$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/323830333a626265303a3530303a3a2f34302d3430203d3e20323730303838.roa File: 323830333a626265303a3530303a3a2f34302d3430203d3e20323730303838.roa (raw, json) Hash identifier: Uzb66kDA0olA6Gt40tYeuZbuGLMhY3BOA0MSMUlNmQI= Subject key identifier: 5A:94:3E:5F:61:44:59:41:2D:52:87:F9:21:54:96:72:2B:FA:99:21 Certificate issuer: /CN=08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D Certificate serial: 3C350F06813C68080448BB09A0681F5A4C30B4D9 Authority key identifier: 08:AA:2E:4D:3C:7C:DF:96:26:D3:31:AC:D3:8D:17:19:F3:D4:A7:2D Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/323830333a626265303a3530303a3a2f34302d3430203d3e20323730303838.roa Signing time: Wed 29 Jan 2025 15:30:00 +0000 ROA not before: Wed 29 Jan 2025 15:25:00 +0000 ROA not after: Wed 28 Jan 2026 15:30:00 +0000 asID: 270088 IP address blocks: 2803:bbe0:500::/40 maxlen: 40 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.crl rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:35:0f:06:81:3c:68:08:04:48:bb:09:a0:68:1f:5a:4c:30:b4:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D Validity Not Before: Jan 29 15:25:00 2025 GMT Not After : Jan 28 15:30:00 2026 GMT Subject: CN=5A943E5F614459412D5287F9215496722BFA9921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:69:97:9a:f4:f5:2b:28:49:b0:42:a6:4e:fb: da:e2:e9:4a:39:bd:46:fd:7b:93:65:c7:03:76:93: 7a:5a:7d:b2:d2:d9:f1:0c:5c:25:06:bd:6c:a0:0b: fb:b4:c9:29:bf:3e:13:29:b2:5d:6c:52:fb:18:da: c0:95:c1:69:fb:d6:e8:f5:3a:98:69:f8:59:3c:d4: 19:68:97:89:f3:6a:e1:c1:25:bf:43:f3:99:59:87: 90:47:1f:d8:87:46:63:76:1d:5b:e4:c2:7e:a9:a7: cf:60:14:71:bd:81:3a:0e:fe:45:de:55:3d:67:38: 80:23:7c:c2:b0:6c:e0:60:ea:2c:3c:aa:d2:4a:20: 16:02:32:17:ed:ea:a0:99:27:1e:2a:2c:88:29:bd: a1:67:59:63:6b:97:df:0a:40:6d:37:52:94:e6:f6: 55:34:cf:70:4d:b5:78:9e:b5:de:af:0b:86:c1:c2: 06:7d:e8:b6:14:f7:87:bc:46:df:8e:cf:ea:11:4d: 8b:82:57:2a:7b:fe:6c:a3:a5:7e:58:a8:8b:63:32: 89:6f:88:62:ec:55:44:b9:78:6d:dd:85:3b:b3:06: 4b:19:4b:0b:8d:78:c7:7a:6d:6b:11:5a:55:09:35: d8:fd:c7:2d:c5:13:b5:ec:71:b5:e0:cd:98:1b:d3: c7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:94:3E:5F:61:44:59:41:2D:52:87:F9:21:54:96:72:2B:FA:99:21 X509v3 Authority Key Identifier: keyid:08:AA:2E:4D:3C:7C:DF:96:26:D3:31:AC:D3:8D:17:19:F3:D4:A7:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/323830333a626265303a3530303a3a2f34302d3430203d3e20323730303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:bbe0:500::/40 Signature Algorithm: sha256WithRSAEncryption 5a:3c:5d:c3:22:1c:58:40:4f:20:0a:3e:8e:a6:20:c5:4c:9f: 8d:0b:66:0d:86:76:0e:b1:81:b5:c0:5a:98:4d:07:bc:46:d8: f0:84:b8:08:de:f5:6b:a5:9d:da:2b:9b:24:8a:06:2a:81:d5: 89:9b:3c:c5:2f:7a:5c:d3:d6:b2:d7:bd:1c:08:44:56:eb:15: 77:27:4d:f6:fc:31:a8:96:c6:c2:1c:b4:67:2b:79:d1:38:27: 40:ef:e7:93:d2:a1:af:eb:6a:7d:bc:6a:23:b9:72:c3:fc:d7: ac:27:f8:34:f3:5b:48:5e:86:73:de:c4:fd:ce:a6:77:ae:fa: 8c:a9:1d:25:ec:42:0d:39:1d:c6:6d:b6:3f:cb:fc:5e:31:44: 30:f9:52:46:93:20:4f:14:ff:64:b4:5b:d5:95:76:2b:48:0a: 1f:b6:c9:61:80:3c:fb:67:d6:41:4e:0d:22:4f:b6:c7:8c:d0: ec:da:30:c8:2f:fa:c5:dc:d0:4e:8e:1b:0a:75:da:6e:a8:71: 5e:81:af:41:e9:f4:1b:67:d3:2f:69:bd:48:1d:26:8d:e7:fc: 8a:44:bb:16:6c:98:41:58:eb:fa:69:09:ab:2f:53:50:ad:87: d1:e2:64:e2:98:0b:d2:4d:40:9c:89:3e:45:a4:f4:e7:9d:21: ee:8d:84:d0 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUPDUPBoE8aAgESLsJoGgfWkwwtNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhBQTJFNEQzQzdDREY5NjI2RDMzMUFDRDM4RDE3MTlG M0Q0QTcyRDAeFw0yNTAxMjkxNTI1MDBaFw0yNjAxMjgxNTMwMDBaMDMxMTAvBgNV BAMTKDVBOTQzRTVGNjE0NDU5NDEyRDUyODdGOTIxNTQ5NjcyMkJGQTk5MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnaZea9PUrKEmwQqZO+9ri6Uo5 vUb9e5NlxwN2k3pafbLS2fEMXCUGvWygC/u0ySm/PhMpsl1sUvsY2sCVwWn71uj1 Ophp+Fk81Blol4nzauHBJb9D85lZh5BHH9iHRmN2HVvkwn6pp89gFHG9gToO/kXe VT1nOIAjfMKwbOBg6iw8qtJKIBYCMhft6qCZJx4qLIgpvaFnWWNrl98KQG03UpTm 9lU0z3BNtXietd6vC4bBwgZ96LYU94e8Rt+Oz+oRTYuCVyp7/myjpX5YqItjMolv iGLsVUS5eG3dhTuzBksZSwuNeMd6bWsRWlUJNdj9xy3FE7XscbXgzZgb08dPAgMB AAGjggLSMIICzjAdBgNVHQ4EFgQUWpQ+X2FEWUEtUof5IVSWciv6mSEwHwYDVR0j BBgwFoAUCKouTTx835Ym0zGs040XGfPUpy0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84RDRCQjI0MjFDMjREMTlGMzEyM0IwQzY4MUIwMUFEODJB OTI5NDE1ODJDOURBQkI5NDkzRTA5N0YzRjJGODkzLzAvMDhBQTJFNEQzQzdDREY5 NjI2RDMzMUFDRDM4RDE3MTlGM0Q0QTcyRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wOEFBMkU0RDNDN0NERjk2MjZE MzMxQUNEMzhEMTcxOUYzRDRBNzJELmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvOEQ0QkIyNDIxQzI0RDE5RjMxMjNCMEM2ODFCMDFBRDgyQTkyOTQxNTgy QzlEQUJCOTQ5M0UwOTdGM0YyRjg5My8wLzMyMzgzMDMzM2E2MjYyNjUzMDNhMzUz MDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzNzMwMzAzODM4LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAI AwYAKAO74AUwDQYJKoZIhvcNAQELBQADggEBAFo8XcMiHFhATyAKPo6mIMVMn40L Zg2Gdg6xgbXAWphNB7xG2PCEuAje9WulndormySKBiqB1YmbPMUvelzT1rLXvRwI RFbrFXcnTfb8MaiWxsIctGcredE4J0Dv55PSoa/ran28aiO5csP816wn+DTzW0he hnPexP3Opneu+oypHSXsQg05HcZttj/L/F4xRDD5UkaTIE8U/2S0W9WVditICh+2 yWGAPPtn1kFODSJPtseM0OzaMMgv+sXc0E6OGwp12m6ocV6Br0Hp9Btn0y9pvUgd Jo3n/IpEuxZsmEFY6/ppCasvU1Cth9HiZOKYC9JNQJyJPkWk9OedIe6NhNA= -----END CERTIFICATE-----Generated at Sat Apr 5 11:59:12 2025 by rpki-client