$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/34352e36382e342e302f32322d3234203d3e20323731383835.roa File: 34352e36382e342e302f32322d3234203d3e20323731383835.roa (raw, json) Hash identifier: V97ySs3+COs0bPt1iZbLdmN2jaA4i4OrFRnpEm+lOw4= Subject key identifier: 0C:B8:77:1E:BF:41:BA:31:FA:E0:C2:0E:DA:3A:2B:32:08:85:58:44 Certificate issuer: /CN=AADC68CACCD7A12B6A019949E964F33953EF7228 Certificate serial: 55CD5257E07033E0692E4D12CFE25D0ACB8225ED Authority key identifier: AA:DC:68:CA:CC:D7:A1:2B:6A:01:99:49:E9:64:F3:39:53:EF:72:28 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AADC68CACCD7A12B6A019949E964F33953EF7228.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/34352e36382e342e302f32322d3234203d3e20323731383835.roa Signing time: Tue 04 Feb 2025 18:32:08 +0000 ROA not before: Tue 04 Feb 2025 18:27:08 +0000 ROA not after: Tue 03 Feb 2026 18:32:08 +0000 asID: 271885 IP address blocks: 45.68.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/AADC68CACCD7A12B6A019949E964F33953EF7228.crl rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/AADC68CACCD7A12B6A019949E964F33953EF7228.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AADC68CACCD7A12B6A019949E964F33953EF7228.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:cd:52:57:e0:70:33:e0:69:2e:4d:12:cf:e2:5d:0a:cb:82:25:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AADC68CACCD7A12B6A019949E964F33953EF7228 Validity Not Before: Feb 4 18:27:08 2025 GMT Not After : Feb 3 18:32:08 2026 GMT Subject: CN=0CB8771EBF41BA31FAE0C20EDA3A2B3208855844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e5:e2:b1:02:e0:c0:08:fd:99:53:88:4d:3f: 90:2e:94:88:a1:4f:f6:32:ee:f7:ab:ee:f8:6e:2f: 0d:74:29:10:53:4c:64:bf:31:f4:57:f5:78:54:3b: b8:0f:62:eb:51:b1:68:94:d8:63:92:ca:1f:9a:72: 05:31:49:59:6d:d9:85:5d:28:0e:0c:1c:7c:cc:e4: 8c:dd:32:e7:08:27:81:c9:8a:be:32:df:c8:e5:2b: eb:e6:ec:57:d1:4c:5b:f2:e1:b3:21:a7:7f:50:99: dc:2e:ff:03:c5:b3:c1:ee:fb:65:76:61:cb:7c:d8: 23:ab:cf:45:18:01:14:7e:d1:0d:b0:72:d0:4e:d7: 45:1d:b7:52:8f:51:f2:70:eb:8b:f8:bf:b8:42:8f: 6d:8d:fe:af:1f:2a:a4:26:a8:dd:03:ca:6f:a7:91: ba:86:d9:60:76:8c:65:08:10:7d:44:af:b8:68:90: 5b:ee:a6:2f:23:41:03:ff:c7:4f:46:63:11:e9:92: 8c:64:9e:52:fe:43:b8:e9:0e:7b:9c:6e:e0:e4:77: fa:2d:65:89:03:d2:a2:e1:23:25:2b:69:c6:8d:e6: 8d:91:54:c4:57:3e:71:6a:e2:b4:e1:0b:cc:67:65: 41:7c:97:96:65:1b:39:ad:ca:62:55:2c:a4:0b:83: 1f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:B8:77:1E:BF:41:BA:31:FA:E0:C2:0E:DA:3A:2B:32:08:85:58:44 X509v3 Authority Key Identifier: keyid:AA:DC:68:CA:CC:D7:A1:2B:6A:01:99:49:E9:64:F3:39:53:EF:72:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/AADC68CACCD7A12B6A019949E964F33953EF7228.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AADC68CACCD7A12B6A019949E964F33953EF7228.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/34352e36382e342e302f32322d3234203d3e20323731383835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.68.4.0/22 Signature Algorithm: sha256WithRSAEncryption 77:2a:58:c9:5e:ab:b9:39:4b:fb:be:80:89:48:9c:21:5f:f2: 83:7c:69:bd:ad:f1:22:ce:4c:3b:83:b2:07:bb:5f:0f:17:17: b5:a1:5f:7a:b9:95:e7:95:cf:c9:97:8e:71:8f:cd:a0:41:30: bd:9f:60:c2:42:23:d8:8a:82:40:84:30:6e:ce:40:97:8d:29: 61:00:ab:1a:19:ec:bb:fa:1b:f5:f9:78:25:85:6a:7b:78:54: ba:2b:fa:3b:a3:03:22:14:96:a5:10:95:86:c4:a1:25:5d:ac: 48:e7:e9:be:ad:3e:f8:fe:c0:b0:33:c0:e8:1e:86:81:aa:05: 68:8e:10:a9:61:6b:33:04:5b:27:a5:fb:0a:3a:b4:82:67:8f: 2b:50:2c:6a:70:a8:99:8e:46:93:8c:c0:91:8a:41:64:4e:0c: 7b:c6:4a:a7:19:71:5e:d1:ee:56:60:e7:fc:4d:ca:38:ec:41: dc:a2:96:0f:2f:b9:ac:1c:4a:e8:af:05:f3:18:1f:06:3d:2f: ec:1c:1f:bd:d9:60:b8:66:69:fe:a7:93:b3:e2:63:a5:48:f6: 92:ac:f5:c1:90:a6:b5:04:bc:30:50:04:cd:15:10:b3:44:ea: 2d:a8:47:f9:c5:bc:b3:a2:f6:46:b9:98:06:4c:e4:90:25:43: fb:f2:1c:0d -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUVc1SV+BwM+BpLk0Sz+JdCsuCJe0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUFEQzY4Q0FDQ0Q3QTEyQjZBMDE5OTQ5RTk2NEYzMzk1 M0VGNzIyODAeFw0yNTAyMDQxODI3MDhaFw0yNjAyMDMxODMyMDhaMDMxMTAvBgNV BAMTKDBDQjg3NzFFQkY0MUJBMzFGQUUwQzIwRURBM0EyQjMyMDg4NTU4NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz5eKxAuDACP2ZU4hNP5AulIih T/Yy7ver7vhuLw10KRBTTGS/MfRX9XhUO7gPYutRsWiU2GOSyh+acgUxSVlt2YVd KA4MHHzM5IzdMucIJ4HJir4y38jlK+vm7FfRTFvy4bMhp39Qmdwu/wPFs8Hu+2V2 Yct82COrz0UYARR+0Q2wctBO10Udt1KPUfJw64v4v7hCj22N/q8fKqQmqN0Dym+n kbqG2WB2jGUIEH1Er7hokFvupi8jQQP/x09GYxHpkoxknlL+Q7jpDnucbuDkd/ot ZYkD0qLhIyUracaN5o2RVMRXPnFq4rThC8xnZUF8l5ZlGzmtymJVLKQLgx/dAgMB AAGjggLEMIICwDAdBgNVHQ4EFgQUDLh3Hr9BujH64MIO2jorMgiFWEQwHwYDVR0j BBgwFoAUqtxoyszXoStqAZlJ6WTzOVPvcigwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9CMjFFRDExNERCRDYwOThDMjhFQTlERkMzM0UwRkIxQUNE QUNCNDEwQzkxRDcyNUExQzIyOTVCNDM5QTlGQzNDLzAvQUFEQzY4Q0FDQ0Q3QTEy QjZBMDE5OTQ5RTk2NEYzMzk1M0VGNzIyOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BQURDNjhDQUNDRDdBMTJCNkEw MTk5NDlFOTY0RjMzOTUzRUY3MjI4LmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQjIxRUQxMTREQkQ2MDk4QzI4RUE5REZDMzNFMEZCMUFDREFDQjQxMEM5 MUQ3MjVBMUMyMjk1QjQzOUE5RkMzQy8wLzM0MzUyZTM2MzgyZTM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzIzNzMxMzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLUQEMA0GCSqG SIb3DQEBCwUAA4IBAQB3KljJXqu5OUv7voCJSJwhX/KDfGm9rfEizkw7g7IHu18P Fxe1oV96uZXnlc/Jl45xj82gQTC9n2DCQiPYioJAhDBuzkCXjSlhAKsaGey7+hv1 +XglhWp7eFS6K/o7owMiFJalEJWGxKElXaxI5+m+rT74/sCwM8DoHoaBqgVojhCp YWszBFsnpfsKOrSCZ48rUCxqcKiZjkaTjMCRikFkTgx7xkqnGXFe0e5WYOf8Tco4 7EHcopYPL7msHErorwXzGB8GPS/sHB+92WC4Zmn+p5Oz4mOlSPaSrPXBkKa1BLww UATNFRCzROotqEf5xbyzovZGuZgGTOSQJUP78hwN -----END CERTIFICATE-----Generated at Sat Apr 5 23:13:39 2025 by rpki-client