$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/40aa3141870cb4d17290fe6324cf2090d35802a6.roa File: 40aa3141870cb4d17290fe6324cf2090d35802a6.roa (raw, json) Hash identifier: DbSSDTzOl3tsyb07UtKqON0floI1L4M5G0nnYNc3NHw= Subject key identifier: 89:F6:70:1F:ED:59:EC:B6:DB:4A:11:D9:01:38:59:47:CA:A8:3C:6F Certificate issuer: /CN=2114c12558d3e7c70c4a1a25a2c8de34959f5ec4 Certificate serial: 0D79FF Authority key identifier: 3C:5A:35:90:43:FA:D7:3A:F7:D0:0A:73:22:2A:9D:CB:73:06:05:93 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2114c12558d3e7c70c4a1a25a2c8de34959f5ec4.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/40aa3141870cb4d17290fe6324cf2090d35802a6.roa Signing time: Wed 24 Mar 2021 14:40:20 +0000 ROA not before: Wed 24 Mar 2021 14:40:20 +0000 ROA not after: Tue 24 Mar 2026 14:40:20 +0000 asID: 262223 IP address blocks: 190.96.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/2114c12558d3e7c70c4a1a25a2c8de34959f5ec4.crl rsync://repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/2114c12558d3e7c70c4a1a25a2c8de34959f5ec4.mft rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2114c12558d3e7c70c4a1a25a2c8de34959f5ec4.cer rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 18 Mar 2023 02:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 883199 (0xd79ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2114c12558d3e7c70c4a1a25a2c8de34959f5ec4 Validity Not Before: Mar 24 14:40:20 2021 GMT Not After : Mar 24 14:40:20 2026 GMT Subject: CN=40aa3141870cb4d17290fe6324cf2090d35802a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5f:5e:d6:29:ea:14:c8:be:49:be:60:56:d9: f5:62:6f:0f:4b:36:1c:a0:b4:4b:47:13:6c:31:68: 89:b8:7d:1d:fc:5d:4d:14:03:a9:b7:dd:4c:bf:02: 11:8e:01:52:08:7d:a7:f0:ad:26:00:f4:d9:36:2b: 99:7c:d4:b1:a7:b4:c6:6e:07:b6:44:57:fb:da:4d: 68:03:07:88:3c:00:79:1c:c0:4f:ee:f9:6b:b0:90: 7a:c5:7a:68:d5:2f:fd:16:45:b7:cd:9f:8b:cc:43: 03:7e:d1:d5:a5:d5:d2:e2:12:48:7c:08:50:b8:59: 68:1a:32:3d:cc:b3:69:7e:cf:ce:9e:74:f0:38:32: 69:e7:45:3f:03:68:9e:33:21:40:75:de:45:f1:d1: d5:18:e3:61:ce:24:7d:95:50:f6:9e:91:e9:fa:4f: f4:e9:94:c4:15:21:91:a8:68:f9:e0:0e:b2:11:8d: 6e:9c:1e:07:32:2a:78:8e:90:31:a5:01:47:9c:dd: ea:80:1e:ff:29:27:f5:8e:09:8b:f9:17:ee:4d:af: 64:da:9f:01:4f:01:cd:83:c2:c3:6e:ac:2f:49:cf: 94:5d:14:02:80:b5:d2:a0:d1:a8:85:ea:cf:a6:eb: fe:6c:27:c9:34:02:2a:1e:4a:12:1f:b3:aa:ab:cb: bb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F6:70:1F:ED:59:EC:B6:DB:4A:11:D9:01:38:59:47:CA:A8:3C:6F X509v3 Authority Key Identifier: keyid:3C:5A:35:90:43:FA:D7:3A:F7:D0:0A:73:22:2A:9D:CB:73:06:05:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2114c12558d3e7c70c4a1a25a2c8de34959f5ec4.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/40aa3141870cb4d17290fe6324cf2090d35802a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/2114c12558d3e7c70c4a1a25a2c8de34959f5ec4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 190.96.96.0/21 Signature Algorithm: sha256WithRSAEncryption 0d:43:ef:eb:d4:cd:f1:e0:c1:1c:0a:68:60:e0:1f:67:b3:20: 7c:4f:5d:ca:e8:10:bf:34:5a:c4:52:47:94:49:95:6b:27:38: e9:a6:0e:b8:d3:e7:9d:68:0b:15:94:9b:7c:0b:ca:68:a2:b6: 0f:e0:a2:38:c6:27:3a:28:64:43:a6:6c:37:3d:6a:23:38:37: d9:51:85:5a:f1:e8:c8:c3:ab:36:96:2e:6c:7b:cd:c7:1b:f6: d6:ba:44:94:29:e5:9c:47:33:f0:55:71:34:53:1a:84:c1:af: e8:e4:2b:c6:b9:2a:07:96:2b:b4:b8:48:fe:64:93:b8:83:23: ba:fa:57:cc:a1:f8:2b:96:46:9b:83:2d:ca:b0:e5:f1:be:97: e8:34:69:7d:23:1b:66:d2:53:19:c0:23:1f:59:4f:dd:db:72: 72:be:c7:f4:12:2a:22:86:cd:11:2f:02:45:60:11:95:fc:db: 15:c2:6e:a9:6c:a5:b0:5a:d1:7d:c0:2f:46:80:74:d1:8e:95: 7d:c7:e0:63:64:6e:3b:35:e9:c4:6b:b2:bf:fa:4c:73:59:8a: 93:e8:85:37:de:a5:93:b4:5e:18:a6:38:37:51:36:97:b4:0a: a3:40:64:fd:d9:2f:54:d0:7c:a1:88:2a:3f:b1:06:59:68:e9: fc:ea:ff:93 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDDXn/MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDIx MTRjMTI1NThkM2U3YzcwYzRhMWEyNWEyYzhkZTM0OTU5ZjVlYzQwHhcNMjEwMzI0 MTQ0MDIwWhcNMjYwMzI0MTQ0MDIwWjAzMTEwLwYDVQQDEyg0MGFhMzE0MTg3MGNi NGQxNzI5MGZlNjMyNGNmMjA5MGQzNTgwMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAql9e1inqFMi+Sb5gVtn1Ym8PSzYcoLRLRxNsMWiJuH0d/F1N FAOpt91MvwIRjgFSCH2n8K0mAPTZNiuZfNSxp7TGbge2RFf72k1oAweIPAB5HMBP 7vlrsJB6xXpo1S/9FkW3zZ+LzEMDftHVpdXS4hJIfAhQuFloGjI9zLNpfs/OnnTw ODJp50U/A2ieMyFAdd5F8dHVGONhziR9lVD2npHp+k/06ZTEFSGRqGj54A6yEY1u nB4HMip4jpAxpQFHnN3qgB7/KSf1jgmL+RfuTa9k2p8BTwHNg8LDbqwvSc+UXRQC gLXSoNGoherPpuv+bCfJNAIqHkoSH7Oqq8u7AQIDAQABo4ICWzCCAlcwHQYDVR0O BBYEFIn2cB/tWey220oR2QE4WUfKqDxvMB8GA1UdIwQYMBaAFDxaNZBD+tc699AK cyIqnctzBgWTMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMjExNGMx MjU1OGQzZTdjNzBjNGExYTI1YTJjOGRlMzQ5NTlmNWVjNC5jZXIwgZoGCCsGAQUF BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p Yy5uZXQvcnBraS9sYWNuaWMvNzQ3M2IzMzktNWZlYS00YmM0LTg0YzgtMzc1ZmQz OWNjN2E3LzQwYWEzMTQxODcwY2I0ZDE3MjkwZmU2MzI0Y2YyMDkwZDM1ODAyYTYu cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj bmljLm5ldC9ycGtpL2xhY25pYy83NDczYjMzOS01ZmVhLTRiYzQtODRjOC0zNzVm ZDM5Y2M3YTcvMjExNGMxMjU1OGQzZTdjNzBjNGExYTI1YTJjOGRlMzQ5NTlmNWVj NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA75gYDANBgkqhkiG9w0BAQsFAAOCAQEADUPv69TN8eDBHApo YOAfZ7MgfE9dyugQvzRaxFJHlEmVayc46aYOuNPnnWgLFZSbfAvKaKK2D+CiOMYn OihkQ6ZsNz1qIzg32VGFWvHoyMOrNpYubHvNxxv21rpElCnlnEcz8FVxNFMahMGv 6OQrxrkqB5YrtLhI/mSTuIMjuvpXzKH4K5ZGm4MtyrDl8b6X6DRpfSMbZtJTGcAj H1lP3dtycr7H9BIqIobNES8CRWARlfzbFcJuqWylsFrRfcAvRoB00Y6VfcfgY2Ru OzXpxGuyv/pMc1mKk+iFN96lk7ReGKY4N1E2l7QKo0Bk/dkvVNB8oYgqP7EGWWjp /Or/kw== -----END CERTIFICATE-----Generated at Wed Mar 15 11:34:47 2023 by rpki-client on console-ams.rpki-client.org