$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/34352e3136342e32302e302f32342d3234203d3e203238343233.roa File: 34352e3136342e32302e302f32342d3234203d3e203238343233.roa (raw, json) Hash identifier: qPitwTMabyQm2IX2pEKcUKt5GzX2CY3Xy9SizAAgx1Y= Subject key identifier: E7:D8:37:B6:BF:C1:87:A3:85:43:B2:52:11:7D:54:5C:63:A0:D6:A8 Certificate issuer: /CN=DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29 Certificate serial: 09A87BB093A74115F672A5F5298F5CD8DDE1B656 Authority key identifier: DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/34352e3136342e32302e302f32342d3234203d3e203238343233.roa Signing time: Thu 29 May 2025 07:45:00 +0000 ROA not before: Thu 29 May 2025 07:40:00 +0000 ROA not after: Thu 28 May 2026 07:45:00 +0000 asID: 28423 IP address blocks: 45.164.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.crl rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 15 Jun 2025 18:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a8:7b:b0:93:a7:41:15:f6:72:a5:f5:29:8f:5c:d8:dd:e1:b6:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29 Validity Not Before: May 29 07:40:00 2025 GMT Not After : May 28 07:45:00 2026 GMT Subject: CN=E7D837B6BFC187A38543B252117D545C63A0D6A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:66:0b:09:82:aa:8f:24:4e:b4:f5:0f:f7:c3: 3d:99:30:c9:7d:c1:db:c1:30:ac:e6:00:8a:78:15: 18:57:d3:7c:8f:cd:bb:0f:d5:f0:51:88:17:07:61: 5c:85:df:b3:b6:bc:4d:fe:93:72:12:81:b1:b8:3c: 8f:c7:01:f4:df:d3:10:e1:5e:4d:41:49:29:9a:00: 7e:02:4f:f2:64:f7:06:1d:b1:95:34:6d:f0:40:1f: a7:26:e5:d2:f5:bb:13:0f:d9:f6:33:ae:2b:83:2a: e1:d4:c4:d1:40:dd:9e:7b:42:9b:dd:f2:70:22:a4: 80:d9:75:30:67:98:fd:37:b2:21:85:82:7f:75:d3: 5c:11:bb:1a:3f:30:0d:2d:2d:64:62:ef:5b:12:25: 86:0c:b9:dd:b1:2a:b2:8e:54:13:bb:fd:64:79:64: 63:ec:44:ef:a1:fb:4d:64:36:40:61:76:6b:5a:fa: 52:e0:e3:ac:e3:83:34:ff:88:53:d6:e6:42:84:fe: 7b:fc:2a:7a:02:51:7e:02:0b:73:43:15:f4:f3:8a: 75:bc:ee:6f:04:76:9d:14:15:e6:9c:d4:2c:81:92: 32:54:9e:9a:40:78:61:59:11:cf:0a:32:a9:40:f2: 68:be:9d:76:97:f3:ee:8c:7b:76:86:0f:40:91:9c: 42:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D8:37:B6:BF:C1:87:A3:85:43:B2:52:11:7D:54:5C:63:A0:D6:A8 X509v3 Authority Key Identifier: keyid:DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/34352e3136342e32302e302f32342d3234203d3e203238343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.164.20.0/24 Signature Algorithm: sha256WithRSAEncryption a6:be:40:a6:1f:8a:fb:18:13:d1:84:ed:cd:26:88:84:e0:00: 14:77:77:aa:ab:4b:a6:4a:f9:56:9b:d7:32:d7:b4:8e:1a:70: 85:d1:75:d3:28:15:b2:7b:fe:c9:92:52:bf:a4:10:c3:22:7d: 49:9b:88:df:06:13:2c:83:4b:3f:e3:14:98:2c:1f:bb:42:88: cf:17:2c:21:b4:1e:bd:9a:00:61:59:b1:27:52:e4:33:c7:a9: 98:60:f4:5d:e6:5f:ae:d1:73:6d:aa:d2:1e:71:f6:8f:69:bc: 29:5b:b5:4f:ef:a9:33:eb:16:c3:80:7c:5c:8c:46:50:2e:e0: 12:a9:dd:4c:36:62:c4:9c:c7:94:cd:f8:3e:46:f4:bc:05:79: 77:7f:91:ab:ee:67:df:ec:8f:bb:69:3b:3c:4b:39:9a:54:69: 72:ec:3b:99:85:c7:f3:2f:39:3c:cb:36:da:1b:52:85:b4:e4: b4:2e:9f:f0:ca:47:6b:cb:8c:6a:36:ef:db:c3:34:77:b3:4c: 01:59:33:36:6a:0b:77:9d:17:65:8c:b6:19:8f:87:02:bf:a7: e3:a1:57:78:69:f4:4b:0f:37:b3:40:6a:5e:89:b4:b6:8a:79: cb:18:5a:9d:5c:37:8d:9b:96:64:03:06:81:a2:26:08:4a:00: 6b:8c:e2:28 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUCah7sJOnQRX2cqX1KY9c2N3htlYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERGQjk1RTAzQTI5NEZEQ0ZDOUYzQjcwQTI2QkNGNzRD M0E0Q0QyOTAeFw0yNTA1MjkwNzQwMDBaFw0yNjA1MjgwNzQ1MDBaMDMxMTAvBgNV BAMTKEU3RDgzN0I2QkZDMTg3QTM4NTQzQjI1MjExN0Q1NDVDNjNBMEQ2QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzZgsJgqqPJE609Q/3wz2ZMMl9 wdvBMKzmAIp4FRhX03yPzbsP1fBRiBcHYVyF37O2vE3+k3ISgbG4PI/HAfTf0xDh Xk1BSSmaAH4CT/Jk9wYdsZU0bfBAH6cm5dL1uxMP2fYzriuDKuHUxNFA3Z57Qpvd 8nAipIDZdTBnmP03siGFgn9101wRuxo/MA0tLWRi71sSJYYMud2xKrKOVBO7/WR5 ZGPsRO+h+01kNkBhdmta+lLg46zjgzT/iFPW5kKE/nv8KnoCUX4CC3NDFfTzinW8 7m8Edp0UFeac1CyBkjJUnppAeGFZEc8KMqlA8mi+nXaX8+6Me3aGD0CRnEJjAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQU59g3tr/Bh6OFQ7JSEX1UXGOg1qgwHwYDVR0j BBgwFoAU3fuV4DopT9z8nztwomvPdMOkzSkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQTMyM0VBQ0Q4RUU2NTg1M0VBNjQ5MDFDMDcwOEM3RTBB NkM0QjQ5RTgzMkM5RUZFMEM3MjZBQzA3NjU1ODAwLzAvRERGQjk1RTAzQTI5NEZE Q0ZDOUYzQjcwQTI2QkNGNzRDM0E0Q0QyOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EREZCOTVFMDNBMjk0RkRDRkM5 RjNCNzBBMjZCQ0Y3NEMzQTRDRDI5LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUEzMjNFQUNEOEVFNjU4NTNFQTY0OTAxQzA3MDhDN0UwQTZDNEI0OUU4 MzJDOUVGRTBDNzI2QUMwNzY1NTgwMC8wLzM0MzUyZTMxMzYzNDJlMzIzMDJlMzAy ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzgzNDMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtpBQwDQYJ KoZIhvcNAQELBQADggEBAKa+QKYfivsYE9GE7c0miITgABR3d6qrS6ZK+Vab1zLX tI4acIXRddMoFbJ7/smSUr+kEMMifUmbiN8GEyyDSz/jFJgsH7tCiM8XLCG0Hr2a AGFZsSdS5DPHqZhg9F3mX67Rc22q0h5x9o9pvClbtU/vqTPrFsOAfFyMRlAu4BKp 3Uw2YsScx5TN+D5G9LwFeXd/kavuZ9/sj7tpOzxLOZpUaXLsO5mFx/MvOTzLNtob UoW05LQun/DKR2vLjGo279vDNHezTAFZMzZqC3edF2WMthmPhwK/p+OhV3hp9EsP N7NAal6JtLaKecsYWp1cN42blmQDBoGiJghKAGuM4ig= -----END CERTIFICATE-----Generated at Thu Jun 12 17:11:28 2025 by rpki-client