$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/3133382e3132322e3230302e302f32322d3234203d3e203130323939.roa File: 3133382e3132322e3230302e302f32322d3234203d3e203130323939.roa (raw, json) Hash identifier: Y02LmxQ8oEs1KrXAu0VQq/3CNPnzYMbjMcH+bGepmuU= Subject key identifier: CB:41:C8:E8:53:3C:E0:46:29:B4:14:3A:CD:AB:3C:11:CD:1F:72:B7 Certificate issuer: /CN=9E552EDA3BF8A5B6CADC533E403537B6DC729938 Certificate serial: 3C79650004FF0649A5BD4ABD295C4D9C8C875BCE Authority key identifier: 9E:55:2E:DA:3B:F8:A5:B6:CA:DC:53:3E:40:35:37:B6:DC:72:99:38 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9E552EDA3BF8A5B6CADC533E403537B6DC729938.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/3133382e3132322e3230302e302f32322d3234203d3e203130323939.roa Signing time: Tue 04 Feb 2025 18:03:14 +0000 ROA not before: Tue 04 Feb 2025 17:58:14 +0000 ROA not after: Tue 03 Feb 2026 18:03:14 +0000 asID: 10299 IP address blocks: 138.122.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/9E552EDA3BF8A5B6CADC533E403537B6DC729938.crl rsync://repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/9E552EDA3BF8A5B6CADC533E403537B6DC729938.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9E552EDA3BF8A5B6CADC533E403537B6DC729938.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:79:65:00:04:ff:06:49:a5:bd:4a:bd:29:5c:4d:9c:8c:87:5b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E552EDA3BF8A5B6CADC533E403537B6DC729938 Validity Not Before: Feb 4 17:58:14 2025 GMT Not After : Feb 3 18:03:14 2026 GMT Subject: CN=CB41C8E8533CE04629B4143ACDAB3C11CD1F72B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:93:ff:0d:ab:09:c1:55:93:b2:fc:79:fe:1c: 49:98:a7:66:02:d4:d7:37:a5:53:7b:f9:3a:b2:b4: bf:51:69:66:2e:ac:47:16:70:11:ce:50:27:68:96: 0c:1d:02:dd:bf:3c:69:33:14:cc:05:40:6f:87:5a: a5:a0:43:09:c5:0f:1c:16:7b:53:78:83:7f:bb:8e: 63:cb:e0:1a:76:a2:07:3e:7b:06:29:61:ed:5d:76: 35:98:e7:7b:ac:17:5f:5a:3c:92:52:7b:c9:9b:e4: 81:bb:4f:aa:fb:c1:d4:fd:34:08:3f:fc:65:f7:3a: 59:b4:34:c6:a5:b8:2d:6c:d5:37:4b:a7:b3:03:76: 33:27:21:b5:c0:d4:6c:a2:ba:1f:2a:b1:9e:a5:32: 57:d7:a2:6c:7b:7d:29:32:05:13:07:63:66:33:32: 62:b7:a3:d5:84:d4:ef:41:57:4d:0c:57:d1:00:9c: 0f:8b:b7:b7:10:cd:5b:82:b5:07:16:db:bd:e5:cf: e8:7a:35:3e:2a:61:5f:81:d0:8c:b6:d0:87:5f:f6: 5e:32:cb:cd:4a:2d:0c:b7:96:53:dd:1f:92:7f:f9: 3b:74:0e:fd:4a:8d:35:0c:8f:c9:b1:c2:36:e2:60: 2d:82:82:20:f1:c5:6b:dc:35:a2:de:fc:e5:3c:48: 8b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:41:C8:E8:53:3C:E0:46:29:B4:14:3A:CD:AB:3C:11:CD:1F:72:B7 X509v3 Authority Key Identifier: keyid:9E:55:2E:DA:3B:F8:A5:B6:CA:DC:53:3E:40:35:37:B6:DC:72:99:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/9E552EDA3BF8A5B6CADC533E403537B6DC729938.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9E552EDA3BF8A5B6CADC533E403537B6DC729938.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/3133382e3132322e3230302e302f32322d3234203d3e203130323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.122.200.0/22 Signature Algorithm: sha256WithRSAEncryption a4:14:74:19:4b:31:94:cf:e2:ce:1e:72:1c:90:e4:7b:4d:45: 0b:48:ef:eb:36:4a:55:b9:47:a4:19:04:22:89:7b:ca:c2:5a: 85:b3:89:b2:c7:ef:a3:cd:4a:f3:70:98:f0:f9:33:b6:e7:a0: d6:55:61:41:f9:b0:b7:9f:f2:f1:cb:ad:2d:3a:64:10:8d:53: 4f:85:e1:0d:5c:6f:73:89:97:2e:bc:3e:f4:81:9a:c4:22:16: 87:8e:cd:99:43:bb:99:13:d6:0d:ba:4b:05:90:c9:1e:dc:2d: 87:60:6f:30:ab:3b:e9:18:86:07:a3:6f:29:f8:91:11:59:4c: 43:a2:b1:f3:9b:b2:f3:78:68:f2:43:65:3b:22:11:3f:71:f8: 67:de:ff:95:69:ea:e9:55:68:4e:42:f1:f8:db:a7:f6:8a:2b: ce:c4:83:bc:b8:40:58:b9:e7:6c:35:ca:0b:13:a1:f8:3e:81: bc:bd:81:04:a6:fb:d1:25:dc:cd:60:41:67:38:ba:0b:af:b7: 31:e3:a5:f6:f2:46:80:67:87:33:95:04:40:fb:41:12:86:89: d4:93:d7:67:f8:99:db:cf:22:6a:40:2f:4c:f4:60:3b:cd:0e: 59:53:2d:5d:d5:76:ba:92:1c:f9:ed:3d:06:99:6c:d9:e6:6e: 02:9b:47:44 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUPHllAAT/BkmlvUq9KVxNnIyHW84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU1NTJFREEzQkY4QTVCNkNBREM1MzNFNDAzNTM3QjZE QzcyOTkzODAeFw0yNTAyMDQxNzU4MTRaFw0yNjAyMDMxODAzMTRaMDMxMTAvBgNV BAMTKENCNDFDOEU4NTMzQ0UwNDYyOUI0MTQzQUNEQUIzQzExQ0QxRjcyQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNk/8NqwnBVZOy/Hn+HEmYp2YC 1Nc3pVN7+TqytL9RaWYurEcWcBHOUCdolgwdAt2/PGkzFMwFQG+HWqWgQwnFDxwW e1N4g3+7jmPL4Bp2ogc+ewYpYe1ddjWY53usF19aPJJSe8mb5IG7T6r7wdT9NAg/ /GX3Olm0NMaluC1s1TdLp7MDdjMnIbXA1Gyiuh8qsZ6lMlfXomx7fSkyBRMHY2Yz MmK3o9WE1O9BV00MV9EAnA+Lt7cQzVuCtQcW273lz+h6NT4qYV+B0Iy20Idf9l4y y81KLQy3llPdH5J/+Tt0Dv1KjTUMj8mxwjbiYC2CgiDxxWvcNaLe/OU8SIvVAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUy0HI6FM84EYptBQ6zas8Ec0fcrcwHwYDVR0j BBgwFoAUnlUu2jv4pbbK3FM+QDU3ttxymTgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BRUMzNzk4MzFEMkFFN0E1RDU2QUY2QTkwRDlBRjkxNUZC NjM3N0VFOUZGOUIyQTI1RkU5MDk3MDBFOEEzQzdGLzAvOUU1NTJFREEzQkY4QTVC NkNBREM1MzNFNDAzNTM3QjZEQzcyOTkzOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85RTU1MkVEQTNCRjhBNUI2Q0FE QzUzM0U0MDM1MzdCNkRDNzI5OTM4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUVDMzc5ODMxRDJBRTdBNUQ1NkFGNkE5MEQ5QUY5MTVGQjYzNzdFRTlG RjlCMkEyNUZFOTA5NzAwRThBM0M3Ri8wLzMxMzMzODJlMzEzMjMyMmUzMjMwMzAy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTMwMzIzOTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCinrI MA0GCSqGSIb3DQEBCwUAA4IBAQCkFHQZSzGUz+LOHnIckOR7TUULSO/rNkpVuUek GQQiiXvKwlqFs4myx++jzUrzcJjw+TO256DWVWFB+bC3n/Lxy60tOmQQjVNPheEN XG9ziZcuvD70gZrEIhaHjs2ZQ7uZE9YNuksFkMke3C2HYG8wqzvpGIYHo28p+JER WUxDorHzm7LzeGjyQ2U7IhE/cfhn3v+VaerpVWhOQvH426f2iivOxIO8uEBYueds NcoLE6H4PoG8vYEEpvvRJdzNYEFnOLoLr7cx46X28kaAZ4czlQRA+0EShonUk9dn +JnbzyJqQC9M9GA7zQ5ZUy1d1Xa6khz57T0GmWzZ5m4Cm0dE -----END CERTIFICATE-----Generated at Sun Apr 6 04:21:39 2025 by rpki-client