$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e3233362e302f32322d3234203d3e203237383433.roa File: 3136382e3132312e3233362e302f32322d3234203d3e203237383433.roa (raw, json) Hash identifier: NeBO92y9HGDzdxLcBcsbCrSuIhrKgCmvdKjWdmtKfcc= Subject key identifier: 8A:2D:70:8F:19:AB:89:17:17:99:37:6C:BE:36:0F:F5:41:B8:3E:25 Certificate issuer: /CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84 Certificate serial: 1ADCE69B2E003AA3D33339D1E15898F3CDE8E627 Authority key identifier: 9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e3233362e302f32322d3234203d3e203237383433.roa Signing time: Tue 05 Mar 2024 17:44:49 +0000 ROA not before: Tue 05 Mar 2024 17:39:49 +0000 ROA not after: Tue 04 Mar 2025 17:44:49 +0000 asID: 27843 IP address blocks: 168.121.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Nov 2024 23:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:dc:e6:9b:2e:00:3a:a3:d3:33:39:d1:e1:58:98:f3:cd:e8:e6:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84 Validity Not Before: Mar 5 17:39:49 2024 GMT Not After : Mar 4 17:44:49 2025 GMT Subject: CN=8A2D708F19AB89171799376CBE360FF541B83E25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b8:fc:6a:0c:60:1d:80:3b:e3:5c:98:b9:73: 3d:c4:4e:c1:b5:b9:b0:a5:4e:60:cc:c8:9f:e6:ed: 72:12:86:01:d6:81:0d:2f:db:42:e8:0e:4a:e5:ba: 91:49:61:f7:ec:62:83:0c:8b:5c:0b:a2:34:97:82: ba:e9:dd:ac:d2:e5:59:2b:f4:d7:85:66:22:4e:05: 4f:f2:ac:eb:37:95:a9:7f:4a:27:54:54:fa:cf:23: 41:99:31:0f:f1:f7:2b:d7:76:9d:40:62:02:3a:c1: 2c:6c:c2:1c:45:39:55:bc:d0:50:d8:65:2b:83:2b: 53:66:81:2a:1b:31:4c:24:66:26:1b:a5:ef:41:de: c6:5d:dd:11:16:58:1a:70:26:97:4f:4d:e1:b0:6d: 3b:35:7a:bd:eb:58:cd:88:b9:37:76:42:b7:93:82: 74:27:f9:3c:15:ba:5e:97:4a:3a:8b:f4:41:5f:00: 0b:ac:fa:d8:b0:d7:12:e6:f5:07:5e:c3:37:a2:7c: 4e:a7:72:f5:ef:4d:41:fb:de:b9:3c:70:6e:18:7e: 41:b9:66:e0:8f:07:0f:51:2e:28:36:75:69:62:a2: 1b:9d:b9:65:b2:56:94:a4:62:78:c9:7f:a7:13:f7: 6d:60:7d:97:19:bf:56:bf:28:1d:87:05:f6:49:ad: 79:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:2D:70:8F:19:AB:89:17:17:99:37:6C:BE:36:0F:F5:41:B8:3E:25 X509v3 Authority Key Identifier: keyid:9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e3233362e302f32322d3234203d3e203237383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.121.236.0/22 Signature Algorithm: sha256WithRSAEncryption 71:88:2f:49:c4:8e:92:b7:b0:04:e6:d5:e5:51:2d:97:fb:82: fc:45:b1:a7:78:52:49:70:87:ac:bd:c4:c6:35:ce:4d:87:70: 7a:06:bf:a9:5c:5c:13:9c:3b:f7:66:8d:88:be:cd:d1:30:34: e1:88:a8:42:2b:e9:f5:37:c8:42:94:d1:e5:c2:62:5b:20:a5: 2f:7a:8f:e9:a2:5c:cc:18:ba:a7:f1:25:1c:fa:f8:7f:97:fb: 29:3e:c5:4a:17:59:02:e4:be:f4:b1:66:3b:ad:b1:55:57:4a: ae:e3:f9:45:ad:54:9b:20:0c:cc:72:d1:f7:db:c2:5a:f9:84: ee:d0:99:ea:68:64:88:f0:d1:67:5e:68:13:a2:c7:c8:bc:6d: 2c:60:f8:98:7b:ea:4b:4b:b7:4d:6e:90:5e:1b:6e:8c:2c:2b: 7b:c0:e6:05:df:70:ce:06:b7:80:cb:f2:07:93:21:cb:2d:b5: 4a:46:32:c6:d7:34:34:cd:9d:2f:41:5a:3b:89:c6:63:d8:98: bc:18:c5:de:13:42:27:cd:89:e2:00:f4:3b:04:72:39:8b:43: 8d:cf:1a:19:f7:f5:b2:55:47:76:2e:72:85:35:ab:0a:38:18: b8:16:2e:a5:f4:89:3c:cd:76:e5:d5:c9:f7:a2:27:3b:44:48: 67:db:93:0d -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUGtzmmy4AOqPTMznR4ViY883o5icwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYwOEQzOEQ0NTcxQzA5QTgzQjQ1QUNGRDEwQUVCNzgy NkNFOEY4NDAeFw0yNDAzMDUxNzM5NDlaFw0yNTAzMDQxNzQ0NDlaMDMxMTAvBgNV BAMTKDhBMkQ3MDhGMTlBQjg5MTcxNzk5Mzc2Q0JFMzYwRkY1NDFCODNFMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzuPxqDGAdgDvjXJi5cz3ETsG1 ubClTmDMyJ/m7XIShgHWgQ0v20LoDkrlupFJYffsYoMMi1wLojSXgrrp3azS5Vkr 9NeFZiJOBU/yrOs3lal/SidUVPrPI0GZMQ/x9yvXdp1AYgI6wSxswhxFOVW80FDY ZSuDK1NmgSobMUwkZiYbpe9B3sZd3REWWBpwJpdPTeGwbTs1er3rWM2IuTd2QreT gnQn+TwVul6XSjqL9EFfAAus+tiw1xLm9QdewzeifE6ncvXvTUH73rk8cG4YfkG5 ZuCPBw9RLig2dWliohuduWWyVpSkYnjJf6cT921gfZcZv1a/KB2HBfZJrXm7AgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUii1wjxmriRcXmTdsvjYP9UG4PiUwHwYDVR0j BBgwFoAUnwjTjUVxwJqDtFrP0QrreCbOj4QwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BMTZFOEYxMDMxNDZCMjg1MDMzNTAyM0E3MEE2RDM5ODc0 NzY2MzY4REJEQTVGMDQ4RDU1OTcyQjk4RkQ4MzY3LzAvOUYwOEQzOEQ0NTcxQzA5 QTgzQjQ1QUNGRDEwQUVCNzgyNkNFOEY4NC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85RjA4RDM4RDQ1NzFDMDlBODNC NDVBQ0ZEMTBBRUI3ODI2Q0U4Rjg0LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQTE2RThGMTAzMTQ2QjI4NTAzMzUwMjNBNzBBNkQzOTg3NDc2NjM2OERC REE1RjA0OEQ1NTk3MkI5OEZEODM2Ny8wLzMxMzYzODJlMzEzMjMxMmUzMjMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM3MzgzNDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqHns MA0GCSqGSIb3DQEBCwUAA4IBAQBxiC9JxI6St7AE5tXlUS2X+4L8RbGneFJJcIes vcTGNc5Nh3B6Br+pXFwTnDv3Zo2Ivs3RMDThiKhCK+n1N8hClNHlwmJbIKUveo/p olzMGLqn8SUc+vh/l/spPsVKF1kC5L70sWY7rbFVV0qu4/lFrVSbIAzMctH328Ja +YTu0JnqaGSI8NFnXmgTosfIvG0sYPiYe+pLS7dNbpBeG26MLCt7wOYF33DOBreA y/IHkyHLLbVKRjLG1zQ0zZ0vQVo7icZj2Ji8GMXeE0InzYniAPQ7BHI5i0ONzxoZ 9/WyVUd2LnKFNasKOBi4Fi6l9Ik8zXbl1cn3oic7REhn25MN -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:49 2024 by rpki-client on console-ams.rpki-client.org