1d:fd:f0:bf:ee:c1:2b:5a:7b:db:e4:09: f2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:6A:4D:A5:FA:0F:C4:DC:08:22:C8:D3:CE:44:02:CD:48:45:2B:8B X509v3 Authority Key Identifier: keyid:8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3230302e302f32322d3232203d3e203232313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.209.200.0/22 Signature Algorithm: sha256WithRSAEncryption 23:62:aa:e4:a0:bf:9e:d2:c2:f2:eb:f3:89:7a:b7:6d:81:48: b7:d5:ed:ea:db:3e:ae:b8:22:36:b7:11:ec:e3:bb:76:08:d6: 18:d5:86:28:b4:48:53:ab:73:94:fc:bc:2a:4c:1f:2c:0a:d2: 60:4e:6e:b2:92:68:ae:55:1e:69:ba:eb:f1:0a:d5:18:65:ae: ec:4b:84:25:cb:11:f7:0a:f6:79:78:31:fc:cb:e2:aa:21:ab: c2:bf:fc:c3:a5:e7:a3:8a:a3:1d:e2:e9:bc:cf:2f:eb:ac:bb: 43:19:3e:25:72:1f:7c:d7:23:8f:af:09:1a:1a:6c:73:f2:2c: 26:d8:be:bc:6d:3c:d7:3e:f5:c6:6c:03:6f:dd:f2:9a:9f:b7: ec:70:2b:20:0b:ae:77:20:a1:c4:f4:d7:90:bd:2e:90:29:7e: 3a:af:f8:34:f9:4f:70:68:1b:58:af:dd:75:64:53:3d:24:0d: f2:be:f6:da:8e:9d:e7:de:e5:e0:5c:ff:36:1b:8b:ed:51:da: 8e:fb:19:71:56:4d:bf:00:b9:a9:0b:4a:c1:b7:0d:d5:a7:85: d3:bf:96:c7:36:73:e6:86:f7:33:52:b0:02:d7:74:6d:46:a3: bc:b8:1b:ad:9b:a0:4c:0b:07:0f:4c:58:b2:af:06:c2:72:9a: aa:b4:cc:b8 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUGynMMyGQQ9SbI6LdFL0NR2QYXAkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ2N0ExMzg1NjcxNDZCMkU4OUUwOTE4MjM3Q0IyRDA3 NkQ2N0FGQTAeFw0yNTAyMDQxODMzNTNaFw0yNjAyMDMxODM4NTNaMDMxMTAvBgNV BAMTKEEzNkE0REE1RkEwRkM0REMwODIyQzhEM0NFNDQwMkNENDg0NTJCOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa42ejQRPYo4LMEGnIHsfAPOIG uET46tVueNpvZVjGOGPicTWrMgtjOZGREDtVI0awq9Q0FIXnoKhOgP38gROFvpfj 02R5Ifd6hLVd+gA0aynU6AWwPx8+1HyBwUeOTWiesYYeasO5ULJejfRLqJ6TSH4B LzUhPghuR8zNgfQy/RsxV63vlHyBSj5idGzkw2LpI7ha8ywcYYf6MY3rpVwBIjfO y79k4EeIYLcBqxMDs9RV+Xpt82BI6N2p6wha2Ruq6Z55cPPceChEwlkhZjo/kBrE VB2l1Xf1J2sqaGh2a9Zw8sD4ZqLHTE/Eg+IC3Fi3eR398L/uwStae9vkCfLBAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUo2pNpfoPxNwIIsjTzkQCzUhFK4swHwYDVR0j BBgwFoAUjWehOFZxRrLongkYI3yy0HbWevowDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NkZENjdEODlEOTZEMzlBMzk3MjRDNEFENjE0RjQ1N0Mw OEZBMjc4NDQxNUJFMzk1MkM0OTFCRUJFNEJFMjA3LzAvOEQ2N0ExMzg1NjcxNDZC MkU4OUUwOTE4MjM3Q0IyRDA3NkQ2N0FGQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84RDY3QTEzODU2NzE0NkIyRTg5 RTA5MTgyMzdDQjJEMDc2RDY3QUZBLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNTZGRDY3RDg5RDk2RDM5QTM5NzI0QzRBRDYxNEY0NTdDMDhGQTI3ODQ0 MTVCRTM5NTJDNDkxQkVCRTRCRTIwNy8wLzMxMzQzODJlMzIzMDM5MmUzMjMwMzAy ZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMjMyMzEzMjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClNHI MA0GCSqGSIb3DQEBCwUAA4IBAQAjYqrkoL+e0sLy6/OJerdtgUi31e3q2z6uuCI2 txHs47t2CNYY1YYotEhTq3OU/LwqTB8sCtJgTm6ykmiuVR5puuvxCtUYZa7sS4Ql yxH3CvZ5eDH8y+KqIavCv/zDpeejiqMd4um8zy/rrLtDGT4lch981yOPrwkaGmxz 8iwm2L68bTzXPvXGbANv3fKan7fscCsgC653IKHE9NeQvS6QKX46r/g0+U9waBtY r911ZFM9JA3yvvbajp3n3uXgXP82G4vtUdqO+xlxVk2/ALmpC0rBtw3Vp4XTv5bH NnPmhvczUrAC13RtRqO8uButm6BMCwcPTFiyrwbCcpqqtMy4 -----END CERTIFICATE-----Generated at Sun Apr 6 00:43:59 2025 by rpki-client