$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/965872978B42FE99970EE04D8B2060771083E30741A509BAEB00DB63CECB23D3/0/323830333a393663303a3a2f33322d3438203d3e20323635363534.roa File: 323830333a393663303a3a2f33322d3438203d3e20323635363534.roa (raw, json) Hash identifier: +HXJb4sa7ETJbCOAHf7M1k8XWQOuQ/vamBtSiKAhPUQ= Subject key identifier: E1:C5:24:34:A0:74:C7:41:19:80:8E:9B:6A:E5:8A:1D:2B:A1:99:C9 Certificate issuer: /CN=3CAAABB99F5CF79CA7C25F022F85F85E0DCB2CBA Certificate serial: 6A96FCCF47D8A0BB81BDBB615829A8E168B00233 Authority key identifier: 3C:AA:AB:B9:9F:5C:F7:9C:A7:C2:5F:02:2F:85:F8:5E:0D:CB:2C:BA Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CAAABB99F5CF79CA7C25F022F85F85E0DCB2CBA.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/965872978B42FE99970EE04D8B2060771083E30741A509BAEB00DB63CECB23D3/0/323830333a393663303a3a2f33322d3438203d3e20323635363534.roa Signing time: Tue 04 Feb 2025 18:32:35 +0000 ROA not before: Tue 04 Feb 2025 18:27:35 +0000 ROA not after: Tue 03 Feb 2026 18:32:35 +0000 asID: 265654 IP address blocks: 2803:96c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/965872978B42FE99970EE04D8B2060771083E30741A509BAEB00DB63CECB23D3/0/3CAAABB99F5CF79CA7C25F022F85F85E0DCB2CBA.crl rsync://repository.lacnic.net/rpki/lacnic/965872978B42FE99970EE04D8B2060771083E30741A509BAEB00DB63CECB23D3/0/3CAAABB99F5CF79CA7C25F022F85F85E0DCB2CBA.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CAAABB99F5CF79CA7C25F022F85F85E0DCB2CBA.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:96:fc:cf:47:d8:a0:bb:81:bd:bb:61:58:29:a8:e1:68:b0:02:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CAAABB99F5CF79CA7C25F022F85F85E0DCB2CBA Validity Not Before: Feb 4 18:27:35 2025 GMT Not After : Feb 3 18:32:35 2026 GMT Subject: CN=E1C52434A074C74119808E9B6AE58A1D2BA199C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f0:08:fe:2c:25:84:db:06:9a:12:8c:8f:bf: 86:9d:85:56:b0:0f:b1:69:e3:5d:e0:d4:de:bf:59: fb:36:7d:33:3b:c3:dc:c3:f9:10:96:89:f9:8b:bf: 3d:bc:f2:05:2b:d1:1e:b7:d4:70:4d:70:bb:7a:f8: d6:aa:df:f9:d6:7e:8b:b1:20:cb:50:d7:8c:e1:1c: c3:d1:7b:4f:29:70:57:a6:04:00:12:f1:73:da:7c: 15:6e:cb:45:08:63:7c:c5:21:52:7c:ba:8a:82:09: f2:53:a9:80:0a:00:0b:22:52:02:b0:71:ea:b9:59: 73:96:c5:b5:eb:6d:f5:7b:48:8b:ea:17:21:7a:ba: 8d:2b:32:2e:2b:cb:65:df:2d:82:6e:68:e4:54:43: 2a:ca:a7:ae:0f:c0:2b:9b:07:c2:7a:4f:07:c4:7e: 84:21:35:1b:b2:d1:17:41:9a:12:49:0b:a4:03:61: 78:f1:08:75:5c:63:62:28:27:b8:a8:9f:8f:74:38: 16:af:2e:f6:6f:19:14:82:0b:79:14:42:d5:f6:75: b2:e1:7e:bd:89:90:a8:be:62:ec:91:93:57:36:61: dc:f6:c5:3e:96:6b:ad:86:2b:e5:78:3d:1b:81:df: 34:c8:02:13:5d:f8:5d:59:07:6f:d4:96:c5:b2:fc: 8a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C5:24:34:A0:74:C7:41:19:80:8E:9B:6A:E5:8A:1D:2B:A1:99:C9 X509v3 Authority Key Identifier: keyid:3C:AA:AB:B9:9F:5C:F7:9C:A7:C2:5F:02:2F:85:F8:5E:0D:CB:2C:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/965872978B42FE99970EE04D8B2060771083E30741A509BAEB00DB63CECB23D3/0/3CAAABB99F5CF79CA7C25F022F85F85E0DCB2CBA.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CAAABB99F5CF79CA7C25F022F85F85E0DCB2CBA.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/965872978B42FE99970EE04D8B2060771083E30741A509BAEB00DB63CECB23D3/0/323830333a393663303a3a2f33322d3438203d3e20323635363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:96c0::/32 Signature Algorithm: sha256WithRSAEncryption 4f:a6:b6:bb:c0:86:dc:ef:0c:24:21:89:29:97:86:6d:ca:30: 07:1d:20:1b:e8:85:00:4a:72:a3:bb:ba:ff:db:a7:89:2e:23: 75:8c:f0:33:1f:ec:fa:e5:72:6e:e5:0e:df:ac:88:a5:1b:67: 7e:b2:25:ad:c2:f7:69:b8:64:f6:67:1e:34:01:74:a2:19:45: da:dc:e3:6f:81:52:6f:98:8b:11:93:a0:bd:8c:f5:0a:fe:09: 89:e4:9e:d0:ff:18:67:48:2a:37:e2:4a:b6:e4:e4:71:53:79: 89:2f:d5:2d:43:63:c0:34:54:65:c8:5c:3d:36:3d:f6:b5:61: 9e:23:44:59:b3:68:7c:b8:77:c3:1a:0f:1d:c6:78:21:82:b4: 54:8b:1b:9b:98:0c:8c:10:f9:bb:dd:4d:e8:8d:e6:38:ed:53: ad:78:ce:d3:a8:61:b1:f5:98:08:6c:3f:12:a5:99:11:ec:e4: 0b:00:e9:04:95:48:6d:2e:8c:31:95:ee:aa:c8:78:6c:af:dc: 2c:b2:f3:8f:ed:12:d7:e7:d9:5d:bc:6e:d8:1e:3c:55:4c:46: 0b:41:93:9f:cc:1a:30:45:09:ce:0d:7e:7f:25:e5:a6:4b:37: d7:37:f7:38:0c:02:f2:ff:d6:21:1f:78:0f:4d:9b:46:49:e8: 44:b6:53:f4 -----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgIUapb8z0fYoLuBvbthWCmo4WiwAjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NBQUFCQjk5RjVDRjc5Q0E3QzI1RjAyMkY4NUY4NUUw RENCMkNCQTAeFw0yNTAyMDQxODI3MzVaFw0yNjAyMDMxODMyMzVaMDMxMTAvBgNV BAMTKEUxQzUyNDM0QTA3NEM3NDExOTgwOEU5QjZBRTU4QTFEMkJBMTk5QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW8Aj+LCWE2waaEoyPv4adhVaw D7Fp413g1N6/Wfs2fTM7w9zD+RCWifmLvz288gUr0R631HBNcLt6+Naq3/nWfoux IMtQ14zhHMPRe08pcFemBAAS8XPafBVuy0UIY3zFIVJ8uoqCCfJTqYAKAAsiUgKw ceq5WXOWxbXrbfV7SIvqFyF6uo0rMi4ry2XfLYJuaORUQyrKp64PwCubB8J6TwfE foQhNRuy0RdBmhJJC6QDYXjxCHVcY2IoJ7ion490OBavLvZvGRSCC3kUQtX2dbLh fr2JkKi+YuyRk1c2Ydz2xT6Wa62GK+V4PRuB3zTIAhNd+F1ZB2/UlsWy/IotAgMB AAGjggLJMIICxTAdBgNVHQ4EFgQU4cUkNKB0x0EZgI6bauWKHSuhmckwHwYDVR0j BBgwFoAUPKqruZ9c95ynwl8CL4X4Xg3LLLowDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy85NjU4NzI5NzhCNDJGRTk5OTcwRUUwNEQ4QjIwNjA3NzEw ODNFMzA3NDFBNTA5QkFFQjAwREI2M0NFQ0IyM0QzLzAvM0NBQUFCQjk5RjVDRjc5 Q0E3QzI1RjAyMkY4NUY4NUUwRENCMkNCQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zQ0FBQUJCOTlGNUNGNzlDQTdD MjVGMDIyRjg1Rjg1RTBEQ0IyQ0JBLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvOTY1ODcyOTc4QjQyRkU5OTk3MEVFMDREOEIyMDYwNzcxMDgzRTMwNzQx QTUwOUJBRUIwMERCNjNDRUNCMjNEMy8wLzMyMzgzMDMzM2EzOTM2NjMzMDNhM2Ey ZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzYzNTM2MzUzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDlsAw DQYJKoZIhvcNAQELBQADggEBAE+mtrvAhtzvDCQhiSmXhm3KMAcdIBvohQBKcqO7 uv/bp4kuI3WM8DMf7Prlcm7lDt+siKUbZ36yJa3C92m4ZPZnHjQBdKIZRdrc42+B Um+YixGToL2M9Qr+CYnkntD/GGdIKjfiSrbk5HFTeYkv1S1DY8A0VGXIXD02Pfa1 YZ4jRFmzaHy4d8MaDx3GeCGCtFSLG5uYDIwQ+bvdTeiN5jjtU614ztOoYbH1mAhs PxKlmRHs5AsA6QSVSG0ujDGV7qrIeGyv3Cyy84/tEtfn2V28btgePFVMRgtBk5/M GjBFCc4Nfn8l5aZLN9c39zgMAvL/1iEfeA9Nm0ZJ6ES2U/Q= -----END CERTIFICATE-----Generated at Sat Apr 5 13:58:29 2025 by rpki-client