$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3230372e3234382e3132312e302f32342d3234203d3e203231353735.roa File: 3230372e3234382e3132312e302f32342d3234203d3e203231353735.roa (raw, json) Hash identifier: 9btrQhyNT2qkXMM/1Zbx6f7juwgxZqgMwT8oxPYrqcE= Subject key identifier: 09:A5:AA:8E:34:B3:20:25:78:51:11:B1:3D:B3:A7:AC:DB:07:C3:49 Certificate issuer: /CN=24D42265AC44C52C720364B7A5C0074DD2179046 Certificate serial: 3C7E9986C0EC77DAA8E40BAE5F1F5CC3D529C004 Authority key identifier: 24:D4:22:65:AC:44:C5:2C:72:03:64:B7:A5:C0:07:4D:D2:17:90:46 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3230372e3234382e3132312e302f32342d3234203d3e203231353735.roa Signing time: Tue 04 Feb 2025 18:18:12 +0000 ROA not before: Tue 04 Feb 2025 18:13:12 +0000 ROA not after: Tue 03 Feb 2026 18:18:12 +0000 asID: 21575 IP address blocks: 207.248.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/24D42265AC44C52C720364B7A5C0074DD2179046.crl rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/24D42265AC44C52C720364B7A5C0074DD2179046.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:7e:99:86:c0:ec:77:da:a8:e4:0b:ae:5f:1f:5c:c3:d5:29:c0:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24D42265AC44C52C720364B7A5C0074DD2179046 Validity Not Before: Feb 4 18:13:12 2025 GMT Not After : Feb 3 18:18:12 2026 GMT Subject: CN=09A5AA8E34B32025785111B13DB3A7ACDB07C349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cf:a6:c5:f4:a7:33:bc:23:ee:cc:b2:ab:72: d6:61:bd:fd:d9:3a:0a:aa:53:8f:06:56:11:81:54: 3b:7c:25:85:be:57:b7:73:10:00:0a:4e:72:90:8d: f8:d1:c8:2e:2e:b5:2e:49:42:15:11:28:a0:4e:f8: 2e:79:3f:60:f4:fe:9e:d3:46:51:29:cd:63:ff:65: 02:70:d5:67:4d:5b:1f:1d:f1:03:fe:92:29:a3:b2: c2:1a:87:8e:16:58:8e:53:18:0a:a3:09:79:50:59: 5c:bb:27:89:75:94:9c:ef:4c:2c:91:28:71:d2:35: f0:84:68:d3:b6:5c:a7:e8:12:ff:22:3a:42:1e:63: 43:95:26:ee:a0:53:48:b7:81:81:b1:36:eb:5e:c7: f4:24:8e:74:42:f6:f3:fd:03:48:1e:37:3c:af:5a: 67:21:24:e6:7c:01:0c:ec:5b:63:8f:e8:6e:6a:4b: f3:34:1b:51:a2:41:78:7b:a2:f3:ca:bf:f3:a0:61: 12:08:0e:6f:a7:60:f7:b5:16:11:22:43:64:d4:53: 9c:d5:ac:b7:77:00:17:55:a2:de:b0:12:16:c0:62: 47:29:da:a8:a2:73:cc:8b:46:7f:41:18:c6:5d:e0: c9:21:cf:ec:ef:c9:1c:58:eb:9e:d2:cd:fd:8d:df: 0a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A5:AA:8E:34:B3:20:25:78:51:11:B1:3D:B3:A7:AC:DB:07:C3:49 X509v3 Authority Key Identifier: keyid:24:D4:22:65:AC:44:C5:2C:72:03:64:B7:A5:C0:07:4D:D2:17:90:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/24D42265AC44C52C720364B7A5C0074DD2179046.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3230372e3234382e3132312e302f32342d3234203d3e203231353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.248.121.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:bc:17:96:6d:f4:06:d1:b8:b4:57:12:16:2c:f6:8e:d2:fd: 15:6b:50:b9:bd:72:74:75:2f:92:18:84:52:f9:0b:ba:2e:b7: 60:ed:cb:c9:f5:f6:e5:e0:40:f7:12:98:28:45:14:34:f1:63: 27:b6:a6:45:91:22:12:91:2b:81:bb:1f:a1:c1:61:92:1a:f0: 73:cf:5a:83:88:7d:6b:5c:82:22:37:7c:3b:d5:4f:9a:f1:c3: 8c:67:77:df:86:dd:88:ca:18:65:05:4f:9c:32:38:d9:9f:73: 75:80:e8:51:8b:1e:cf:9c:14:4f:0c:c9:0e:96:9e:4d:57:4b: 7b:00:0e:3c:cd:21:7f:40:f0:74:c1:9f:34:2f:b0:2a:96:73: aa:48:7e:82:37:2c:0e:64:fd:f6:34:26:8f:0e:18:9a:5a:d2: fd:9e:18:d6:bd:51:93:1b:09:c5:5b:4b:16:27:7f:bd:33:c8: 0b:63:c1:26:1a:68:67:3e:ed:51:23:f7:86:ee:57:fe:8f:23: 1d:8f:ce:d6:f0:67:e1:04:7a:84:94:98:b3:56:7d:2f:ab:ea: 97:bf:36:1e:46:3d:d5:9f:43:69:99:11:65:a8:8f:f0:72:89: 0f:b2:af:b6:22:94:46:3d:9d:02:19:f5:6d:de:05:ce:11:2c: 85:49:b6:aa -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUPH6ZhsDsd9qo5AuuXx9cw9UpwAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRENDIyNjVBQzQ0QzUyQzcyMDM2NEI3QTVDMDA3NERE MjE3OTA0NjAeFw0yNTAyMDQxODEzMTJaFw0yNjAyMDMxODE4MTJaMDMxMTAvBgNV BAMTKDA5QTVBQThFMzRCMzIwMjU3ODUxMTFCMTNEQjNBN0FDREIwN0MzNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1z6bF9KczvCPuzLKrctZhvf3Z OgqqU48GVhGBVDt8JYW+V7dzEAAKTnKQjfjRyC4utS5JQhURKKBO+C55P2D0/p7T RlEpzWP/ZQJw1WdNWx8d8QP+kimjssIah44WWI5TGAqjCXlQWVy7J4l1lJzvTCyR KHHSNfCEaNO2XKfoEv8iOkIeY0OVJu6gU0i3gYGxNutex/QkjnRC9vP9A0geNzyv WmchJOZ8AQzsW2OP6G5qS/M0G1GiQXh7ovPKv/OgYRIIDm+nYPe1FhEiQ2TUU5zV rLd3ABdVot6wEhbAYkcp2qiic8yLRn9BGMZd4Mkhz+zvyRxY657Szf2N3wr3AgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUCaWqjjSzICV4URGxPbOnrNsHw0kwHwYDVR0j BBgwFoAUJNQiZaxExSxyA2S3pcAHTdIXkEYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84OTcxRTFCOEEyNkRDRDc3NjlDMDI2MEI1QkUzQTNBREQx Mjg2NTM0OTk3N0FERDJDNjhENTJBNTI3QkI2NjgyLzAvMjRENDIyNjVBQzQ0QzUy QzcyMDM2NEI3QTVDMDA3NEREMjE3OTA0Ni5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNEQ0MjI2NUFDNDRDNTJDNzIw MzY0QjdBNUMwMDc0REQyMTc5MDQ2LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvODk3MUUxQjhBMjZEQ0Q3NzY5QzAyNjBCNUJFM0EzQUREMTI4NjUzNDk5 NzdBREQyQzY4RDUyQTUyN0JCNjY4Mi8wLzMyMzAzNzJlMzIzNDM4MmUzMTMyMzEy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzUzNzM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAz/h5 MA0GCSqGSIb3DQEBCwUAA4IBAQCbvBeWbfQG0bi0VxIWLPaO0v0Va1C5vXJ0dS+S GIRS+Qu6Lrdg7cvJ9fbl4ED3EpgoRRQ08WMntqZFkSISkSuBux+hwWGSGvBzz1qD iH1rXIIiN3w71U+a8cOMZ3ffht2IyhhlBU+cMjjZn3N1gOhRix7PnBRPDMkOlp5N V0t7AA48zSF/QPB0wZ80L7AqlnOqSH6CNywOZP32NCaPDhiaWtL9nhjWvVGTGwnF W0sWJ3+9M8gLY8EmGmhnPu1RI/eG7lf+jyMdj87W8GfhBHqElJizVn0vq+qXvzYe Rj3Vn0NpmRFlqI/wcokPsq+2IpRGPZ0CGfVt3gXOESyFSbaq -----END CERTIFICATE-----Generated at Sat Apr 5 12:56:57 2025 by rpki-client