$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CD853A84FEB5402EC59B5520155508D45AF1642FC41720AD772D816942485E07/0/323830333a643232303a3a2f33322d3438203d3e203532343638.roa File: 323830333a643232303a3a2f33322d3438203d3e203532343638.roa (raw, json) Hash identifier: skZTgXX4/pvkpFU1ERigLoQuhfJfnqqFkoVgBSAxNsM= Subject key identifier: 15:54:71:F1:24:2B:46:E8:0D:63:01:78:B1:7E:F7:55:39:F7:57:31 Certificate issuer: /CN=B1AF8AD0EBD307772978AE5EFFE0CBD707FCAE66 Certificate serial: 67B6BA569AB8146BE4415066CD9047D4DC18961B Authority key identifier: B1:AF:8A:D0:EB:D3:07:77:29:78:AE:5E:FF:E0:CB:D7:07:FC:AE:66 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B1AF8AD0EBD307772978AE5EFFE0CBD707FCAE66.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CD853A84FEB5402EC59B5520155508D45AF1642FC41720AD772D816942485E07/0/323830333a643232303a3a2f33322d3438203d3e203532343638.roa Signing time: Tue 04 Feb 2025 18:54:33 +0000 ROA not before: Tue 04 Feb 2025 18:49:33 +0000 ROA not after: Tue 03 Feb 2026 18:54:33 +0000 asID: 52468 IP address blocks: 2803:d220::/32 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/CD853A84FEB5402EC59B5520155508D45AF1642FC41720AD772D816942485E07/0/B1AF8AD0EBD307772978AE5EFFE0CBD707FCAE66.crl rsync://repository.lacnic.net/rpki/lacnic/CD853A84FEB5402EC59B5520155508D45AF1642FC41720AD772D816942485E07/0/B1AF8AD0EBD307772978AE5EFFE0CBD707FCAE66.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B1AF8AD0EBD307772978AE5EFFE0CBD707FCAE66.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:b6:ba:56:9a:b8:14:6b:e4:41:50:66:cd:90:47:d4:dc:18:96:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1AF8AD0EBD307772978AE5EFFE0CBD707FCAE66 Validity Not Before: Feb 4 18:49:33 2025 GMT Not After : Feb 3 18:54:33 2026 GMT Subject: CN=155471F1242B46E80D630178B17EF75539F75731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cd:34:26:ed:57:b3:81:44:62:a9:60:23:5f: 64:13:84:61:24:70:d3:c1:e9:c0:c5:ef:86:6d:9e: 93:69:49:e5:86:d4:e4:49:18:28:d2:f3:8d:3a:5e: 27:28:45:c4:cd:52:fe:24:1f:e5:c1:de:6a:70:e8: 1c:0e:72:27:42:73:96:ea:41:da:9a:46:20:88:1d: df:5f:d0:bc:3f:74:00:7a:36:93:b7:ae:47:6a:49: 24:e7:69:f1:14:ea:d3:0c:3c:02:30:0f:5a:ce:66: 2c:f5:f0:0a:b4:fd:db:88:b2:7a:33:ca:2e:84:4b: 4b:98:e9:64:23:ca:48:cf:f7:5d:24:05:da:cd:a9: 5f:77:f4:0f:af:8b:a8:50:e5:88:e5:89:c8:d2:db: 51:19:40:e4:b7:b4:81:ce:4f:dd:51:b7:c3:a8:e6: 32:4f:a8:f2:a7:40:08:27:a0:cf:65:94:b0:59:a9: a7:d4:46:6a:a6:07:2e:e4:27:66:2b:bc:f8:ff:c0: 8d:21:63:85:66:81:d7:25:32:05:b8:5a:4c:9e:6d: e0:9a:2e:13:36:05:f4:22:be:e1:b9:46:ad:c4:8c: bb:87:73:23:72:e0:27:aa:3f:d2:08:88:a7:32:a4: d9:f7:71:90:80:06:b9:75:d1:b2:72:01:a3:b2:09: fc:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:54:71:F1:24:2B:46:E8:0D:63:01:78:B1:7E:F7:55:39:F7:57:31 X509v3 Authority Key Identifier: keyid:B1:AF:8A:D0:EB:D3:07:77:29:78:AE:5E:FF:E0:CB:D7:07:FC:AE:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/CD853A84FEB5402EC59B5520155508D45AF1642FC41720AD772D816942485E07/0/B1AF8AD0EBD307772978AE5EFFE0CBD707FCAE66.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B1AF8AD0EBD307772978AE5EFFE0CBD707FCAE66.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CD853A84FEB5402EC59B5520155508D45AF1642FC41720AD772D816942485E07/0/323830333a643232303a3a2f33322d3438203d3e203532343638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:d220::/32 Signature Algorithm: sha256WithRSAEncryption c0:82:d1:c2:a0:88:62:fe:df:b8:e0:40:98:d1:9e:61:36:12: fb:65:13:4b:28:50:39:e1:7e:28:a4:d5:1b:4a:a9:c4:d7:e7: 75:8a:1e:0d:b6:e1:84:b8:0d:3b:fb:d2:5a:3b:25:ac:e9:60: 91:32:ed:e3:2e:95:01:15:94:29:cd:37:7b:b5:10:09:60:bb: a7:fd:d4:73:83:4b:cc:31:ca:04:3a:ae:b9:ca:99:91:c6:17: 58:be:5f:9a:50:50:be:d6:46:1e:79:f0:de:34:3c:f2:1d:07: 39:09:0f:5c:c1:e5:10:44:3e:ad:f8:64:ec:f6:6a:66:f3:10: f9:22:74:c2:cc:3d:1d:44:09:e2:cc:34:73:c0:66:aa:68:8b: 75:48:5c:80:e7:9c:2b:4a:a6:89:e8:38:53:53:23:04:15:eb: 6a:cb:4c:c8:cd:d9:33:37:50:ee:7f:3f:2e:b7:1f:fc:2a:c4: 01:f4:af:f6:7d:b9:47:41:24:8c:75:f2:46:26:94:6f:80:27: 23:cb:eb:c4:39:bf:cf:f3:70:9f:82:e8:d6:a4:e0:9b:03:46: 11:33:f4:df:f2:66:c9:d4:39:6b:c2:b8:6e:7a:8f:3a:a1:7d: a4:e2:8d:86:fa:e5:a5:88:99:fa:bd:a1:bc:4a:27:e9:fe:d9: 12:3f:e2:61 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIUZ7a6Vpq4FGvkQVBmzZBH1NwYlhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFBRjhBRDBFQkQzMDc3NzI5NzhBRTVFRkZFMENCRDcw N0ZDQUU2NjAeFw0yNTAyMDQxODQ5MzNaFw0yNjAyMDMxODU0MzNaMDMxMTAvBgNV BAMTKDE1NTQ3MUYxMjQyQjQ2RTgwRDYzMDE3OEIxN0VGNzU1MzlGNzU3MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtzTQm7VezgURiqWAjX2QThGEk cNPB6cDF74ZtnpNpSeWG1ORJGCjS8406XicoRcTNUv4kH+XB3mpw6BwOcidCc5bq QdqaRiCIHd9f0Lw/dAB6NpO3rkdqSSTnafEU6tMMPAIwD1rOZiz18Aq0/duIsnoz yi6ES0uY6WQjykjP910kBdrNqV939A+vi6hQ5YjlicjS21EZQOS3tIHOT91Rt8Oo 5jJPqPKnQAgnoM9llLBZqafURmqmBy7kJ2YrvPj/wI0hY4VmgdclMgW4WkyebeCa LhM2BfQivuG5Rq3EjLuHcyNy4CeqP9IIiKcypNn3cZCABrl10bJyAaOyCfyRAgMB AAGjggLHMIICwzAdBgNVHQ4EFgQUFVRx8SQrRugNYwF4sX73VTn3VzEwHwYDVR0j BBgwFoAUsa+K0OvTB3cpeK5e/+DL1wf8rmYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9DRDg1M0E4NEZFQjU0MDJFQzU5QjU1MjAxNTU1MDhENDVB RjE2NDJGQzQxNzIwQUQ3NzJEODE2OTQyNDg1RTA3LzAvQjFBRjhBRDBFQkQzMDc3 NzI5NzhBRTVFRkZFMENCRDcwN0ZDQUU2Ni5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CMUFGOEFEMEVCRDMwNzc3Mjk3 OEFFNUVGRkUwQ0JENzA3RkNBRTY2LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQ0Q4NTNBODRGRUI1NDAyRUM1OUI1NTIwMTU1NTA4RDQ1QUYxNjQyRkM0 MTcyMEFENzcyRDgxNjk0MjQ4NUUwNy8wLzMyMzgzMDMzM2E2NDMyMzIzMDNhM2Ey ZjMzMzIyZDM0MzgyMDNkM2UyMDM1MzIzNDM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA9IgMA0G CSqGSIb3DQEBCwUAA4IBAQDAgtHCoIhi/t+44ECY0Z5hNhL7ZRNLKFA54X4opNUb SqnE1+d1ih4NtuGEuA07+9JaOyWs6WCRMu3jLpUBFZQpzTd7tRAJYLun/dRzg0vM McoEOq65ypmRxhdYvl+aUFC+1kYeefDeNDzyHQc5CQ9cweUQRD6t+GTs9mpm8xD5 InTCzD0dRAnizDRzwGaqaIt1SFyA55wrSqaJ6DhTUyMEFetqy0zIzdkzN1Dufz8u tx/8KsQB9K/2fblHQSSMdfJGJpRvgCcjy+vEOb/P83CfgujWpOCbA0YRM/Tf8mbJ 1Dlrwrhueo86oX2k4o2G+uWliJn6vaG8Sifp/tkSP+Jh -----END CERTIFICATE-----Generated at Sat Apr 5 16:30:41 2025 by rpki-client