$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/3132382e3230312e32302e302f32322d3232203d3e20323635373430.roa File: 3132382e3230312e32302e302f32322d3232203d3e20323635373430.roa (raw, json) Hash identifier: bz11AZFfJ0r+HEGUYsgx+d3pCKTnexmFq2lHu4m96A0= Subject key identifier: 74:14:28:78:29:3E:0D:66:5B:41:49:6F:A4:A3:90:B2:11:41:2A:E1 Certificate issuer: /CN=25AA12EC2868B90A693EEAD25632B15E24525ED3 Certificate serial: 4E67223664D5909258C24FBD2C8EBDEB78D6CC1C Authority key identifier: 25:AA:12:EC:28:68:B9:0A:69:3E:EA:D2:56:32:B1:5E:24:52:5E:D3 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/3132382e3230312e32302e302f32322d3232203d3e20323635373430.roa Signing time: Tue 04 Feb 2025 18:34:59 +0000 ROA not before: Tue 04 Feb 2025 18:29:59 +0000 ROA not after: Tue 03 Feb 2026 18:34:59 +0000 asID: 265740 IP address blocks: 128.201.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.crl rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:67:22:36:64:d5:90:92:58:c2:4f:bd:2c:8e:bd:eb:78:d6:cc:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25AA12EC2868B90A693EEAD25632B15E24525ED3 Validity Not Before: Feb 4 18:29:59 2025 GMT Not After : Feb 3 18:34:59 2026 GMT Subject: CN=74142878293E0D665B41496FA4A390B211412AE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:ec:b0:5e:73:89:07:f7:58:c2:ad:9a:03:9b: 11:2e:98:e5:e8:b5:56:42:d6:a3:ec:28:8f:fa:e4: 3f:e3:0e:9b:d5:24:84:46:28:fc:5c:5a:fa:e9:5a: 3b:e4:37:25:9a:56:69:73:cb:1b:0f:f4:06:5d:5a: 77:c9:38:61:98:e4:4d:dc:ec:f3:10:ef:15:d0:10: c4:0a:51:b8:d7:e1:93:c9:6b:a0:f6:5e:20:e5:3f: 0b:7e:04:f2:5a:47:b9:b6:13:31:a3:5c:b4:f3:62: 8a:12:f6:e2:78:01:b9:19:7c:81:d5:81:be:38:8a: 82:a4:69:1f:b4:5a:e1:b7:3d:8b:4f:e0:e5:cb:11: 2a:0c:eb:6f:94:1d:46:5b:ff:f2:d7:1b:0d:b1:af: 2f:0f:66:cf:2d:87:ff:f3:12:b4:3f:c8:a4:87:63: 11:ab:18:c3:ae:67:5d:bc:79:1c:0e:5d:5d:10:8d: 30:77:81:18:be:c2:c4:ee:cc:b8:1d:a0:af:5c:c7: 69:d0:ca:75:1f:06:35:ed:0d:c5:b5:ae:53:4d:d9: 09:0e:75:96:9f:66:41:ce:34:26:4f:01:c8:7c:63: 89:bb:34:b0:5d:8d:a1:cd:4f:3b:71:1b:a4:1d:42: e3:99:03:78:8b:4e:1e:f5:69:7d:00:ad:3d:c5:a9: 8b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:14:28:78:29:3E:0D:66:5B:41:49:6F:A4:A3:90:B2:11:41:2A:E1 X509v3 Authority Key Identifier: keyid:25:AA:12:EC:28:68:B9:0A:69:3E:EA:D2:56:32:B1:5E:24:52:5E:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/3132382e3230312e32302e302f32322d3232203d3e20323635373430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.201.20.0/22 Signature Algorithm: sha256WithRSAEncryption 31:98:dd:7f:ab:e8:d8:5a:50:ea:95:7c:72:16:7c:e9:64:49: b6:f7:86:64:ac:05:13:54:1c:bd:c2:77:ca:e3:81:4e:24:aa: 44:2e:84:e2:f6:38:17:24:fa:af:a8:d2:d4:c5:bb:dd:e8:47: 04:50:cd:38:d0:e5:a0:d3:0f:ae:33:5d:a5:fb:31:40:8c:e7: 92:bc:6b:cf:f6:2a:68:ee:93:14:71:fd:87:64:e1:84:8c:b8: 13:0d:78:e3:38:48:fe:36:8a:64:55:9e:f7:c8:68:ab:d6:1f: d1:14:e8:b9:12:ce:e1:8a:9c:54:8c:21:4d:77:c0:74:26:d0: 52:31:90:bc:d3:d8:c5:b9:f7:35:2b:bd:eb:d9:be:61:95:e0: 3b:05:22:14:0c:7b:1c:af:7c:31:58:b9:de:8f:d7:55:60:2d: f3:2a:e0:ca:8e:d3:be:9e:03:0a:f8:d2:3f:15:da:dc:f5:7b: ce:7b:c8:b9:79:08:6e:70:d0:c3:6c:3b:91:bb:22:0b:ee:f1: 1a:b2:ec:54:15:d3:e4:f8:ff:c8:39:b3:bd:96:04:b2:ce:53: a0:6e:ae:78:27:4e:a2:cb:16:92:dd:1f:35:db:69:51:71:18: 58:71:84:eb:4a:a3:e5:c9:f6:78:38:7e:a0:5e:f8:f1:e9:9a: a7:d4:ff:13 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUTmciNmTVkJJYwk+9LI6963jWzBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVBQTEyRUMyODY4QjkwQTY5M0VFQUQyNTYzMkIxNUUy NDUyNUVEMzAeFw0yNTAyMDQxODI5NTlaFw0yNjAyMDMxODM0NTlaMDMxMTAvBgNV BAMTKDc0MTQyODc4MjkzRTBENjY1QjQxNDk2RkE0QTM5MEIyMTE0MTJBRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJ7LBec4kH91jCrZoDmxEumOXo tVZC1qPsKI/65D/jDpvVJIRGKPxcWvrpWjvkNyWaVmlzyxsP9AZdWnfJOGGY5E3c 7PMQ7xXQEMQKUbjX4ZPJa6D2XiDlPwt+BPJaR7m2EzGjXLTzYooS9uJ4AbkZfIHV gb44ioKkaR+0WuG3PYtP4OXLESoM62+UHUZb//LXGw2xry8PZs8th//zErQ/yKSH YxGrGMOuZ128eRwOXV0QjTB3gRi+wsTuzLgdoK9cx2nQynUfBjXtDcW1rlNN2QkO dZafZkHONCZPAch8Y4m7NLBdjaHNTztxG6QdQuOZA3iLTh71aX0ArT3FqYv/AgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUdBQoeCk+DWZbQUlvpKOQshFBKuEwHwYDVR0j BBgwFoAUJaoS7ChouQppPurSVjKxXiRSXtMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84NzE1ODc3MDE0RDZBMzU2MkI5MDU5N0VDMzk0QjkxNEYx NkZEM0E1M0M1ODkzOUE3NzAzODhCM0ZFN0Q3MjdBLzAvMjVBQTEyRUMyODY4Qjkw QTY5M0VFQUQyNTYzMkIxNUUyNDUyNUVEMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUFBMTJFQzI4NjhCOTBBNjkz RUVBRDI1NjMyQjE1RTI0NTI1RUQzLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvODcxNTg3NzAxNEQ2QTM1NjJCOTA1OTdFQzM5NEI5MTRGMTZGRDNBNTND NTg5MzlBNzcwMzg4QjNGRTdENzI3QS8wLzMxMzIzODJlMzIzMDMxMmUzMjMwMmUz MDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjM1MzczNDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCgMkU MA0GCSqGSIb3DQEBCwUAA4IBAQAxmN1/q+jYWlDqlXxyFnzpZEm294ZkrAUTVBy9 wnfK44FOJKpELoTi9jgXJPqvqNLUxbvd6EcEUM040OWg0w+uM12l+zFAjOeSvGvP 9ipo7pMUcf2HZOGEjLgTDXjjOEj+NopkVZ73yGir1h/RFOi5Es7hipxUjCFNd8B0 JtBSMZC809jFufc1K73r2b5hleA7BSIUDHscr3wxWLnej9dVYC3zKuDKjtO+ngMK +NI/Fdrc9XvOe8i5eQhucNDDbDuRuyIL7vEasuxUFdPk+P/IObO9lgSyzlOgbq54 J06iyxaS3R8122lRcRhYcYTrSqPlyfZ4OH6gXvjx6Zqn1P8T -----END CERTIFICATE-----Generated at Sat Apr 5 17:19:22 2025 by rpki-client