$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS42.roa File: AS42.roa (raw, json) Hash identifier: Rqed4j4XL45FLZL0Qm8tM7jIpFtcPjyFtOj9p54+Zjc= Subject key identifier: DC:9B:C8:2D:44:E6:76:32:DC:1E:F8:89:EF:55:72:AE:15:8D:00:92 Certificate issuer: /CN=55E5523033B41B7E990D9D490339137189366F33 Certificate serial: 08AB1488F2CDD6989DC30F945EA70D3C5311D3EE Authority key identifier: 55:E5:52:30:33:B4:1B:7E:99:0D:9D:49:03:39:13:71:89:36:6F:33 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS42.roa Signing time: Wed 29 Jan 2025 17:30:00 +0000 ROA not before: Wed 29 Jan 2025 17:25:00 +0000 ROA not after: Wed 28 Jan 2026 17:30:00 +0000 asID: 42 IP address blocks: 189.201.244.0/23 maxlen: 23 2801:c4:c0::/44 maxlen: 44 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.crl rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 18 Apr 2025 17:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:ab:14:88:f2:cd:d6:98:9d:c3:0f:94:5e:a7:0d:3c:53:11:d3:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55E5523033B41B7E990D9D490339137189366F33 Validity Not Before: Jan 29 17:25:00 2025 GMT Not After : Jan 28 17:30:00 2026 GMT Subject: CN=DC9BC82D44E67632DC1EF889EF5572AE158D0092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0b:a5:ca:b0:53:fa:45:3e:eb:d1:32:11:0a: 97:d6:21:65:5e:63:57:95:c9:8a:9d:18:67:bc:38: 08:01:8f:a4:d1:56:ed:83:a3:74:af:8a:cf:fa:38: 10:87:d5:74:c3:b6:03:34:1c:1b:d7:5c:66:3c:d1: ef:55:68:62:1a:1b:59:3e:81:8d:85:7c:9d:53:64: 61:da:f0:d2:d3:23:6b:7a:32:98:b6:85:e6:5d:f9: 62:0c:fa:f8:3c:fb:49:1c:a8:df:b1:37:f3:fb:e9: ed:58:ec:4b:52:6d:1b:d0:ad:8a:2b:3b:2d:b9:bf: 8c:69:c7:e3:fc:d0:99:e5:64:5c:b3:b2:d4:a8:5d: b9:3b:8a:f9:b7:3e:fa:ac:9e:df:c1:10:70:c4:2d: 4c:4d:40:f9:76:f0:d3:4c:38:37:32:83:e0:f9:5e: 73:0a:ca:31:3e:4f:f4:ab:b7:68:6d:a7:3e:cd:58: d0:a5:c8:56:8c:cf:ca:6a:5c:d8:16:ff:02:4f:f0: 6b:49:19:c6:05:d0:3f:8f:5c:a5:1b:e2:72:01:24: 33:8f:82:0f:cf:60:9a:94:10:ca:a7:fd:3e:ab:47: 2a:56:c6:78:f9:6c:66:4e:01:6a:21:fe:e8:42:44: 6a:37:9b:79:0a:91:63:7b:bf:f1:7d:fb:9d:ae:6b: 09:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:9B:C8:2D:44:E6:76:32:DC:1E:F8:89:EF:55:72:AE:15:8D:00:92 X509v3 Authority Key Identifier: keyid:55:E5:52:30:33:B4:1B:7E:99:0D:9D:49:03:39:13:71:89:36:6F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS42.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 189.201.244.0/23 IPv6: 2801:c4:c0::/44 Signature Algorithm: sha256WithRSAEncryption 52:1e:c2:c2:ca:6a:d9:32:91:29:e1:aa:3b:97:39:5b:81:9d: 89:cc:e6:38:94:a8:ff:1e:e7:f9:9e:89:9e:f6:10:de:99:23: ea:44:fc:fd:6c:75:44:27:d4:78:4f:ee:c3:00:a7:b3:d6:26: 52:f7:69:8a:18:83:d1:b9:e1:28:94:f7:c5:74:41:10:b6:d8: 0a:7d:08:b6:94:6c:37:8a:69:80:5b:e9:a4:4c:b5:8c:74:f2: 76:7b:0d:37:51:b6:a7:97:21:9b:98:f6:77:fd:a9:66:67:cd: f6:6b:c0:e6:7c:86:22:25:41:07:db:7d:09:de:d2:c2:f3:03: 45:85:5f:33:b0:75:df:df:ec:fe:70:25:bd:cc:7f:59:86:0a: 2e:70:59:e8:85:df:93:b0:d6:8d:c8:6e:16:76:73:f4:3a:db: 7a:4d:9b:87:a7:16:de:68:4c:3c:5e:86:26:32:85:12:09:ac: e4:d3:13:df:a9:1d:ae:2a:d8:b0:d5:92:a9:5b:3c:d2:d1:e6: cb:55:8d:0c:e8:08:f2:bf:35:1d:03:f4:a6:48:23:5f:2b:64: e4:3d:87:f4:39:fe:5c:10:1d:ca:cf:a2:97:ad:38:64:fd:ba: 5f:a1:20:d4:11:a1:05:ed:d2:7a:f2:20:77:34:29:3d:55:7e: 9a:47:a1:5d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUCKsUiPLN1pidww+UXqcNPFMR0+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTVFNTUyMzAzM0I0MUI3RTk5MEQ5RDQ5MDMzOTEzNzE4 OTM2NkYzMzAeFw0yNTAxMjkxNzI1MDBaFw0yNjAxMjgxNzMwMDBaMDMxMTAvBgNV BAMTKERDOUJDODJENDRFNjc2MzJEQzFFRjg4OUVGNTU3MkFFMTU4RDAwOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzC6XKsFP6RT7r0TIRCpfWIWVe Y1eVyYqdGGe8OAgBj6TRVu2Do3Svis/6OBCH1XTDtgM0HBvXXGY80e9VaGIaG1k+ gY2FfJ1TZGHa8NLTI2t6Mpi2heZd+WIM+vg8+0kcqN+xN/P76e1Y7EtSbRvQrYor Oy25v4xpx+P80JnlZFyzstSoXbk7ivm3Pvqsnt/BEHDELUxNQPl28NNMODcyg+D5 XnMKyjE+T/Srt2htpz7NWNClyFaMz8pqXNgW/wJP8GtJGcYF0D+PXKUb4nIBJDOP gg/PYJqUEMqn/T6rRypWxnj5bGZOAWoh/uhCRGo3m3kKkWN7v/F9+52uawk1AgMB AAGjggKmMIICojAdBgNVHQ4EFgQU3JvILUTmdjLcHviJ71VyrhWNAJIwHwYDVR0j BBgwFoAUVeVSMDO0G36ZDZ1JAzkTcYk2bzMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy83QjQ1MzFCQUEzODRFRjREOTEwNzhDMTA1MjkwQzRGMEZC QzA1MjEzOEZDOUIyMUU3RDkxMkZCRTlBQThBN0YwLzAvNTVFNTUyMzAzM0I0MUI3 RTk5MEQ5RDQ5MDMzOTEzNzE4OTM2NkYzMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81NUU1NTIzMDMzQjQxQjdFOTkw RDlENDkwMzM5MTM3MTg5MzY2RjMzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEG CCsGAQUFBzALhnVyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy83QjQ1MzFCQUEzODRFRjREOTEwNzhDMTA1MjkwQzRGMEZCQzA1MjEzOEZD OUIyMUU3RDkxMkZCRTlBQThBN0YwLzAvQVM0Mi5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAb3J9DAPBAIA AjAJAwcEKAEAxADAMA0GCSqGSIb3DQEBCwUAA4IBAQBSHsLCymrZMpEp4ao7lzlb gZ2JzOY4lKj/Huf5nome9hDemSPqRPz9bHVEJ9R4T+7DAKez1iZS92mKGIPRueEo lPfFdEEQttgKfQi2lGw3immAW+mkTLWMdPJ2ew03UbanlyGbmPZ3/almZ832a8Dm fIYiJUEH230J3tLC8wNFhV8zsHXf3+z+cCW9zH9ZhgoucFnohd+TsNaNyG4WdnP0 Ott6TZuHpxbeaEw8XoYmMoUSCazk0xPfqR2uKtiw1ZKpWzzS0ebLVY0M6AjyvzUd A/SmSCNfK2TkPYf0Of5cEB3Kz6KXrThk/bpfoSDUEaEF7dJ68iB3NCk9VX6aR6Fd -----END CERTIFICATE-----Generated at Mon Apr 14 14:58:33 2025 by rpki-client