$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e3233362e302f32322d3234203d3e203237383433.roa File: 3136382e3132312e3233362e302f32322d3234203d3e203237383433.roa (raw, json) Hash identifier: HelFZ8rl4XxMR6xgroPFCf2wOKIzd2To1EDADoDT4LQ= Subject key identifier: 36:9B:62:BA:78:B6:AF:FC:99:0D:15:0B:EE:72:F1:6D:CF:F5:75:E7 Certificate issuer: /CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84 Certificate serial: 1CCAC47E1863F4185D17D55849BB9B8DEDDD9C84 Authority key identifier: 9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e3233362e302f32322d3234203d3e203237383433.roa Signing time: Tue 04 Feb 2025 18:06:04 +0000 ROA not before: Tue 04 Feb 2025 18:01:04 +0000 ROA not after: Tue 03 Feb 2026 18:06:04 +0000 asID: 27843 IP address blocks: 168.121.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 12 Apr 2025 00:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ca:c4:7e:18:63:f4:18:5d:17:d5:58:49:bb:9b:8d:ed:dd:9c:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84 Validity Not Before: Feb 4 18:01:04 2025 GMT Not After : Feb 3 18:06:04 2026 GMT Subject: CN=369B62BA78B6AFFC990D150BEE72F16DCFF575E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f8:6f:7d:98:fc:64:01:15:cc:97:8c:24:88: da:87:13:f9:8c:78:44:ea:b4:18:0a:ad:c4:9b:89: 82:8d:a1:54:ec:36:b7:ab:42:a0:4b:f7:1b:26:69: a1:90:79:58:37:f0:46:a6:6e:43:2c:83:a5:b4:8c: ea:1c:f9:13:81:86:14:2e:61:a3:80:e8:12:f3:78: 1a:07:f7:b1:af:e2:17:a3:38:e1:fa:39:8e:79:b4: b0:31:87:cd:07:b8:bf:c8:42:08:bd:71:8a:a1:c3: da:c2:8b:f9:d0:11:31:aa:d5:1d:08:48:db:ac:89: 88:89:45:ff:9b:1a:1c:19:a8:9b:f6:fa:d1:0a:65: ff:4d:fe:9d:68:a2:97:fb:3a:3f:65:1a:6e:9b:7e: cd:c8:1b:77:f7:6f:ca:8f:ae:67:f0:1d:da:76:a7: 51:ad:a0:80:26:8f:99:f0:95:3b:05:bc:9e:0a:93: 7a:14:65:1d:44:78:c3:3b:e2:49:1a:33:5e:03:e6: 64:99:b9:ea:cb:aa:f7:bf:3e:ed:a8:ef:23:30:07: 8b:61:52:e7:dc:9a:9b:ed:86:db:33:20:f2:ff:d3: 7e:c8:93:b9:ed:d3:af:23:96:6c:6a:5e:8e:c6:37: ca:fe:fa:c5:92:35:21:69:f6:5c:c5:bf:52:53:0a: f5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:9B:62:BA:78:B6:AF:FC:99:0D:15:0B:EE:72:F1:6D:CF:F5:75:E7 X509v3 Authority Key Identifier: keyid:9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e3233362e302f32322d3234203d3e203237383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.121.236.0/22 Signature Algorithm: sha256WithRSAEncryption 30:92:3d:ee:8b:59:f0:37:3a:7d:7b:20:ad:f5:97:96:4a:df: 89:4f:c3:27:ea:3b:e1:3b:98:25:2d:9f:b4:83:a2:da:07:66: 57:a1:1a:cb:00:12:13:4f:09:9f:17:63:c5:ff:17:41:58:03: 59:2b:bd:aa:48:1e:59:40:5c:0f:26:9b:7c:9d:2c:f4:64:86: 03:5b:d4:7f:b9:0d:09:71:c0:26:fb:0c:ca:85:95:ab:a8:3c: f3:f8:0b:fa:d4:12:9a:2a:38:0f:a0:69:38:1c:56:27:c3:ce: c1:16:37:55:35:b2:ab:58:d0:93:59:2c:ac:a5:d3:85:cb:2a: a5:4b:4e:6f:d5:8f:4d:73:02:d0:6a:fa:18:13:67:89:49:ad: 6b:69:2e:bb:ed:a6:a0:35:e1:83:a0:89:62:13:90:84:81:90: 5f:e0:b8:cc:8f:e1:8f:ee:03:e8:99:4d:49:e4:ea:31:bf:6b: c6:12:47:b3:72:20:7e:6d:28:61:7f:76:e1:5a:24:65:cb:45: 10:63:41:db:eb:b1:06:36:00:44:f1:08:73:04:d0:36:28:76: 9f:d3:f0:70:26:58:51:8e:a2:54:5b:81:1f:4b:ab:ba:59:7a: 37:6e:17:28:c6:9e:db:90:f4:05:0e:1e:42:33:8e:2e:c1:0b: ab:4d:3b:87 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUHMrEfhhj9BhdF9VYSbubje3dnIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYwOEQzOEQ0NTcxQzA5QTgzQjQ1QUNGRDEwQUVCNzgy NkNFOEY4NDAeFw0yNTAyMDQxODAxMDRaFw0yNjAyMDMxODA2MDRaMDMxMTAvBgNV BAMTKDM2OUI2MkJBNzhCNkFGRkM5OTBEMTUwQkVFNzJGMTZEQ0ZGNTc1RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ+G99mPxkARXMl4wkiNqHE/mM eETqtBgKrcSbiYKNoVTsNrerQqBL9xsmaaGQeVg38EambkMsg6W0jOoc+ROBhhQu YaOA6BLzeBoH97Gv4hejOOH6OY55tLAxh80HuL/IQgi9cYqhw9rCi/nQETGq1R0I SNusiYiJRf+bGhwZqJv2+tEKZf9N/p1oopf7Oj9lGm6bfs3IG3f3b8qPrmfwHdp2 p1GtoIAmj5nwlTsFvJ4Kk3oUZR1EeMM74kkaM14D5mSZuerLqve/Pu2o7yMwB4th UufcmpvthtszIPL/037Ik7nt068jlmxqXo7GN8r++sWSNSFp9lzFv1JTCvVFAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUNptiuni2r/yZDRUL7nLxbc/1decwHwYDVR0j BBgwFoAUnwjTjUVxwJqDtFrP0QrreCbOj4QwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BMTZFOEYxMDMxNDZCMjg1MDMzNTAyM0E3MEE2RDM5ODc0 NzY2MzY4REJEQTVGMDQ4RDU1OTcyQjk4RkQ4MzY3LzAvOUYwOEQzOEQ0NTcxQzA5 QTgzQjQ1QUNGRDEwQUVCNzgyNkNFOEY4NC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85RjA4RDM4RDQ1NzFDMDlBODNC NDVBQ0ZEMTBBRUI3ODI2Q0U4Rjg0LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQTE2RThGMTAzMTQ2QjI4NTAzMzUwMjNBNzBBNkQzOTg3NDc2NjM2OERC REE1RjA0OEQ1NTk3MkI5OEZEODM2Ny8wLzMxMzYzODJlMzEzMjMxMmUzMjMzMzYy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM3MzgzNDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqHns MA0GCSqGSIb3DQEBCwUAA4IBAQAwkj3ui1nwNzp9eyCt9ZeWSt+JT8Mn6jvhO5gl LZ+0g6LaB2ZXoRrLABITTwmfF2PF/xdBWANZK72qSB5ZQFwPJpt8nSz0ZIYDW9R/ uQ0JccAm+wzKhZWrqDzz+Av61BKaKjgPoGk4HFYnw87BFjdVNbKrWNCTWSyspdOF yyqlS05v1Y9NcwLQavoYE2eJSa1raS677aagNeGDoIliE5CEgZBf4LjMj+GP7gPo mU1J5Ooxv2vGEkezciB+bShhf3bhWiRly0UQY0Hb67EGNgBE8QhzBNA2KHaf0/Bw JlhRjqJUW4EfS6u6WXo3bhcoxp7bkPQFDh5CM44uwQurTTuH -----END CERTIFICATE-----Generated at Mon Apr 7 20:45:47 2025 by rpki-client