$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/81B8FA271F836B033CA04A4A02513BBDE8656FB3993834FACC5E0C93BBF488A9/0/34352e3232352e3231362e302f32322d3234203d3e20323635383632.roa File: 34352e3232352e3231362e302f32322d3234203d3e20323635383632.roa (raw, json) Hash identifier: 4nvs9r2zqN2Ij22c3clOReJFtUmQM85rY1+p9I2q4pk= Subject key identifier: BA:37:B2:1F:03:5C:42:6D:04:36:61:D7:4F:30:04:FF:E7:4E:1B:41 Certificate issuer: /CN=294404D5D1365B2F805F2EB408D0F8D20B0AF0E8 Certificate serial: 2AC20094CCC351E7AFBE86BCDE20D8AB653CD794 Authority key identifier: 29:44:04:D5:D1:36:5B:2F:80:5F:2E:B4:08:D0:F8:D2:0B:0A:F0:E8 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/294404D5D1365B2F805F2EB408D0F8D20B0AF0E8.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/81B8FA271F836B033CA04A4A02513BBDE8656FB3993834FACC5E0C93BBF488A9/0/34352e3232352e3231362e302f32322d3234203d3e20323635383632.roa Signing time: Tue 04 Feb 2025 18:49:00 +0000 ROA not before: Tue 04 Feb 2025 18:44:00 +0000 ROA not after: Tue 03 Feb 2026 18:49:00 +0000 asID: 265862 IP address blocks: 45.225.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/81B8FA271F836B033CA04A4A02513BBDE8656FB3993834FACC5E0C93BBF488A9/0/294404D5D1365B2F805F2EB408D0F8D20B0AF0E8.crl rsync://repository.lacnic.net/rpki/lacnic/81B8FA271F836B033CA04A4A02513BBDE8656FB3993834FACC5E0C93BBF488A9/0/294404D5D1365B2F805F2EB408D0F8D20B0AF0E8.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/294404D5D1365B2F805F2EB408D0F8D20B0AF0E8.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:c2:00:94:cc:c3:51:e7:af:be:86:bc:de:20:d8:ab:65:3c:d7:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=294404D5D1365B2F805F2EB408D0F8D20B0AF0E8 Validity Not Before: Feb 4 18:44:00 2025 GMT Not After : Feb 3 18:49:00 2026 GMT Subject: CN=BA37B21F035C426D043661D74F3004FFE74E1B41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:57:3d:b3:3f:45:b1:6d:8c:f6:bf:97:27:1d: 1f:92:1f:30:4e:59:4a:09:93:57:9d:6c:be:da:52: d3:79:5a:db:76:97:a0:ee:b4:4a:d7:89:b5:4c:d3: 6d:82:51:3a:8a:20:4d:13:43:94:44:20:78:77:f0: 63:fa:28:0c:3b:d7:8a:aa:76:7c:fd:33:46:d7:ee: f7:c7:75:60:d9:35:83:25:7e:c4:77:e8:4f:ed:0c: 22:3d:35:8f:1b:07:0a:c0:e7:82:28:03:fb:d2:f9: d9:89:ac:d7:48:6a:4b:e8:83:5f:92:4b:5b:33:bf: 2a:8c:7b:fd:76:e9:bd:4e:32:cd:c1:12:9f:e7:b9: 95:0d:96:9f:97:2c:63:8b:02:fd:b2:97:d1:c9:b2: 3d:80:86:7d:42:0b:28:1f:dc:6f:9a:2d:b1:1c:7f: 8d:21:41:70:45:ce:b6:5b:26:3d:13:49:27:2c:66: f4:ba:51:fd:c3:31:37:42:c9:d9:60:38:94:04:58: 46:b6:2d:34:41:3a:0c:b5:63:88:b6:44:be:92:d0: 65:da:d3:6e:68:e8:ad:78:cc:b4:33:ba:ed:c6:61: 3b:02:00:62:1f:5a:4e:f1:ad:c4:1f:c1:3d:f9:7e: d0:3f:16:ad:37:0d:c7:25:d2:54:c6:1a:2c:28:93: 29:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:37:B2:1F:03:5C:42:6D:04:36:61:D7:4F:30:04:FF:E7:4E:1B:41 X509v3 Authority Key Identifier: keyid:29:44:04:D5:D1:36:5B:2F:80:5F:2E:B4:08:D0:F8:D2:0B:0A:F0:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/81B8FA271F836B033CA04A4A02513BBDE8656FB3993834FACC5E0C93BBF488A9/0/294404D5D1365B2F805F2EB408D0F8D20B0AF0E8.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/294404D5D1365B2F805F2EB408D0F8D20B0AF0E8.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/81B8FA271F836B033CA04A4A02513BBDE8656FB3993834FACC5E0C93BBF488A9/0/34352e3232352e3231362e302f32322d3234203d3e20323635383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.225.216.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:b9:f0:0c:62:4e:e2:a3:3b:9e:0b:57:b3:e8:41:f6:56:2a: 60:61:c5:e6:5b:0d:32:c7:31:6a:b2:d9:e9:50:8f:84:07:7f: c2:51:57:97:bb:30:06:60:ff:4e:98:ff:04:e0:98:dd:9f:8b: cf:82:f2:59:4f:f2:70:7c:fa:80:4e:96:d6:5a:5e:f5:85:9d: 9b:5d:6e:45:b3:64:92:b2:25:14:01:de:60:08:f6:7f:d3:9e: 88:00:8d:12:fd:67:6d:dc:8e:fd:96:8e:8d:19:5d:05:81:35: c2:b6:1c:95:34:ef:a1:8a:17:68:35:8b:85:42:62:04:eb:c5: 6e:25:ef:af:38:b9:55:60:01:33:6f:88:2a:ed:19:b3:59:e4: fc:52:f9:58:1e:5e:2c:c8:9f:a3:de:02:86:10:a4:6a:0c:3e: e5:42:52:68:7b:b1:3d:06:0d:69:22:39:0d:eb:c2:d1:2a:6f: b9:60:ec:2b:9e:38:28:76:fe:aa:5f:a1:61:61:a3:0e:12:a4: 5d:f8:2a:8e:4f:3a:d9:ca:55:3f:6d:70:16:aa:bf:ba:70:3a: 61:83:60:1f:61:e7:ac:8f:da:ec:90:09:3f:60:20:54:d3:f9: 07:18:62:48:f3:f8:89:6c:7b:9e:89:5b:4e:d9:d9:fd:ff:b9: f0:70:56:ba -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUKsIAlMzDUeevvoa83iDYq2U815QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk0NDA0RDVEMTM2NUIyRjgwNUYyRUI0MDhEMEY4RDIw QjBBRjBFODAeFw0yNTAyMDQxODQ0MDBaFw0yNjAyMDMxODQ5MDBaMDMxMTAvBgNV BAMTKEJBMzdCMjFGMDM1QzQyNkQwNDM2NjFENzRGMzAwNEZGRTc0RTFCNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Vz2zP0WxbYz2v5cnHR+SHzBO WUoJk1edbL7aUtN5Wtt2l6DutErXibVM022CUTqKIE0TQ5REIHh38GP6KAw714qq dnz9M0bX7vfHdWDZNYMlfsR36E/tDCI9NY8bBwrA54IoA/vS+dmJrNdIakvog1+S S1szvyqMe/126b1OMs3BEp/nuZUNlp+XLGOLAv2yl9HJsj2Ahn1CCygf3G+aLbEc f40hQXBFzrZbJj0TSScsZvS6Uf3DMTdCydlgOJQEWEa2LTRBOgy1Y4i2RL6S0GXa 025o6K14zLQzuu3GYTsCAGIfWk7xrcQfwT35ftA/Fq03Dccl0lTGGiwokyn3AgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUujeyHwNcQm0ENmHXTzAE/+dOG0EwHwYDVR0j BBgwFoAUKUQE1dE2Wy+AXy60CND40gsK8OgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84MUI4RkEyNzFGODM2QjAzM0NBMDRBNEEwMjUxM0JCREU4 NjU2RkIzOTkzODM0RkFDQzVFMEM5M0JCRjQ4OEE5LzAvMjk0NDA0RDVEMTM2NUIy RjgwNUYyRUI0MDhEMEY4RDIwQjBBRjBFOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yOTQ0MDRENUQxMzY1QjJGODA1 RjJFQjQwOEQwRjhEMjBCMEFGMEU4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvODFCOEZBMjcxRjgzNkIwMzNDQTA0QTRBMDI1MTNCQkRFODY1NkZCMzk5 MzgzNEZBQ0M1RTBDOTNCQkY0ODhBOS8wLzM0MzUyZTMyMzIzNTJlMzIzMTM2MmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM1MzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLeHY MA0GCSqGSIb3DQEBCwUAA4IBAQBdufAMYk7iozueC1ez6EH2VipgYcXmWw0yxzFq stnpUI+EB3/CUVeXuzAGYP9OmP8E4Jjdn4vPgvJZT/JwfPqATpbWWl71hZ2bXW5F s2SSsiUUAd5gCPZ/056IAI0S/Wdt3I79lo6NGV0FgTXCthyVNO+hihdoNYuFQmIE 68VuJe+vOLlVYAEzb4gq7RmzWeT8UvlYHl4syJ+j3gKGEKRqDD7lQlJoe7E9Bg1p IjkN68LRKm+5YOwrnjgodv6qX6FhYaMOEqRd+CqOTzrZylU/bXAWqr+6cDphg2Af Yeesj9rskAk/YCBU0/kHGGJI8/iJbHueiVtO2dn9/7nwcFa6 -----END CERTIFICATE-----Generated at Sun Apr 6 04:28:07 2025 by rpki-client