$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/686A87C0260F7870954C01648D3E2973239D033694AA40D98723525F21162D78/0/34352e3233372e3232302e302f32322d3232203d3e20323636383139.roa File: 34352e3233372e3232302e302f32322d3232203d3e20323636383139.roa (raw, json) Hash identifier: 5GwF/yG9sdY75vW2Fj///TOVFJ4fRdCrLcvD0MbMXqY= Subject key identifier: 52:43:6D:E9:2E:9F:FD:E0:87:5E:AF:EA:09:0A:AC:55:AC:85:F6:49 Certificate issuer: /CN=AA2338B66632D823F77072125112B5BF1F721769 Certificate serial: 2BAB3BAD485D41ED3CE31ABCA901FE7B0EE7615D Authority key identifier: AA:23:38:B6:66:32:D8:23:F7:70:72:12:51:12:B5:BF:1F:72:17:69 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AA2338B66632D823F77072125112B5BF1F721769.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/686A87C0260F7870954C01648D3E2973239D033694AA40D98723525F21162D78/0/34352e3233372e3232302e302f32322d3232203d3e20323636383139.roa Signing time: Tue 04 Feb 2025 18:04:22 +0000 ROA not before: Tue 04 Feb 2025 17:59:22 +0000 ROA not after: Tue 03 Feb 2026 18:04:22 +0000 asID: 266819 IP address blocks: 45.237.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/686A87C0260F7870954C01648D3E2973239D033694AA40D98723525F21162D78/0/AA2338B66632D823F77072125112B5BF1F721769.crl rsync://repository.lacnic.net/rpki/lacnic/686A87C0260F7870954C01648D3E2973239D033694AA40D98723525F21162D78/0/AA2338B66632D823F77072125112B5BF1F721769.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AA2338B66632D823F77072125112B5BF1F721769.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 26 Apr 2025 15:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ab:3b:ad:48:5d:41:ed:3c:e3:1a:bc:a9:01:fe:7b:0e:e7:61:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA2338B66632D823F77072125112B5BF1F721769 Validity Not Before: Feb 4 17:59:22 2025 GMT Not After : Feb 3 18:04:22 2026 GMT Subject: CN=52436DE92E9FFDE0875EAFEA090AAC55AC85F649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4e:a1:03:f3:62:db:b1:ef:59:df:b1:a9:13: 42:b8:9c:e3:4a:7c:00:99:6f:af:b7:d8:50:bf:62: 07:41:82:c2:8d:73:cb:fd:64:72:16:db:69:9a:a8: 37:9b:9b:9d:17:9d:e8:fd:f8:68:0e:6e:31:7c:f0: 53:fb:87:04:14:1f:f0:b7:a5:a5:fe:56:48:a1:1a: d4:67:08:7e:01:92:68:b9:3c:3c:cd:98:bb:a2:ba: 39:b4:21:a6:77:07:d3:7b:f1:6b:cc:3e:58:e2:4d: 5e:c1:e3:ae:7e:44:73:50:f1:16:ed:b7:fb:59:e9: 7b:64:0c:c8:d3:c1:62:b1:4d:17:df:47:40:00:35: 59:c3:74:4b:55:84:50:b6:86:a7:b9:3a:6a:f7:e9: 37:2a:04:12:49:68:af:01:24:80:35:9f:da:9e:bd: 9f:37:d5:76:88:3e:f4:9b:d9:a8:0d:b6:42:05:f0: ac:8b:e2:db:67:fb:31:bc:96:7e:c1:e1:84:8e:0e: 23:0a:7f:c1:78:37:a8:0a:67:6b:30:6f:1b:ea:97: 94:ea:2a:36:8d:ed:ec:10:48:a7:46:4a:95:a6:8f: 51:70:ec:4f:a3:eb:dd:d8:1a:74:67:23:82:e2:9d: fd:b0:9e:36:0c:c8:a2:87:5f:95:00:73:fd:2e:4b: 59:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:43:6D:E9:2E:9F:FD:E0:87:5E:AF:EA:09:0A:AC:55:AC:85:F6:49 X509v3 Authority Key Identifier: keyid:AA:23:38:B6:66:32:D8:23:F7:70:72:12:51:12:B5:BF:1F:72:17:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/686A87C0260F7870954C01648D3E2973239D033694AA40D98723525F21162D78/0/AA2338B66632D823F77072125112B5BF1F721769.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AA2338B66632D823F77072125112B5BF1F721769.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/686A87C0260F7870954C01648D3E2973239D033694AA40D98723525F21162D78/0/34352e3233372e3232302e302f32322d3232203d3e20323636383139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.237.220.0/22 Signature Algorithm: sha256WithRSAEncryption 12:69:d1:6e:8e:fb:61:aa:18:ad:e1:94:ed:8b:a7:d6:51:38: 5a:a5:32:5f:c2:66:ac:52:a9:33:9e:54:95:09:e9:65:b7:a4: 83:6c:c2:76:de:b5:84:02:1e:fe:c8:bc:60:f2:c9:85:42:0c: 11:62:20:0c:4f:2b:7c:9f:47:96:71:fc:09:89:bb:29:91:c6: fb:51:29:c6:dc:fa:6a:09:a0:4c:25:0b:59:06:86:cd:d8:57: d4:19:fb:8c:0b:35:58:95:66:46:9b:64:a4:4d:67:90:de:b3: 4c:25:df:ec:74:d2:59:b0:8d:02:f0:84:8b:29:31:3c:90:88: eb:1d:c8:7f:f2:93:a2:64:6a:31:c8:b4:c9:0e:7d:4b:c6:36: c3:41:24:0f:09:ae:9e:5c:43:00:87:9a:cc:39:8a:59:f8:ab: 28:bc:d8:92:e5:ab:79:28:1c:87:d5:7c:88:93:a4:27:e2:cc: 6b:b7:0d:fb:b1:42:3e:6e:d7:81:1e:7b:e9:93:36:b7:87:65: 5a:b1:78:5d:7d:3c:b6:20:96:7c:22:6a:9c:7d:dc:49:4a:77: c9:69:31:19:de:f6:21:a1:7e:55:c6:d3:02:81:96:49:6c:8f: f2:52:fb:a4:12:50:62:a4:0a:df:eb:0e:2c:e6:7a:e1:fb:a6: 57:a7:47:de -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUK6s7rUhdQe084xq8qQH+ew7nYV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEyMzM4QjY2NjMyRDgyM0Y3NzA3MjEyNTExMkI1QkYx RjcyMTc2OTAeFw0yNTAyMDQxNzU5MjJaFw0yNjAyMDMxODA0MjJaMDMxMTAvBgNV BAMTKDUyNDM2REU5MkU5RkZERTA4NzVFQUZFQTA5MEFBQzU1QUM4NUY2NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsTqED82Lbse9Z37GpE0K4nONK fACZb6+32FC/YgdBgsKNc8v9ZHIW22maqDebm50Xnej9+GgObjF88FP7hwQUH/C3 paX+VkihGtRnCH4Bkmi5PDzNmLuiujm0IaZ3B9N78WvMPljiTV7B465+RHNQ8Rbt t/tZ6XtkDMjTwWKxTRffR0AANVnDdEtVhFC2hqe5Omr36TcqBBJJaK8BJIA1n9qe vZ831XaIPvSb2agNtkIF8KyL4ttn+zG8ln7B4YSODiMKf8F4N6gKZ2swbxvql5Tq KjaN7ewQSKdGSpWmj1Fw7E+j693YGnRnI4Linf2wnjYMyKKHX5UAc/0uS1nZAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUUkNt6S6f/eCHXq/qCQqsVayF9kkwHwYDVR0j BBgwFoAUqiM4tmYy2CP3cHISURK1vx9yF2kwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy82ODZBODdDMDI2MEY3ODcwOTU0QzAxNjQ4RDNFMjk3MzIz OUQwMzM2OTRBQTQwRDk4NzIzNTI1RjIxMTYyRDc4LzAvQUEyMzM4QjY2NjMyRDgy M0Y3NzA3MjEyNTExMkI1QkYxRjcyMTc2OS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BQTIzMzhCNjY2MzJEODIzRjc3 MDcyMTI1MTEyQjVCRjFGNzIxNzY5LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNjg2QTg3QzAyNjBGNzg3MDk1NEMwMTY0OEQzRTI5NzMyMzlEMDMzNjk0 QUE0MEQ5ODcyMzUyNUYyMTE2MkQ3OC8wLzM0MzUyZTMyMzMzNzJlMzIzMjMwMmUz MDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjM2MzgzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLe3c MA0GCSqGSIb3DQEBCwUAA4IBAQASadFujvthqhit4ZTti6fWUThapTJfwmasUqkz nlSVCellt6SDbMJ23rWEAh7+yLxg8smFQgwRYiAMTyt8n0eWcfwJibspkcb7USnG 3PpqCaBMJQtZBobN2FfUGfuMCzVYlWZGm2SkTWeQ3rNMJd/sdNJZsI0C8ISLKTE8 kIjrHch/8pOiZGoxyLTJDn1LxjbDQSQPCa6eXEMAh5rMOYpZ+KsovNiS5at5KByH 1XyIk6Qn4sxrtw37sUI+bteBHnvpkza3h2VasXhdfTy2IJZ8ImqcfdxJSnfJaTEZ 3vYhoX5VxtMCgZZJbI/yUvukElBipArf6w4s5nrh+6ZXp0fe -----END CERTIFICATE-----Generated at Tue Apr 22 21:33:11 2025 by rpki-client