$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BBFF44AD729E5CB57D46B28E36D5626B8B3B7DDD3B61642C8231B6750BB89D5E/0/3133382e3132312e38342e302f32322d3234203d3e20323633373839.roa File: 3133382e3132312e38342e302f32322d3234203d3e20323633373839.roa (raw, json) Hash identifier: h7qmTM5SW4GL1Xv+HEPklZUtQVlQJPFAthdas4UwgRw= Subject key identifier: 28:6A:A6:20:3B:76:42:C3:3D:61:5B:14:9C:61:1C:C5:F5:6D:83:89 Certificate issuer: /CN=DA177D3E573B23B5A1C25781D96D90D3EA02130C Certificate serial: 01211366A903418D9DB282D03F08FE5CC6EFB653 Authority key identifier: DA:17:7D:3E:57:3B:23:B5:A1:C2:57:81:D9:6D:90:D3:EA:02:13:0C Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DA177D3E573B23B5A1C25781D96D90D3EA02130C.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BBFF44AD729E5CB57D46B28E36D5626B8B3B7DDD3B61642C8231B6750BB89D5E/0/3133382e3132312e38342e302f32322d3234203d3e20323633373839.roa Signing time: Tue 05 Mar 2024 18:00:36 +0000 ROA not before: Tue 05 Mar 2024 17:55:36 +0000 ROA not after: Tue 04 Mar 2025 18:00:36 +0000 asID: 263789 IP address blocks: 138.121.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/BBFF44AD729E5CB57D46B28E36D5626B8B3B7DDD3B61642C8231B6750BB89D5E/0/DA177D3E573B23B5A1C25781D96D90D3EA02130C.crl rsync://repository.lacnic.net/rpki/lacnic/BBFF44AD729E5CB57D46B28E36D5626B8B3B7DDD3B61642C8231B6750BB89D5E/0/DA177D3E573B23B5A1C25781D96D90D3EA02130C.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DA177D3E573B23B5A1C25781D96D90D3EA02130C.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 23 Nov 2024 22:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:21:13:66:a9:03:41:8d:9d:b2:82:d0:3f:08:fe:5c:c6:ef:b6:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA177D3E573B23B5A1C25781D96D90D3EA02130C Validity Not Before: Mar 5 17:55:36 2024 GMT Not After : Mar 4 18:00:36 2025 GMT Subject: CN=286AA6203B7642C33D615B149C611CC5F56D8389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c3:99:62:50:3b:24:31:af:2f:1d:a3:4c:11: 8a:fd:d2:8f:c9:c4:0e:37:81:a1:20:c7:92:04:e7: 87:1f:dd:20:ed:e7:a3:4e:7c:3d:5d:b7:e8:60:ac: 50:14:1e:92:48:08:1a:84:ba:af:16:f1:03:a2:91: 06:99:4a:26:95:b9:58:21:ea:05:74:c9:14:46:98: c3:8b:8f:42:e7:c6:38:f5:7e:54:8c:84:80:48:4c: 6e:3a:12:f8:3f:ed:8b:c9:8c:04:a3:11:b3:84:a1: b7:8b:05:c6:7d:76:d0:41:fb:b7:71:9a:2a:ae:dd: 03:28:95:0f:53:3a:ba:5a:64:9d:b4:1e:46:2e:7b: 42:e6:b3:b1:21:e0:dc:7b:f2:04:bb:65:57:01:cf: 9f:4b:11:45:67:ba:11:2d:ae:5b:7e:39:cf:eb:e5: fe:53:f5:fe:00:af:15:8e:06:4e:f4:9a:6b:e7:21: ec:12:fc:42:f0:bc:30:64:70:ad:a2:55:83:a4:f5: b0:ca:e1:eb:7a:02:3f:f8:e6:2b:ca:2f:8f:03:ca: 3a:e1:e7:5d:a4:07:79:6f:c9:37:cb:01:20:12:6b: 5a:be:1f:c3:df:64:bb:28:4c:65:a5:da:ef:99:7f: 44:dc:86:f4:cd:9b:95:7e:bb:ab:28:de:6a:c2:cf: 49:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6A:A6:20:3B:76:42:C3:3D:61:5B:14:9C:61:1C:C5:F5:6D:83:89 X509v3 Authority Key Identifier: keyid:DA:17:7D:3E:57:3B:23:B5:A1:C2:57:81:D9:6D:90:D3:EA:02:13:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/BBFF44AD729E5CB57D46B28E36D5626B8B3B7DDD3B61642C8231B6750BB89D5E/0/DA177D3E573B23B5A1C25781D96D90D3EA02130C.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DA177D3E573B23B5A1C25781D96D90D3EA02130C.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BBFF44AD729E5CB57D46B28E36D5626B8B3B7DDD3B61642C8231B6750BB89D5E/0/3133382e3132312e38342e302f32322d3234203d3e20323633373839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.84.0/22 Signature Algorithm: sha256WithRSAEncryption db:3a:63:36:48:85:90:41:d3:4c:9f:cb:21:4f:b1:57:3f:be: 8e:8b:c2:2a:91:c2:af:31:35:33:a7:aa:3f:c1:ec:ba:6c:23: 39:e7:3c:95:02:da:95:9c:90:6c:c7:2a:4a:06:96:cd:15:c2: 17:e3:54:38:70:64:ab:3d:69:28:38:09:d0:c8:de:c2:18:f4: e3:07:3e:02:a6:b8:44:2b:8f:40:1d:97:c6:df:fe:cf:bf:8d: ad:03:eb:c5:f6:e7:28:65:8f:78:5b:69:18:e1:46:2e:b6:43: 64:c6:e6:a2:b0:66:34:4c:97:87:e8:63:01:b8:49:75:1b:4f: eb:f7:a9:4c:7e:47:dd:ce:e1:8d:2d:33:57:0c:1b:73:99:85: 7c:ac:a0:d8:6e:ea:a4:ba:05:e3:1b:7c:fa:27:14:22:7c:cf: c9:ea:88:91:78:e9:96:d1:e6:2e:f4:1e:7e:1e:6f:ef:2d:d8: 9f:cf:53:41:0b:87:5e:e3:4e:2c:6d:ee:0d:21:0a:2a:8e:a5: c6:a0:e5:09:c5:fe:23:cf:14:26:23:28:07:35:2e:ed:90:a5: 2b:6f:54:d7:90:31:80:0a:ba:2a:ba:2d:67:03:99:17:60:d3: 1d:ab:6e:ff:0f:48:4d:c4:d8:74:67:58:37:5a:24:ae:61:ee: ae:e5:22:85 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUASETZqkDQY2dsoLQPwj+XMbvtlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREExNzdEM0U1NzNCMjNCNUExQzI1NzgxRDk2RDkwRDNF QTAyMTMwQzAeFw0yNDAzMDUxNzU1MzZaFw0yNTAzMDQxODAwMzZaMDMxMTAvBgNV BAMTKDI4NkFBNjIwM0I3NjQyQzMzRDYxNUIxNDlDNjExQ0M1RjU2RDgzODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMw5liUDskMa8vHaNMEYr90o/J xA43gaEgx5IE54cf3SDt56NOfD1dt+hgrFAUHpJICBqEuq8W8QOikQaZSiaVuVgh 6gV0yRRGmMOLj0Lnxjj1flSMhIBITG46Evg/7YvJjASjEbOEobeLBcZ9dtBB+7dx miqu3QMolQ9TOrpaZJ20HkYue0Lms7Eh4Nx78gS7ZVcBz59LEUVnuhEtrlt+Oc/r 5f5T9f4ArxWOBk70mmvnIewS/ELwvDBkcK2iVYOk9bDK4et6Aj/45ivKL48Dyjrh 512kB3lvyTfLASASa1q+H8PfZLsoTGWl2u+Zf0TchvTNm5V+u6so3mrCz0ldAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUKGqmIDt2QsM9YVsUnGEcxfVtg4kwHwYDVR0j BBgwFoAU2hd9Plc7I7WhwleB2W2Q0+oCEwwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9CQkZGNDRBRDcyOUU1Q0I1N0Q0NkIyOEUzNkQ1NjI2QjhC M0I3REREM0I2MTY0MkM4MjMxQjY3NTBCQjg5RDVFLzAvREExNzdEM0U1NzNCMjNC NUExQzI1NzgxRDk2RDkwRDNFQTAyMTMwQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EQTE3N0QzRTU3M0IyM0I1QTFD MjU3ODFEOTZEOTBEM0VBMDIxMzBDLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQkJGRjQ0QUQ3MjlFNUNCNTdENDZCMjhFMzZENTYyNkI4QjNCN0RERDNC NjE2NDJDODIzMUI2NzUwQkI4OUQ1RS8wLzMxMzMzODJlMzEzMjMxMmUzODM0MmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjMzMzczODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCinlU MA0GCSqGSIb3DQEBCwUAA4IBAQDbOmM2SIWQQdNMn8shT7FXP76Oi8IqkcKvMTUz p6o/wey6bCM55zyVAtqVnJBsxypKBpbNFcIX41Q4cGSrPWkoOAnQyN7CGPTjBz4C prhEK49AHZfG3/7Pv42tA+vF9ucoZY94W2kY4UYutkNkxuaisGY0TJeH6GMBuEl1 G0/r96lMfkfdzuGNLTNXDBtzmYV8rKDYbuqkugXjG3z6JxQifM/J6oiReOmW0eYu 9B5+Hm/vLdifz1NBC4de404sbe4NIQoqjqXGoOUJxf4jzxQmIygHNS7tkKUrb1TX kDGACroqui1nA5kXYNMdq27/D0hNxNh0Z1g3WiSuYe6u5SKF -----END CERTIFICATE-----Generated at Wed Nov 20 06:22:16 2024 by rpki-client on console-ams.rpki-client.org