$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/323830303a6332303a3a2f33322d3334203d3e203238313130.roa File: 323830303a6332303a3a2f33322d3334203d3e203238313130.roa (raw, json) Hash identifier: AWgSwiKVgPTsU4Co6oMPsRUUfsrZG+BeS3LqOJIrSPo= Subject key identifier: 28:97:E1:A6:7B:69:FF:21:6A:B3:6F:7B:45:4E:BB:F0:02:64:8D:1D Certificate issuer: /CN=858889372446EF678E35E9D349C0785A81B8FBB7 Certificate serial: 4320F682FA3C148BA2FDE9C02EED5B30098085CE Authority key identifier: 85:88:89:37:24:46:EF:67:8E:35:E9:D3:49:C0:78:5A:81:B8:FB:B7 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/323830303a6332303a3a2f33322d3334203d3e203238313130.roa Signing time: Tue 09 Sep 2025 15:44:04 +0000 ROA not before: Tue 09 Sep 2025 15:39:04 +0000 ROA not after: Tue 08 Sep 2026 15:44:04 +0000 asID: 28110 IP address blocks: 2800:c20::/32 maxlen: 34 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/858889372446EF678E35E9D349C0785A81B8FBB7.crl rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/858889372446EF678E35E9D349C0785A81B8FBB7.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 19 Sep 2025 21:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:20:f6:82:fa:3c:14:8b:a2:fd:e9:c0:2e:ed:5b:30:09:80:85:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=858889372446EF678E35E9D349C0785A81B8FBB7 Validity Not Before: Sep 9 15:39:04 2025 GMT Not After : Sep 8 15:44:04 2026 GMT Subject: CN=2897E1A67B69FF216AB36F7B454EBBF002648D1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:55:3d:24:d5:f6:d5:99:d9:13:ee:1a:e4:6a: f9:9a:c7:1f:d5:16:9b:0b:00:5e:a9:21:9d:bd:05: 1c:43:cf:52:9b:b0:e1:c2:f8:34:f8:c2:17:19:07: 48:6c:af:73:66:25:e5:b6:5d:e1:f4:fc:a9:52:a6: e0:5e:50:07:80:02:e3:01:38:63:a2:17:9b:21:19: 96:7e:51:b0:92:a0:ff:96:16:bd:e9:70:19:34:42: f7:0d:c8:1c:73:e0:1a:64:cf:c7:03:42:fe:57:6e: 7c:d4:7c:fe:98:fd:75:10:0d:a8:f0:55:dd:cb:1b: ab:df:47:b1:75:f5:aa:80:f4:b6:75:52:a1:16:34: ed:2a:a9:9a:4d:75:90:00:61:2f:d3:76:6a:63:85: 5b:d3:5b:61:ec:44:3f:71:aa:b5:36:07:2f:b0:a1: 33:75:cb:11:d3:61:d2:0c:3a:3e:fa:2e:98:d2:83: 5a:97:18:37:b0:cf:1c:8f:f5:ba:e9:bf:db:9d:fa: fa:6a:44:a1:97:68:8c:9a:25:1e:f6:41:62:54:b2: ab:c1:99:0c:ee:1a:d4:48:f0:3b:ed:b1:9f:8c:01: 00:5d:4b:ca:38:c7:53:e2:5d:da:83:b9:2f:98:cb: 5e:57:3a:13:7c:f4:b8:27:b6:92:f3:10:c4:e1:41: 4a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:97:E1:A6:7B:69:FF:21:6A:B3:6F:7B:45:4E:BB:F0:02:64:8D:1D X509v3 Authority Key Identifier: keyid:85:88:89:37:24:46:EF:67:8E:35:E9:D3:49:C0:78:5A:81:B8:FB:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/858889372446EF678E35E9D349C0785A81B8FBB7.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/323830303a6332303a3a2f33322d3334203d3e203238313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2800:c20::/32 Signature Algorithm: sha256WithRSAEncryption a3:9b:22:19:de:21:3e:3d:35:d4:e3:d1:da:c4:b5:12:c4:09: 42:c1:15:87:30:3a:37:c5:31:01:f1:12:41:20:7f:43:39:1b: c6:90:5b:0c:47:bb:b6:a7:37:79:88:58:b7:39:9e:71:92:f2: 01:a8:63:19:33:73:75:bf:49:6e:82:86:6e:4f:11:9c:b2:8c: f8:ad:89:45:4a:65:ba:74:a5:1d:83:fc:b3:b5:75:11:9e:72: 7b:c8:24:5d:04:56:e4:b5:38:cd:6c:c4:46:44:15:24:62:db: 4b:bf:57:9d:29:75:04:2f:d4:4b:25:dd:17:93:ca:ef:a1:4f: 67:a0:c1:8c:62:b2:e6:69:34:37:0e:91:e9:f5:e3:70:80:3e: 6e:07:b6:fa:f1:ca:3e:66:2d:82:0c:48:ae:4e:0e:dc:02:5c: 3b:ba:ac:ac:06:4c:85:54:06:f1:82:3c:bc:75:b8:21:fa:5c: d1:97:f2:6a:9d:a9:15:e8:41:db:de:af:e4:79:94:87:89:ca: a0:a3:a4:eb:f8:64:ab:2a:4c:86:66:83:38:8d:ad:57:a2:87: 42:ad:7e:de:d1:cb:d9:65:9a:e5:ff:35:96:97:92:8a:90:4a: d6:0e:ae:54:bf:98:b2:d4:5f:ea:ea:61:81:36:19:9e:2d:9c: 2d:16:c9:10 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgIUQyD2gvo8FIui/enALu1bMAmAhc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU4ODg5MzcyNDQ2RUY2NzhFMzVFOUQzNDlDMDc4NUE4 MUI4RkJCNzAeFw0yNTA5MDkxNTM5MDRaFw0yNjA5MDgxNTQ0MDRaMDMxMTAvBgNV BAMTKDI4OTdFMUE2N0I2OUZGMjE2QUIzNkY3QjQ1NEVCQkYwMDI2NDhEMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLVT0k1fbVmdkT7hrkavmaxx/V FpsLAF6pIZ29BRxDz1KbsOHC+DT4whcZB0hsr3NmJeW2XeH0/KlSpuBeUAeAAuMB OGOiF5shGZZ+UbCSoP+WFr3pcBk0QvcNyBxz4Bpkz8cDQv5XbnzUfP6Y/XUQDajw Vd3LG6vfR7F19aqA9LZ1UqEWNO0qqZpNdZAAYS/TdmpjhVvTW2HsRD9xqrU2By+w oTN1yxHTYdIMOj76LpjSg1qXGDewzxyP9brpv9ud+vpqRKGXaIyaJR72QWJUsqvB mQzuGtRI8DvtsZ+MAQBdS8o4x1PiXdqDuS+Yy15XOhN89LgntpLzEMThQUrxAgMB AAGjggLFMIICwTAdBgNVHQ4EFgQUKJfhpntp/yFqs297RU678AJkjR0wHwYDVR0j BBgwFoAUhYiJNyRG72eONenTScB4WoG4+7cwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy83RTgzNUM1ODE4MEIyNDQ4MkI0OEVDMkM3OTY3NTQ2MDBD RUU2RjNCMThCNjlCQzRCQkRGRkRDMjI4NUVDNDhBLzAvODU4ODg5MzcyNDQ2RUY2 NzhFMzVFOUQzNDlDMDc4NUE4MUI4RkJCNy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NTg4ODkzNzI0NDZFRjY3OEUz NUU5RDM0OUMwNzg1QTgxQjhGQkI3LmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvN0U4MzVDNTgxODBCMjQ0ODJCNDhFQzJDNzk2NzU0NjAwQ0VFNkYzQjE4 QjY5QkM0QkJERkZEQzIyODVFQzQ4QS8wLzMyMzgzMDMwM2E2MzMyMzAzYTNhMmYz MzMyMmQzMzM0MjAzZDNlMjAzMjM4MzEzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKAAMIDANBgkq hkiG9w0BAQsFAAOCAQEAo5siGd4hPj011OPR2sS1EsQJQsEVhzA6N8UxAfESQSB/ QzkbxpBbDEe7tqc3eYhYtzmecZLyAahjGTNzdb9JboKGbk8RnLKM+K2JRUplunSl HYP8s7V1EZ5ye8gkXQRW5LU4zWzERkQVJGLbS79XnSl1BC/USyXdF5PK76FPZ6DB jGKy5mk0Nw6R6fXjcIA+bge2+vHKPmYtggxIrk4O3AJcO7qsrAZMhVQG8YI8vHW4 Ifpc0Zfyap2pFehB296v5HmUh4nKoKOk6/hkqypMhmaDOI2tV6KHQq1+3tHL2WWa 5f81lpeSipBK1g6uVL+YstRf6uphgTYZni2cLRbJEA== -----END CERTIFICATE-----Generated at Tue Sep 16 19:42:49 2025 by rpki-client