$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326534303a3a2f34332d3634203d3e203634313230.roa File: 323830333a663038303a326534303a3a2f34332d3634203d3e203634313230.roa (raw, json) Hash identifier: Fr5G8mS9D5qEcGEz0voiEeSJm1moJSSvAJCZkup7aeI= Subject key identifier: FF:7E:46:94:20:43:7C:54:01:86:9B:5D:7E:75:7A:AA:8E:33:0B:2A Certificate issuer: /CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Certificate serial: 3A43EEB38389E49D01FE1158322E6E879E1F3A5E Authority key identifier: D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326534303a3a2f34332d3634203d3e203634313230.roa Signing time: Sat 05 Apr 2025 17:14:01 +0000 ROA not before: Sat 05 Apr 2025 17:09:01 +0000 ROA not after: Sat 04 Apr 2026 17:14:01 +0000 asID: 64120 IP address blocks: 2803:f080:2e40::/43 maxlen: 64 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 29 Oct 2025 22:57:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:43:ee:b3:83:89:e4:9d:01:fe:11:58:32:2e:6e:87:9e:1f:3a:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Validity Not Before: Apr 5 17:09:01 2025 GMT Not After : Apr 4 17:14:01 2026 GMT Subject: CN=FF7E469420437C5401869B5D7E757AAA8E330B2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:25:c8:93:e4:b6:2f:d2:ce:98:dc:02:19:34: 9f:e8:d6:38:3b:0c:e3:7d:b5:a9:68:99:10:6b:5a: 1d:52:73:2c:e2:88:21:d9:11:4a:04:1e:27:4f:0e: e3:d5:53:b8:2d:5b:dc:a4:cc:ca:e6:d3:d6:8f:e0: cf:25:e6:8f:83:bb:53:81:4c:a8:c1:e5:54:2b:53: 83:d5:b6:a3:01:05:78:01:72:2e:92:b8:d7:16:78: 38:c6:6d:ed:ea:0f:12:6f:72:54:8c:35:cb:1d:48: 84:ce:e7:a9:8e:d7:1f:85:67:2f:90:d7:7a:1d:9c: fb:37:f4:5c:9b:4f:64:a9:ca:46:8e:d2:a8:12:f8: ae:90:da:34:b5:0a:ff:a9:42:8b:94:96:6f:e0:bb: 76:32:b0:d2:64:a2:0b:e5:83:36:ca:41:4d:1f:82: de:0a:36:7f:8f:1c:12:a1:15:0d:5f:4b:e0:50:f9: f6:7c:bb:53:30:1c:4d:50:b3:1a:96:be:11:83:d2: 29:94:c5:fb:be:6e:49:2c:f5:10:71:48:bc:43:08: 2a:2e:df:1f:10:ed:17:82:e1:ba:5d:a2:5b:3d:9f: c8:9c:fe:65:7d:94:a0:a7:d2:f9:c7:f7:84:4d:c9: b6:81:e4:0c:45:4e:5d:92:08:a7:32:fd:f0:c8:cd: ed:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:7E:46:94:20:43:7C:54:01:86:9B:5D:7E:75:7A:AA:8E:33:0B:2A X509v3 Authority Key Identifier: keyid:D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326534303a3a2f34332d3634203d3e203634313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:f080:2e40::/43 Signature Algorithm: sha256WithRSAEncryption 90:f4:3e:d6:ca:ce:e6:4d:9e:2f:ef:fb:61:25:2c:4d:14:93: b9:b1:7f:e0:96:f2:de:0d:2a:b3:9e:0d:be:48:26:c1:f8:e4: ab:ad:27:17:d6:f0:0f:63:95:12:28:97:8b:cf:14:31:e5:2e: 57:46:ea:18:6c:37:a4:74:96:14:2f:6d:73:11:05:86:7d:64: b6:06:01:a7:2b:e6:10:cd:57:84:31:3c:40:50:f8:38:48:c3: 32:09:cd:44:9a:1a:f2:7b:82:73:e6:9b:35:6f:27:8d:e3:53: ef:f7:b1:48:36:82:a7:95:21:37:23:f5:62:bd:bc:42:48:04: f8:42:bc:b4:dc:e2:2c:4f:d1:42:c7:ac:15:17:02:67:18:c4: f0:07:c2:97:6c:bf:e3:ba:0b:b6:07:97:11:0d:94:76:ae:47: 73:ae:d2:d1:7a:23:78:62:5e:8d:66:df:d6:84:00:d8:98:29: ea:08:9d:28:5e:9b:e3:26:45:8b:26:91:55:6a:aa:ea:01:c2: a4:3e:35:03:0c:27:10:32:0f:e6:5c:8d:bd:5c:f0:34:4e:62: 45:60:2e:db:67:61:4d:25:2d:4d:60:69:da:e7:1c:46:17:c5: 96:95:50:07:26:8d:07:db:21:f0:ca:e6:52:48:2b:c3:89:20: 69:b2:9f:84 -----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgIUOkPus4OJ5J0B/hFYMi5uh54fOl4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYwMTdBQUNGQjc4NUVBQjdFQTU2RDI0MzM3Q0RDRDcy NEVBQzJBRDAeFw0yNTA0MDUxNzA5MDFaFw0yNjA0MDQxNzE0MDFaMDMxMTAvBgNV BAMTKEZGN0U0Njk0MjA0MzdDNTQwMTg2OUI1RDdFNzU3QUFBOEUzMzBCMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwJciT5LYv0s6Y3AIZNJ/o1jg7 DON9talomRBrWh1ScyziiCHZEUoEHidPDuPVU7gtW9ykzMrm09aP4M8l5o+Du1OB TKjB5VQrU4PVtqMBBXgBci6SuNcWeDjGbe3qDxJvclSMNcsdSITO56mO1x+FZy+Q 13odnPs39FybT2SpykaO0qgS+K6Q2jS1Cv+pQouUlm/gu3YysNJkogvlgzbKQU0f gt4KNn+PHBKhFQ1fS+BQ+fZ8u1MwHE1QsxqWvhGD0imUxfu+bkks9RBxSLxDCCou 3x8Q7ReC4bpdols9n8ic/mV9lKCn0vnH94RNybaB5AxFTl2SCKcy/fDIze2NAgMB AAGjggLTMIICzzAdBgNVHQ4EFgQU/35GlCBDfFQBhptdfnV6qo4zCyowHwYDVR0j BBgwFoAU1gF6rPt4Xqt+pW0kM3zc1yTqwq0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQzIxREZEOTYxODhGRjAzMTg3NDA5M0JFRjc4QjdGQzdF NUUzQ0M0MEYyMzkyMkQ5Q0RFNTlDRDExNjU4Qzg0LzAvRDYwMTdBQUNGQjc4NUVB QjdFQTU2RDI0MzM3Q0RDRDcyNEVBQzJBRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ENjAxN0FBQ0ZCNzg1RUFCN0VB NTZEMjQzMzdDRENENzI0RUFDMkFELmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUMyMURGRDk2MTg4RkYwMzE4NzQwOTNCRUY3OEI3RkM3RTVFM0NDNDBG MjM5MjJEOUNERTU5Q0QxMTY1OEM4NC8wLzMyMzgzMDMzM2E2NjMwMzgzMDNhMzI2 NTM0MzAzYTNhMmYzNDMzMmQzNjM0MjAzZDNlMjAzNjM0MzEzMjMwLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcFKAPwgC5AMA0GCSqGSIb3DQEBCwUAA4IBAQCQ9D7Wys7mTZ4v7/thJSxNFJO5 sX/glvLeDSqzng2+SCbB+OSrrScX1vAPY5USKJeLzxQx5S5XRuoYbDekdJYUL21z EQWGfWS2BgGnK+YQzVeEMTxAUPg4SMMyCc1Emhrye4Jz5ps1byeN41Pv97FINoKn lSE3I/VivbxCSAT4Qry03OIsT9FCx6wVFwJnGMTwB8KXbL/jugu2B5cRDZR2rkdz rtLReiN4Yl6NZt/WhADYmCnqCJ0oXpvjJkWLJpFVaqrqAcKkPjUDDCcQMg/mXI29 XPA0TmJFYC7bZ2FNJS1NYGna5xxGF8WWlVAHJo0H2yHwyuZSSCvDiSBpsp+E -----END CERTIFICATE-----Generated at Sun Oct 26 09:26:45 2025 by rpki-client