$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/985813ec-edd0-40d2-a97f-76d4e18d3511/690c42625c0ecc0a2e8c79934d74d78b6f56c406.roa File: 690c42625c0ecc0a2e8c79934d74d78b6f56c406.roa (raw, json) Hash identifier: 0c+34mY/vFjpgCm50CpLvR3C7azaO6dPwC5wZbP12HY= Subject key identifier: CD:B1:E3:AA:41:C5:64:BF:23:58:45:A0:D6:37:F8:E1:14:03:4E:92 Certificate issuer: /CN=4de2fdbf6fcc2301966d1f6b825964d2021c4550 Certificate serial: 11DD5D Authority key identifier: C6:21:C1:C5:7C:06:21:B6:CC:AE:25:96:22:8F:91:C9:8E:1B:44:2B Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4de2fdbf6fcc2301966d1f6b825964d2021c4550.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/985813ec-edd0-40d2-a97f-76d4e18d3511/690c42625c0ecc0a2e8c79934d74d78b6f56c406.roa Signing time: Fri 30 Jun 2023 08:30:00 +0000 ROA not before: Thu 29 Jun 2023 08:30:00 +0000 ROA not after: Sat 28 Jun 2025 08:30:00 +0000 asID: 14080 IP address blocks: 200.1.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/985813ec-edd0-40d2-a97f-76d4e18d3511/4de2fdbf6fcc2301966d1f6b825964d2021c4550.crl rsync://repository.lacnic.net/rpki/lacnic/985813ec-edd0-40d2-a97f-76d4e18d3511/4de2fdbf6fcc2301966d1f6b825964d2021c4550.mft rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4de2fdbf6fcc2301966d1f6b825964d2021c4550.cer rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 22 Jul 2023 20:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170781 (0x11dd5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4de2fdbf6fcc2301966d1f6b825964d2021c4550 Validity Not Before: Jun 29 08:30:00 2023 GMT Not After : Jun 28 08:30:00 2025 GMT Subject: CN=690c42625c0ecc0a2e8c79934d74d78b6f56c406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:af:22:00:ef:b9:f0:6c:d0:84:76:27:81:9e: 6b:db:c1:ee:56:4d:64:06:43:29:40:8e:c2:1e:71: 0c:4a:f1:aa:86:79:26:b8:c8:2a:c2:4d:ab:14:77: 66:05:9f:f6:25:23:63:66:f5:27:25:92:94:54:6b: 66:d1:2f:74:73:2c:36:1a:67:a4:16:df:fb:f7:04: 9c:0f:de:81:5e:ec:1e:26:bd:e0:40:ed:99:66:50: c8:8b:43:11:c2:71:0a:4d:98:65:95:b3:c6:f4:bb: 97:fe:f5:a3:db:b5:b2:91:7a:b8:84:a9:d0:a1:37: e6:11:c8:72:da:15:f4:c2:25:c7:72:ce:74:a0:15: 0b:03:38:9d:3c:69:ca:11:df:1f:30:f4:74:27:64: 29:b7:26:85:8f:32:ac:49:fd:0a:b2:ff:37:47:35: a6:5c:5c:82:86:4e:19:23:49:bb:d5:de:ef:d2:87: 55:ac:d1:c4:b4:cd:9b:5d:19:61:a6:21:f0:55:c3: 19:39:89:89:5a:13:ed:9f:38:12:07:ea:f4:97:8f: 38:2c:2d:8f:6f:01:4d:47:7e:5a:36:85:31:36:76: c4:03:5f:1e:0a:7c:8a:a8:df:97:6c:da:e3:a9:f6: 27:13:96:75:29:20:54:61:f9:2a:a1:2f:1a:c0:03: 0b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B1:E3:AA:41:C5:64:BF:23:58:45:A0:D6:37:F8:E1:14:03:4E:92 X509v3 Authority Key Identifier: keyid:C6:21:C1:C5:7C:06:21:B6:CC:AE:25:96:22:8F:91:C9:8E:1B:44:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4de2fdbf6fcc2301966d1f6b825964d2021c4550.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/985813ec-edd0-40d2-a97f-76d4e18d3511/690c42625c0ecc0a2e8c79934d74d78b6f56c406.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/985813ec-edd0-40d2-a97f-76d4e18d3511/4de2fdbf6fcc2301966d1f6b825964d2021c4550.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.1.86.0/24 Signature Algorithm: sha256WithRSAEncryption 00:65:9b:1b:2c:b0:70:5a:08:4a:af:d6:27:a7:69:d7:b3:cc: 5b:fc:85:db:bf:3f:05:86:9a:a7:12:d8:e5:e5:11:7d:92:49: be:96:b9:47:b6:58:8f:5e:23:1b:c9:d1:1f:dd:3c:c2:11:79: c6:65:2b:55:0e:9d:08:ed:96:e4:a7:0e:bf:d5:18:a0:d6:6a: cb:60:2d:64:03:9d:e7:d4:5d:4f:66:2d:d0:6b:ec:16:3e:2e: 1a:b7:8e:09:f7:d9:9a:58:db:df:be:84:74:b8:0d:cf:ff:f0: 81:d8:33:03:59:15:71:a6:17:17:87:9a:88:7c:5a:1b:bf:ab: 90:5c:61:9b:8a:22:b5:78:26:db:e1:77:45:86:8b:5b:c0:c0: 92:ec:9f:2f:9c:4f:82:53:c6:d1:61:db:75:ea:c7:5d:6b:70: 19:08:89:5a:1a:d5:10:dd:d9:82:be:37:2c:77:9d:87:16:c6: 0d:e0:17:70:44:9c:8f:e0:9a:63:19:16:27:fa:bb:09:94:96: 80:62:06:83:b6:9a:e7:97:e8:b0:63:6f:3d:98:19:ce:3c:c6: fd:eb:84:74:bf:0c:3c:0e:0a:f3:c7:d9:83:39:cc:a7:ef:c3: af:79:53:73:a4:cf:d6:d2:a2:7d:20:b4:6b:2a:f3:8c:c5:d8: 9f:93:3e:6f -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIDEd1dMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDRk ZTJmZGJmNmZjYzIzMDE5NjZkMWY2YjgyNTk2NGQyMDIxYzQ1NTAwHhcNMjMwNjI5 MDgzMDAwWhcNMjUwNjI4MDgzMDAwWjAzMTEwLwYDVQQDEyg2OTBjNDI2MjVjMGVj YzBhMmU4Yzc5OTM0ZDc0ZDc4YjZmNTZjNDA2MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAq68iAO+58GzQhHYngZ5r28HuVk1kBkMpQI7CHnEMSvGqhnkm uMgqwk2rFHdmBZ/2JSNjZvUnJZKUVGtm0S90cyw2GmekFt/79wScD96BXuweJr3g QO2ZZlDIi0MRwnEKTZhllbPG9LuX/vWj27WykXq4hKnQoTfmEchy2hX0wiXHcs50 oBULAzidPGnKEd8fMPR0J2QptyaFjzKsSf0Ksv83RzWmXFyChk4ZI0m71d7v0odV rNHEtM2bXRlhpiHwVcMZOYmJWhPtnzgSB+r0l484LC2PbwFNR35aNoUxNnbEA18e CnyKqN+XbNrjqfYnE5Z1KSBUYfkqoS8awAMLpwIDAQABo4ICWzCCAlcwHQYDVR0O BBYEFM2x46pBxWS/I1hFoNY3+OEUA06SMB8GA1UdIwQYMBaAFMYhwcV8BiG2zK4l liKPkcmOG0QrMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNGRlMmZk YmY2ZmNjMjMwMTk2NmQxZjZiODI1OTY0ZDIwMjFjNDU1MC5jZXIwgZoGCCsGAQUF BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p Yy5uZXQvcnBraS9sYWNuaWMvOTg1ODEzZWMtZWRkMC00MGQyLWE5N2YtNzZkNGUx OGQzNTExLzY5MGM0MjYyNWMwZWNjMGEyZThjNzk5MzRkNzRkNzhiNmY1NmM0MDYu cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj bmljLm5ldC9ycGtpL2xhY25pYy85ODU4MTNlYy1lZGQwLTQwZDItYTk3Zi03NmQ0 ZTE4ZDM1MTEvNGRlMmZkYmY2ZmNjMjMwMTk2NmQxZjZiODI1OTY0ZDIwMjFjNDU1 MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMgBVjANBgkqhkiG9w0BAQsFAAOCAQEAAGWbGyywcFoISq/W J6dp17PMW/yF278/BYaapxLY5eURfZJJvpa5R7ZYj14jG8nRH908whF5xmUrVQ6d CO2W5KcOv9UYoNZqy2AtZAOd59RdT2Yt0GvsFj4uGreOCffZmljb376EdLgNz//w gdgzA1kVcaYXF4eaiHxaG7+rkFxhm4oitXgm2+F3RYaLW8DAkuyfL5xPglPG0WHb derHXWtwGQiJWhrVEN3Zgr43LHedhxbGDeAXcEScj+CaYxkWJ/q7CZSWgGIGg7aa 55fosGNvPZgZzjzG/euEdL8MPA4K88fZgznMp+/Dr3lTc6TP1tKifSC0ayrzjMXY n5M+bw== -----END CERTIFICATE-----Generated at Wed Jul 19 22:22:43 2023 by rpki-client on console-ams.rpki-client.org