$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5A9BE8BAC0DBF04A04E657F177221DE5EFAED1478034BDE625FD43150BCFBF02/0/3133382e3131372e31322e302f32342d3234203d3e20323733303035.roa File: 3133382e3131372e31322e302f32342d3234203d3e20323733303035.roa (raw, json) Hash identifier: x8TKGA/ymcnEQ5T/pgbqXFsH+hMaJHOdkeuG0LPaeF8= Subject key identifier: 2B:50:4A:B2:F7:42:A8:64:CE:B2:42:C8:5B:2A:48:58:FB:47:33:83 Certificate issuer: /CN=D2E6A8AF3226501D8C0AE89B31A78E369BCDBC03 Certificate serial: 4021EA9522C238B14AAF9699A0E79BED178517C3 Authority key identifier: D2:E6:A8:AF:32:26:50:1D:8C:0A:E8:9B:31:A7:8E:36:9B:CD:BC:03 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2E6A8AF3226501D8C0AE89B31A78E369BCDBC03.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5A9BE8BAC0DBF04A04E657F177221DE5EFAED1478034BDE625FD43150BCFBF02/0/3133382e3131372e31322e302f32342d3234203d3e20323733303035.roa Signing time: Tue 04 Feb 2025 20:08:01 +0000 ROA not before: Tue 04 Feb 2025 20:03:01 +0000 ROA not after: Tue 03 Feb 2026 20:08:01 +0000 asID: 273005 IP address blocks: 138.117.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/5A9BE8BAC0DBF04A04E657F177221DE5EFAED1478034BDE625FD43150BCFBF02/0/D2E6A8AF3226501D8C0AE89B31A78E369BCDBC03.crl rsync://repository.lacnic.net/rpki/lacnic/5A9BE8BAC0DBF04A04E657F177221DE5EFAED1478034BDE625FD43150BCFBF02/0/D2E6A8AF3226501D8C0AE89B31A78E369BCDBC03.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2E6A8AF3226501D8C0AE89B31A78E369BCDBC03.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 20 Apr 2025 13:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:21:ea:95:22:c2:38:b1:4a:af:96:99:a0:e7:9b:ed:17:85:17:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2E6A8AF3226501D8C0AE89B31A78E369BCDBC03 Validity Not Before: Feb 4 20:03:01 2025 GMT Not After : Feb 3 20:08:01 2026 GMT Subject: CN=2B504AB2F742A864CEB242C85B2A4858FB473383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:ad:23:67:d6:f2:20:fb:e5:e8:37:d4:5e:4d: c8:7d:6a:94:ec:27:80:60:46:ac:01:2e:5c:e4:8b: 01:7b:43:e0:f5:4d:37:57:b7:7b:65:8d:66:f0:bb: 4c:fe:a8:d2:6a:2c:cf:5a:13:cd:5a:9e:ef:f9:8c: 55:fa:b3:2e:83:b6:3f:06:ae:3b:69:0b:71:44:58: 8f:91:33:69:d0:e7:90:10:a3:6f:e6:da:47:06:cf: db:bc:ea:f9:60:f2:33:c5:da:cc:46:5b:8a:a4:03: 39:f7:6c:e2:9a:8e:df:44:3f:dc:7b:c3:7c:e3:49: b3:65:68:a3:c5:59:cd:39:99:16:5a:b7:ef:a1:e3: 5f:d4:90:4a:ff:f5:02:bb:b4:7c:46:06:12:1f:ab: 91:7c:06:a9:86:7c:6d:f7:33:f3:11:52:d2:c4:b2: 78:15:cb:eb:f8:c3:16:d8:e7:3c:c5:4c:34:f2:f7: a5:4c:c6:b4:ca:7d:59:e9:11:c0:59:dd:1d:74:81: 6c:9f:44:43:32:40:17:31:51:63:1d:9a:49:8b:88: 7b:d8:a5:cd:39:ae:22:c7:31:88:48:2a:e2:e4:60: f8:6c:7a:37:e3:1a:3c:d4:96:10:85:a1:29:25:03: 3d:d2:68:0c:cc:22:d0:88:2c:06:e0:43:bb:b1:d6: 4d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:50:4A:B2:F7:42:A8:64:CE:B2:42:C8:5B:2A:48:58:FB:47:33:83 X509v3 Authority Key Identifier: keyid:D2:E6:A8:AF:32:26:50:1D:8C:0A:E8:9B:31:A7:8E:36:9B:CD:BC:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/5A9BE8BAC0DBF04A04E657F177221DE5EFAED1478034BDE625FD43150BCFBF02/0/D2E6A8AF3226501D8C0AE89B31A78E369BCDBC03.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2E6A8AF3226501D8C0AE89B31A78E369BCDBC03.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5A9BE8BAC0DBF04A04E657F177221DE5EFAED1478034BDE625FD43150BCFBF02/0/3133382e3131372e31322e302f32342d3234203d3e20323733303035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.117.12.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:87:5f:57:b0:e4:22:0c:8f:8c:f1:27:87:7f:77:a2:c2:5a: 49:ee:a0:06:32:88:ed:98:a2:36:93:fc:b8:6b:97:18:88:80: 50:68:4a:4d:89:cc:d2:ac:a9:f5:82:5a:36:89:2b:30:2c:96: 23:f6:17:de:02:57:b9:03:61:96:4e:80:c3:bb:f5:2e:1b:50: 35:4a:36:ef:87:9f:bf:07:24:05:40:97:f9:14:24:e2:89:5c: 38:79:aa:0c:cc:cb:1f:90:92:e0:40:c7:44:da:17:f1:bc:a4: 69:1a:3d:81:cd:a8:59:04:48:83:95:d6:6d:95:98:91:72:ee: c0:98:f0:15:cb:98:ad:db:20:9c:fc:f0:29:78:3b:83:17:44: 31:f7:13:db:44:ce:a9:2d:30:0c:1f:e1:e9:48:96:e5:eb:d1: b8:4f:3a:32:c6:01:f6:71:60:47:52:46:1a:a9:97:74:3c:6f: 4c:c9:af:b2:ab:06:97:9e:2c:d7:55:2c:8d:be:bb:31:e1:be: d5:51:ba:54:2d:95:ec:64:d3:8d:9b:eb:8f:bf:a6:7b:01:de: 32:17:e6:76:4e:79:5c:33:58:88:82:97:13:93:12:6e:8d:ff: 79:d2:d6:89:49:f7:e4:cb:24:18:73:51:ce:4f:18:75:b7:fc: d8:1f:6b:04 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUQCHqlSLCOLFKr5aZoOeb7ReFF8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFNkE4QUYzMjI2NTAxRDhDMEFFODlCMzFBNzhFMzY5 QkNEQkMwMzAeFw0yNTAyMDQyMDAzMDFaFw0yNjAyMDMyMDA4MDFaMDMxMTAvBgNV BAMTKDJCNTA0QUIyRjc0MkE4NjRDRUIyNDJDODVCMkE0ODU4RkI0NzMzODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCDrSNn1vIg++XoN9ReTch9apTs J4BgRqwBLlzkiwF7Q+D1TTdXt3tljWbwu0z+qNJqLM9aE81anu/5jFX6sy6Dtj8G rjtpC3FEWI+RM2nQ55AQo2/m2kcGz9u86vlg8jPF2sxGW4qkAzn3bOKajt9EP9x7 w3zjSbNlaKPFWc05mRZat++h41/UkEr/9QK7tHxGBhIfq5F8BqmGfG33M/MRUtLE sngVy+v4wxbY5zzFTDTy96VMxrTKfVnpEcBZ3R10gWyfREMyQBcxUWMdmkmLiHvY pc05riLHMYhIKuLkYPhsejfjGjzUlhCFoSklAz3SaAzMItCILAbgQ7ux1k1XAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUK1BKsvdCqGTOskLIWypIWPtHM4MwHwYDVR0j BBgwFoAU0uaorzImUB2MCuibMaeONpvNvAMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81QTlCRThCQUMwREJGMDRBMDRFNjU3RjE3NzIyMURFNUVG QUVEMTQ3ODAzNEJERTYyNUZENDMxNTBCQ0ZCRjAyLzAvRDJFNkE4QUYzMjI2NTAx RDhDMEFFODlCMzFBNzhFMzY5QkNEQkMwMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EMkU2QThBRjMyMjY1MDFEOEMw QUU4OUIzMUE3OEUzNjlCQ0RCQzAzLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNUE5QkU4QkFDMERCRjA0QTA0RTY1N0YxNzcyMjFERTVFRkFFRDE0Nzgw MzRCREU2MjVGRDQzMTUwQkNGQkYwMi8wLzMxMzMzODJlMzEzMTM3MmUzMTMyMmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzMzMzAzMDM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAinUM MA0GCSqGSIb3DQEBCwUAA4IBAQB8h19XsOQiDI+M8SeHf3eiwlpJ7qAGMojtmKI2 k/y4a5cYiIBQaEpNiczSrKn1glo2iSswLJYj9hfeAle5A2GWToDDu/UuG1A1Sjbv h5+/ByQFQJf5FCTiiVw4eaoMzMsfkJLgQMdE2hfxvKRpGj2BzahZBEiDldZtlZiR cu7AmPAVy5it2yCc/PApeDuDF0Qx9xPbRM6pLTAMH+HpSJbl69G4TzoyxgH2cWBH UkYaqZd0PG9Mya+yqwaXnizXVSyNvrsx4b7VUbpULZXsZNONm+uPv6Z7Ad4yF+Z2 TnlcM1iIgpcTkxJujf950taJSffkyyQYc1HOTxh1t/zYH2sE -----END CERTIFICATE-----Generated at Thu Apr 17 13:10:19 2025 by rpki-client