$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/867D4F42CC3AD6ADFC36A4857E4D8A29E722A6909A853F0E6C118E0370A1A96F/0/323830303a6161303a3a2f33322d3438203d3e203532333530.roa File: 323830303a6161303a3a2f33322d3438203d3e203532333530.roa (raw, json) Hash identifier: oYv9FW1x7Sv6nNKwSSYnsl949bZtUgfEdM2DZpYFg/A= Subject key identifier: 72:73:CC:AD:77:73:EB:B2:D0:A4:7F:E9:06:09:0A:27:10:99:95:C1 Certificate issuer: /CN=CE1FC93A3F20326BE83B6424F678E2EA6714433C Certificate serial: 0746537F3566AFA4A8219B96345E300B69340E0B Authority key identifier: CE:1F:C9:3A:3F:20:32:6B:E8:3B:64:24:F6:78:E2:EA:67:14:43:3C Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CE1FC93A3F20326BE83B6424F678E2EA6714433C.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/867D4F42CC3AD6ADFC36A4857E4D8A29E722A6909A853F0E6C118E0370A1A96F/0/323830303a6161303a3a2f33322d3438203d3e203532333530.roa Signing time: Tue 04 Feb 2025 18:10:36 +0000 ROA not before: Tue 04 Feb 2025 18:05:36 +0000 ROA not after: Tue 03 Feb 2026 18:10:36 +0000 asID: 52350 IP address blocks: 2800:aa0::/32 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/867D4F42CC3AD6ADFC36A4857E4D8A29E722A6909A853F0E6C118E0370A1A96F/0/CE1FC93A3F20326BE83B6424F678E2EA6714433C.crl rsync://repository.lacnic.net/rpki/lacnic/867D4F42CC3AD6ADFC36A4857E4D8A29E722A6909A853F0E6C118E0370A1A96F/0/CE1FC93A3F20326BE83B6424F678E2EA6714433C.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CE1FC93A3F20326BE83B6424F678E2EA6714433C.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 07:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:46:53:7f:35:66:af:a4:a8:21:9b:96:34:5e:30:0b:69:34:0e:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE1FC93A3F20326BE83B6424F678E2EA6714433C Validity Not Before: Feb 4 18:05:36 2025 GMT Not After : Feb 3 18:10:36 2026 GMT Subject: CN=7273CCAD7773EBB2D0A47FE906090A27109995C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:96:cf:47:3b:f1:b8:50:df:73:8e:7a:2a:5a: a6:dd:3c:bc:de:dc:7d:0e:2e:c8:92:88:32:25:4c: 24:6b:fd:b3:c1:ea:e2:da:35:7a:c1:e3:e9:a8:c9: d5:6d:d1:f0:e7:4e:21:68:7b:f2:7f:c5:29:b5:85: 5a:93:35:42:97:d0:4a:ad:12:77:ac:27:13:ec:b5: 69:d9:09:29:81:39:d7:3f:17:39:f5:40:b5:5c:6c: b1:8a:4a:58:35:6e:75:28:d0:a3:76:71:67:ba:00: 9c:a0:98:1c:79:26:ee:6c:84:ec:12:3b:d3:65:6c: 61:0a:70:4a:1b:53:e3:49:7d:bd:c8:c3:4e:ac:a6: 22:cc:cb:07:01:7a:25:78:42:83:5b:de:c6:c9:ed: e3:7a:8f:ac:a7:80:59:fc:e5:57:aa:5a:0f:d0:ba: fd:fa:34:ea:a9:fc:e2:b9:7e:5f:cd:2d:05:0f:c7: f5:b6:df:82:a1:b1:f4:42:62:35:34:00:1a:64:3d: cd:c0:d1:83:84:6c:6c:0f:78:1f:b5:fb:23:28:14: 7e:69:74:a7:81:73:12:37:76:62:3a:dd:31:ae:7b: 01:8d:45:ae:46:b1:ba:99:41:3e:23:62:86:c4:dd: 8a:b4:ad:a3:f6:cb:d6:97:ab:02:f3:5e:ac:94:96: 66:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:73:CC:AD:77:73:EB:B2:D0:A4:7F:E9:06:09:0A:27:10:99:95:C1 X509v3 Authority Key Identifier: keyid:CE:1F:C9:3A:3F:20:32:6B:E8:3B:64:24:F6:78:E2:EA:67:14:43:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/867D4F42CC3AD6ADFC36A4857E4D8A29E722A6909A853F0E6C118E0370A1A96F/0/CE1FC93A3F20326BE83B6424F678E2EA6714433C.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CE1FC93A3F20326BE83B6424F678E2EA6714433C.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/867D4F42CC3AD6ADFC36A4857E4D8A29E722A6909A853F0E6C118E0370A1A96F/0/323830303a6161303a3a2f33322d3438203d3e203532333530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2800:aa0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:6b:83:51:c2:56:4c:2e:18:46:be:4b:cf:92:bf:6a:3a:af: 6f:b7:38:97:ea:03:f5:72:1e:af:c1:bc:b0:f0:c4:d0:73:45: 45:43:d9:93:be:c3:e9:4c:78:60:33:fd:45:84:9d:3b:e7:cf: 13:87:b3:d6:0d:89:b7:07:68:89:17:b4:de:c8:ec:55:f6:31: 29:a8:f4:6f:c4:26:02:ae:35:6e:e1:f5:f8:09:5d:b0:97:4c: a7:0e:17:6a:8a:3a:ce:b2:6a:cf:89:c7:af:b0:b3:31:5c:3c: 9b:10:71:6e:6c:2a:74:ce:05:37:74:5c:8f:59:76:64:a8:11: 5c:6a:ae:06:41:83:0f:71:bd:cf:38:77:88:de:61:78:d0:83: c9:ba:40:4b:39:78:ec:5f:50:7e:f7:b3:c3:8c:41:9e:ee:15: 1d:d7:4a:e3:ba:c9:b0:82:4d:10:96:89:dc:6b:79:1b:1c:13: 03:60:b3:7f:16:eb:65:84:0a:22:65:e8:6f:c9:ff:2d:2f:e8: 75:e7:97:0a:58:47:a8:0b:87:b3:c4:87:a0:56:8d:2e:f2:78: 31:cf:86:06:07:cf:ff:6a:75:7a:8a:8c:53:9a:d6:7e:54:bf: 1e:81:41:c3:93:0d:6e:d3:d2:3e:67:95:e5:a7:63:84:36:ae: 4c:bf:9c:4e -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgIUB0ZTfzVmr6SoIZuWNF4wC2k0DgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UxRkM5M0EzRjIwMzI2QkU4M0I2NDI0RjY3OEUyRUE2 NzE0NDMzQzAeFw0yNTAyMDQxODA1MzZaFw0yNjAyMDMxODEwMzZaMDMxMTAvBgNV BAMTKDcyNzNDQ0FENzc3M0VCQjJEMEE0N0ZFOTA2MDkwQTI3MTA5OTk1QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCils9HO/G4UN9zjnoqWqbdPLze 3H0OLsiSiDIlTCRr/bPB6uLaNXrB4+moydVt0fDnTiFoe/J/xSm1hVqTNUKX0Eqt EnesJxPstWnZCSmBOdc/Fzn1QLVcbLGKSlg1bnUo0KN2cWe6AJygmBx5Ju5shOwS O9NlbGEKcEobU+NJfb3Iw06spiLMywcBeiV4QoNb3sbJ7eN6j6yngFn85VeqWg/Q uv36NOqp/OK5fl/NLQUPx/W234KhsfRCYjU0ABpkPc3A0YOEbGwPeB+1+yMoFH5p dKeBcxI3dmI63TGuewGNRa5GsbqZQT4jYobE3Yq0raP2y9aXqwLzXqyUlmaVAgMB AAGjggLFMIICwTAdBgNVHQ4EFgQUcnPMrXdz67LQpH/pBgkKJxCZlcEwHwYDVR0j BBgwFoAUzh/JOj8gMmvoO2Qk9nji6mcUQzwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84NjdENEY0MkNDM0FENkFERkMzNkE0ODU3RTREOEEyOUU3 MjJBNjkwOUE4NTNGMEU2QzExOEUwMzcwQTFBOTZGLzAvQ0UxRkM5M0EzRjIwMzI2 QkU4M0I2NDI0RjY3OEUyRUE2NzE0NDMzQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DRTFGQzkzQTNGMjAzMjZCRTgz QjY0MjRGNjc4RTJFQTY3MTQ0MzNDLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvODY3RDRGNDJDQzNBRDZBREZDMzZBNDg1N0U0RDhBMjlFNzIyQTY5MDlB ODUzRjBFNkMxMThFMDM3MEExQTk2Ri8wLzMyMzgzMDMwM2E2MTYxMzAzYTNhMmYz MzMyMmQzNDM4MjAzZDNlMjAzNTMyMzMzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKAAKoDANBgkq hkiG9w0BAQsFAAOCAQEATWuDUcJWTC4YRr5Lz5K/ajqvb7c4l+oD9XIer8G8sPDE 0HNFRUPZk77D6Ux4YDP9RYSdO+fPE4ez1g2JtwdoiRe03sjsVfYxKaj0b8QmAq41 buH1+AldsJdMpw4Xaoo6zrJqz4nHr7CzMVw8mxBxbmwqdM4FN3Rcj1l2ZKgRXGqu BkGDD3G9zzh3iN5heNCDybpASzl47F9Qfvezw4xBnu4VHddK47rJsIJNEJaJ3Gt5 GxwTA2CzfxbrZYQKImXob8n/LS/odeeXClhHqAuHs8SHoFaNLvJ4Mc+GBgfP/2p1 eoqMU5rWflS/HoFBw5MNbtPSPmeV5adjhDauTL+cTg== -----END CERTIFICATE-----Generated at Fri Apr 18 23:42:39 2025 by rpki-client