$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/34352e3136342e32312e302f32342d3234203d3e203238343233.roa File: 34352e3136342e32312e302f32342d3234203d3e203238343233.roa (raw, json) Hash identifier: N4blcjVjqMg5+0KZqMMvh7CB3XoZbmxPRVjQGrPRzqM= Subject key identifier: CD:E5:5B:12:F2:65:BA:04:49:DC:32:C8:05:3E:DD:10:D7:2D:40:15 Certificate issuer: /CN=DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29 Certificate serial: 3800ED35E08B84F911B02BB8CE4527156B532BF3 Authority key identifier: DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/34352e3136342e32312e302f32342d3234203d3e203238343233.roa Signing time: Sun 26 Jan 2025 01:40:00 +0000 ROA not before: Sun 26 Jan 2025 01:35:00 +0000 ROA not after: Sun 25 Jan 2026 01:40:00 +0000 asID: 28423 IP address blocks: 45.164.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.crl rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:00:ed:35:e0:8b:84:f9:11:b0:2b:b8:ce:45:27:15:6b:53:2b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29 Validity Not Before: Jan 26 01:35:00 2025 GMT Not After : Jan 25 01:40:00 2026 GMT Subject: CN=CDE55B12F265BA0449DC32C8053EDD10D72D4015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d1:00:3c:53:b7:7a:d8:82:90:3b:e9:7d:b9: 51:0b:bb:14:6b:6f:f0:15:a3:79:b0:b4:f8:d6:85: ad:0a:dc:af:3d:d4:c5:77:02:15:c1:ea:88:76:b5: a0:b3:43:08:dc:59:a6:95:3c:0b:9f:83:df:9e:a1: 5c:4c:fc:8a:d4:e9:ee:06:1b:0e:08:ab:26:31:79: c9:36:b1:81:17:98:8b:bb:aa:1b:c4:af:e5:82:74: 34:5e:c7:65:47:56:f2:63:ac:aa:62:53:65:3f:bf: 65:d9:17:3d:f6:38:3b:24:dc:c8:1d:a2:61:0b:19: d4:c1:ed:3d:bb:ba:1e:9b:4c:1e:bc:45:f7:89:10: f3:a2:0d:82:f0:21:f8:cb:b1:4e:8a:2a:fc:27:3a: eb:ed:1e:08:9b:b6:00:ed:f0:5b:a0:f6:74:67:ed: 0d:19:15:cd:30:c4:fd:78:65:ff:2e:29:98:f3:78: f5:b1:1d:03:80:b8:1b:80:55:e3:7a:e7:0e:16:d4: cc:ec:40:d7:93:95:37:5b:02:8d:2a:09:06:f3:53: 9d:11:5a:b9:21:f3:a7:33:ed:3e:31:57:29:e5:2e: d3:59:33:89:61:c3:ab:0f:6a:31:d9:0b:1d:df:91: e4:3d:99:0a:56:49:d4:2e:f5:65:5d:cf:ea:6e:32: 51:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E5:5B:12:F2:65:BA:04:49:DC:32:C8:05:3E:DD:10:D7:2D:40:15 X509v3 Authority Key Identifier: keyid:DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/34352e3136342e32312e302f32342d3234203d3e203238343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.164.21.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:bd:e6:8b:1e:e1:c3:32:2d:09:fb:e1:a9:cf:47:e4:54:ee: f3:0f:82:20:66:00:27:88:83:e4:e8:23:c9:d2:10:3a:67:89: e5:28:54:01:c5:35:2c:f1:9b:2c:9c:43:86:6a:7f:12:65:35: c6:f2:d4:14:17:bf:52:58:b4:d7:b9:39:29:d8:c5:c6:b5:42: 63:e7:a5:b4:cd:15:fe:c1:6d:39:74:f1:23:c3:4d:12:e6:28: 3a:ee:fe:77:14:e5:62:52:ee:71:4d:12:62:ec:d5:09:67:06: d3:3b:44:c2:70:20:e3:45:41:25:0d:5f:f9:ea:4a:a8:7f:bc: 5b:47:1c:6a:fc:bf:e3:79:14:84:ed:e4:ba:05:70:1d:2d:3c: fe:ec:f7:83:6d:c1:4b:ba:ea:4b:2a:4d:53:45:56:0a:7f:87: db:3e:7e:c5:db:4e:58:ee:33:df:5f:3b:0a:62:fe:6d:15:ad: 9a:14:7b:b5:01:4a:58:54:44:7d:f6:57:e8:de:a6:e9:ea:b4: e7:d6:d3:2f:d8:7b:9a:09:7a:8e:57:6c:e9:1c:d9:3d:a3:13: a9:26:00:5e:24:a0:ae:c7:86:d3:74:36:39:a8:52:b5:aa:e7: b3:7f:86:6f:7c:ee:51:5f:c4:fc:66:b8:f0:11:c9:88:4b:98: be:c3:1e:80 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUOADtNeCLhPkRsCu4zkUnFWtTK/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERGQjk1RTAzQTI5NEZEQ0ZDOUYzQjcwQTI2QkNGNzRD M0E0Q0QyOTAeFw0yNTAxMjYwMTM1MDBaFw0yNjAxMjUwMTQwMDBaMDMxMTAvBgNV BAMTKENERTU1QjEyRjI2NUJBMDQ0OURDMzJDODA1M0VERDEwRDcyRDQwMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr0QA8U7d62IKQO+l9uVELuxRr b/AVo3mwtPjWha0K3K891MV3AhXB6oh2taCzQwjcWaaVPAufg9+eoVxM/IrU6e4G Gw4IqyYxeck2sYEXmIu7qhvEr+WCdDRex2VHVvJjrKpiU2U/v2XZFz32ODsk3Mgd omELGdTB7T27uh6bTB68RfeJEPOiDYLwIfjLsU6KKvwnOuvtHgibtgDt8Fug9nRn 7Q0ZFc0wxP14Zf8uKZjzePWxHQOAuBuAVeN65w4W1MzsQNeTlTdbAo0qCQbzU50R Wrkh86cz7T4xVynlLtNZM4lhw6sPajHZCx3fkeQ9mQpWSdQu9WVdz+puMlFnAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUzeVbEvJlugRJ3DLIBT7dENctQBUwHwYDVR0j BBgwFoAU3fuV4DopT9z8nztwomvPdMOkzSkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQTMyM0VBQ0Q4RUU2NTg1M0VBNjQ5MDFDMDcwOEM3RTBB NkM0QjQ5RTgzMkM5RUZFMEM3MjZBQzA3NjU1ODAwLzAvRERGQjk1RTAzQTI5NEZE Q0ZDOUYzQjcwQTI2QkNGNzRDM0E0Q0QyOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EREZCOTVFMDNBMjk0RkRDRkM5 RjNCNzBBMjZCQ0Y3NEMzQTRDRDI5LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUEzMjNFQUNEOEVFNjU4NTNFQTY0OTAxQzA3MDhDN0UwQTZDNEI0OUU4 MzJDOUVGRTBDNzI2QUMwNzY1NTgwMC8wLzM0MzUyZTMxMzYzNDJlMzIzMTJlMzAy ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzgzNDMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtpBUwDQYJ KoZIhvcNAQELBQADggEBADq95ose4cMyLQn74anPR+RU7vMPgiBmACeIg+ToI8nS EDpnieUoVAHFNSzxmyycQ4ZqfxJlNcby1BQXv1JYtNe5OSnYxca1QmPnpbTNFf7B bTl08SPDTRLmKDru/ncU5WJS7nFNEmLs1QlnBtM7RMJwIONFQSUNX/nqSqh/vFtH HGr8v+N5FITt5LoFcB0tPP7s94NtwUu66ksqTVNFVgp/h9s+fsXbTljuM99fOwpi /m0VrZoUe7UBSlhURH32V+jepunqtOfW0y/Ye5oJeo5XbOkc2T2jE6kmAF4koK7H htN0NjmoUrWq57N/hm987lFfxPxmuPARyYhLmL7DHoA= -----END CERTIFICATE-----Generated at Sat Apr 5 23:08:05 2025 by rpki-client