$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3230302e332e3135322e302f32322d3233203d3e203130373533.roa File: 3230302e332e3135322e302f32322d3233203d3e203130373533.roa (raw, json) Hash identifier: V7ZoTlap0SOfO4Bkq4j18MK9tvO4ejvjy8R8TD+4sgU= Subject key identifier: B2:65:E8:B3:8B:D3:6B:D3:93:A5:8F:F8:17:E1:B2:5D:BB:C7:78:C4 Certificate issuer: /CN=0D60903B8375FC5C2CB891635E0EA87B50DA3595 Certificate serial: 27EF844F007615DEE2EE02F34EEF41D810CAAD1C Authority key identifier: 0D:60:90:3B:83:75:FC:5C:2C:B8:91:63:5E:0E:A8:7B:50:DA:35:95 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3230302e332e3135322e302f32322d3233203d3e203130373533.roa Signing time: Fri 26 Sep 2025 15:15:01 +0000 ROA not before: Fri 26 Sep 2025 15:10:01 +0000 ROA not after: Fri 25 Sep 2026 15:15:01 +0000 asID: 10753 IP address blocks: 200.3.152.0/22 maxlen: 23 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.crl rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 26 Oct 2025 12:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ef:84:4f:00:76:15:de:e2:ee:02:f3:4e:ef:41:d8:10:ca:ad:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D60903B8375FC5C2CB891635E0EA87B50DA3595 Validity Not Before: Sep 26 15:10:01 2025 GMT Not After : Sep 25 15:15:01 2026 GMT Subject: CN=B265E8B38BD36BD393A58FF817E1B25DBBC778C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:75:28:67:7c:e4:ae:ff:4f:f5:61:5a:d8:e1: f9:d7:9a:b7:38:52:c4:f5:5c:39:07:34:e6:10:8e: a8:83:47:30:81:92:f3:c9:1b:ba:6e:f0:f5:37:da: ea:86:aa:73:f2:23:86:89:1b:ab:6b:07:dc:eb:d2: c6:04:95:4e:8b:a4:f7:29:48:4c:d6:18:f7:6a:64: 46:18:0c:9a:4b:62:4d:76:1d:93:e9:13:07:d9:ea: b8:5e:b8:59:d7:fe:4c:56:7d:15:8d:ec:2e:61:5b: a0:64:6f:35:28:c5:4a:cc:5e:4e:28:83:32:cc:c5: de:81:8a:96:47:f6:6f:1f:ab:3e:8e:56:be:d9:cb: b9:3f:8a:a2:5d:b6:1c:ff:ec:84:c7:7f:60:3f:c5: 94:ba:f2:f8:22:82:36:45:b3:f1:a1:fc:de:ae:5f: b8:aa:f3:15:2e:05:36:b5:69:a8:b6:6d:81:b4:33: 5c:13:a5:e9:e4:9f:80:93:5e:db:b5:3c:80:cf:3b: 96:50:9d:92:a3:dd:b0:05:b6:83:4c:47:d5:d4:e3: 9e:56:53:84:92:ce:87:43:db:cd:aa:d6:08:f8:a0: 01:a9:d4:82:e8:f0:ab:24:8b:28:f1:71:37:40:71: d4:d7:34:ac:6a:e0:13:9d:24:30:78:72:d3:8a:95: 39:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:65:E8:B3:8B:D3:6B:D3:93:A5:8F:F8:17:E1:B2:5D:BB:C7:78:C4 X509v3 Authority Key Identifier: keyid:0D:60:90:3B:83:75:FC:5C:2C:B8:91:63:5E:0E:A8:7B:50:DA:35:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3230302e332e3135322e302f32322d3233203d3e203130373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.3.152.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:5f:4c:6e:5d:f4:51:00:94:d3:23:bb:c2:a0:ee:c8:f4:a0: 6e:ac:75:02:80:45:0d:99:f9:36:87:7c:aa:4a:94:1a:7d:9d: 95:04:79:ad:c8:dc:a8:8c:9e:f8:fa:82:54:43:41:a2:ad:eb: 92:6c:73:fa:ff:bb:45:c0:38:7f:db:97:2b:4f:50:d5:6a:d5: 42:0e:f3:50:34:d1:ec:64:f4:98:ec:d0:08:79:b3:07:51:2e: 66:97:7c:fc:8c:85:6d:bd:ac:0b:48:0e:0c:88:e9:5c:ce:94: a9:0f:77:98:50:2c:87:20:3e:de:bd:16:94:dd:a8:fc:d3:00: e6:e7:64:a9:d5:e1:84:29:51:4a:86:a5:70:54:0e:48:b2:90: 2b:1f:82:87:93:d6:40:c2:bf:e0:e7:41:6c:94:7e:55:77:c6: df:f1:8a:11:7d:c3:8d:91:56:15:98:29:b7:22:c9:16:c8:11: 61:21:d7:3d:5d:32:fe:e9:10:cf:31:4a:70:c1:e7:18:74:3d: a2:35:3a:b4:d3:82:96:7b:8c:cd:44:a0:23:1d:b5:49:65:2e: 0d:0f:15:60:7e:74:1d:76:b4:4d:81:05:bd:80:be:cf:98:11: 99:1e:82:9d:25:be:e4:ba:55:fb:3e:95:2a:f8:4b:69:eb:00: b1:d2:d3:1d -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUJ++ETwB2Fd7i7gLzTu9B2BDKrRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ2MDkwM0I4Mzc1RkM1QzJDQjg5MTYzNUUwRUE4N0I1 MERBMzU5NTAeFw0yNTA5MjYxNTEwMDFaFw0yNjA5MjUxNTE1MDFaMDMxMTAvBgNV BAMTKEIyNjVFOEIzOEJEMzZCRDM5M0E1OEZGODE3RTFCMjVEQkJDNzc4QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5dShnfOSu/0/1YVrY4fnXmrc4 UsT1XDkHNOYQjqiDRzCBkvPJG7pu8PU32uqGqnPyI4aJG6trB9zr0sYElU6LpPcp SEzWGPdqZEYYDJpLYk12HZPpEwfZ6rheuFnX/kxWfRWN7C5hW6BkbzUoxUrMXk4o gzLMxd6BipZH9m8fqz6OVr7Zy7k/iqJdthz/7ITHf2A/xZS68vgigjZFs/Gh/N6u X7iq8xUuBTa1aai2bYG0M1wTpenkn4CTXtu1PIDPO5ZQnZKj3bAFtoNMR9XU455W U4SSzodD282q1gj4oAGp1ILo8KskiyjxcTdAcdTXNKxq4BOdJDB4ctOKlTlbAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUsmXos4vTa9OTpY/4F+GyXbvHeMQwHwYDVR0j BBgwFoAUDWCQO4N1/FwsuJFjXg6oe1DaNZUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81Q0U1Q0Q5RTQyRjk4QUM3OTdENjVFOTZBOUQwOUUzMUY1 RkJDNTg4NEQxRjgwMkZBRTgwQ0Y4RkQ1MEZERjlELzAvMEQ2MDkwM0I4Mzc1RkM1 QzJDQjg5MTYzNUUwRUE4N0I1MERBMzU5NS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wRDYwOTAzQjgzNzVGQzVDMkNC ODkxNjM1RTBFQTg3QjUwREEzNTk1LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNUNFNUNEOUU0MkY5OEFDNzk3RDY1RTk2QTlEMDlFMzFGNUZCQzU4ODRE MUY4MDJGQUU4MENGOEZENTBGREY5RC8wLzMyMzAzMDJlMzMyZTMxMzUzMjJlMzAy ZjMyMzIyZDMyMzMyMDNkM2UyMDMxMzAzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALIA5gwDQYJ KoZIhvcNAQELBQADggEBABpfTG5d9FEAlNMju8Kg7sj0oG6sdQKARQ2Z+TaHfKpK lBp9nZUEea3I3KiMnvj6glRDQaKt65Jsc/r/u0XAOH/blytPUNVq1UIO81A00exk 9Jjs0Ah5swdRLmaXfPyMhW29rAtIDgyI6VzOlKkPd5hQLIcgPt69FpTdqPzTAObn ZKnV4YQpUUqGpXBUDkiykCsfgoeT1kDCv+DnQWyUflV3xt/xihF9w42RVhWYKbci yRbIEWEh1z1dMv7pEM8xSnDB5xh0PaI1OrTTgpZ7jM1EoCMdtUllLg0PFWB+dB12 tE2BBb2Avs+YEZkegp0lvuS6Vfs+lSr4S2nrALHS0x0= -----END CERTIFICATE-----Generated at Wed Oct 22 15:15:21 2025 by rpki-client