$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B305B50C3C45F59BD2BD635A7A773BF770A1FA7F3DBF5CC0903892285BC2AD1C/0/3133382e3235352e3135322e302f32322d3234203d3e203237393033.roa File: 3133382e3235352e3135322e302f32322d3234203d3e203237393033.roa (raw, json) Hash identifier: tcSyKroDDkFEDnZNkwSUFSepDYo2/AFFy5+Zf8V6ViQ= Subject key identifier: 99:31:25:D0:7D:1D:6F:31:C9:4F:3B:B3:BF:4E:38:6C:0E:F4:2C:BC Certificate issuer: /CN=3A8250F8B4617B7DF97D5F420D32F9DFDDEE82EB Certificate serial: 45D87D6F7D432E31ACDCE9443002253034B1A414 Authority key identifier: 3A:82:50:F8:B4:61:7B:7D:F9:7D:5F:42:0D:32:F9:DF:DD:EE:82:EB Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3A8250F8B4617B7DF97D5F420D32F9DFDDEE82EB.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B305B50C3C45F59BD2BD635A7A773BF770A1FA7F3DBF5CC0903892285BC2AD1C/0/3133382e3235352e3135322e302f32322d3234203d3e203237393033.roa Signing time: Tue 04 Feb 2025 18:22:06 +0000 ROA not before: Tue 04 Feb 2025 18:17:06 +0000 ROA not after: Tue 03 Feb 2026 18:22:06 +0000 asID: 27903 IP address blocks: 138.255.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/B305B50C3C45F59BD2BD635A7A773BF770A1FA7F3DBF5CC0903892285BC2AD1C/0/3A8250F8B4617B7DF97D5F420D32F9DFDDEE82EB.crl rsync://repository.lacnic.net/rpki/lacnic/B305B50C3C45F59BD2BD635A7A773BF770A1FA7F3DBF5CC0903892285BC2AD1C/0/3A8250F8B4617B7DF97D5F420D32F9DFDDEE82EB.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3A8250F8B4617B7DF97D5F420D32F9DFDDEE82EB.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 18 Apr 2025 17:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:d8:7d:6f:7d:43:2e:31:ac:dc:e9:44:30:02:25:30:34:b1:a4:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A8250F8B4617B7DF97D5F420D32F9DFDDEE82EB Validity Not Before: Feb 4 18:17:06 2025 GMT Not After : Feb 3 18:22:06 2026 GMT Subject: CN=993125D07D1D6F31C94F3BB3BF4E386C0EF42CBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8b:21:90:1b:e3:c0:03:14:25:17:72:e7:f7: ae:27:fd:6f:e0:67:b8:d6:c6:58:dc:f0:8d:e2:c1: 8e:f2:7d:bc:95:9e:e1:3d:1a:d3:32:9f:40:35:83: f3:2c:06:9c:4a:ca:1e:54:a9:68:82:7b:66:f1:c4: 3f:f6:2f:a6:cb:d1:3a:b0:1e:0d:cf:51:d1:59:fd: 4f:1f:e8:09:0c:31:86:11:4d:5f:1f:b0:f1:64:87: 01:97:dd:f9:cb:f2:89:c6:12:b6:e8:79:e5:60:46: 47:e2:9f:59:91:62:c1:cc:fa:80:c0:1d:d3:6f:a3: 85:d4:f7:95:5d:9a:3f:de:78:61:11:e1:89:b4:80: 3c:af:01:ee:2b:8a:f0:43:5c:e2:fb:5c:69:d9:f2: 3f:9f:8c:d4:c0:06:9a:38:49:e9:bd:f6:d0:1d:14: 63:48:71:d8:95:76:35:7b:8d:ae:1e:2c:e4:3d:6e: d1:31:69:2e:87:85:12:0b:f3:36:0b:14:6f:36:cc: 23:88:14:7e:51:54:f0:fb:27:c7:77:ca:93:a2:c5: f9:9b:f8:eb:03:51:51:d7:a5:bd:e4:f1:d8:8a:30: bd:ca:57:66:2c:23:d3:da:59:1f:5f:77:23:f8:3e: f2:e8:59:57:84:90:4f:85:b9:20:da:ba:96:5e:34: 69:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:31:25:D0:7D:1D:6F:31:C9:4F:3B:B3:BF:4E:38:6C:0E:F4:2C:BC X509v3 Authority Key Identifier: keyid:3A:82:50:F8:B4:61:7B:7D:F9:7D:5F:42:0D:32:F9:DF:DD:EE:82:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/B305B50C3C45F59BD2BD635A7A773BF770A1FA7F3DBF5CC0903892285BC2AD1C/0/3A8250F8B4617B7DF97D5F420D32F9DFDDEE82EB.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3A8250F8B4617B7DF97D5F420D32F9DFDDEE82EB.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B305B50C3C45F59BD2BD635A7A773BF770A1FA7F3DBF5CC0903892285BC2AD1C/0/3133382e3235352e3135322e302f32322d3234203d3e203237393033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.255.152.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:18:54:6b:af:12:83:99:18:64:66:bd:b4:38:82:f9:3d:50: 7f:97:0a:74:c8:23:e1:b3:b2:95:84:3d:6c:c8:ed:16:9d:65: 45:df:6e:b0:e9:b7:ee:0f:20:cf:17:04:4e:5c:db:d5:47:72: d5:b3:f0:71:94:ad:c8:30:9d:b6:59:dd:a2:6e:31:ce:3d:86: 4f:71:99:81:91:2a:de:21:c2:cb:85:98:85:d8:1f:d0:95:6f: da:5f:44:93:a3:c9:0f:7d:78:cb:7d:2a:df:ad:f7:f9:3d:18: 11:82:bf:bb:ac:bf:cd:26:20:ed:ca:8b:88:6c:ac:15:f1:6a: 89:78:4f:f5:34:3f:a6:7a:8e:ee:77:33:e4:e7:fb:c9:1d:5d: ff:6e:46:cd:57:a6:65:21:64:b5:80:39:2f:9a:dd:a7:b2:35: 85:2f:53:90:2b:69:b2:56:ff:3b:75:56:02:e0:a2:99:87:a0: a1:47:33:2d:32:32:a7:e5:74:ed:66:27:90:d1:49:d7:4d:95: b7:fa:66:fe:05:67:e6:ea:a6:a8:3a:09:d4:16:59:bc:b0:11: 59:86:d2:97:91:ec:82:02:cf:15:27:6a:12:57:7e:a7:33:74: a4:72:d5:9e:41:38:4f:0d:0a:04:84:67:c5:fb:1f:45:1d:e3: 63:9c:91:10 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIURdh9b31DLjGs3OlEMAIlMDSxpBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E4MjUwRjhCNDYxN0I3REY5N0Q1RjQyMEQzMkY5REZE REVFODJFQjAeFw0yNTAyMDQxODE3MDZaFw0yNjAyMDMxODIyMDZaMDMxMTAvBgNV BAMTKDk5MzEyNUQwN0QxRDZGMzFDOTRGM0JCM0JGNEUzODZDMEVGNDJDQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyiyGQG+PAAxQlF3Ln964n/W/g Z7jWxljc8I3iwY7yfbyVnuE9GtMyn0A1g/MsBpxKyh5UqWiCe2bxxD/2L6bL0Tqw Hg3PUdFZ/U8f6AkMMYYRTV8fsPFkhwGX3fnL8onGErboeeVgRkfin1mRYsHM+oDA HdNvo4XU95Vdmj/eeGER4Ym0gDyvAe4rivBDXOL7XGnZ8j+fjNTABpo4Sem99tAd FGNIcdiVdjV7ja4eLOQ9btExaS6HhRIL8zYLFG82zCOIFH5RVPD7J8d3ypOixfmb +OsDUVHXpb3k8diKML3KV2YsI9PaWR9fdyP4PvLoWVeEkE+FuSDaupZeNGmNAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUmTEl0H0dbzHJTzuzv044bA70LLwwHwYDVR0j BBgwFoAUOoJQ+LRhe335fV9CDTL5393uguswDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9CMzA1QjUwQzNDNDVGNTlCRDJCRDYzNUE3QTc3M0JGNzcw QTFGQTdGM0RCRjVDQzA5MDM4OTIyODVCQzJBRDFDLzAvM0E4MjUwRjhCNDYxN0I3 REY5N0Q1RjQyMEQzMkY5REZEREVFODJFQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zQTgyNTBGOEI0NjE3QjdERjk3 RDVGNDIwRDMyRjlERkRERUU4MkVCLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQjMwNUI1MEMzQzQ1RjU5QkQyQkQ2MzVBN0E3NzNCRjc3MEExRkE3RjNE QkY1Q0MwOTAzODkyMjg1QkMyQUQxQy8wLzMxMzMzODJlMzIzNTM1MmUzMTM1MzIy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM3MzkzMDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCiv+Y MA0GCSqGSIb3DQEBCwUAA4IBAQB6GFRrrxKDmRhkZr20OIL5PVB/lwp0yCPhs7KV hD1syO0WnWVF326w6bfuDyDPFwROXNvVR3LVs/BxlK3IMJ22Wd2ibjHOPYZPcZmB kSreIcLLhZiF2B/QlW/aX0STo8kPfXjLfSrfrff5PRgRgr+7rL/NJiDtyouIbKwV 8WqJeE/1ND+meo7udzPk5/vJHV3/bkbNV6ZlIWS1gDkvmt2nsjWFL1OQK2myVv87 dVYC4KKZh6ChRzMtMjKn5XTtZieQ0UnXTZW3+mb+BWfm6qaoOgnUFlm8sBFZhtKX keyCAs8VJ2oSV36nM3SkctWeQThPDQoEhGfF+x9FHeNjnJEQ -----END CERTIFICATE-----Generated at Tue Apr 15 00:22:25 2025 by rpki-client