$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ACDD7EF4C8C160B5340801B7839D6A868E4DD3486793AD6038376550443D01F2/0/3230302e3232392e302e302f32302d3234203d3e203532323633.roa File: 3230302e3232392e302e302f32302d3234203d3e203532323633.roa (raw, json) Hash identifier: 15AnM/dZ2cOa4ul8ya6chcuL7wO96O9N5qgUEe0rbqc= Subject key identifier: D3:FD:56:BA:61:C6:D7:6A:F2:B2:16:E7:FD:CF:EE:20:CE:67:D5:28 Certificate issuer: /CN=CB4871AA703FA98F663935BFC244CC1B99AD8A49 Certificate serial: 4AAC6A5476911C4955C56B1277867FCF8A7B8052 Authority key identifier: CB:48:71:AA:70:3F:A9:8F:66:39:35:BF:C2:44:CC:1B:99:AD:8A:49 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CB4871AA703FA98F663935BFC244CC1B99AD8A49.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ACDD7EF4C8C160B5340801B7839D6A868E4DD3486793AD6038376550443D01F2/0/3230302e3232392e302e302f32302d3234203d3e203532323633.roa Signing time: Tue 04 Feb 2025 18:48:26 +0000 ROA not before: Tue 04 Feb 2025 18:43:26 +0000 ROA not after: Tue 03 Feb 2026 18:48:26 +0000 asID: 52263 IP address blocks: 200.229.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/ACDD7EF4C8C160B5340801B7839D6A868E4DD3486793AD6038376550443D01F2/0/CB4871AA703FA98F663935BFC244CC1B99AD8A49.crl rsync://repository.lacnic.net/rpki/lacnic/ACDD7EF4C8C160B5340801B7839D6A868E4DD3486793AD6038376550443D01F2/0/CB4871AA703FA98F663935BFC244CC1B99AD8A49.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CB4871AA703FA98F663935BFC244CC1B99AD8A49.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ac:6a:54:76:91:1c:49:55:c5:6b:12:77:86:7f:cf:8a:7b:80:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB4871AA703FA98F663935BFC244CC1B99AD8A49 Validity Not Before: Feb 4 18:43:26 2025 GMT Not After : Feb 3 18:48:26 2026 GMT Subject: CN=D3FD56BA61C6D76AF2B216E7FDCFEE20CE67D528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a7:c1:9d:56:0b:36:a2:98:14:fd:7f:06:db: ad:15:d1:67:c5:a3:5f:69:4d:e0:ce:11:8c:1c:0d: b7:5a:45:07:9c:c8:4e:bf:3e:ee:cf:d1:c3:2a:76: c7:9e:8b:3d:a4:c7:18:94:e1:4c:51:b0:ac:7b:81: 8a:6b:12:28:d3:99:05:82:76:35:63:c8:42:ff:76: 61:ac:38:d6:b3:57:a3:9e:58:d0:01:08:a1:bd:56: 72:2a:65:44:4a:ca:ca:56:7c:0b:a0:ac:a2:26:00: 40:1a:76:34:46:f2:7b:06:01:9c:3e:08:40:9b:1d: b2:72:d5:73:0f:d0:8b:2d:69:0f:96:d0:ff:8b:02: 60:f1:fb:27:69:87:e1:12:3f:6a:c3:e7:e9:3e:24: 2f:ea:53:30:75:71:e5:11:ec:a2:c1:d1:a2:f9:c0: 9d:b8:a8:1d:bc:53:b4:fe:1b:f9:3a:19:07:9a:03: 05:3e:9e:ee:31:c2:95:dc:18:64:88:04:68:f3:32: 35:b6:a6:de:6c:bb:bf:7a:0c:e4:66:c1:c8:d2:32: e8:68:d4:30:9b:e5:87:cc:0c:88:85:a4:fa:f9:14: 44:fc:3a:14:d4:d3:dc:b4:e1:a8:b3:4c:fb:b3:9f: f1:29:b0:7f:37:5a:bf:38:7a:0d:4a:4b:3e:01:71: 33:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:FD:56:BA:61:C6:D7:6A:F2:B2:16:E7:FD:CF:EE:20:CE:67:D5:28 X509v3 Authority Key Identifier: keyid:CB:48:71:AA:70:3F:A9:8F:66:39:35:BF:C2:44:CC:1B:99:AD:8A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/ACDD7EF4C8C160B5340801B7839D6A868E4DD3486793AD6038376550443D01F2/0/CB4871AA703FA98F663935BFC244CC1B99AD8A49.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CB4871AA703FA98F663935BFC244CC1B99AD8A49.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ACDD7EF4C8C160B5340801B7839D6A868E4DD3486793AD6038376550443D01F2/0/3230302e3232392e302e302f32302d3234203d3e203532323633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.229.0.0/20 Signature Algorithm: sha256WithRSAEncryption 1c:5a:ae:31:5b:0e:3d:95:0e:96:39:98:2a:1c:e9:25:10:e0: 44:a1:11:53:2e:c1:f4:67:20:1a:ad:2f:df:10:d9:cc:19:3f: f2:10:10:71:4d:3d:88:f6:1e:db:74:b6:be:26:c3:68:89:dc: 4d:8c:35:bf:7a:c1:d2:d7:01:4e:e1:67:c4:5f:0d:ec:1e:e7: 68:cc:58:0e:6b:46:a6:8e:68:7f:66:d6:af:ce:4a:82:e4:bb: 7f:09:f6:ff:3f:b4:c2:05:90:9d:b5:81:7e:ae:2f:91:54:8e: 1a:72:af:23:0f:bc:4d:df:1e:74:e4:89:8c:ae:1b:3a:fb:8d: 2a:c0:c6:57:f5:a7:bd:9e:7a:b2:20:8c:62:f2:a7:57:55:d8: d2:b1:34:16:1c:be:4c:98:27:d1:3d:34:48:60:5c:0f:bd:41: 0d:c5:d7:13:d2:c8:26:4d:00:07:68:af:3a:e7:58:fd:2c:ba: 80:f5:04:9c:85:59:34:a4:21:53:50:52:2a:68:56:3b:34:bf: f1:d2:0d:e6:09:2d:b7:31:07:f8:59:e9:18:dc:02:41:6e:69: 12:60:78:c1:a0:d0:ba:8c:42:f6:0d:ee:f4:3a:7b:35:3e:c4: 48:9d:43:60:d5:fb:a1:43:bf:c9:82:cd:d1:2e:2f:2c:cc:3a: 2b:db:3d:69 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUSqxqVHaRHElVxWsSd4Z/z4p7gFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I0ODcxQUE3MDNGQTk4RjY2MzkzNUJGQzI0NENDMUI5 OUFEOEE0OTAeFw0yNTAyMDQxODQzMjZaFw0yNjAyMDMxODQ4MjZaMDMxMTAvBgNV BAMTKEQzRkQ1NkJBNjFDNkQ3NkFGMkIyMTZFN0ZEQ0ZFRTIwQ0U2N0Q1MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCip8GdVgs2opgU/X8G260V0WfF o19pTeDOEYwcDbdaRQecyE6/Pu7P0cMqdseeiz2kxxiU4UxRsKx7gYprEijTmQWC djVjyEL/dmGsONazV6OeWNABCKG9VnIqZURKyspWfAugrKImAEAadjRG8nsGAZw+ CECbHbJy1XMP0IstaQ+W0P+LAmDx+ydph+ESP2rD5+k+JC/qUzB1ceUR7KLB0aL5 wJ24qB28U7T+G/k6GQeaAwU+nu4xwpXcGGSIBGjzMjW2pt5su796DORmwcjSMuho 1DCb5YfMDIiFpPr5FET8OhTU09y04aizTPuzn/EpsH83Wr84eg1KSz4BcTMjAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQU0/1WumHG12ryshbn/c/uIM5n1SgwHwYDVR0j BBgwFoAUy0hxqnA/qY9mOTW/wkTMG5mtikkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQ0REN0VGNEM4QzE2MEI1MzQwODAxQjc4MzlENkE4NjhF NEREMzQ4Njc5M0FENjAzODM3NjU1MDQ0M0QwMUYyLzAvQ0I0ODcxQUE3MDNGQTk4 RjY2MzkzNUJGQzI0NENDMUI5OUFEOEE0OS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DQjQ4NzFBQTcwM0ZBOThGNjYz OTM1QkZDMjQ0Q0MxQjk5QUQ4QTQ5LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUNERDdFRjRDOEMxNjBCNTM0MDgwMUI3ODM5RDZBODY4RTRERDM0ODY3 OTNBRDYwMzgzNzY1NTA0NDNEMDFGMi8wLzMyMzAzMDJlMzIzMjM5MmUzMDJlMzAy ZjMyMzAyZDMyMzQyMDNkM2UyMDM1MzIzMjM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATI5QAwDQYJ KoZIhvcNAQELBQADggEBABxarjFbDj2VDpY5mCoc6SUQ4EShEVMuwfRnIBqtL98Q 2cwZP/IQEHFNPYj2Htt0tr4mw2iJ3E2MNb96wdLXAU7hZ8RfDewe52jMWA5rRqaO aH9m1q/OSoLku38J9v8/tMIFkJ21gX6uL5FUjhpyryMPvE3fHnTkiYyuGzr7jSrA xlf1p72eerIgjGLyp1dV2NKxNBYcvkyYJ9E9NEhgXA+9QQ3F1xPSyCZNAAdorzrn WP0suoD1BJyFWTSkIVNQUipoVjs0v/HSDeYJLbcxB/hZ6RjcAkFuaRJgeMGg0LqM QvYN7vQ6ezU+xEidQ2DV+6FDv8mCzdEuLyzMOivbPWk= -----END CERTIFICATE-----Generated at Sat Apr 5 23:10:43 2025 by rpki-client