$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b.roa File: a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b.roa (raw, json) Hash identifier: t2XQlsAlUneg4baImDz8HZnzevScWF391rMqAaXw6dE= Subject key identifier: 20:28:1F:3E:D0:96:B1:15:CC:36:FD:0C:79:0A:8F:1D:DC:EF:9F:16 Certificate issuer: /CN=5d32623b33e04fadc1af80fccf6d12aabbcfbfa5 Certificate serial: 1B0C08 Authority key identifier: 7E:3D:3D:84:5A:21:26:7B:9C:7E:F6:54:A8:53:05:ED:86:7E:E9:1B Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b.roa Signing time: Tue 22 Nov 2022 07:30:00 +0000 ROA not before: Mon 21 Nov 2022 07:30:00 +0000 ROA not after: Wed 20 Nov 2024 07:30:00 +0000 asID: 269862 IP address blocks: 138.99.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.crl rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.mft rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.cer rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 22 Jul 2023 19:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1772552 (0x1b0c08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d32623b33e04fadc1af80fccf6d12aabbcfbfa5 Validity Not Before: Nov 21 07:30:00 2022 GMT Not After : Nov 20 07:30:00 2024 GMT Subject: CN=a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:fc:d1:47:98:b7:33:8b:2a:e1:df:9a:a7:03: 52:61:b1:72:6e:e0:33:71:e9:c2:c8:a7:8a:16:b4: db:ba:d1:04:1b:25:4e:d9:70:23:ef:14:5e:53:b3: dc:62:60:de:f7:75:b5:70:f8:b9:35:f5:f8:c2:c2: ef:36:26:5e:46:2f:44:65:8d:57:7c:ca:6e:a7:b7: a5:28:a3:57:9a:4e:e9:ff:8f:ee:31:74:77:09:dc: 4a:50:e3:2b:3a:6e:97:df:a3:3e:f5:7b:cb:a4:4c: 49:ef:84:71:9f:21:d9:0c:8d:18:e0:18:7a:91:41: 0a:d9:27:5d:49:37:f4:65:28:08:1f:bd:ff:04:04: db:e7:b8:70:ce:3a:19:13:74:68:e5:6e:4a:92:e5: 7d:00:45:72:fc:73:c4:97:2d:78:5e:a9:5e:da:f4: 9a:ec:8a:fd:38:77:cc:86:e5:ce:48:cc:b1:c7:13: b1:99:90:99:5b:54:3d:dd:93:ce:b6:0d:eb:5f:77: d6:c5:8a:ca:31:24:58:a7:bf:c9:db:7b:26:98:7b: 69:a7:00:12:75:70:b3:ae:ba:92:87:18:4f:a7:e6: ce:50:b8:db:02:58:b7:16:1b:79:3d:3d:e2:a9:52: 75:84:77:21:a8:3c:67:4a:17:94:ac:d5:d9:32:a2: 66:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:28:1F:3E:D0:96:B1:15:CC:36:FD:0C:79:0A:8F:1D:DC:EF:9F:16 X509v3 Authority Key Identifier: keyid:7E:3D:3D:84:5A:21:26:7B:9C:7E:F6:54:A8:53:05:ED:86:7E:E9:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.99.178.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:fe:36:a2:01:9a:6c:17:75:a7:55:91:05:22:f2:d6:ec:c3: 45:80:a2:11:72:5f:63:cd:86:46:fa:20:67:b7:76:05:49:1a: 6f:01:6e:97:d6:61:15:84:04:6e:fb:63:5b:16:bd:f1:be:28: 7e:e3:a7:0b:ba:eb:44:4b:ae:c3:61:b1:a6:94:c7:90:65:3d: 46:d2:4b:1d:c6:c3:ea:de:c5:df:3b:67:6e:d8:15:64:cc:2c: 6c:c3:22:be:c2:34:9f:23:81:ab:1e:f5:7f:c8:74:b9:9b:01: c2:cb:de:46:d7:ed:89:c1:42:1f:6c:1f:95:97:13:b4:70:1c: d8:26:87:bd:db:8a:36:c6:f5:c6:f3:86:3d:87:0c:5b:80:38: 03:9d:c9:9c:90:df:21:4d:d1:c2:92:cd:c6:e2:2c:af:d7:cf: d9:64:ae:53:c9:14:a7:5b:69:a5:e8:a0:8d:70:c8:25:3e:6c: 1d:9d:8a:f2:e1:bd:64:cb:18:bf:7b:07:7e:f0:c9:f0:56:95: 6f:04:46:ab:c8:9e:e2:af:96:d8:dd:17:d7:8a:51:9a:e3:bc: fd:24:4b:0e:d6:07:d9:4c:73:eb:59:f9:f0:f0:45:c9:e7:42: f5:fd:6f:cd:d9:e1:f8:95:36:54:67:e7:32:da:86:f5:f5:cf: af:48:fc:23 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDGwwIMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDVk MzI2MjNiMzNlMDRmYWRjMWFmODBmY2NmNmQxMmFhYmJjZmJmYTUwHhcNMjIxMTIx MDczMDAwWhcNMjQxMTIwMDczMDAwWjAzMTEwLwYDVQQDEyhhOWQzMjJhNGM2ZjE1 ZDhhNzQ2YTU0Y2I1NzdmZjhiOGRhYzcyYTZiMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAkfzRR5i3M4sq4d+apwNSYbFybuAzcenCyKeKFrTbutEEGyVO 2XAj7xReU7PcYmDe93W1cPi5NfX4wsLvNiZeRi9EZY1XfMpup7elKKNXmk7p/4/u MXR3CdxKUOMrOm6X36M+9XvLpExJ74RxnyHZDI0Y4Bh6kUEK2SddSTf0ZSgIH73/ BATb57hwzjoZE3Ro5W5KkuV9AEVy/HPEly14Xqle2vSa7Ir9OHfMhuXOSMyxxxOx mZCZW1Q93ZPOtg3rX3fWxYrKMSRYp7/J23smmHtppwASdXCzrrqShxhPp+bOULjb Ali3Fht5PT3iqVJ1hHchqDxnSheUrNXZMqJmxwIDAQABo4ICWzCCAlcwHQYDVR0O BBYEFCAoHz7QlrEVzDb9DHkKjx3c758WMB8GA1UdIwQYMBaAFH49PYRaISZ7nH72 VKhTBe2GfukbMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNWQzMjYy M2IzM2UwNGZhZGMxYWY4MGZjY2Y2ZDEyYWFiYmNmYmZhNS5jZXIwgZoGCCsGAQUF BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p Yy5uZXQvcnBraS9sYWNuaWMvOTc3ZDNkMzUtYmJlYy00Y2FkLWEwYzUtMDYwN2Ey OWUxZjBmL2E5ZDMyMmE0YzZmMTVkOGE3NDZhNTRjYjU3N2ZmOGI4ZGFjNzJhNmIu cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj bmljLm5ldC9ycGtpL2xhY25pYy85NzdkM2QzNS1iYmVjLTRjYWQtYTBjNS0wNjA3 YTI5ZTFmMGYvNWQzMjYyM2IzM2UwNGZhZGMxYWY4MGZjY2Y2ZDEyYWFiYmNmYmZh NS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIpjsjANBgkqhkiG9w0BAQsFAAOCAQEAff42ogGabBd1p1WR BSLy1uzDRYCiEXJfY82GRvogZ7d2BUkabwFul9ZhFYQEbvtjWxa98b4ofuOnC7rr REuuw2GxppTHkGU9RtJLHcbD6t7F3ztnbtgVZMwsbMMivsI0nyOBqx71f8h0uZsB wsveRtfticFCH2wflZcTtHAc2CaHvduKNsb1xvOGPYcMW4A4A53JnJDfIU3RwpLN xuIsr9fP2WSuU8kUp1tppeigjXDIJT5sHZ2K8uG9ZMsYv3sHfvDJ8FaVbwRGq8ie 4q+W2N0X14pRmuO8/SRLDtYH2Uxz61n58PBFyedC9f1vzdnh+JU2VGfnMtqG9fXP r0j8Iw== -----END CERTIFICATE-----Generated at Wed Jul 19 22:21:07 2023 by rpki-client on console-fra.rpki-client.org