$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/3230302e38352e3232372e302f32342d3234203d3e203132363834.roa File: 3230302e38352e3232372e302f32342d3234203d3e203132363834.roa (raw, json) Hash identifier: dKvnb8RZZ+Cu5htVIRWjPfZzZTE/99FiemFwOrDD7pg= Subject key identifier: 53:39:FA:EB:55:01:44:D2:52:45:B0:37:B9:9D:26:ED:DE:30:1A:CB Certificate issuer: /CN=CEFE34210764BCD42CB6C0FCD93828A016623EF1 Certificate serial: 7CD679E7249492E78BA6A0325346BA9E45ED55DD Authority key identifier: CE:FE:34:21:07:64:BC:D4:2C:B6:C0:FC:D9:38:28:A0:16:62:3E:F1 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFE34210764BCD42CB6C0FCD93828A016623EF1.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/3230302e38352e3232372e302f32342d3234203d3e203132363834.roa Signing time: Tue 04 Feb 2025 18:00:24 +0000 ROA not before: Tue 04 Feb 2025 17:55:24 +0000 ROA not after: Tue 03 Feb 2026 18:00:24 +0000 asID: 12684 IP address blocks: 200.85.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/CEFE34210764BCD42CB6C0FCD93828A016623EF1.crl rsync://repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/CEFE34210764BCD42CB6C0FCD93828A016623EF1.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFE34210764BCD42CB6C0FCD93828A016623EF1.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 26 Apr 2025 06:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d6:79:e7:24:94:92:e7:8b:a6:a0:32:53:46:ba:9e:45:ed:55:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEFE34210764BCD42CB6C0FCD93828A016623EF1 Validity Not Before: Feb 4 17:55:24 2025 GMT Not After : Feb 3 18:00:24 2026 GMT Subject: CN=5339FAEB550144D25245B037B99D26EDDE301ACB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:89:cf:15:97:3c:a5:77:54:40:e2:3f:90:1f: 85:30:eb:55:a7:47:ad:60:9f:79:5a:d6:5e:ad:15: 0a:42:10:3a:6d:cb:c4:c8:f2:cd:ab:c8:9f:be:75: 7f:79:1f:06:8e:13:89:44:3e:38:36:f5:82:6b:95: 49:78:04:d6:61:4a:02:da:e8:a4:ed:0c:63:b9:f8: 2c:9a:24:99:da:77:ef:93:7a:d1:12:4d:e7:de:7d: 9d:2d:16:18:57:95:d6:b5:c9:8f:40:c2:ba:f8:eb: 79:eb:f1:df:f3:66:a2:0e:82:56:c6:dc:2b:29:a9: 9a:e4:15:67:51:53:ef:21:85:bc:6c:3b:92:9b:91: 9e:a1:0e:6a:b8:9f:d1:2d:d1:4d:a9:f7:ea:81:b4: 2f:c3:67:3c:4b:96:cc:f0:c6:61:f5:09:99:51:2a: c1:7d:0c:07:9f:da:0b:71:81:66:00:fc:f0:9d:6d: 6e:c8:b6:0b:52:1d:ff:43:c7:68:8d:f2:60:f1:f4: a3:23:79:cf:1d:d6:39:37:09:07:9f:c0:34:61:eb: 7f:dd:c6:50:16:dd:bb:68:cf:d1:85:f3:35:9d:9c: 3f:42:5e:79:63:b8:21:77:d5:13:31:5a:35:20:d2: 57:6d:c9:61:6a:d1:7f:5b:e0:b4:86:de:5a:4b:15: 49:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:39:FA:EB:55:01:44:D2:52:45:B0:37:B9:9D:26:ED:DE:30:1A:CB X509v3 Authority Key Identifier: keyid:CE:FE:34:21:07:64:BC:D4:2C:B6:C0:FC:D9:38:28:A0:16:62:3E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/CEFE34210764BCD42CB6C0FCD93828A016623EF1.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFE34210764BCD42CB6C0FCD93828A016623EF1.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/3230302e38352e3232372e302f32342d3234203d3e203132363834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.85.227.0/24 Signature Algorithm: sha256WithRSAEncryption 81:67:cb:21:d6:e4:ca:4f:4d:3b:4c:aa:e4:b2:fa:39:a2:f0: 04:14:b8:41:bd:52:75:78:0d:8e:16:f1:4e:9a:46:5f:af:88: 0b:59:db:e9:c5:42:25:56:2c:fa:c4:98:d9:a7:69:76:ab:bb: 63:d0:38:19:28:f4:9e:d3:c3:6f:d9:b8:91:2a:b3:db:7a:12: 45:e0:42:9a:c0:12:6a:6b:05:e6:31:3a:15:b2:d2:db:bc:e8: 6a:54:14:74:ac:7c:98:66:d8:5b:69:12:93:2d:30:2d:3d:bd: a3:92:d7:9c:09:7b:39:37:af:62:b7:c2:ca:2f:3c:62:40:25: 92:49:62:b8:23:2c:54:a4:5a:18:d0:92:1d:8f:5a:54:24:9d: a2:58:14:11:ea:6f:7a:4d:3a:87:72:af:09:1c:be:f2:02:0d: c7:8a:dd:e1:5b:f4:f9:23:1b:2d:0d:be:d4:75:3b:a5:cc:55: 27:14:30:b1:33:24:b6:39:c6:13:25:bf:c8:c8:36:d9:39:db: da:02:ff:0a:e3:de:4c:3a:04:7d:97:bb:67:bb:a0:0e:3f:a3: 25:cd:ea:0d:75:e5:4c:48:47:50:e3:53:0e:ba:4a:07:a5:1e: ee:4c:10:41:20:42:9b:dc:47:56:8c:df:a7:1c:fd:12:6f:86: 2c:f0:f3:9d -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgIUfNZ55ySUkueLpqAyU0a6nkXtVd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VGRTM0MjEwNzY0QkNENDJDQjZDMEZDRDkzODI4QTAx NjYyM0VGMTAeFw0yNTAyMDQxNzU1MjRaFw0yNjAyMDMxODAwMjRaMDMxMTAvBgNV BAMTKDUzMzlGQUVCNTUwMTQ0RDI1MjQ1QjAzN0I5OUQyNkVEREUzMDFBQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkic8Vlzyld1RA4j+QH4Uw61Wn R61gn3la1l6tFQpCEDpty8TI8s2ryJ++dX95HwaOE4lEPjg29YJrlUl4BNZhSgLa 6KTtDGO5+CyaJJnad++TetESTefefZ0tFhhXlda1yY9Awrr463nr8d/zZqIOglbG 3CspqZrkFWdRU+8hhbxsO5KbkZ6hDmq4n9Et0U2p9+qBtC/DZzxLlszwxmH1CZlR KsF9DAef2gtxgWYA/PCdbW7ItgtSHf9Dx2iN8mDx9KMjec8d1jk3CQefwDRh63/d xlAW3btoz9GF8zWdnD9CXnljuCF31RMxWjUg0ldtyWFq0X9b4LSG3lpLFUkpAgMB AAGjggLIMIICxDAdBgNVHQ4EFgQUUzn661UBRNJSRbA3uZ0m7d4wGsswHwYDVR0j BBgwFoAUzv40IQdkvNQstsD82TgooBZiPvEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9DRTg3ODc1Nzk1RDUwMTU1RkU3NEM0NUVFQjUxMTYwN0JE MDU0MzU2MEJGRTkxODE0MEYyNUVFMjU0OEIzNEU1LzAvQ0VGRTM0MjEwNzY0QkNE NDJDQjZDMEZDRDkzODI4QTAxNjYyM0VGMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DRUZFMzQyMTA3NjRCQ0Q0MkNC NkMwRkNEOTM4MjhBMDE2NjIzRUYxLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQ0U4Nzg3NTc5NUQ1MDE1NUZFNzRDNDVFRUI1MTE2MDdCRDA1NDM1NjBC RkU5MTgxNDBGMjVFRTI1NDhCMzRFNS8wLzMyMzAzMDJlMzgzNTJlMzIzMjM3MmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMjM2MzgzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMhV4zAN BgkqhkiG9w0BAQsFAAOCAQEAgWfLIdbkyk9NO0yq5LL6OaLwBBS4Qb1SdXgNjhbx TppGX6+IC1nb6cVCJVYs+sSY2adpdqu7Y9A4GSj0ntPDb9m4kSqz23oSReBCmsAS amsF5jE6FbLS27zoalQUdKx8mGbYW2kSky0wLT29o5LXnAl7OTevYrfCyi88YkAl kkliuCMsVKRaGNCSHY9aVCSdolgUEepvek06h3KvCRy+8gINx4rd4Vv0+SMbLQ2+ 1HU7pcxVJxQwsTMktjnGEyW/yMg22Tnb2gL/CuPeTDoEfZe7Z7ugDj+jJc3qDXXl TEhHUONTDrpKB6Ue7kwQQSBCm9xHVozfpxz9Em+GLPDznQ== -----END CERTIFICATE-----Generated at Tue Apr 22 21:52:31 2025 by rpki-client