$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5731F0F4A6C326F5122CACD4C64755CE1ABD90445C675B265F73814AE2A937A9/0/3230302e32392e3235332e302f32342d3234203d3e20323733313634.roa File: 3230302e32392e3235332e302f32342d3234203d3e20323733313634.roa (raw, json) Hash identifier: tnFRUCYTDAPFVrnGsFbOG81u2C7P5wWNlV2x40upkEc= Subject key identifier: D4:5A:B6:BC:48:B5:FF:9F:77:83:68:9D:A8:03:20:8F:A8:47:33:F4 Certificate issuer: /CN=ED372ACDEFB1DA2C35BDC9B7F4E81F4ED857EB58 Certificate serial: 5F2AF73496009C4BC54A64A15BEF6F5F2D0C4461 Authority key identifier: ED:37:2A:CD:EF:B1:DA:2C:35:BD:C9:B7:F4:E8:1F:4E:D8:57:EB:58 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED372ACDEFB1DA2C35BDC9B7F4E81F4ED857EB58.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5731F0F4A6C326F5122CACD4C64755CE1ABD90445C675B265F73814AE2A937A9/0/3230302e32392e3235332e302f32342d3234203d3e20323733313634.roa Signing time: Fri 03 Jan 2025 18:00:00 +0000 ROA not before: Fri 03 Jan 2025 17:55:00 +0000 ROA not after: Fri 02 Jan 2026 18:00:00 +0000 asID: 273164 IP address blocks: 200.29.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/5731F0F4A6C326F5122CACD4C64755CE1ABD90445C675B265F73814AE2A937A9/0/ED372ACDEFB1DA2C35BDC9B7F4E81F4ED857EB58.crl rsync://repository.lacnic.net/rpki/lacnic/5731F0F4A6C326F5122CACD4C64755CE1ABD90445C675B265F73814AE2A937A9/0/ED372ACDEFB1DA2C35BDC9B7F4E81F4ED857EB58.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED372ACDEFB1DA2C35BDC9B7F4E81F4ED857EB58.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 12 Apr 2025 00:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:2a:f7:34:96:00:9c:4b:c5:4a:64:a1:5b:ef:6f:5f:2d:0c:44:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED372ACDEFB1DA2C35BDC9B7F4E81F4ED857EB58 Validity Not Before: Jan 3 17:55:00 2025 GMT Not After : Jan 2 18:00:00 2026 GMT Subject: CN=D45AB6BC48B5FF9F7783689DA803208FA84733F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f1:6a:5c:19:30:a6:1c:53:53:e3:a0:8e:23: fb:36:de:38:12:c0:1a:41:c5:3e:d9:56:e9:e9:ca: 84:9f:63:e5:6f:8f:98:dd:f0:36:7c:55:1a:3c:8c: e7:7c:37:a0:43:ad:a5:12:41:24:3e:b6:bc:48:7a: dc:1e:62:39:1f:e8:47:13:79:e8:42:ca:47:28:22: 40:1f:87:85:97:bd:97:0b:03:98:22:03:b8:0f:b2: ca:f6:68:cc:d9:d2:2f:d4:4f:2b:af:4e:b4:e8:84: 42:ad:0d:fe:25:c2:b4:8c:58:d5:e6:8a:1e:83:45: 28:d2:7c:86:54:2c:87:87:72:2e:a7:40:65:99:54: dd:74:f7:3a:b5:df:45:28:38:7b:82:65:08:45:53: 74:70:4b:68:37:79:f7:15:e7:e9:dd:2b:85:f6:37: c0:eb:ea:83:95:1f:cf:38:18:d7:8b:37:cc:d8:a8: 5c:9b:5b:bd:34:d8:3c:db:3f:22:af:94:2a:42:4c: 7e:9c:23:d7:63:c4:a0:4c:36:b7:11:e0:77:d5:ee: e7:5d:ce:6d:0b:06:35:87:5e:04:14:0c:65:d8:bf: d9:38:84:43:01:8b:95:d6:39:bf:40:9e:a5:6e:04: b0:e8:26:49:06:1f:a2:19:2d:3f:83:8f:e2:f3:3c: 46:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5A:B6:BC:48:B5:FF:9F:77:83:68:9D:A8:03:20:8F:A8:47:33:F4 X509v3 Authority Key Identifier: keyid:ED:37:2A:CD:EF:B1:DA:2C:35:BD:C9:B7:F4:E8:1F:4E:D8:57:EB:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/5731F0F4A6C326F5122CACD4C64755CE1ABD90445C675B265F73814AE2A937A9/0/ED372ACDEFB1DA2C35BDC9B7F4E81F4ED857EB58.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED372ACDEFB1DA2C35BDC9B7F4E81F4ED857EB58.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5731F0F4A6C326F5122CACD4C64755CE1ABD90445C675B265F73814AE2A937A9/0/3230302e32392e3235332e302f32342d3234203d3e20323733313634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.29.253.0/24 Signature Algorithm: sha256WithRSAEncryption c2:f2:88:f2:dc:43:19:d3:2f:f7:a2:19:1d:38:33:e1:c5:2e: ed:36:7c:14:ed:a1:f5:84:3e:99:a3:a2:aa:0d:5c:18:1f:78: c3:cc:e7:f3:95:43:2b:34:3f:35:87:65:5a:26:ab:11:40:dc: a2:de:e7:2f:cb:a7:e1:bb:53:b4:da:af:bc:7c:8e:e4:7c:7e: fe:e7:e9:aa:58:09:56:88:c3:7f:1f:46:18:d0:31:03:b0:db: 57:0e:d5:43:60:35:d4:24:10:71:40:ed:47:ea:f7:f2:72:90: 7f:2e:d3:62:96:ed:7e:4b:3f:5a:e3:73:26:60:76:b2:8a:4d: 23:3f:b8:bb:65:22:dd:f2:ef:f6:e7:05:b2:47:6f:f8:6f:96: d9:72:cb:ac:5f:e6:f7:ea:fa:38:7a:56:66:f5:da:1a:04:fe: bc:29:22:e5:12:ab:bc:56:3a:fc:79:d0:42:25:82:e3:ab:b8: af:7c:96:89:40:bb:18:40:97:81:ff:b0:bc:b2:47:dd:0e:f3: 8e:3c:dd:a6:ba:44:b5:a5:27:e6:a6:3b:c4:28:97:fe:db:f9: fa:c1:b2:51:56:85:33:18:8f:a2:a9:58:2a:8b:6c:1b:26:f8: c9:32:c8:b1:38:3b:b5:34:75:7f:cc:55:84:ec:76:62:9f:31: 5d:39:cc:1a -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUXyr3NJYAnEvFSmShW+9vXy0MRGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQzNzJBQ0RFRkIxREEyQzM1QkRDOUI3RjRFODFGNEVE ODU3RUI1ODAeFw0yNTAxMDMxNzU1MDBaFw0yNjAxMDIxODAwMDBaMDMxMTAvBgNV BAMTKEQ0NUFCNkJDNDhCNUZGOUY3NzgzNjg5REE4MDMyMDhGQTg0NzMzRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp8WpcGTCmHFNT46COI/s23jgS wBpBxT7ZVunpyoSfY+Vvj5jd8DZ8VRo8jOd8N6BDraUSQSQ+trxIetweYjkf6EcT eehCykcoIkAfh4WXvZcLA5giA7gPssr2aMzZ0i/UTyuvTrTohEKtDf4lwrSMWNXm ih6DRSjSfIZULIeHci6nQGWZVN109zq130UoOHuCZQhFU3RwS2g3efcV5+ndK4X2 N8Dr6oOVH884GNeLN8zYqFybW7002DzbPyKvlCpCTH6cI9djxKBMNrcR4HfV7udd zm0LBjWHXgQUDGXYv9k4hEMBi5XWOb9AnqVuBLDoJkkGH6IZLT+Dj+LzPEZ1AgMB AAGjggLKMIICxjAdBgNVHQ4EFgQU1Fq2vEi1/593g2idqAMgj6hHM/QwHwYDVR0j BBgwFoAU7Tcqze+x2iw1vcm39OgfTthX61gwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NzMxRjBGNEE2QzMyNkY1MTIyQ0FDRDRDNjQ3NTVDRTFB QkQ5MDQ0NUM2NzVCMjY1RjczODE0QUUyQTkzN0E5LzAvRUQzNzJBQ0RFRkIxREEy QzM1QkRDOUI3RjRFODFGNEVEODU3RUI1OC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FRDM3MkFDREVGQjFEQTJDMzVC REM5QjdGNEU4MUY0RUQ4NTdFQjU4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNTczMUYwRjRBNkMzMjZGNTEyMkNBQ0Q0QzY0NzU1Q0UxQUJEOTA0NDVD Njc1QjI2NUY3MzgxNEFFMkE5MzdBOS8wLzMyMzAzMDJlMzIzOTJlMzIzNTMzMmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzMzMzEzNjM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyB39 MA0GCSqGSIb3DQEBCwUAA4IBAQDC8ojy3EMZ0y/3ohkdODPhxS7tNnwU7aH1hD6Z o6KqDVwYH3jDzOfzlUMrND81h2VaJqsRQNyi3ucvy6fhu1O02q+8fI7kfH7+5+mq WAlWiMN/H0YY0DEDsNtXDtVDYDXUJBBxQO1H6vfycpB/LtNilu1+Sz9a43MmYHay ik0jP7i7ZSLd8u/25wWyR2/4b5bZcsusX+b36vo4elZm9doaBP68KSLlEqu8Vjr8 edBCJYLjq7ivfJaJQLsYQJeB/7C8skfdDvOOPN2mukS1pSfmpjvEKJf+2/n6wbJR VoUzGI+iqVgqi2wbJvjJMsixODu1NHV/zFWE7HZinzFdOcwa -----END CERTIFICATE-----Generated at Tue Apr 8 17:01:50 2025 by rpki-client