$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326330303a3a2f34332d3634203d3e203634313230.roa File: 323830333a663038303a326330303a3a2f34332d3634203d3e203634313230.roa (raw, json) Hash identifier: /0snM8/FGhxWznmpqLnBRZ3hSxolX1xz2C+sern/pcE= Subject key identifier: 8A:4C:42:CB:7B:4B:04:2A:4C:38:52:EA:00:BB:40:94:F7:A3:BA:EF Certificate issuer: /CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Certificate serial: 5AA0F325CCEE8FE161C8769F883E3B053556D0E2 Authority key identifier: D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326330303a3a2f34332d3634203d3e203634313230.roa Signing time: Tue 31 Mar 2026 03:36:57 +0000 ROA not before: Tue 31 Mar 2026 03:31:57 +0000 ROA not after: Tue 30 Mar 2027 03:36:57 +0000 asID: 64120 IP address blocks: 2803:f080:2c00::/43 maxlen: 64 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 09 Apr 2026 07:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:a0:f3:25:cc:ee:8f:e1:61:c8:76:9f:88:3e:3b:05:35:56:d0:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Validity Not Before: Mar 31 03:31:57 2026 GMT Not After : Mar 30 03:36:57 2027 GMT Subject: CN=8A4C42CB7B4B042A4C3852EA00BB4094F7A3BAEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:53:01:76:84:48:6d:4a:7b:25:f4:1e:dd:3c: 51:a5:69:cb:61:34:eb:f8:0f:22:04:82:20:de:3e: 65:64:96:e7:06:9e:44:36:87:a6:a1:61:12:e7:63: a8:b2:2b:1e:f2:fb:d1:1f:53:bc:a6:2d:e2:2d:65: 32:a3:99:3e:4b:df:3a:5b:b4:43:c7:4c:07:8e:a3: f9:11:bc:66:37:8c:66:3a:8c:e1:0c:a5:94:26:81: a9:06:ba:a5:ad:eb:b6:f8:ff:d8:4b:30:6d:59:08: b0:0b:60:c1:ff:8e:28:4d:96:b9:87:49:cb:59:85: 13:23:30:0d:fa:b8:b1:27:03:e1:7a:fd:00:b2:a2: 22:90:03:52:61:19:0e:95:56:9e:df:ae:68:f3:42: 01:fa:6d:cd:82:e9:76:c9:11:f5:2b:d7:1f:77:2b: 12:a3:79:65:65:95:86:cb:37:c4:cf:b2:2a:79:44: 32:31:40:1b:d7:bc:15:b4:62:3f:57:79:6c:76:53: b2:f0:c3:38:aa:65:d7:48:72:c8:1e:fc:95:6d:ef: bf:95:d8:f4:41:86:c3:8b:aa:f6:e1:4b:a1:41:f0: f9:20:2c:f8:f4:d7:1a:41:97:73:e0:c2:82:67:e7: f5:46:f1:8a:ff:2c:c6:15:f6:b5:ba:0b:28:bc:7d: bd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4C:42:CB:7B:4B:04:2A:4C:38:52:EA:00:BB:40:94:F7:A3:BA:EF X509v3 Authority Key Identifier: keyid:D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326330303a3a2f34332d3634203d3e203634313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:f080:2c00::/43 Signature Algorithm: sha256WithRSAEncryption 3e:a0:e6:4a:ba:7c:fc:5f:6a:de:52:6c:7b:70:9b:e6:8c:c5: 75:11:30:60:fc:c2:cb:71:a9:96:33:9b:c0:4e:58:42:4f:d3: 27:39:43:33:90:70:b7:a2:27:71:a9:f1:03:eb:cb:d8:27:13: bd:b9:79:f2:b6:62:0d:2a:97:e2:76:78:b1:46:2d:7b:d0:9f: 84:72:b8:f0:b9:1f:36:b7:d7:d1:d3:8a:ca:fc:86:46:9b:b8: 2d:e9:04:73:82:f9:24:9e:09:eb:42:15:68:85:bd:33:c6:0e: c9:d0:35:6d:95:27:7a:85:da:39:b1:51:3b:a3:44:4b:48:d9: 5c:b5:18:e1:8c:8a:f2:41:8c:dd:d7:7f:15:9e:3c:d9:11:61: 47:1f:5e:0a:d2:a6:c2:d2:78:9d:80:0b:7c:f7:b7:3b:22:d7: a2:28:ad:14:93:d4:97:6d:8c:3e:1c:c3:3b:2e:92:89:f2:d8: d3:ef:dc:9a:a0:e9:15:d3:e4:01:a7:56:30:8d:10:34:92:03: d5:0f:83:6c:81:46:66:3a:f0:7c:ad:0a:33:be:d6:2b:e4:7f: 53:17:75:73:1a:83:f1:85:03:a7:03:66:be:06:69:38:42:78: 21:fc:3e:97:33:fe:58:bf:69:cc:d6:73:d1:da:4a:58:fa:f1: 2b:21:e1:28 -----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgIUWqDzJczuj+FhyHafiD47BTVW0OIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYwMTdBQUNGQjc4NUVBQjdFQTU2RDI0MzM3Q0RDRDcy NEVBQzJBRDAeFw0yNjAzMzEwMzMxNTdaFw0yNzAzMzAwMzM2NTdaMDMxMTAvBgNV BAMTKDhBNEM0MkNCN0I0QjA0MkE0QzM4NTJFQTAwQkI0MDk0RjdBM0JBRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0UwF2hEhtSnsl9B7dPFGlacth NOv4DyIEgiDePmVklucGnkQ2h6ahYRLnY6iyKx7y+9EfU7ymLeItZTKjmT5L3zpb tEPHTAeOo/kRvGY3jGY6jOEMpZQmgakGuqWt67b4/9hLMG1ZCLALYMH/jihNlrmH SctZhRMjMA36uLEnA+F6/QCyoiKQA1JhGQ6VVp7frmjzQgH6bc2C6XbJEfUr1x93 KxKjeWVllYbLN8TPsip5RDIxQBvXvBW0Yj9XeWx2U7LwwziqZddIcsge/JVt77+V 2PRBhsOLqvbhS6FB8PkgLPj01xpBl3PgwoJn5/VG8Yr/LMYV9rW6Cyi8fb3bAgMB AAGjggLTMIICzzAdBgNVHQ4EFgQUikxCy3tLBCpMOFLqALtAlPejuu8wHwYDVR0j BBgwFoAU1gF6rPt4Xqt+pW0kM3zc1yTqwq0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQzIxREZEOTYxODhGRjAzMTg3NDA5M0JFRjc4QjdGQzdF NUUzQ0M0MEYyMzkyMkQ5Q0RFNTlDRDExNjU4Qzg0LzAvRDYwMTdBQUNGQjc4NUVB QjdFQTU2RDI0MzM3Q0RDRDcyNEVBQzJBRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ENjAxN0FBQ0ZCNzg1RUFCN0VB NTZEMjQzMzdDRENENzI0RUFDMkFELmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUMyMURGRDk2MTg4RkYwMzE4NzQwOTNCRUY3OEI3RkM3RTVFM0NDNDBG MjM5MjJEOUNERTU5Q0QxMTY1OEM4NC8wLzMyMzgzMDMzM2E2NjMwMzgzMDNhMzI2 MzMwMzAzYTNhMmYzNDMzMmQzNjM0MjAzZDNlMjAzNjM0MzEzMjMwLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcFKAPwgCwAMA0GCSqGSIb3DQEBCwUAA4IBAQA+oOZKunz8X2reUmx7cJvmjMV1 ETBg/MLLcamWM5vATlhCT9MnOUMzkHC3oidxqfED68vYJxO9uXnytmINKpfidnix Ri170J+EcrjwuR82t9fR04rK/IZGm7gt6QRzgvkkngnrQhVohb0zxg7J0DVtlSd6 hdo5sVE7o0RLSNlctRjhjIryQYzd138VnjzZEWFHH14K0qbC0nidgAt897c7Itei KK0Uk9SXbYw+HMM7LpKJ8tjT79yaoOkV0+QBp1YwjRA0kgPVD4NsgUZmOvB8rQoz vtYr5H9TF3VzGoPxhQOnA2a+Bmk4Qngh/D6XM/5Yv2nM1nPR2kpY+vErIeEo -----END CERTIFICATE-----Generated at Sun Apr 5 21:49:54 2026 by rpki-client