$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a383132303a3a2f34332d3634203d3e203634313230.roa File: 323830333a663038303a383132303a3a2f34332d3634203d3e203634313230.roa (raw, json) Hash identifier: 5tf4mKIyFFYOvN3Mm5HXNoZ4U/3oWWcDV5Xe+XLMEwA= Subject key identifier: 2C:04:4A:FC:75:91:FB:07:CC:04:75:F4:0E:23:B9:A6:76:35:23:EE Certificate issuer: /CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Certificate serial: 563C861BCF5385B02A737966F79B59860432E471 Authority key identifier: D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a383132303a3a2f34332d3634203d3e203634313230.roa Signing time: Tue 31 Mar 2026 03:36:57 +0000 ROA not before: Tue 31 Mar 2026 03:31:57 +0000 ROA not after: Tue 30 Mar 2027 03:36:57 +0000 asID: 64120 IP address blocks: 2803:f080:8120::/43 maxlen: 64 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 09 Apr 2026 07:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:3c:86:1b:cf:53:85:b0:2a:73:79:66:f7:9b:59:86:04:32:e4:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Validity Not Before: Mar 31 03:31:57 2026 GMT Not After : Mar 30 03:36:57 2027 GMT Subject: CN=2C044AFC7591FB07CC0475F40E23B9A6763523EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2d:db:52:27:7a:06:6c:cb:e7:ac:84:71:c6: 2c:f4:c4:b3:8d:7e:e1:d0:3b:9a:b6:47:b3:e0:ca: a3:90:11:99:42:b0:a9:20:84:b4:19:3b:a2:f5:e4: 16:94:56:e3:55:d4:fd:fb:f5:de:9b:c0:b1:5b:5f: b3:7f:d6:e8:96:3c:2d:14:17:bc:59:53:30:09:5e: 4e:d9:c4:5b:16:9b:4a:c7:34:bc:e8:18:f1:2a:d4: 84:aa:65:f0:36:4e:be:b8:d2:12:a9:cf:61:67:8d: 3d:09:08:40:76:2c:34:ba:f7:42:7f:7a:05:ad:ce: 26:9a:e4:de:bc:70:ff:3b:a0:6c:b1:c2:0b:5d:bc: 8b:0c:65:16:c9:2a:65:cf:a2:f5:9d:77:91:b9:f4: 68:ec:0a:18:7a:11:52:04:69:ab:d6:f1:de:80:9b: 1e:b2:e4:fb:b4:2a:d7:f7:af:72:b1:f5:5a:42:1f: 29:9e:d8:af:2f:ae:db:48:ed:dc:26:9d:86:58:fd: af:97:da:b8:c1:12:d1:4d:34:a3:86:ae:35:63:6e: d5:05:cd:38:ef:59:f7:d9:dd:a9:b5:ce:c4:f4:19: 2f:87:1c:a7:88:f0:d8:eb:24:88:29:8c:11:f6:13: 60:e3:60:6f:44:ee:38:90:ac:32:bb:a0:b4:99:d9: d2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:04:4A:FC:75:91:FB:07:CC:04:75:F4:0E:23:B9:A6:76:35:23:EE X509v3 Authority Key Identifier: keyid:D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a383132303a3a2f34332d3634203d3e203634313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:f080:8120::/43 Signature Algorithm: sha256WithRSAEncryption 1f:22:1d:c9:88:6e:8c:b7:77:20:3d:7a:f1:cc:02:77:b2:23: ca:9f:d2:6c:d4:10:d0:47:29:eb:91:97:ba:26:77:77:69:8b: cf:be:77:1a:15:cd:31:94:4c:1b:37:0d:97:84:c1:3a:bd:d7: 54:49:71:2b:ea:5f:ff:aa:2b:2c:76:29:a1:4c:66:6c:5b:4b: 67:eb:39:4c:e1:00:f6:3a:2e:9d:2a:a0:83:31:a9:11:28:93: bc:e2:cc:84:c6:fa:4c:81:f6:6d:30:1f:3e:9a:f6:56:00:5c: 97:3b:0c:1a:f5:1b:7b:27:a5:c7:c8:bf:95:e4:aa:7f:4b:6e: 0d:60:e6:b4:be:0a:15:db:6f:3e:7e:ec:2d:dc:8c:11:00:57: b0:99:f9:ae:01:66:60:11:b2:4e:f9:ad:34:91:56:c6:14:76: 3b:df:69:07:ed:78:ab:27:03:29:82:92:ad:d3:7b:01:d3:7d: e4:bf:18:93:ae:df:88:8d:6c:6c:44:ac:65:c2:ac:85:bf:40: 9d:ed:da:ec:e7:02:11:f5:27:dc:cd:10:5c:f1:da:fe:41:2a: 29:29:16:16:0d:45:54:66:34:40:77:4c:ed:23:c9:80:06:d3: 3c:93:3f:23:ad:99:27:9e:f9:6e:cd:69:e8:e1:3d:fa:88:c3: 62:0d:3c:86 -----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgIUVjyGG89ThbAqc3lm95tZhgQy5HEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYwMTdBQUNGQjc4NUVBQjdFQTU2RDI0MzM3Q0RDRDcy NEVBQzJBRDAeFw0yNjAzMzEwMzMxNTdaFw0yNzAzMzAwMzM2NTdaMDMxMTAvBgNV BAMTKDJDMDQ0QUZDNzU5MUZCMDdDQzA0NzVGNDBFMjNCOUE2NzYzNTIzRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTLdtSJ3oGbMvnrIRxxiz0xLON fuHQO5q2R7PgyqOQEZlCsKkghLQZO6L15BaUVuNV1P379d6bwLFbX7N/1uiWPC0U F7xZUzAJXk7ZxFsWm0rHNLzoGPEq1ISqZfA2Tr640hKpz2FnjT0JCEB2LDS690J/ egWtziaa5N68cP87oGyxwgtdvIsMZRbJKmXPovWdd5G59GjsChh6EVIEaavW8d6A mx6y5Pu0Ktf3r3Kx9VpCHyme2K8vrttI7dwmnYZY/a+X2rjBEtFNNKOGrjVjbtUF zTjvWffZ3am1zsT0GS+HHKeI8NjrJIgpjBH2E2DjYG9E7jiQrDK7oLSZ2dLDAgMB AAGjggLTMIICzzAdBgNVHQ4EFgQULARK/HWR+wfMBHX0DiO5pnY1I+4wHwYDVR0j BBgwFoAU1gF6rPt4Xqt+pW0kM3zc1yTqwq0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQzIxREZEOTYxODhGRjAzMTg3NDA5M0JFRjc4QjdGQzdF NUUzQ0M0MEYyMzkyMkQ5Q0RFNTlDRDExNjU4Qzg0LzAvRDYwMTdBQUNGQjc4NUVB QjdFQTU2RDI0MzM3Q0RDRDcyNEVBQzJBRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ENjAxN0FBQ0ZCNzg1RUFCN0VB NTZEMjQzMzdDRENENzI0RUFDMkFELmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUMyMURGRDk2MTg4RkYwMzE4NzQwOTNCRUY3OEI3RkM3RTVFM0NDNDBG MjM5MjJEOUNERTU5Q0QxMTY1OEM4NC8wLzMyMzgzMDMzM2E2NjMwMzgzMDNhMzgz MTMyMzAzYTNhMmYzNDMzMmQzNjM0MjAzZDNlMjAzNjM0MzEzMjMwLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcFKAPwgIEgMA0GCSqGSIb3DQEBCwUAA4IBAQAfIh3JiG6Mt3cgPXrxzAJ3siPK n9Js1BDQRynrkZe6Jnd3aYvPvncaFc0xlEwbNw2XhME6vddUSXEr6l//qissdimh TGZsW0tn6zlM4QD2Oi6dKqCDMakRKJO84syExvpMgfZtMB8+mvZWAFyXOwwa9Rt7 J6XHyL+V5Kp/S24NYOa0vgoV228+fuwt3IwRAFewmfmuAWZgEbJO+a00kVbGFHY7 32kH7XirJwMpgpKt03sB033kvxiTrt+IjWxsRKxlwqyFv0Cd7drs5wIR9SfczRBc 8dr+QSopKRYWDUVUZjRAd0ztI8mABtM8kz8jrZknnvluzWno4T36iMNiDTyG -----END CERTIFICATE-----Generated at Sun Apr 5 21:48:12 2026 by rpki-client