$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3230302e332e3135322e302f32322d3233203d3e203635353639.roa File: 3230302e332e3135322e302f32322d3233203d3e203635353639.roa (raw, json) Hash identifier: M0zImmkWH/N24YCmzcJJ4RmFGxt/XhCDiNFLrokwMtQ= Subject key identifier: 3C:97:23:9A:D3:CC:AD:C9:4B:11:DD:44:EF:00:AE:6B:91:C3:BD:97 Certificate issuer: /CN=0D60903B8375FC5C2CB891635E0EA87B50DA3595 Certificate serial: 734ABEA9C6C9F564FA6A9014FBC5AE8E5989C30F Authority key identifier: 0D:60:90:3B:83:75:FC:5C:2C:B8:91:63:5E:0E:A8:7B:50:DA:35:95 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3230302e332e3135322e302f32322d3233203d3e203635353639.roa Signing time: Fri 26 Sep 2025 15:15:00 +0000 ROA not before: Fri 26 Sep 2025 15:10:00 +0000 ROA not after: Fri 25 Sep 2026 15:15:00 +0000 asID: 65569 IP address blocks: 200.3.152.0/22 maxlen: 23 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.crl rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 26 Oct 2025 12:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:4a:be:a9:c6:c9:f5:64:fa:6a:90:14:fb:c5:ae:8e:59:89:c3:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D60903B8375FC5C2CB891635E0EA87B50DA3595 Validity Not Before: Sep 26 15:10:00 2025 GMT Not After : Sep 25 15:15:00 2026 GMT Subject: CN=3C97239AD3CCADC94B11DD44EF00AE6B91C3BD97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7d:7f:e3:79:00:a6:3b:08:57:62:c3:12:7a: d6:cc:b6:31:0e:d1:05:fe:bf:55:05:4a:bb:57:ca: c5:c3:5f:9c:db:69:9a:95:3e:ab:f1:d2:b2:86:95: 3c:7d:e9:40:14:c4:df:86:16:28:e7:d6:9a:a9:e5: 1b:5f:73:14:97:48:e9:86:93:6a:61:8a:f8:a9:7f: 5c:b5:c0:ae:af:58:f9:96:8a:99:b1:4d:41:41:75: 8f:46:52:74:54:6e:d5:31:ca:c4:16:41:fe:ee:ba: 0f:e8:6e:6f:aa:92:7b:45:59:f5:a6:6d:7c:91:84: a5:83:ce:c6:0f:45:08:0c:56:ed:8c:d4:81:c1:c9: 8a:0e:bd:08:c8:d7:cb:de:69:d2:64:3c:91:c0:d7: 8d:cb:99:91:05:23:71:dc:99:62:19:cb:29:4f:57: 48:8d:65:3a:90:80:ce:cb:e9:b3:06:74:90:3a:6e: 66:32:80:8c:3a:88:09:4f:3c:dd:0e:28:23:30:5e: cc:23:73:85:9b:78:d6:21:c3:0d:88:95:0b:07:70: 49:c1:58:ce:08:ef:ca:25:12:8f:af:68:50:13:88: 69:60:58:43:ef:c6:1e:1d:41:21:61:1f:48:0e:99: 70:f5:f4:aa:30:e1:8f:b3:29:f5:41:91:10:0f:c6: ab:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:97:23:9A:D3:CC:AD:C9:4B:11:DD:44:EF:00:AE:6B:91:C3:BD:97 X509v3 Authority Key Identifier: keyid:0D:60:90:3B:83:75:FC:5C:2C:B8:91:63:5E:0E:A8:7B:50:DA:35:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3230302e332e3135322e302f32322d3233203d3e203635353639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.3.152.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:82:5f:9c:a8:9d:02:a9:4c:36:47:e3:1f:21:e6:a0:fb:c6: 4d:9c:08:64:9f:13:ee:b6:1b:de:21:e4:2c:1c:23:9c:95:b5: 8a:6c:e9:e0:03:5b:3f:f8:60:85:3e:00:0b:99:f2:c5:a4:0e: 3e:9b:a9:b9:68:90:c1:a0:92:3f:fd:92:ff:e3:40:ab:1b:8b: 49:f7:3d:1a:06:a8:b0:3c:ca:46:a7:48:ba:1c:e1:ff:69:31: 9c:7d:67:31:24:3e:11:59:36:f7:fa:3a:d7:eb:fd:88:d6:d5: d4:80:98:20:52:b3:2d:c6:ad:b1:80:d3:b0:c6:72:54:87:3a: 3c:fd:06:d7:f0:7d:70:d1:c6:25:9c:0a:0a:1f:16:44:3c:b5: 79:10:c8:63:18:73:d3:3c:3c:7d:a1:a2:6f:db:66:f2:27:2e: 08:c5:26:ed:19:5b:dd:f2:0b:d5:1b:26:cc:c4:1c:ef:35:fe: fe:99:b7:a3:4d:25:31:ba:b3:3e:ae:1d:ad:18:4f:99:a5:16: 7d:a7:3d:ff:cd:3c:d4:5f:f0:fb:af:b6:48:c4:cc:37:9d:1e: 1b:af:66:05:7c:f4:a2:69:82:96:51:3c:45:31:c5:e5:6e:f5: ff:59:73:a0:d3:0b:b3:69:fc:3a:95:1e:6f:ef:16:44:6b:ef: 9c:49:9b:f0 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUc0q+qcbJ9WT6apAU+8WujlmJww8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ2MDkwM0I4Mzc1RkM1QzJDQjg5MTYzNUUwRUE4N0I1 MERBMzU5NTAeFw0yNTA5MjYxNTEwMDBaFw0yNjA5MjUxNTE1MDBaMDMxMTAvBgNV BAMTKDNDOTcyMzlBRDNDQ0FEQzk0QjExREQ0NEVGMDBBRTZCOTFDM0JEOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVfX/jeQCmOwhXYsMSetbMtjEO 0QX+v1UFSrtXysXDX5zbaZqVPqvx0rKGlTx96UAUxN+GFijn1pqp5RtfcxSXSOmG k2phivipf1y1wK6vWPmWipmxTUFBdY9GUnRUbtUxysQWQf7uug/obm+qkntFWfWm bXyRhKWDzsYPRQgMVu2M1IHByYoOvQjI18veadJkPJHA143LmZEFI3HcmWIZyylP V0iNZTqQgM7L6bMGdJA6bmYygIw6iAlPPN0OKCMwXswjc4WbeNYhww2IlQsHcEnB WM4I78olEo+vaFATiGlgWEPvxh4dQSFhH0gOmXD19Kow4Y+zKfVBkRAPxqvBAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUPJcjmtPMrclLEd1E7wCua5HDvZcwHwYDVR0j BBgwFoAUDWCQO4N1/FwsuJFjXg6oe1DaNZUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81Q0U1Q0Q5RTQyRjk4QUM3OTdENjVFOTZBOUQwOUUzMUY1 RkJDNTg4NEQxRjgwMkZBRTgwQ0Y4RkQ1MEZERjlELzAvMEQ2MDkwM0I4Mzc1RkM1 QzJDQjg5MTYzNUUwRUE4N0I1MERBMzU5NS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wRDYwOTAzQjgzNzVGQzVDMkNC ODkxNjM1RTBFQTg3QjUwREEzNTk1LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNUNFNUNEOUU0MkY5OEFDNzk3RDY1RTk2QTlEMDlFMzFGNUZCQzU4ODRE MUY4MDJGQUU4MENGOEZENTBGREY5RC8wLzMyMzAzMDJlMzMyZTMxMzUzMjJlMzAy ZjMyMzIyZDMyMzMyMDNkM2UyMDM2MzUzNTM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALIA5gwDQYJ KoZIhvcNAQELBQADggEBAByCX5yonQKpTDZH4x8h5qD7xk2cCGSfE+62G94h5Cwc I5yVtYps6eADWz/4YIU+AAuZ8sWkDj6bqblokMGgkj/9kv/jQKsbi0n3PRoGqLA8 ykanSLoc4f9pMZx9ZzEkPhFZNvf6Otfr/YjW1dSAmCBSsy3GrbGA07DGclSHOjz9 BtfwfXDRxiWcCgofFkQ8tXkQyGMYc9M8PH2hom/bZvInLgjFJu0ZW93yC9UbJszE HO81/v6Zt6NNJTG6sz6uHa0YT5mlFn2nPf/NPNRf8PuvtkjEzDedHhuvZgV89KJp gpZRPEUxxeVu9f9Zc6DTC7Np/DqVHm/vFkRr75xJm/A= -----END CERTIFICATE-----Generated at Wed Oct 22 15:15:22 2025 by rpki-client