$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/3136382e3139342e3134302e302f32342d3234203d3e20323634373534.roa File: 3136382e3139342e3134302e302f32342d3234203d3e20323634373534.roa (raw, json) Hash identifier: up/dIPIE/fXOa3f9g2IqT77ot+Xaq2qq/Kr9MpKyTNQ= Subject key identifier: D2:75:45:EA:63:37:26:D9:23:EA:4B:E7:75:8B:84:96:59:C0:1A:FD Certificate issuer: /CN=AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A Certificate serial: 29AFE1B3F37D45573E5EA5E306840D3EA1136475 Authority key identifier: AC:7B:8B:A3:D0:5E:21:1C:F7:69:7D:C3:8D:BB:75:91:FC:D3:07:5A Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/3136382e3139342e3134302e302f32342d3234203d3e20323634373534.roa Signing time: Tue 04 Feb 2025 18:32:38 +0000 ROA not before: Tue 04 Feb 2025 18:27:38 +0000 ROA not after: Tue 03 Feb 2026 18:32:38 +0000 asID: 264754 IP address blocks: 168.194.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.crl rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 20:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:af:e1:b3:f3:7d:45:57:3e:5e:a5:e3:06:84:0d:3e:a1:13:64:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A Validity Not Before: Feb 4 18:27:38 2025 GMT Not After : Feb 3 18:32:38 2026 GMT Subject: CN=D27545EA633726D923EA4BE7758B849659C01AFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e6:87:41:b7:86:f4:f4:27:23:1b:98:e8:46: 1d:fe:ac:65:5d:81:12:cc:33:42:92:b5:55:33:ae: e4:4f:50:82:bc:3f:ee:42:83:09:2d:20:e2:29:1f: 33:09:6b:ec:3c:6b:04:90:b1:fa:8e:69:1c:b3:b4: ee:b7:97:2a:f8:71:69:d2:83:ae:f5:64:6b:d0:98: 2d:10:03:f4:c7:d8:b5:cb:14:64:01:24:13:f4:b7: 9f:68:a3:e1:18:11:3c:56:7b:a5:f0:9f:ec:2e:7a: 94:30:5d:b7:75:af:7c:13:4e:7b:da:cb:a0:bb:28: 5e:a7:02:19:73:5f:3f:d7:dc:cb:41:13:e3:fc:b3: 7a:cf:0b:ae:a2:3e:69:63:3a:29:8c:e6:9e:14:18: 41:16:84:bf:cc:eb:68:d5:96:73:40:31:c4:0d:11: 9a:a4:c1:a3:1b:bd:77:49:b7:20:6c:59:b3:d0:56: de:47:f7:70:ea:99:5a:ff:d4:68:e9:c5:ff:f6:34: f7:ee:e1:a6:a8:44:77:14:d1:d1:64:df:27:ab:01: dc:ca:81:4e:30:33:8b:d5:30:54:58:26:3b:9f:70: d9:b8:0f:36:a1:2a:e0:51:78:14:e4:e5:2a:8b:64: 42:8f:2b:d4:7e:e7:e2:7b:05:40:79:35:ca:c4:67: c0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:75:45:EA:63:37:26:D9:23:EA:4B:E7:75:8B:84:96:59:C0:1A:FD X509v3 Authority Key Identifier: keyid:AC:7B:8B:A3:D0:5E:21:1C:F7:69:7D:C3:8D:BB:75:91:FC:D3:07:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/3136382e3139342e3134302e302f32342d3234203d3e20323634373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.194.140.0/24 Signature Algorithm: sha256WithRSAEncryption 92:31:26:4d:fd:fe:8b:1a:11:04:08:e3:3e:6b:2e:1b:fc:45: 1c:b9:49:f2:29:dd:45:79:b8:74:ef:a1:42:a2:ba:c3:c5:b6: 54:f5:77:2c:58:ff:06:d8:a2:51:8d:3a:97:fc:ec:1e:01:4e: c8:47:b9:a9:34:ff:ad:e1:b2:81:3d:ae:a6:48:37:73:1f:f7: 41:73:cf:a9:25:60:15:73:66:3c:df:cd:ed:6c:ee:e7:d6:20: a1:1c:06:47:2a:98:81:b3:51:f0:ac:a5:b0:c3:75:cf:8b:29: ec:b2:b8:b6:94:95:a6:c3:67:ea:cf:0b:a4:86:25:be:32:2d: 5f:8a:53:3f:97:8a:1a:62:85:5e:f0:58:fd:fc:1c:34:b6:ae: 68:49:ca:68:dd:83:ad:74:d3:11:fa:e5:45:42:8c:58:e0:26: 9b:74:45:a0:41:3d:3e:71:e4:3a:9b:4f:1c:07:84:c5:96:6c: 5f:1a:96:6c:1f:ea:ba:30:08:56:b9:84:ed:31:dd:36:4b:45: 14:57:a9:b1:6b:50:9d:05:76:d7:21:4f:d3:35:f9:40:bc:18: 0b:fc:25:37:9f:a4:3e:41:b1:32:a4:68:c9:ca:82:df:4f:8b: e4:3d:0a:a7:c6:7e:e8:6f:70:3a:da:7c:01:30:44:7e:7d:99: c7:0f:32:b5 -----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgIUKa/hs/N9RVc+XqXjBoQNPqETZHUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUM3QjhCQTNEMDVFMjExQ0Y3Njk3REMzOERCQjc1OTFG Q0QzMDc1QTAeFw0yNTAyMDQxODI3MzhaFw0yNjAyMDMxODMyMzhaMDMxMTAvBgNV BAMTKEQyNzU0NUVBNjMzNzI2RDkyM0VBNEJFNzc1OEI4NDk2NTlDMDFBRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa5odBt4b09CcjG5joRh3+rGVd gRLMM0KStVUzruRPUIK8P+5CgwktIOIpHzMJa+w8awSQsfqOaRyztO63lyr4cWnS g671ZGvQmC0QA/TH2LXLFGQBJBP0t59oo+EYETxWe6Xwn+wuepQwXbd1r3wTTnva y6C7KF6nAhlzXz/X3MtBE+P8s3rPC66iPmljOimM5p4UGEEWhL/M62jVlnNAMcQN EZqkwaMbvXdJtyBsWbPQVt5H93DqmVr/1Gjpxf/2NPfu4aaoRHcU0dFk3yerAdzK gU4wM4vVMFRYJjufcNm4DzahKuBReBTk5SqLZEKPK9R+5+J7BUB5NcrEZ8AFAgMB AAGjggLMMIICyDAdBgNVHQ4EFgQU0nVF6mM3Jtkj6kvndYuEllnAGv0wHwYDVR0j BBgwFoAUrHuLo9BeIRz3aX3Djbt1kfzTB1owDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9DMENFOUFBMEJDMjk3NjBBMTNGMUMxRkJBREJDQUE1NjRE MDk0MzEyRTcwMDI5REZFNkUwRDBBRkRDODg0MDVGLzAvQUM3QjhCQTNEMDVFMjEx Q0Y3Njk3REMzOERCQjc1OTFGQ0QzMDc1QS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BQzdCOEJBM0QwNUUyMTFDRjc2 OTdEQzM4REJCNzU5MUZDRDMwNzVBLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQzBDRTlBQTBCQzI5NzYwQTEzRjFDMUZCQURCQ0FBNTY0RDA5NDMxMkU3 MDAyOURGRTZFMEQwQUZEQzg4NDA1Ri8wLzMxMzYzODJlMzEzOTM0MmUzMTM0MzAy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2MzQzNzM1MzQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACo wowwDQYJKoZIhvcNAQELBQADggEBAJIxJk39/osaEQQI4z5rLhv8RRy5SfIp3UV5 uHTvoUKiusPFtlT1dyxY/wbYolGNOpf87B4BTshHuak0/63hsoE9rqZIN3Mf90Fz z6klYBVzZjzfze1s7ufWIKEcBkcqmIGzUfCspbDDdc+LKeyyuLaUlabDZ+rPC6SG Jb4yLV+KUz+XihpihV7wWP38HDS2rmhJymjdg6100xH65UVCjFjgJpt0RaBBPT5x 5DqbTxwHhMWWbF8almwf6rowCFa5hO0x3TZLRRRXqbFrUJ0FdtchT9M1+UC8GAv8 JTefpD5BsTKkaMnKgt9Pi+Q9CqfGfuhvcDrafAEwRH59mccPMrU= -----END CERTIFICATE-----Generated at Sun Apr 6 13:09:24 2025 by rpki-client