$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a3a2f34342d3434203d3e20323733303431.roa File: 323830313a3161353a3a2f34342d3434203d3e20323733303431.roa (raw, json) Hash identifier: xobQj3qYX+4k1jkVNiA/Rw0gLeIElx0Y/iXyISD3Img= Subject key identifier: C1:49:E3:9E:35:37:BA:4A:1B:32:29:08:24:D5:D4:0E:BE:C7:93:82 Certificate issuer: /CN=D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E Certificate serial: 75B118F02D1DADD268358F127BDFEB771A01B359 Authority key identifier: D8:B2:2F:03:33:B8:F6:4A:EF:4F:95:D7:6A:23:E4:5D:9D:53:0D:1E Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a3a2f34342d3434203d3e20323733303431.roa Signing time: Tue 05 Mar 2024 17:54:03 +0000 ROA not before: Tue 05 Mar 2024 17:49:03 +0000 ROA not after: Tue 04 Mar 2025 17:54:03 +0000 asID: 273041 IP address blocks: 2801:1a5::/44 maxlen: 44 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.crl rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Nov 2024 23:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:b1:18:f0:2d:1d:ad:d2:68:35:8f:12:7b:df:eb:77:1a:01:b3:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E Validity Not Before: Mar 5 17:49:03 2024 GMT Not After : Mar 4 17:54:03 2025 GMT Subject: CN=C149E39E3537BA4A1B32290824D5D40EBEC79382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:35:43:33:e1:bb:5f:ea:5e:27:fb:a5:e6:aa: c8:86:ab:8b:1d:87:9e:9c:bb:f4:a7:2f:ea:b6:7b: d8:08:e6:7c:ad:05:c1:10:26:0a:c5:02:32:41:d4: d1:a5:82:71:c9:a7:39:2c:b3:1b:8b:d2:7b:3a:22: 7d:98:17:01:d4:76:22:b3:7b:1d:05:b5:c3:cb:33: 87:25:cc:69:27:a0:29:28:e9:9e:af:68:c0:12:ad: c3:2b:fc:79:47:41:79:93:9f:76:81:4e:58:b7:17: a9:94:62:cf:62:7e:af:48:aa:48:ce:56:70:76:b2: c9:50:27:82:bf:16:a4:e4:ed:7d:2b:aa:46:0e:b3: 4f:64:f1:39:64:74:2e:50:02:80:21:08:ce:f1:68: 8e:bc:dd:e1:d0:dd:55:cf:91:bd:e0:7e:fa:8c:43: 3c:12:31:96:ba:17:33:d2:33:c5:ed:21:a8:96:38: 3f:92:4e:11:ba:a3:64:c2:b1:18:38:70:06:62:4d: df:05:09:95:80:a7:67:6b:27:02:51:4c:0f:80:08: 55:a0:df:bb:8c:77:8a:dd:8e:43:79:e8:fb:8c:46: b7:29:3b:85:ce:dc:45:85:4c:6a:71:f4:10:c9:90: 7c:23:05:ec:01:f0:ac:7a:31:0b:7f:bd:6b:dd:ed: b8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:49:E3:9E:35:37:BA:4A:1B:32:29:08:24:D5:D4:0E:BE:C7:93:82 X509v3 Authority Key Identifier: keyid:D8:B2:2F:03:33:B8:F6:4A:EF:4F:95:D7:6A:23:E4:5D:9D:53:0D:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a3a2f34342d3434203d3e20323733303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2801:1a5::/44 Signature Algorithm: sha256WithRSAEncryption 4f:2b:5a:0b:31:f2:6e:1a:2b:0f:b4:66:bb:30:f9:dd:f0:09: 04:1f:c9:01:41:10:5c:e1:fb:2e:f5:18:69:a1:89:3d:04:22: 36:f1:d8:5a:6b:1c:78:8a:3b:07:bd:f1:f1:04:ca:d3:72:5c: ad:4e:7e:67:d2:3e:b0:9b:9b:9d:68:9b:16:91:71:b7:02:16: 0a:47:80:87:a7:53:7f:24:6e:65:65:5b:70:f9:8b:c9:41:03: 25:c8:31:23:19:a0:77:fe:e5:a6:46:1b:eb:ca:a6:71:1a:b9: 8d:0f:35:d3:f5:22:c2:64:b8:66:62:1f:7e:fd:3b:56:b4:b5: cb:bc:3e:e9:af:c8:09:bb:1c:21:47:32:b2:31:fc:54:b7:6e: ae:05:ac:f4:ef:70:16:e9:70:11:1e:5e:0f:14:fd:3e:33:2e: 23:91:df:24:aa:4b:5d:d6:35:b4:6d:e2:9c:a3:91:ed:8e:77: f8:2f:75:7f:2d:45:40:a5:d6:12:07:80:79:93:62:e7:88:d9: de:9a:62:ee:e5:47:77:57:f5:7b:96:fe:15:6c:b4:b2:d0:34: 2f:2e:6c:05:c3:42:84:df:2c:60:92:de:c4:b1:3c:1c:b2:cc: 69:ee:4c:ed:46:80:e6:2a:60:60:30:55:a0:86:40:41:5c:bb: 35:23:5f:d0 -----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgIUdbEY8C0drdJoNY8Se9/rdxoBs1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhCMjJGMDMzM0I4RjY0QUVGNEY5NUQ3NkEyM0U0NUQ5 RDUzMEQxRTAeFw0yNDAzMDUxNzQ5MDNaFw0yNTAzMDQxNzU0MDNaMDMxMTAvBgNV BAMTKEMxNDlFMzlFMzUzN0JBNEExQjMyMjkwODI0RDVENDBFQkVDNzkzODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeNUMz4btf6l4n+6XmqsiGq4sd h56cu/SnL+q2e9gI5nytBcEQJgrFAjJB1NGlgnHJpzkssxuL0ns6In2YFwHUdiKz ex0FtcPLM4clzGknoCko6Z6vaMASrcMr/HlHQXmTn3aBTli3F6mUYs9ifq9IqkjO VnB2sslQJ4K/FqTk7X0rqkYOs09k8TlkdC5QAoAhCM7xaI683eHQ3VXPkb3gfvqM QzwSMZa6FzPSM8XtIaiWOD+SThG6o2TCsRg4cAZiTd8FCZWAp2drJwJRTA+ACFWg 37uMd4rdjkN56PuMRrcpO4XO3EWFTGpx9BDJkHwjBewB8Kx6MQt/vWvd7bgJAgMB AAGjggLJMIICxTAdBgNVHQ4EFgQUwUnjnjU3ukobMikIJNXUDr7Hk4IwHwYDVR0j BBgwFoAU2LIvAzO49krvT5XXaiPkXZ1TDR4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy83QjRBQTY4QjE4MUFBMTI0RTI4MzNEODZCMEFCQzE2MEMy Q0U3NkM4MUM2OTU2OEFCMEU3ODRGQkY2NDRFNDg2LzAvRDhCMjJGMDMzM0I4RjY0 QUVGNEY5NUQ3NkEyM0U0NUQ5RDUzMEQxRS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EOEIyMkYwMzMzQjhGNjRBRUY0 Rjk1RDc2QTIzRTQ1RDlENTMwRDFFLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvN0I0QUE2OEIxODFBQTEyNEUyODMzRDg2QjBBQkMxNjBDMkNFNzZDODFD Njk1NjhBQjBFNzg0RkJGNjQ0RTQ4Ni8wLzMyMzgzMDMxM2EzMTYxMzUzYTNhMmYz NDM0MmQzNDM0MjAzZDNlMjAzMjM3MzMzMDM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQoAQGlAAAw DQYJKoZIhvcNAQELBQADggEBAE8rWgsx8m4aKw+0Zrsw+d3wCQQfyQFBEFzh+y71 GGmhiT0EIjbx2FprHHiKOwe98fEEytNyXK1OfmfSPrCbm51omxaRcbcCFgpHgIen U38kbmVlW3D5i8lBAyXIMSMZoHf+5aZGG+vKpnEauY0PNdP1IsJkuGZiH379O1a0 tcu8PumvyAm7HCFHMrIx/FS3bq4FrPTvcBbpcBEeXg8U/T4zLiOR3ySqS13WNbRt 4pyjke2Od/gvdX8tRUCl1hIHgHmTYueI2d6aYu7lR3dX9XuW/hVstLLQNC8ubAXD QoTfLGCS3sSxPByyzGnuTO1GgOYqYGAwVaCGQEFcuzUjX9A= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:04 2024 by rpki-client on console-ams.rpki-client.org