$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e382e302f32322d3232203d3e203232313232.roa File: 3134382e3230392e382e302f32322d3232203d3e203232313232.roa (raw, json) Hash identifier: 2eji2uJ2TuQ6yEllIgBC8hdWgTuZKmEVYF5yOQayrio= Subject key identifier: A9:07:A6:F0:2B:72:04:1D:1C:FD:61:92:E7:68:D5:18:DE:91:14:58 Certificate issuer: /CN=8D67A138567146B2E89E0918237CB2D076D67AFA Certificate serial: 633D3F2E3DE13F81517ABB79DB2FFCD87368A8C7 Authority key identifier: 8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e382e302f32322d3232203d3e203232313232.roa Signing time: Tue 04 Feb 2025 18:38:50 +0000 ROA not before: Tue 04 Feb 2025 18:33:50 +0000 ROA not after: Tue 03 Feb 2026 18:38:50 +0000 asID: 22122 IP address blocks: 148.209.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 10 Apr 2025 00:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:3d:3f:2e:3d:e1:3f:81:51:7a:bb:79:db:2f:fc:d8:73:68:a8:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D67A138567146B2E89E0918237CB2D076D67AFA Validity Not Before: Feb 4 18:33:50 2025 GMT Not After : Feb 3 18:38:50 2026 GMT Subject: CN=A907A6F02B72041D1CFD6192E768D518DE911458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a7:2e:48:5f:c0:37:65:cf:62:81:a8:20:76: 03:85:47:1e:e2:a9:02:e1:4d:40:09:a7:c2:ee:b0: 59:10:a7:9d:ee:e9:2c:28:4e:53:0a:37:48:21:9b: dd:4c:6d:c5:38:41:c0:4a:41:73:ad:13:79:5e:bb: 1c:95:82:89:69:27:4a:5c:9c:85:b3:fc:bd:0e:8d: 8c:8e:2f:0f:2c:e2:d3:2b:e9:f5:80:0e:dc:93:74: 19:78:e9:05:c6:24:ea:6d:65:5e:a8:4e:4b:21:19: d2:ca:a3:d5:a6:64:df:8d:9c:d1:e6:57:8a:50:50: 30:0f:79:2c:4c:b7:87:c8:8c:99:ca:4f:46:ae:52: 63:5d:e3:4e:06:f0:a8:a5:2a:7f:e7:a6:7d:12:18: 01:db:e1:23:15:b2:21:15:a3:b2:02:e0:fb:f0:66: 84:b8:ad:27:05:46:1f:eb:b0:05:59:cf:32:09:c1: 2b:b2:a3:c6:5c:2c:48:9b:09:fb:f6:8d:c6:56:8a: 4a:95:ab:e7:56:e2:3f:95:d8:6a:a6:85:16:ff:31: 07:82:b0:d3:0a:a9:8c:e5:4e:4c:05:6f:54:fd:d6: ee:56:b9:d5:8a:47:71:b3:c5:25:ca:e3:5a:20:09: cd:b7:b8:2e:28:03:87:6b:73:d9:22:2c:73:6f:69: a3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:07:A6:F0:2B:72:04:1D:1C:FD:61:92:E7:68:D5:18:DE:91:14:58 X509v3 Authority Key Identifier: keyid:8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e382e302f32322d3232203d3e203232313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.209.8.0/22 Signature Algorithm: sha256WithRSAEncryption 80:7e:3b:0e:1f:9c:71:96:ea:6d:7f:b2:00:f4:4f:90:8e:af: 82:a5:28:3a:5c:95:6c:d0:2f:39:6f:05:c5:5a:50:63:09:e4: 5b:96:b5:c0:2f:08:7b:7f:de:c0:93:ec:20:6d:1c:1f:59:be: 5e:2b:af:76:06:82:c2:70:7f:16:db:22:cc:39:13:09:79:bc: 0c:0a:be:58:4a:60:bc:dc:65:9c:b9:b9:71:87:e6:52:71:29: 84:99:5c:2a:dd:19:b2:27:90:7b:a8:bd:67:f5:2b:12:22:f9: 09:71:1c:db:11:38:60:bc:4d:83:9d:dd:83:2e:30:c6:d6:2a: 44:8b:6c:5f:bc:d9:5d:34:32:cf:d3:23:3b:55:20:92:c1:b7: da:5d:96:8a:67:47:38:ff:d0:39:cd:5b:67:ad:b2:69:33:ab: 2e:4a:f9:d4:2e:79:f7:16:83:6a:dc:2c:6c:3d:00:69:44:ac: 96:23:eb:1d:5d:a7:7d:9e:55:4e:2e:89:e1:b2:9b:61:b9:dd: b6:a7:24:37:c2:7d:80:3f:43:56:76:58:76:7c:27:de:88:df: ca:ab:ed:1f:51:e7:53:64:61:12:6d:a2:48:d3:b0:a4:2f:67: 10:68:43:ef:e8:e6:27:6b:84:65:68:ad:66:af:5e:d7:88:59: ee:c1:6a:0d -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUYz0/Lj3hP4FRert52y/82HNoqMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ2N0ExMzg1NjcxNDZCMkU4OUUwOTE4MjM3Q0IyRDA3 NkQ2N0FGQTAeFw0yNTAyMDQxODMzNTBaFw0yNjAyMDMxODM4NTBaMDMxMTAvBgNV BAMTKEE5MDdBNkYwMkI3MjA0MUQxQ0ZENjE5MkU3NjhENTE4REU5MTE0NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/py5IX8A3Zc9igaggdgOFRx7i qQLhTUAJp8LusFkQp53u6SwoTlMKN0ghm91MbcU4QcBKQXOtE3leuxyVgolpJ0pc nIWz/L0OjYyOLw8s4tMr6fWADtyTdBl46QXGJOptZV6oTkshGdLKo9WmZN+NnNHm V4pQUDAPeSxMt4fIjJnKT0auUmNd404G8KilKn/npn0SGAHb4SMVsiEVo7IC4Pvw ZoS4rScFRh/rsAVZzzIJwSuyo8ZcLEibCfv2jcZWikqVq+dW4j+V2GqmhRb/MQeC sNMKqYzlTkwFb1T91u5WudWKR3GzxSXK41ogCc23uC4oA4drc9kiLHNvaaO3AgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUqQem8CtyBB0c/WGS52jVGN6RFFgwHwYDVR0j BBgwFoAUjWehOFZxRrLongkYI3yy0HbWevowDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NkZENjdEODlEOTZEMzlBMzk3MjRDNEFENjE0RjQ1N0Mw OEZBMjc4NDQxNUJFMzk1MkM0OTFCRUJFNEJFMjA3LzAvOEQ2N0ExMzg1NjcxNDZC MkU4OUUwOTE4MjM3Q0IyRDA3NkQ2N0FGQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84RDY3QTEzODU2NzE0NkIyRTg5 RTA5MTgyMzdDQjJEMDc2RDY3QUZBLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNTZGRDY3RDg5RDk2RDM5QTM5NzI0QzRBRDYxNEY0NTdDMDhGQTI3ODQ0 MTVCRTM5NTJDNDkxQkVCRTRCRTIwNy8wLzMxMzQzODJlMzIzMDM5MmUzODJlMzAy ZjMyMzIyZDMyMzIyMDNkM2UyMDMyMzIzMTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKU0QgwDQYJ KoZIhvcNAQELBQADggEBAIB+Ow4fnHGW6m1/sgD0T5COr4KlKDpclWzQLzlvBcVa UGMJ5FuWtcAvCHt/3sCT7CBtHB9Zvl4rr3YGgsJwfxbbIsw5Ewl5vAwKvlhKYLzc ZZy5uXGH5lJxKYSZXCrdGbInkHuovWf1KxIi+QlxHNsROGC8TYOd3YMuMMbWKkSL bF+82V00Ms/TIztVIJLBt9pdlopnRzj/0DnNW2etsmkzqy5K+dQuefcWg2rcLGw9 AGlErJYj6x1dp32eVU4uieGym2G53banJDfCfYA/Q1Z2WHZ8J96I38qr7R9R51Nk YRJtokjTsKQvZxBoQ+/o5idrhGVorWavXteIWe7Bag0= -----END CERTIFICATE-----Generated at Sun Apr 6 14:27:55 2025 by rpki-client