$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/3132382e3230312e32302e302f32342d3234203d3e2037303439.roa File: 3132382e3230312e32302e302f32342d3234203d3e2037303439.roa (raw, json) Hash identifier: Y1NTHFHFK0ScTr5gIdEbavaBeJLVvNbPhSn5UkAIHCQ= Subject key identifier: D6:F0:85:A9:E9:04:87:DE:3F:73:04:62:3B:32:AE:86:29:20:42:4D Certificate issuer: /CN=25AA12EC2868B90A693EEAD25632B15E24525ED3 Certificate serial: 7ACA842B501621123B2BE9382CCA279DBE6B474E Authority key identifier: 25:AA:12:EC:28:68:B9:0A:69:3E:EA:D2:56:32:B1:5E:24:52:5E:D3 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/3132382e3230312e32302e302f32342d3234203d3e2037303439.roa Signing time: Tue 05 Mar 2024 17:49:41 +0000 ROA not before: Tue 05 Mar 2024 17:44:41 +0000 ROA not after: Tue 04 Mar 2025 17:49:41 +0000 asID: 7049 IP address blocks: 128.201.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.crl rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 08 May 2024 12:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ca:84:2b:50:16:21:12:3b:2b:e9:38:2c:ca:27:9d:be:6b:47:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25AA12EC2868B90A693EEAD25632B15E24525ED3 Validity Not Before: Mar 5 17:44:41 2024 GMT Not After : Mar 4 17:49:41 2025 GMT Subject: CN=D6F085A9E90487DE3F7304623B32AE862920424D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a7:22:81:bb:ed:45:6d:ea:13:e9:d2:ba:5e: 7c:fa:b0:0e:f2:1b:e9:ba:c8:f1:0e:4d:0d:5c:10: d7:89:4a:65:b8:f8:83:61:0b:ad:73:c6:e3:23:04: c5:d8:18:91:d9:c3:68:a5:2e:1a:b5:6e:94:46:67: cc:0c:6c:57:f6:17:11:e4:2c:28:2a:e4:ef:2b:60: f6:16:9f:40:c3:ec:3c:22:b9:a7:9f:fc:64:88:e4: 57:41:54:25:e9:f7:6d:3d:c3:37:e4:4d:d2:06:1f: 80:03:6d:e4:4e:26:5f:9c:75:53:03:07:a8:40:4a: 86:e6:11:6a:e5:0c:78:a1:4a:42:1c:df:b4:44:35: 48:d9:94:7c:58:97:7d:e9:17:bd:77:a5:7a:17:c8: 76:2c:13:e2:d4:9e:9d:8e:7f:23:8c:af:08:bd:17: df:38:5e:f9:41:2b:8a:4b:2a:c2:3d:13:0d:4c:e6: 07:7c:3b:a4:31:b0:82:53:9d:5e:e0:3d:4c:f9:02: 71:0d:e2:3a:2c:cf:f7:a7:0e:98:29:7c:65:dc:da: 3e:28:92:c4:5a:f8:32:61:90:d0:b2:9d:8b:52:f3: a0:0d:8e:c5:96:47:46:74:32:14:8e:df:a3:36:bf: ed:3a:61:ff:69:55:2d:51:1d:ec:61:1b:08:67:b9: f6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F0:85:A9:E9:04:87:DE:3F:73:04:62:3B:32:AE:86:29:20:42:4D X509v3 Authority Key Identifier: keyid:25:AA:12:EC:28:68:B9:0A:69:3E:EA:D2:56:32:B1:5E:24:52:5E:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25AA12EC2868B90A693EEAD25632B15E24525ED3.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8715877014D6A3562B90597EC394B914F16FD3A53C58939A770388B3FE7D727A/0/3132382e3230312e32302e302f32342d3234203d3e2037303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.201.20.0/24 Signature Algorithm: sha256WithRSAEncryption 62:55:54:0a:74:85:68:52:e2:b1:4d:ce:6b:47:16:51:c9:3a: a3:83:4b:c6:8c:98:f3:c0:93:36:08:c0:59:2c:64:85:a4:a3: 2e:be:7f:e4:39:89:4a:0b:6a:01:68:ac:37:aa:c8:1a:c1:7f: 8d:82:8b:ca:14:ac:d6:ff:95:ab:af:dd:7f:a3:c4:9f:84:32: f2:df:79:b9:f0:25:2d:b1:6e:db:74:10:8d:e6:3f:8b:de:b4: 37:21:0a:ef:44:e4:34:cc:1d:a9:22:60:8c:09:be:e2:88:20: 26:22:f5:05:d0:0b:d6:a6:aa:57:3f:a0:76:47:a1:b3:68:27: 4f:68:ca:63:51:6b:fa:9f:50:a0:0c:f6:02:9a:64:21:39:41: 65:42:1f:c4:2b:bf:69:e6:7d:62:d9:b0:b8:4e:1f:59:b8:50: 41:1d:b3:03:b6:99:93:71:5d:67:5b:08:f1:23:7c:b7:30:9e: de:ae:9b:6a:45:f1:d1:5b:23:54:12:34:4a:1f:28:e1:98:14: d9:e3:1a:bd:b3:6e:8d:dc:b6:25:21:43:6b:ab:a7:dc:a7:40: 12:68:08:6e:8d:e0:1a:34:5b:d2:78:02:6f:00:a2:6e:ea:13: 9f:28:34:8c:8d:7a:c2:71:b9:6c:43:a2:52:c6:d6:db:dd:46: 14:97:94:f1 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUesqEK1AWIRI7K+k4LMonnb5rR04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVBQTEyRUMyODY4QjkwQTY5M0VFQUQyNTYzMkIxNUUy NDUyNUVEMzAeFw0yNDAzMDUxNzQ0NDFaFw0yNTAzMDQxNzQ5NDFaMDMxMTAvBgNV BAMTKEQ2RjA4NUE5RTkwNDg3REUzRjczMDQ2MjNCMzJBRTg2MjkyMDQyNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIpyKBu+1FbeoT6dK6Xnz6sA7y G+m6yPEOTQ1cENeJSmW4+INhC61zxuMjBMXYGJHZw2ilLhq1bpRGZ8wMbFf2FxHk LCgq5O8rYPYWn0DD7Dwiuaef/GSI5FdBVCXp9209wzfkTdIGH4ADbeROJl+cdVMD B6hASobmEWrlDHihSkIc37RENUjZlHxYl33pF713pXoXyHYsE+LUnp2OfyOMrwi9 F984XvlBK4pLKsI9Ew1M5gd8O6QxsIJTnV7gPUz5AnEN4josz/enDpgpfGXc2j4o ksRa+DJhkNCynYtS86ANjsWWR0Z0MhSO36M2v+06Yf9pVS1RHexhGwhnufbDAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQU1vCFqekEh94/cwRiOzKuhikgQk0wHwYDVR0j BBgwFoAUJaoS7ChouQppPurSVjKxXiRSXtMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84NzE1ODc3MDE0RDZBMzU2MkI5MDU5N0VDMzk0QjkxNEYx NkZEM0E1M0M1ODkzOUE3NzAzODhCM0ZFN0Q3MjdBLzAvMjVBQTEyRUMyODY4Qjkw QTY5M0VFQUQyNTYzMkIxNUUyNDUyNUVEMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUFBMTJFQzI4NjhCOTBBNjkz RUVBRDI1NjMyQjE1RTI0NTI1RUQzLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvODcxNTg3NzAxNEQ2QTM1NjJCOTA1OTdFQzM5NEI5MTRGMTZGRDNBNTND NTg5MzlBNzcwMzg4QjNGRTdENzI3QS8wLzMxMzIzODJlMzIzMDMxMmUzMjMwMmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzczMDM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACAyRQwDQYJ KoZIhvcNAQELBQADggEBAGJVVAp0hWhS4rFNzmtHFlHJOqODS8aMmPPAkzYIwFks ZIWkoy6+f+Q5iUoLagForDeqyBrBf42Ci8oUrNb/lauv3X+jxJ+EMvLfebnwJS2x btt0EI3mP4vetDchCu9E5DTMHakiYIwJvuKIICYi9QXQC9amqlc/oHZHobNoJ09o ymNRa/qfUKAM9gKaZCE5QWVCH8Qrv2nmfWLZsLhOH1m4UEEdswO2mZNxXWdbCPEj fLcwnt6um2pF8dFbI1QSNEofKOGYFNnjGr2zbo3ctiUhQ2urp9ynQBJoCG6N4Bo0 W9J4Am8Aom7qE58oNIyNesJxuWxDolLG1tvdRhSXlPE= -----END CERTIFICATE-----Generated at Fri May 3 22:32:52 2024 by rpki-client on console-fra.rpki-client.org