$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AEB3B37556A8DA2E706A4A7337F7DBBC47ABBACD713229B54CACD670EBC05E51/0/3230312e3133312e38382e302f32342d3234203d3e20323733303036.roa File: 3230312e3133312e38382e302f32342d3234203d3e20323733303036.roa (raw, json) Hash identifier: Y3oZHoznCaUCBQoRIIqHUk1GE9kbKfIIaQ4fpU0PJjw= Subject key identifier: F9:57:CF:25:B6:5E:D0:CB:92:72:0B:00:53:C3:B9:A3:EA:E3:97:86 Certificate issuer: /CN=20AF1FFA815C6E3F3B9068ADD3D3AFB110DA7D45 Certificate serial: 398AA464FF8E2E9E3057F08F09B1794C7E9D7629 Authority key identifier: 20:AF:1F:FA:81:5C:6E:3F:3B:90:68:AD:D3:D3:AF:B1:10:DA:7D:45 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20AF1FFA815C6E3F3B9068ADD3D3AFB110DA7D45.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AEB3B37556A8DA2E706A4A7337F7DBBC47ABBACD713229B54CACD670EBC05E51/0/3230312e3133312e38382e302f32342d3234203d3e20323733303036.roa Signing time: Tue 04 Feb 2025 18:13:10 +0000 ROA not before: Tue 04 Feb 2025 18:08:10 +0000 ROA not after: Tue 03 Feb 2026 18:13:10 +0000 asID: 273006 IP address blocks: 201.131.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AEB3B37556A8DA2E706A4A7337F7DBBC47ABBACD713229B54CACD670EBC05E51/0/20AF1FFA815C6E3F3B9068ADD3D3AFB110DA7D45.crl rsync://repository.lacnic.net/rpki/lacnic/AEB3B37556A8DA2E706A4A7337F7DBBC47ABBACD713229B54CACD670EBC05E51/0/20AF1FFA815C6E3F3B9068ADD3D3AFB110DA7D45.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20AF1FFA815C6E3F3B9068ADD3D3AFB110DA7D45.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 15:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8a:a4:64:ff:8e:2e:9e:30:57:f0:8f:09:b1:79:4c:7e:9d:76:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20AF1FFA815C6E3F3B9068ADD3D3AFB110DA7D45 Validity Not Before: Feb 4 18:08:10 2025 GMT Not After : Feb 3 18:13:10 2026 GMT Subject: CN=F957CF25B65ED0CB92720B0053C3B9A3EAE39786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:10:7f:ee:f1:dd:2c:b0:e5:34:4e:71:01:fa: 49:1a:fe:2a:28:47:7e:59:76:f6:8e:b8:5d:68:9f: 43:bd:5c:6d:2e:ce:d5:40:2f:57:62:8c:3b:c7:07: d4:7c:7a:c3:96:5c:c1:e4:0f:18:85:2f:e9:96:8a: ad:79:6b:85:94:ec:12:3c:e1:04:3b:97:5f:3e:78: 81:93:16:f9:be:32:25:88:d0:a3:44:1a:c2:9a:b4: f0:ed:13:c8:d6:9d:4b:bf:d0:c8:86:75:49:c9:9e: 56:e9:31:a8:bd:cd:a0:dc:df:44:d0:d7:36:66:e3: 14:2b:10:51:96:2f:02:86:03:81:e4:11:19:c1:db: a1:62:b7:b7:f0:d9:a0:06:42:da:02:ce:ef:50:48: 26:c4:93:e1:8d:d5:ec:e5:db:8b:88:67:0d:3a:ae: d7:d8:92:c5:65:f1:0b:f0:e2:51:0f:2d:a7:38:81: 26:a5:e8:62:8c:25:3b:ed:02:66:cb:3e:df:8c:11: 8e:b9:60:a0:a3:21:a8:ef:22:92:2c:16:5d:e8:75: 76:c5:b2:46:fa:e2:dd:5c:7d:f7:e3:be:d6:73:b1: 23:4f:9f:b1:70:b6:d7:16:ec:34:9b:0a:11:58:63: 45:82:00:f2:c2:2e:14:a7:53:53:91:15:ef:2d:5e: 51:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:57:CF:25:B6:5E:D0:CB:92:72:0B:00:53:C3:B9:A3:EA:E3:97:86 X509v3 Authority Key Identifier: keyid:20:AF:1F:FA:81:5C:6E:3F:3B:90:68:AD:D3:D3:AF:B1:10:DA:7D:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AEB3B37556A8DA2E706A4A7337F7DBBC47ABBACD713229B54CACD670EBC05E51/0/20AF1FFA815C6E3F3B9068ADD3D3AFB110DA7D45.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20AF1FFA815C6E3F3B9068ADD3D3AFB110DA7D45.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AEB3B37556A8DA2E706A4A7337F7DBBC47ABBACD713229B54CACD670EBC05E51/0/3230312e3133312e38382e302f32342d3234203d3e20323733303036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 201.131.88.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:7b:b7:2d:67:b0:da:b3:87:8f:f7:3f:bd:98:8a:59:2b:c8: 6c:3e:a6:e2:b4:8d:f0:e1:39:d0:fb:85:4b:e5:d7:65:fb:9f: 67:b6:5b:90:ae:2d:bf:77:0a:c6:40:0d:12:58:4d:22:28:fa: fa:35:aa:9f:b5:03:f9:82:83:6b:6d:1e:8e:0b:74:d2:7d:66: 17:73:b3:b2:77:8c:39:dd:3c:c6:b4:8c:e1:39:e7:6d:89:c1: 13:b8:78:4e:1b:39:27:9e:c7:f2:32:9c:15:50:f2:b3:64:f6: 5d:1d:2a:5d:3c:df:13:1b:37:21:db:d6:54:7b:fd:be:81:f7: 5e:6c:cd:9f:81:0f:09:1e:24:48:f4:1b:a1:b2:1c:99:27:be: ee:7d:55:6d:d1:3d:e5:fd:62:d0:ed:20:4b:01:6f:8c:60:a2: 03:b8:15:7a:04:89:94:e7:28:01:e5:46:f9:88:57:bd:e0:8f: 45:85:5c:ad:24:86:cc:fd:66:dd:9e:0a:25:b2:3e:49:a6:ad: ae:c0:94:01:bd:12:dc:a7:c1:01:95:a4:e9:16:52:6c:d4:cc: 1a:2b:96:49:df:d8:5b:11:1f:71:82:74:aa:28:72:db:83:a4: 74:f0:79:98:6b:84:2b:a1:a1:8c:6f:2f:a9:73:b1:ab:1b:b3: 2a:ad:f6:0a -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUOYqkZP+OLp4wV/CPCbF5TH6ddikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBRjFGRkE4MTVDNkUzRjNCOTA2OEFERDNEM0FGQjEx MERBN0Q0NTAeFw0yNTAyMDQxODA4MTBaFw0yNjAyMDMxODEzMTBaMDMxMTAvBgNV BAMTKEY5NTdDRjI1QjY1RUQwQ0I5MjcyMEIwMDUzQzNCOUEzRUFFMzk3ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeEH/u8d0ssOU0TnEB+kka/ioo R35ZdvaOuF1on0O9XG0uztVAL1dijDvHB9R8esOWXMHkDxiFL+mWiq15a4WU7BI8 4QQ7l18+eIGTFvm+MiWI0KNEGsKatPDtE8jWnUu/0MiGdUnJnlbpMai9zaDc30TQ 1zZm4xQrEFGWLwKGA4HkERnB26Fit7fw2aAGQtoCzu9QSCbEk+GN1ezl24uIZw06 rtfYksVl8Qvw4lEPLac4gSal6GKMJTvtAmbLPt+MEY65YKCjIajvIpIsFl3odXbF skb64t1cfffjvtZzsSNPn7FwttcW7DSbChFYY0WCAPLCLhSnU1ORFe8tXlEdAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQU+VfPJbZe0MuScgsAU8O5o+rjl4YwHwYDVR0j BBgwFoAUIK8f+oFcbj87kGit09OvsRDafUUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BRUIzQjM3NTU2QThEQTJFNzA2QTRBNzMzN0Y3REJCQzQ3 QUJCQUNENzEzMjI5QjU0Q0FDRDY3MEVCQzA1RTUxLzAvMjBBRjFGRkE4MTVDNkUz RjNCOTA2OEFERDNEM0FGQjExMERBN0Q0NS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yMEFGMUZGQTgxNUM2RTNGM0I5 MDY4QUREM0QzQUZCMTEwREE3RDQ1LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUVCM0IzNzU1NkE4REEyRTcwNkE0QTczMzdGN0RCQkM0N0FCQkFDRDcx MzIyOUI1NENBQ0Q2NzBFQkMwNUU1MS8wLzMyMzAzMTJlMzEzMzMxMmUzODM4MmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzMzMzAzMDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyYNY MA0GCSqGSIb3DQEBCwUAA4IBAQAMe7ctZ7Das4eP9z+9mIpZK8hsPqbitI3w4TnQ +4VL5ddl+59ntluQri2/dwrGQA0SWE0iKPr6NaqftQP5goNrbR6OC3TSfWYXc7Oy d4w53TzGtIzhOedticETuHhOGzknnsfyMpwVUPKzZPZdHSpdPN8TGzch29ZUe/2+ gfdebM2fgQ8JHiRI9BuhshyZJ77ufVVt0T3l/WLQ7SBLAW+MYKIDuBV6BImU5ygB 5Ub5iFe94I9FhVytJIbM/Wbdngolsj5Jpq2uwJQBvRLcp8EBlaTpFlJs1MwaK5ZJ 39hbER9xgnSqKHLbg6R08HmYa4QroaGMby+pc7GrG7MqrfYK -----END CERTIFICATE-----Generated at Fri Apr 18 22:57:19 2025 by rpki-client