$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CE963A74AC1D241E8E1E975B8C9C1CBE3FBABFC1133632181ED854E9EBDAA940/0/34352e3136382e3233322e302f32322d3234203d3e203238333934.roa File: 34352e3136382e3233322e302f32322d3234203d3e203238333934.roa (raw, json) Hash identifier: FCaD6jc+f182OMeUehAANG8hdzqIByGWKwMhV8nP+xQ= Subject key identifier: 89:A7:A3:D1:01:AC:2B:1A:24:D3:A7:EE:4B:42:EA:60:02:DA:39:1F Certificate issuer: /CN=4ED2921D1B30A3E0F69AB2E1A0F97B02BA590720 Certificate serial: 59FC2875C02D4FD90DF26A69D114D785CF9BBA14 Authority key identifier: 4E:D2:92:1D:1B:30:A3:E0:F6:9A:B2:E1:A0:F9:7B:02:BA:59:07:20 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4ED2921D1B30A3E0F69AB2E1A0F97B02BA590720.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CE963A74AC1D241E8E1E975B8C9C1CBE3FBABFC1133632181ED854E9EBDAA940/0/34352e3136382e3233322e302f32322d3234203d3e203238333934.roa Signing time: Tue 20 Aug 2024 01:00:00 +0000 ROA not before: Tue 20 Aug 2024 00:55:00 +0000 ROA not after: Tue 19 Aug 2025 01:00:00 +0000 asID: 28394 IP address blocks: 45.168.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/CE963A74AC1D241E8E1E975B8C9C1CBE3FBABFC1133632181ED854E9EBDAA940/0/4ED2921D1B30A3E0F69AB2E1A0F97B02BA590720.crl rsync://repository.lacnic.net/rpki/lacnic/CE963A74AC1D241E8E1E975B8C9C1CBE3FBABFC1133632181ED854E9EBDAA940/0/4ED2921D1B30A3E0F69AB2E1A0F97B02BA590720.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4ED2921D1B30A3E0F69AB2E1A0F97B02BA590720.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 23 Nov 2024 22:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:fc:28:75:c0:2d:4f:d9:0d:f2:6a:69:d1:14:d7:85:cf:9b:ba:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ED2921D1B30A3E0F69AB2E1A0F97B02BA590720 Validity Not Before: Aug 20 00:55:00 2024 GMT Not After : Aug 19 01:00:00 2025 GMT Subject: CN=89A7A3D101AC2B1A24D3A7EE4B42EA6002DA391F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:c1:38:84:09:c0:d8:d0:be:66:34:ee:78:8b: 51:25:e4:1b:b4:bb:7b:ef:33:53:37:19:7b:30:a4: 6b:a0:21:0c:9a:83:66:eb:5f:f7:27:2c:a9:1f:fd: 94:3f:f9:24:b8:41:85:3e:ba:9f:84:98:f4:b8:c4: d7:f8:66:28:97:4b:15:e4:26:a1:f1:69:a5:94:eb: 1d:8e:c6:b8:1a:50:78:46:0f:9c:3a:15:0b:cc:79: 86:d9:fe:17:7f:a6:06:97:1a:64:2d:c9:62:51:c9: bb:80:88:45:62:82:42:8f:2b:b1:10:37:dc:d9:69: dd:11:e5:ad:d6:5b:35:33:c5:15:b3:41:db:63:a8: f6:4f:0c:74:a5:ac:74:4b:9e:ee:22:42:07:87:48: 44:aa:00:99:e0:5b:90:e7:92:f8:90:b2:fe:1c:73: 67:36:e3:2a:5e:2f:9f:74:62:d6:4a:87:24:58:45: 4d:57:63:3c:88:c5:76:8a:ed:c4:43:a3:f9:b7:b3: 9b:7f:68:e3:ea:22:f6:38:8f:24:eb:f1:f7:c2:20: 8f:23:ac:39:ea:8a:66:e8:c3:43:c6:65:df:d5:5d: 1c:8b:35:a7:25:e6:30:cd:80:77:e1:6b:c1:14:59: 31:f6:ab:61:1c:eb:5d:46:39:94:7c:72:40:b9:69: 80:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A7:A3:D1:01:AC:2B:1A:24:D3:A7:EE:4B:42:EA:60:02:DA:39:1F X509v3 Authority Key Identifier: keyid:4E:D2:92:1D:1B:30:A3:E0:F6:9A:B2:E1:A0:F9:7B:02:BA:59:07:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/CE963A74AC1D241E8E1E975B8C9C1CBE3FBABFC1133632181ED854E9EBDAA940/0/4ED2921D1B30A3E0F69AB2E1A0F97B02BA590720.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4ED2921D1B30A3E0F69AB2E1A0F97B02BA590720.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CE963A74AC1D241E8E1E975B8C9C1CBE3FBABFC1133632181ED854E9EBDAA940/0/34352e3136382e3233322e302f32322d3234203d3e203238333934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.168.232.0/22 Signature Algorithm: sha256WithRSAEncryption 75:eb:9e:9a:91:08:8a:ec:2f:5d:96:c2:38:bb:60:8f:be:07: 4f:3d:d1:9d:c0:22:c0:9d:80:0c:31:72:bd:a7:ef:b4:fd:df: 31:68:6a:b2:53:0e:9b:f9:68:1f:f6:05:1b:72:3b:7a:b8:eb: d2:ee:33:e6:a0:2f:cb:e9:fe:e6:50:46:6a:a4:4f:2c:9e:69: 43:63:cb:47:51:83:31:3d:07:0b:b8:55:b8:42:92:11:d9:78: 37:e4:c1:28:0f:d4:d4:69:c9:37:82:3a:f4:71:a2:b1:6f:a3: 12:bf:19:62:99:4c:69:43:1d:8f:80:b7:bb:cb:db:02:e8:9b: a5:65:87:ae:e5:2d:06:37:20:cc:f3:0c:d2:08:e8:e5:7d:b9: 46:60:27:45:4d:49:7c:b2:28:64:9e:48:62:89:8e:14:f6:c4: 9a:70:de:68:30:10:f8:af:66:cb:eb:f6:30:9c:bd:c1:27:28: ce:99:0e:a6:25:3a:c0:39:1a:f7:4d:1e:dc:06:1d:35:a9:5e: 6d:8f:2b:b0:6d:3f:d0:6f:71:d6:e9:0d:85:44:f6:6d:01:8b: 6b:61:86:d7:a6:1b:1c:6b:8d:47:83:9c:4e:1a:20:31:42:5d: e1:76:6e:d1:52:32:b2:5b:f7:b5:e5:04:fb:85:11:ac:92:51: 44:a4:81:05 -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgIUWfwodcAtT9kN8mpp0RTXhc+buhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVEMjkyMUQxQjMwQTNFMEY2OUFCMkUxQTBGOTdCMDJC QTU5MDcyMDAeFw0yNDA4MjAwMDU1MDBaFw0yNTA4MTkwMTAwMDBaMDMxMTAvBgNV BAMTKDg5QTdBM0QxMDFBQzJCMUEyNEQzQTdFRTRCNDJFQTYwMDJEQTM5MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNwTiECcDY0L5mNO54i1El5Bu0 u3vvM1M3GXswpGugIQyag2brX/cnLKkf/ZQ/+SS4QYU+up+EmPS4xNf4ZiiXSxXk JqHxaaWU6x2OxrgaUHhGD5w6FQvMeYbZ/hd/pgaXGmQtyWJRybuAiEVigkKPK7EQ N9zZad0R5a3WWzUzxRWzQdtjqPZPDHSlrHRLnu4iQgeHSESqAJngW5DnkviQsv4c c2c24ypeL590YtZKhyRYRU1XYzyIxXaK7cRDo/m3s5t/aOPqIvY4jyTr8ffCII8j rDnqimbow0PGZd/VXRyLNacl5jDNgHfha8EUWTH2q2Ec611GOZR8ckC5aYAFAgMB AAGjggLIMIICxDAdBgNVHQ4EFgQUiaej0QGsKxok06fuS0LqYALaOR8wHwYDVR0j BBgwFoAUTtKSHRswo+D2mrLhoPl7ArpZByAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9DRTk2M0E3NEFDMUQyNDFFOEUxRTk3NUI4QzlDMUNCRTNG QkFCRkMxMTMzNjMyMTgxRUQ4NTRFOUVCREFBOTQwLzAvNEVEMjkyMUQxQjMwQTNF MEY2OUFCMkUxQTBGOTdCMDJCQTU5MDcyMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80RUQyOTIxRDFCMzBBM0UwRjY5 QUIyRTFBMEY5N0IwMkJBNTkwNzIwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQ0U5NjNBNzRBQzFEMjQxRThFMUU5NzVCOEM5QzFDQkUzRkJBQkZDMTEz MzYzMjE4MUVEODU0RTlFQkRBQTk0MC8wLzM0MzUyZTMxMzYzODJlMzIzMzMyMmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzODMzMzkzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2o6DAN BgkqhkiG9w0BAQsFAAOCAQEAdeuempEIiuwvXZbCOLtgj74HTz3RncAiwJ2ADDFy vafvtP3fMWhqslMOm/loH/YFG3I7erjr0u4z5qAvy+n+5lBGaqRPLJ5pQ2PLR1GD MT0HC7hVuEKSEdl4N+TBKA/U1GnJN4I69HGisW+jEr8ZYplMaUMdj4C3u8vbAuib pWWHruUtBjcgzPMM0gjo5X25RmAnRU1JfLIoZJ5IYomOFPbEmnDeaDAQ+K9my+v2 MJy9wScozpkOpiU6wDka900e3AYdNalebY8rsG0/0G9x1ukNhUT2bQGLa2GG16Yb HGuNR4OcThogMUJd4XZu0VIyslv3teUE+4URrJJRRKSBBQ== -----END CERTIFICATE-----Generated at Wed Nov 20 05:43:20 2024 by rpki-client on console-fra.rpki-client.org