$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/323830303a3439303a383430303a3a2f34302d3430203d3e203237393531.roa File: 323830303a3439303a383430303a3a2f34302d3430203d3e203237393531.roa (raw, json) Hash identifier: 4NChjZyFsJkZT7lGxoJD0BR2jMKg6WEf6eS5PNbFsKo= Subject key identifier: 8F:89:F2:61:C9:37:3C:70:BE:5F:E8:FF:8D:F8:AB:4B:29:62:D8:5F Certificate issuer: /CN=B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C Certificate serial: 7810635C0AAFBC8D48E3DFC6B0AAB32892902338 Authority key identifier: B5:ED:DA:57:DB:A2:5B:BD:40:52:D6:AE:0D:EC:F7:40:EA:27:B5:7C Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/323830303a3439303a383430303a3a2f34302d3430203d3e203237393531.roa Signing time: Tue 04 Feb 2025 19:56:58 +0000 ROA not before: Tue 04 Feb 2025 19:51:58 +0000 ROA not after: Tue 03 Feb 2026 19:56:58 +0000 asID: 27951 IP address blocks: 2800:490:8400::/40 maxlen: 40 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.crl rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:10:63:5c:0a:af:bc:8d:48:e3:df:c6:b0:aa:b3:28:92:90:23:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C Validity Not Before: Feb 4 19:51:58 2025 GMT Not After : Feb 3 19:56:58 2026 GMT Subject: CN=8F89F261C9373C70BE5FE8FF8DF8AB4B2962D85F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9a:8e:3d:34:d0:24:67:64:47:5a:85:3a:6f: eb:d6:bb:5c:12:04:22:7e:cf:d5:37:84:d2:60:68: 82:6f:4e:c9:59:80:5b:f9:c8:e6:8d:02:8a:6a:7c: fc:41:57:52:20:77:bb:7e:42:05:50:ea:f4:dc:f5: 6a:9a:7d:4d:fd:67:56:97:23:ed:96:96:08:4e:c6: 0e:18:0f:cc:34:d7:d1:2f:ac:12:cc:2b:40:e8:e7: 7d:bc:9a:23:b3:ff:5f:96:e2:41:24:c3:cb:95:28: f7:f7:a2:c9:74:32:c1:4a:33:e4:22:f5:47:8f:ab: 08:95:1f:a8:9b:89:9f:82:9e:33:70:e4:24:ef:93: aa:68:c2:65:9c:1f:be:d6:2a:1e:14:6c:0e:6b:7a: 22:46:93:9e:1c:9f:b1:73:f6:2f:86:db:1c:19:f5: a3:96:b9:d8:76:12:c5:41:fb:08:c7:68:80:e8:60: d2:62:76:e0:54:f0:f2:68:46:ad:db:cb:50:55:d9: aa:49:5e:61:d4:5e:06:f1:eb:03:ff:95:4a:c3:31: ad:b2:18:fe:4a:ea:65:0f:2f:2a:37:62:bc:6b:32: 91:77:7e:76:1f:08:0e:d0:34:28:43:c8:2a:16:7b: 0f:11:6d:a7:98:0e:5d:f7:07:cd:e8:c8:84:bf:91: f8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:89:F2:61:C9:37:3C:70:BE:5F:E8:FF:8D:F8:AB:4B:29:62:D8:5F X509v3 Authority Key Identifier: keyid:B5:ED:DA:57:DB:A2:5B:BD:40:52:D6:AE:0D:EC:F7:40:EA:27:B5:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/323830303a3439303a383430303a3a2f34302d3430203d3e203237393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2800:490:8400::/40 Signature Algorithm: sha256WithRSAEncryption 8a:d9:88:c7:f6:be:e7:2a:17:09:c9:a5:d0:23:c6:de:e2:51: 03:8b:e1:dd:3d:9e:a2:1b:f1:e8:b8:59:c3:ae:b5:a9:7e:7c: 38:4f:df:78:5e:35:ec:c7:dd:40:3b:fa:38:36:0c:7e:cf:44: 1e:d4:18:93:90:35:06:68:f9:42:a6:22:f7:64:a3:16:6c:f5: 3b:3b:41:34:1a:4f:c2:45:c8:07:a4:d4:ad:ce:18:a1:ef:77: 94:8c:95:a5:3b:2b:c7:0b:a3:65:54:19:f4:09:d3:07:cc:b5: 27:e0:23:e9:d1:4d:0e:6e:5d:a6:c6:b8:0c:56:96:c9:dc:6b: 18:65:87:5c:be:14:bf:86:20:86:91:90:a0:52:03:35:eb:7f: bf:60:5b:13:b2:cf:1b:02:01:37:f0:69:db:de:6e:e5:55:d4: 17:f0:fc:e9:b7:5c:53:5e:03:80:ee:34:23:3c:2e:2f:5b:0f: 41:c1:80:cf:f3:2c:17:61:71:c5:f4:a1:fb:85:53:eb:c9:bf: c1:54:69:99:83:5e:55:2d:77:53:86:a1:55:e8:56:70:a3:ef: 03:89:c3:50:7a:34:71:d8:76:61:52:9d:a7:ea:e1:cc:56:0a: 2d:74:85:57:2b:1e:57:89:eb:29:e2:98:dc:b8:be:78:66:92: b7:98:e3:4b -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUeBBjXAqvvI1I49/GsKqzKJKQIzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVFRERBNTdEQkEyNUJCRDQwNTJENkFFMERFQ0Y3NDBF QTI3QjU3QzAeFw0yNTAyMDQxOTUxNThaFw0yNjAyMDMxOTU2NThaMDMxMTAvBgNV BAMTKDhGODlGMjYxQzkzNzNDNzBCRTVGRThGRjhERjhBQjRCMjk2MkQ4NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrmo49NNAkZ2RHWoU6b+vWu1wS BCJ+z9U3hNJgaIJvTslZgFv5yOaNAopqfPxBV1Igd7t+QgVQ6vTc9WqafU39Z1aX I+2WlghOxg4YD8w019EvrBLMK0Do5328miOz/1+W4kEkw8uVKPf3osl0MsFKM+Qi 9UePqwiVH6ibiZ+CnjNw5CTvk6powmWcH77WKh4UbA5reiJGk54cn7Fz9i+G2xwZ 9aOWudh2EsVB+wjHaIDoYNJiduBU8PJoRq3by1BV2apJXmHUXgbx6wP/lUrDMa2y GP5K6mUPLyo3YrxrMpF3fnYfCA7QNChDyCoWew8RbaeYDl33B83oyIS/kfjvAgMB AAGjggLQMIICzDAdBgNVHQ4EFgQUj4nyYck3PHC+X+j/jfirSyli2F8wHwYDVR0j BBgwFoAUte3aV9uiW71AUtauDez3QOontXwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BMjVFODlGNEY2OUUyMEE5OEQxNjU1MDczOTdFQkJDNTA2 MzUyN0UyMTkwRDkwQTM3RTM5RjY5ODJBQzkxQUQ3LzAvQjVFRERBNTdEQkEyNUJC RDQwNTJENkFFMERFQ0Y3NDBFQTI3QjU3Qy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CNUVEREE1N0RCQTI1QkJENDA1 MkQ2QUUwREVDRjc0MEVBMjdCNTdDLmNlcjCBzQYIKwYBBQUHAQsEgcAwgb0wgboG CCsGAQUFBzALhoGtcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQTI1RTg5RjRGNjlFMjBBOThEMTY1NTA3Mzk3RUJCQzUwNjM1MjdFMjE5 MEQ5MEEzN0UzOUY2OTgyQUM5MUFENy8wLzMyMzgzMDMwM2EzNDM5MzAzYTM4MzQz MDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzNzM5MzUzMS5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMG ACgABJCEMA0GCSqGSIb3DQEBCwUAA4IBAQCK2YjH9r7nKhcJyaXQI8be4lEDi+Hd PZ6iG/HouFnDrrWpfnw4T994XjXsx91AO/o4Ngx+z0Qe1BiTkDUGaPlCpiL3ZKMW bPU7O0E0Gk/CRcgHpNStzhih73eUjJWlOyvHC6NlVBn0CdMHzLUn4CPp0U0Obl2m xrgMVpbJ3GsYZYdcvhS/hiCGkZCgUgM163+/YFsTss8bAgE38Gnb3m7lVdQX8Pzp t1xTXgOA7jQjPC4vWw9BwYDP8ywXYXHF9KH7hVPryb/BVGmZg15VLXdThqFV6FZw o+8DicNQejRx2HZhUp2n6uHMVgotdIVXKx5Xiesp4pjcuL54ZpK3mONL -----END CERTIFICATE-----Generated at Sat Apr 5 23:12:53 2025 by rpki-client