$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/3133382e39392e3232302e302f32322d3234203d3e20323635373338.roa File: 3133382e39392e3232302e302f32322d3234203d3e20323635373338.roa (raw, json) Hash identifier: I9de2YpVTOONkDz2X5wSk+eaL/h0VQI/FeJWwmnQAOY= Subject key identifier: 0E:50:CA:11:E3:76:99:16:F8:F0:99:DC:6D:A5:EA:35:08:9A:16:6E Certificate issuer: /CN=9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E Certificate serial: 6C3D6D9818F96300EE91D773354D896857251856 Authority key identifier: 9F:8E:C7:CE:66:A6:7C:20:F1:A2:4E:22:0E:07:01:A4:B8:12:9C:9E Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/3133382e39392e3232302e302f32322d3234203d3e20323635373338.roa Signing time: Tue 04 Feb 2025 18:09:33 +0000 ROA not before: Tue 04 Feb 2025 18:04:33 +0000 ROA not after: Tue 03 Feb 2026 18:09:33 +0000 asID: 265738 IP address blocks: 138.99.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.crl rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 19 Feb 2025 16:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:3d:6d:98:18:f9:63:00:ee:91:d7:73:35:4d:89:68:57:25:18:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E Validity Not Before: Feb 4 18:04:33 2025 GMT Not After : Feb 3 18:09:33 2026 GMT Subject: CN=0E50CA11E3769916F8F099DC6DA5EA35089A166E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f4:68:16:2e:bd:16:45:58:fc:2c:a0:87:c3: 96:ce:f8:df:b8:81:26:11:70:a9:b7:12:83:7f:ea: 82:c4:57:7d:91:3a:00:d6:55:12:b1:35:30:f4:4d: 75:d3:3c:85:2e:09:33:a2:aa:bb:11:7f:5a:79:55: a3:3c:7b:62:54:37:e9:de:26:7f:0a:fd:53:b4:ad: 98:c9:37:d0:1e:b4:2d:21:d4:61:45:4c:e7:de:d6: 45:fa:83:7a:4a:04:8e:a3:dd:0a:dc:ce:84:70:f3: 4f:71:82:54:a7:e7:44:79:5f:5b:54:a4:f5:43:10: 27:a3:ed:ba:86:94:f0:d3:22:45:34:7f:59:dd:32: d9:0a:52:30:4e:56:e3:52:02:86:09:77:d2:60:a9: 3d:c5:4d:97:ad:3b:4f:5e:98:27:c7:93:d9:6b:3f: 5e:4a:89:99:d9:80:d1:aa:25:0a:9f:3a:0f:20:e5: 53:95:6d:ea:06:ba:5e:a4:4f:a1:9d:71:c8:0f:be: 3c:0c:4f:eb:29:28:c6:15:21:12:5e:82:76:60:6e: 5f:f8:11:95:55:d0:06:d2:cf:a4:4e:8a:48:2a:1a: c3:54:b9:c9:20:f8:b0:91:3d:58:bb:90:7d:45:af: e3:f8:4c:a8:24:6e:14:51:05:8c:96:e6:7f:09:9d: f4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:50:CA:11:E3:76:99:16:F8:F0:99:DC:6D:A5:EA:35:08:9A:16:6E X509v3 Authority Key Identifier: keyid:9F:8E:C7:CE:66:A6:7C:20:F1:A2:4E:22:0E:07:01:A4:B8:12:9C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/3133382e39392e3232302e302f32322d3234203d3e20323635373338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.99.220.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:4c:22:17:97:44:9f:fa:f7:01:0e:3f:3d:d1:67:09:27:39: 17:12:c2:4f:ec:19:e8:49:25:d0:1a:73:4c:b2:50:94:9d:bd: 9d:c3:d3:ee:4e:60:48:84:68:dc:64:61:9e:b0:30:de:21:a8: e1:d3:1f:41:5d:2f:a9:4b:61:19:34:4d:69:9d:44:0c:db:8f: fa:e3:18:4d:ea:cd:7c:66:08:39:f3:bf:56:5d:f7:61:1d:9c: b7:f4:0a:3b:45:4b:af:63:7b:b1:74:ae:d8:07:3b:c9:55:64: af:a9:64:dd:be:6b:0b:90:74:05:0e:e2:66:d2:a0:42:a8:de: a5:62:5b:f7:e8:4d:98:dd:ee:d4:ab:88:45:7d:1a:09:bd:dc: cf:13:ca:1d:e3:27:28:54:fe:0e:99:b3:fd:23:f7:3a:12:7f: 4b:72:89:2c:ed:ca:3f:b3:70:86:52:20:c6:3f:2f:e1:c8:9c: 84:81:c1:ab:b1:ae:e9:ad:ca:dc:93:cf:3a:ba:5f:56:52:67: fe:fa:ba:6d:13:dc:ac:c7:79:b6:af:b3:cb:43:78:da:c9:db: 99:d3:a0:b0:dc:dc:fb:7c:52:d7:93:f6:36:24:1a:bc:c8:42: 69:6f:b9:37:f4:88:4f:35:af:60:60:4d:78:e0:c4:6e:c5:08: 2f:58:e8:ad -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUbD1tmBj5YwDukddzNU2JaFclGFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY4RUM3Q0U2NkE2N0MyMEYxQTI0RTIyMEUwNzAxQTRC ODEyOUM5RTAeFw0yNTAyMDQxODA0MzNaFw0yNjAyMDMxODA5MzNaMDMxMTAvBgNV BAMTKDBFNTBDQTExRTM3Njk5MTZGOEYwOTlEQzZEQTVFQTM1MDg5QTE2NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa9GgWLr0WRVj8LKCHw5bO+N+4 gSYRcKm3EoN/6oLEV32ROgDWVRKxNTD0TXXTPIUuCTOiqrsRf1p5VaM8e2JUN+ne Jn8K/VO0rZjJN9AetC0h1GFFTOfe1kX6g3pKBI6j3QrczoRw809xglSn50R5X1tU pPVDECej7bqGlPDTIkU0f1ndMtkKUjBOVuNSAoYJd9JgqT3FTZetO09emCfHk9lr P15KiZnZgNGqJQqfOg8g5VOVbeoGul6kT6GdccgPvjwMT+spKMYVIRJegnZgbl/4 EZVV0AbSz6ROikgqGsNUuckg+LCRPVi7kH1Fr+P4TKgkbhRRBYyW5n8JnfSnAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUDlDKEeN2mRb48JncbaXqNQiaFm4wHwYDVR0j BBgwFoAUn47HzmamfCDxok4iDgcBpLgSnJ4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy82OENGQjBGQ0JDMjI2QUZDMDg3NjAzMzhBREJGODRERDlB NUIwNzIzOTZGQkNFMzc1RUIwNjg1QjUwNkE5OUZCLzAvOUY4RUM3Q0U2NkE2N0My MEYxQTI0RTIyMEUwNzAxQTRCODEyOUM5RS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85RjhFQzdDRTY2QTY3QzIwRjFB MjRFMjIwRTA3MDFBNEI4MTI5QzlFLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNjhDRkIwRkNCQzIyNkFGQzA4NzYwMzM4QURCRjg0REQ5QTVCMDcyMzk2 RkJDRTM3NUVCMDY4NUI1MDZBOTlGQi8wLzMxMzMzODJlMzkzOTJlMzIzMjMwMmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM1MzczMzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCimPc MA0GCSqGSIb3DQEBCwUAA4IBAQCcTCIXl0Sf+vcBDj890WcJJzkXEsJP7BnoSSXQ GnNMslCUnb2dw9PuTmBIhGjcZGGesDDeIajh0x9BXS+pS2EZNE1pnUQM24/64xhN 6s18Zgg5879WXfdhHZy39Ao7RUuvY3uxdK7YBzvJVWSvqWTdvmsLkHQFDuJm0qBC qN6lYlv36E2Y3e7Uq4hFfRoJvdzPE8od4ycoVP4OmbP9I/c6En9Lcoks7co/s3CG UiDGPy/hyJyEgcGrsa7prcrck886ul9WUmf++rptE9ysx3m2r7PLQ3jayduZ06Cw 3Nz7fFLXk/Y2JBq8yEJpb7k39IhPNa9gYE144MRuxQgvWOit -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:52 2025 by rpki-client