$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AFD627C37ADC22DE8C4D189E2D98D4CC80C4EECF1C2920D0F4409019E54F8C4A/0/3230302e33332e3130382e302f32342d3234203d3e20323734313538.roa File: 3230302e33332e3130382e302f32342d3234203d3e20323734313538.roa (raw, json) Hash identifier: uqIyZ5o3Twoz9lqf2/eatcYZt5rIMFyHnYHlLXTSymI= Subject key identifier: 1C:3A:87:3D:F3:72:AF:3A:35:B5:1E:67:40:69:4C:56:4E:AA:59:0F Certificate issuer: /CN=AFFC3EBFC444E6025C839618C3C81CC8996599A2 Certificate serial: 2BEDBAE39D979E575E470673A33C5914AEE34E85 Authority key identifier: AF:FC:3E:BF:C4:44:E6:02:5C:83:96:18:C3:C8:1C:C8:99:65:99:A2 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AFFC3EBFC444E6025C839618C3C81CC8996599A2.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AFD627C37ADC22DE8C4D189E2D98D4CC80C4EECF1C2920D0F4409019E54F8C4A/0/3230302e33332e3130382e302f32342d3234203d3e20323734313538.roa Signing time: Fri 11 Jul 2025 21:00:00 +0000 ROA not before: Fri 11 Jul 2025 20:55:00 +0000 ROA not after: Fri 10 Jul 2026 21:00:00 +0000 asID: 274158 IP address blocks: 200.33.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AFD627C37ADC22DE8C4D189E2D98D4CC80C4EECF1C2920D0F4409019E54F8C4A/0/AFFC3EBFC444E6025C839618C3C81CC8996599A2.crl rsync://repository.lacnic.net/rpki/lacnic/AFD627C37ADC22DE8C4D189E2D98D4CC80C4EECF1C2920D0F4409019E54F8C4A/0/AFFC3EBFC444E6025C839618C3C81CC8996599A2.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AFFC3EBFC444E6025C839618C3C81CC8996599A2.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 25 Jul 2025 04:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ed:ba:e3:9d:97:9e:57:5e:47:06:73:a3:3c:59:14:ae:e3:4e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFFC3EBFC444E6025C839618C3C81CC8996599A2 Validity Not Before: Jul 11 20:55:00 2025 GMT Not After : Jul 10 21:00:00 2026 GMT Subject: CN=1C3A873DF372AF3A35B51E6740694C564EAA590F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:66:4b:af:ac:71:07:29:75:e7:49:95:39:4d: 31:41:38:47:40:58:59:ec:01:8b:5c:7d:c1:3f:38: 0e:aa:0d:1f:d9:7e:d3:4e:40:40:6c:f5:1a:88:2d: d9:8a:de:8a:cd:e0:a8:c0:d3:e1:4a:41:0b:94:de: 86:b0:33:ee:b8:22:48:ae:c3:f1:43:b2:fb:46:59: a1:9a:44:8c:1d:66:23:7a:e0:d1:4c:77:33:b6:15: 26:a7:4a:8f:c2:3f:09:23:52:9b:62:03:a2:09:37: 6a:fe:eb:84:00:8c:e9:4a:6b:a3:24:c6:bf:ef:7f: b2:34:c0:2a:37:e5:97:56:c5:47:b0:ff:e7:09:88: c7:80:c6:46:5d:6a:8b:ba:74:6b:5e:6e:64:f0:69: a5:94:ff:a1:2b:4f:d2:3e:a8:08:69:24:bd:d1:e4: 15:09:02:00:00:91:8d:69:bd:ec:d9:3f:04:b0:92: b8:dd:57:27:97:10:c4:4d:f2:88:28:4c:43:6b:41: 13:4e:95:57:cb:28:ba:3d:ac:23:05:20:03:3e:e9: 2f:c6:56:75:d6:73:7a:66:71:63:f2:8c:3a:99:05: 57:70:1f:b0:36:69:fd:3e:18:14:66:54:0a:ab:8d: 7f:e6:80:b5:fa:19:26:24:d1:c4:aa:af:5b:97:8a: 83:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3A:87:3D:F3:72:AF:3A:35:B5:1E:67:40:69:4C:56:4E:AA:59:0F X509v3 Authority Key Identifier: keyid:AF:FC:3E:BF:C4:44:E6:02:5C:83:96:18:C3:C8:1C:C8:99:65:99:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AFD627C37ADC22DE8C4D189E2D98D4CC80C4EECF1C2920D0F4409019E54F8C4A/0/AFFC3EBFC444E6025C839618C3C81CC8996599A2.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AFFC3EBFC444E6025C839618C3C81CC8996599A2.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AFD627C37ADC22DE8C4D189E2D98D4CC80C4EECF1C2920D0F4409019E54F8C4A/0/3230302e33332e3130382e302f32342d3234203d3e20323734313538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.33.108.0/24 Signature Algorithm: sha256WithRSAEncryption 90:a2:b9:82:be:bb:2f:63:c7:fb:92:3c:87:eb:fe:ae:77:86: 6d:f8:77:5d:0c:1a:b0:3f:e6:09:ab:c3:aa:08:16:df:1c:a0: 65:40:f4:c3:dc:be:3d:84:cd:81:44:1f:1e:28:7e:f3:6b:41: 9d:8e:58:a6:09:03:80:af:a9:e7:ef:2e:d5:58:3d:aa:36:24: 44:0b:f1:83:d8:a4:09:ba:70:48:f7:ab:0d:0b:00:9b:c3:b8: a4:55:14:d0:2e:0c:48:82:b4:b4:37:41:1b:90:35:ef:37:fc: 6a:e7:ab:7e:a4:2c:81:ea:27:ea:83:a0:e0:c1:2e:1e:fe:e3: 56:ba:f4:45:a9:b2:5b:be:a7:0f:bf:83:03:a3:50:ad:c4:c1: 9f:3c:44:43:a0:96:61:62:49:d3:67:03:fc:3f:8b:d9:da:1f: d8:e1:ff:c2:52:43:7e:f8:49:0e:6b:4a:74:07:58:f4:74:86: 8f:54:33:c5:15:93:ef:7d:3b:50:7e:34:ae:2f:c6:77:77:73: 72:bd:92:b3:f8:00:9e:3b:37:05:eb:d8:e1:37:a7:dc:19:e3: 24:db:e7:16:89:eb:b2:46:c8:3e:3e:65:83:b2:25:fc:9c:3d: a8:1c:08:b4:d4:36:0e:34:29:c8:e7:55:50:0d:5a:91:f1:35: bf:a6:5e:73 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUK+26452XnldeRwZzozxZFK7jToUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZGQzNFQkZDNDQ0RTYwMjVDODM5NjE4QzNDODFDQzg5 OTY1OTlBMjAeFw0yNTA3MTEyMDU1MDBaFw0yNjA3MTAyMTAwMDBaMDMxMTAvBgNV BAMTKDFDM0E4NzNERjM3MkFGM0EzNUI1MUU2NzQwNjk0QzU2NEVBQTU5MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXZkuvrHEHKXXnSZU5TTFBOEdA WFnsAYtcfcE/OA6qDR/ZftNOQEBs9RqILdmK3orN4KjA0+FKQQuU3oawM+64Ikiu w/FDsvtGWaGaRIwdZiN64NFMdzO2FSanSo/CPwkjUptiA6IJN2r+64QAjOlKa6Mk xr/vf7I0wCo35ZdWxUew/+cJiMeAxkZdaou6dGtebmTwaaWU/6ErT9I+qAhpJL3R 5BUJAgAAkY1pvezZPwSwkrjdVyeXEMRN8ogoTENrQRNOlVfLKLo9rCMFIAM+6S/G VnXWc3pmcWPyjDqZBVdwH7A2af0+GBRmVAqrjX/mgLX6GSYk0cSqr1uXioO9AgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUHDqHPfNyrzo1tR5nQGlMVk6qWQ8wHwYDVR0j BBgwFoAUr/w+v8RE5gJcg5YYw8gcyJllmaIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BRkQ2MjdDMzdBREMyMkRFOEM0RDE4OUUyRDk4RDRDQzgw QzRFRUNGMUMyOTIwRDBGNDQwOTAxOUU1NEY4QzRBLzAvQUZGQzNFQkZDNDQ0RTYw MjVDODM5NjE4QzNDODFDQzg5OTY1OTlBMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BRkZDM0VCRkM0NDRFNjAyNUM4 Mzk2MThDM0M4MUNDODk5NjU5OUEyLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUZENjI3QzM3QURDMjJERThDNEQxODlFMkQ5OEQ0Q0M4MEM0RUVDRjFD MjkyMEQwRjQ0MDkwMTlFNTRGOEM0QS8wLzMyMzAzMDJlMzMzMzJlMzEzMDM4MmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzM0MzEzNTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyCFs MA0GCSqGSIb3DQEBCwUAA4IBAQCQormCvrsvY8f7kjyH6/6ud4Zt+HddDBqwP+YJ q8OqCBbfHKBlQPTD3L49hM2BRB8eKH7za0GdjlimCQOAr6nn7y7VWD2qNiREC/GD 2KQJunBI96sNCwCbw7ikVRTQLgxIgrS0N0EbkDXvN/xq56t+pCyB6ifqg6DgwS4e /uNWuvRFqbJbvqcPv4MDo1CtxMGfPERDoJZhYknTZwP8P4vZ2h/Y4f/CUkN++EkO a0p0B1j0dIaPVDPFFZPvfTtQfjSuL8Z3d3NyvZKz+ACeOzcF69jhN6fcGeMk2+cW ieuyRsg+PmWDsiX8nD2oHAi01DYONCnI51VQDVqR8TW/pl5z -----END CERTIFICATE-----Generated at Mon Jul 21 08:57:11 2025 by rpki-client