$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/88B825D4565CAF9A2F9C6F36C6A81AC14E0CC1371D07B7BDB459D970E7989FEC/0/3133312e3235352e34302e302f32322d3234203d3e20323633383234.roa File: 3133312e3235352e34302e302f32322d3234203d3e20323633383234.roa (raw, json) Hash identifier: da8EXKSxzUFOfW0zWWrjqm8boKBLnd8PmIaaKkjtnjU= Subject key identifier: 2C:D3:B8:F6:FD:B8:B0:FA:A0:52:97:AB:67:B8:84:C0:13:4E:27:79 Certificate issuer: /CN=65AE336B36F95ECAA3CDA1B469CE2D5203320077 Certificate serial: 62E3152A8C6FCB30238A82E022E64E8325F736C1 Authority key identifier: 65:AE:33:6B:36:F9:5E:CA:A3:CD:A1:B4:69:CE:2D:52:03:32:00:77 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/65AE336B36F95ECAA3CDA1B469CE2D5203320077.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/88B825D4565CAF9A2F9C6F36C6A81AC14E0CC1371D07B7BDB459D970E7989FEC/0/3133312e3235352e34302e302f32322d3234203d3e20323633383234.roa Signing time: Tue 05 Mar 2024 18:00:40 +0000 ROA not before: Tue 05 Mar 2024 17:55:40 +0000 ROA not after: Tue 04 Mar 2025 18:00:40 +0000 asID: 263824 IP address blocks: 131.255.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/88B825D4565CAF9A2F9C6F36C6A81AC14E0CC1371D07B7BDB459D970E7989FEC/0/65AE336B36F95ECAA3CDA1B469CE2D5203320077.crl rsync://repository.lacnic.net/rpki/lacnic/88B825D4565CAF9A2F9C6F36C6A81AC14E0CC1371D07B7BDB459D970E7989FEC/0/65AE336B36F95ECAA3CDA1B469CE2D5203320077.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/65AE336B36F95ECAA3CDA1B469CE2D5203320077.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 23 Nov 2024 22:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:e3:15:2a:8c:6f:cb:30:23:8a:82:e0:22:e6:4e:83:25:f7:36:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65AE336B36F95ECAA3CDA1B469CE2D5203320077 Validity Not Before: Mar 5 17:55:40 2024 GMT Not After : Mar 4 18:00:40 2025 GMT Subject: CN=2CD3B8F6FDB8B0FAA05297AB67B884C0134E2779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:83:6a:b4:95:21:96:55:bc:ae:f8:68:62: 84:2d:37:9a:89:96:6a:43:06:6a:0d:10:17:6e:d8: 37:96:9a:1a:3e:dc:36:b9:b7:40:13:ec:df:6d:ce: 0d:54:0b:b2:56:fd:6b:1f:a6:96:49:d6:f0:a0:d9: 53:c0:f9:3e:81:8f:7a:9f:0f:e7:b1:1b:c2:38:17: 45:cc:fa:f1:c0:e1:55:a0:d4:10:ce:b3:cd:3f:59: 0a:92:f7:fe:5f:21:ac:8d:c0:c6:f7:60:d5:68:14: c2:ae:b9:21:ff:56:5d:69:ce:e3:0d:70:bb:c9:6e: e6:7f:7c:73:66:cc:be:a5:be:7c:95:33:e8:10:ef: 6f:6a:1d:ef:18:b4:23:ae:3a:2f:f7:f7:6b:2b:3f: 9e:77:44:4a:4f:e0:02:37:22:29:8c:1e:eb:19:21: ae:f1:66:e6:51:54:db:92:09:0f:76:56:6a:fa:bb: 89:dd:1b:a2:4a:a4:b4:0c:5b:3b:c1:7f:3d:ea:1a: fc:90:85:d1:dd:2a:09:08:60:74:55:4b:fe:c1:a8: 8d:9b:bb:f3:c4:b8:a2:74:b3:65:91:17:e7:d7:e5: a2:49:1e:41:cf:73:0d:16:5a:02:50:0e:25:d5:28: a3:4c:fa:8d:4c:34:3f:c5:18:52:98:2d:b2:d7:d0: fe:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D3:B8:F6:FD:B8:B0:FA:A0:52:97:AB:67:B8:84:C0:13:4E:27:79 X509v3 Authority Key Identifier: keyid:65:AE:33:6B:36:F9:5E:CA:A3:CD:A1:B4:69:CE:2D:52:03:32:00:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/88B825D4565CAF9A2F9C6F36C6A81AC14E0CC1371D07B7BDB459D970E7989FEC/0/65AE336B36F95ECAA3CDA1B469CE2D5203320077.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/65AE336B36F95ECAA3CDA1B469CE2D5203320077.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/88B825D4565CAF9A2F9C6F36C6A81AC14E0CC1371D07B7BDB459D970E7989FEC/0/3133312e3235352e34302e302f32322d3234203d3e20323633383234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.255.40.0/22 Signature Algorithm: sha256WithRSAEncryption 67:95:e0:03:ab:10:53:0f:8a:25:ea:8a:cd:49:20:8b:35:b5: d6:a3:f8:1c:e2:79:16:c0:1c:29:86:aa:ff:cd:b5:5c:f8:b9: 57:56:7c:a3:71:8f:33:c2:71:92:0f:db:1a:03:d1:cd:5a:97: 03:15:c5:df:d1:32:74:a1:24:d6:cd:c0:2a:02:86:c0:58:26: aa:24:f4:d2:64:8e:8d:20:50:51:ff:5e:33:4c:cf:00:0e:4f: bc:3b:66:21:47:f0:05:1c:66:de:51:36:4e:78:70:cc:46:76: 0f:df:03:d9:ff:e0:81:e1:f6:e9:6c:d4:66:64:e5:c0:39:71: 31:70:45:c9:b4:3a:fd:ae:ef:6a:5b:d4:ee:20:3d:23:23:54: 92:e1:e8:9a:0e:8f:33:bb:02:ac:d7:dc:7e:00:8c:26:f3:66: 86:2b:2c:78:da:5f:c9:66:b1:43:e9:c5:1c:db:20:dc:d7:03: 50:c2:73:24:3d:9f:6c:64:f7:1e:4e:6c:20:87:df:e2:cc:2e: e4:5b:c7:8d:3f:f9:ff:0b:1d:a7:1c:4d:56:25:17:ab:32:3c: 2f:8c:9c:68:4d:b6:db:71:b9:5d:8f:83:7a:b6:86:7a:09:04: 11:8d:66:e4:a1:cc:7f:c2:08:d0:cf:8e:23:6a:2b:28:df:33: 26:05:88:ed -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUYuMVKoxvyzAjioLgIuZOgyX3NsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVBRTMzNkIzNkY5NUVDQUEzQ0RBMUI0NjlDRTJENTIw MzMyMDA3NzAeFw0yNDAzMDUxNzU1NDBaFw0yNTAzMDQxODAwNDBaMDMxMTAvBgNV BAMTKDJDRDNCOEY2RkRCOEIwRkFBMDUyOTdBQjY3Qjg4NEMwMTM0RTI3NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+oYNqtJUhllW8rvhoYoQtN5qJ lmpDBmoNEBdu2DeWmho+3Da5t0AT7N9tzg1UC7JW/WsfppZJ1vCg2VPA+T6Bj3qf D+exG8I4F0XM+vHA4VWg1BDOs80/WQqS9/5fIayNwMb3YNVoFMKuuSH/Vl1pzuMN cLvJbuZ/fHNmzL6lvnyVM+gQ729qHe8YtCOuOi/392srP553REpP4AI3IimMHusZ Ia7xZuZRVNuSCQ92Vmr6u4ndG6JKpLQMWzvBfz3qGvyQhdHdKgkIYHRVS/7BqI2b u/PEuKJ0s2WRF+fX5aJJHkHPcw0WWgJQDiXVKKNM+o1MND/FGFKYLbLX0P5DAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQULNO49v24sPqgUperZ7iEwBNOJ3kwHwYDVR0j BBgwFoAUZa4zazb5XsqjzaG0ac4tUgMyAHcwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84OEI4MjVENDU2NUNBRjlBMkY5QzZGMzZDNkE4MUFDMTRF MENDMTM3MUQwN0I3QkRCNDU5RDk3MEU3OTg5RkVDLzAvNjVBRTMzNkIzNkY5NUVD QUEzQ0RBMUI0NjlDRTJENTIwMzMyMDA3Ny5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC82NUFFMzM2QjM2Rjk1RUNBQTND REExQjQ2OUNFMkQ1MjAzMzIwMDc3LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvODhCODI1RDQ1NjVDQUY5QTJGOUM2RjM2QzZBODFBQzE0RTBDQzEzNzFE MDdCN0JEQjQ1OUQ5NzBFNzk4OUZFQy8wLzMxMzMzMTJlMzIzNTM1MmUzNDMwMmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjMzMzgzMjM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCg/8o MA0GCSqGSIb3DQEBCwUAA4IBAQBnleADqxBTD4ol6orNSSCLNbXWo/gc4nkWwBwp hqr/zbVc+LlXVnyjcY8zwnGSD9saA9HNWpcDFcXf0TJ0oSTWzcAqAobAWCaqJPTS ZI6NIFBR/14zTM8ADk+8O2YhR/AFHGbeUTZOeHDMRnYP3wPZ/+CB4fbpbNRmZOXA OXExcEXJtDr9ru9qW9TuID0jI1SS4eiaDo8zuwKs19x+AIwm82aGKyx42l/JZrFD 6cUc2yDc1wNQwnMkPZ9sZPceTmwgh9/izC7kW8eNP/n/Cx2nHE1WJRerMjwvjJxo Tbbbcbldj4N6toZ6CQQRjWbkocx/wgjQz44jaiso3zMmBYjt -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:10 2024 by rpki-client on console-ams.rpki-client.org