$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D110F05B15EDAFE370A85C99458D399D1A5EA3F319B23192620DB3D3E66CE959/0/34352e3139312e3139362e302f32322d3235203d3e20323639383938.roa File: 34352e3139312e3139362e302f32322d3235203d3e20323639383938.roa (raw, json) Hash identifier: /7Fj/4pyOlcPS3m9i/lL+K0SgGpktleabmrsbcuiyBE= Subject key identifier: 12:CD:7E:B8:FA:9D:D1:53:FB:E8:8E:C3:40:01:8B:19:AA:9E:3B:9B Certificate issuer: /CN=42CD5D8FF58F1A6CFCD1042C88476296CB1C9BE1 Certificate serial: 64B86E38339C54A21708D82EA3DC0711E048AC16 Authority key identifier: 42:CD:5D:8F:F5:8F:1A:6C:FC:D1:04:2C:88:47:62:96:CB:1C:9B:E1 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/42CD5D8FF58F1A6CFCD1042C88476296CB1C9BE1.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D110F05B15EDAFE370A85C99458D399D1A5EA3F319B23192620DB3D3E66CE959/0/34352e3139312e3139362e302f32322d3235203d3e20323639383938.roa Signing time: Tue 04 Feb 2025 18:53:40 +0000 ROA not before: Tue 04 Feb 2025 18:48:40 +0000 ROA not after: Tue 03 Feb 2026 18:53:40 +0000 asID: 269898 IP address blocks: 45.191.196.0/22 maxlen: 25 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D110F05B15EDAFE370A85C99458D399D1A5EA3F319B23192620DB3D3E66CE959/0/42CD5D8FF58F1A6CFCD1042C88476296CB1C9BE1.crl rsync://repository.lacnic.net/rpki/lacnic/D110F05B15EDAFE370A85C99458D399D1A5EA3F319B23192620DB3D3E66CE959/0/42CD5D8FF58F1A6CFCD1042C88476296CB1C9BE1.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/42CD5D8FF58F1A6CFCD1042C88476296CB1C9BE1.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:b8:6e:38:33:9c:54:a2:17:08:d8:2e:a3:dc:07:11:e0:48:ac:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CD5D8FF58F1A6CFCD1042C88476296CB1C9BE1 Validity Not Before: Feb 4 18:48:40 2025 GMT Not After : Feb 3 18:53:40 2026 GMT Subject: CN=12CD7EB8FA9DD153FBE88EC340018B19AA9E3B9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:07:76:9e:c5:4a:b4:92:45:d1:4f:e1:50:fb: c9:bf:2d:40:97:fb:dd:8c:cd:c9:87:a3:7b:e3:bf: 18:ac:fe:eb:22:5d:99:c3:19:9c:46:2e:36:5c:f2: db:6e:49:69:f0:46:a2:da:9f:4c:36:66:3a:6b:a4: c2:e7:1b:31:79:cb:ea:68:6f:d9:aa:67:18:57:98: b3:0f:eb:6d:71:57:42:31:b7:63:87:f2:57:aa:09: fd:15:a4:81:93:d0:d8:22:2c:b9:5a:46:35:21:41: 0c:d2:a1:d4:8d:1c:11:88:c0:e9:26:fc:df:9b:79: a7:9f:d7:77:1e:7c:e3:b6:ca:07:f5:ea:a1:20:a1: 73:9d:a9:1d:3e:87:27:6e:27:34:f6:99:d1:90:10: 07:d6:a2:30:df:8a:f8:c3:97:00:01:f9:b4:22:d0: d2:6c:f0:3a:31:3b:ce:0d:c2:17:cf:0d:9d:e5:94: 11:2b:15:a4:ff:96:b4:55:5f:2c:96:03:20:4b:e8: be:e5:36:9c:f5:58:ee:fc:b2:83:c3:3c:ae:13:5e: 90:c2:c2:2b:ec:1a:fe:9a:a6:55:91:fa:7a:f9:60: 66:85:12:bc:4d:71:69:34:49:4e:1f:13:2f:d3:61: 7c:70:bb:3d:c8:84:bb:90:cf:2b:77:39:cf:77:01: c5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:CD:7E:B8:FA:9D:D1:53:FB:E8:8E:C3:40:01:8B:19:AA:9E:3B:9B X509v3 Authority Key Identifier: keyid:42:CD:5D:8F:F5:8F:1A:6C:FC:D1:04:2C:88:47:62:96:CB:1C:9B:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D110F05B15EDAFE370A85C99458D399D1A5EA3F319B23192620DB3D3E66CE959/0/42CD5D8FF58F1A6CFCD1042C88476296CB1C9BE1.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/42CD5D8FF58F1A6CFCD1042C88476296CB1C9BE1.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D110F05B15EDAFE370A85C99458D399D1A5EA3F319B23192620DB3D3E66CE959/0/34352e3139312e3139362e302f32322d3235203d3e20323639383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.191.196.0/22 Signature Algorithm: sha256WithRSAEncryption 63:90:26:32:93:35:33:7e:db:42:7f:9c:6c:a1:5a:26:33:d8: c9:38:3e:04:d6:99:2b:c6:4e:7a:5b:43:59:1c:3d:3e:1f:c5: e1:1d:47:c7:4b:87:e2:f6:c5:32:56:4d:82:63:f1:80:5c:14: 62:c7:d1:62:17:eb:3c:ef:c5:ec:58:7b:0d:c3:36:7d:88:05: 22:12:a1:2c:9f:7f:5d:1e:75:fd:8c:c8:f5:ee:e4:d9:ce:33: 11:31:40:00:77:56:a0:d7:21:43:ff:fc:b8:88:3c:bc:65:06: 8a:16:d9:74:3f:5c:9c:9c:82:1d:22:f7:f4:53:55:fb:95:09: 0c:60:34:94:a0:50:48:c4:6b:e5:08:82:f8:3f:96:ae:f2:8a: 3e:f0:28:a5:16:47:e7:d8:fa:fc:4b:8d:17:ab:17:72:b1:b3: e7:6a:54:7b:03:2b:38:f1:f8:5d:f3:e4:d2:5d:39:87:91:99: c6:3c:a3:7b:d9:51:b7:4e:20:dd:5b:bd:e7:8c:52:9f:bf:58: 28:e8:70:c3:8e:52:19:da:64:90:d2:06:44:b6:3b:5f:0e:7c: 2c:c3:7b:0f:e2:78:63:2f:b9:54:26:b7:c6:f9:05:91:29:53: f7:23:0d:2d:87:8d:d7:7d:e3:76:e7:7e:42:e7:71:a5:d9:c6: 6f:cd:c4:67 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUZLhuODOcVKIXCNguo9wHEeBIrBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDRDVEOEZGNThGMUE2Q0ZDRDEwNDJDODg0NzYyOTZD QjFDOUJFMTAeFw0yNTAyMDQxODQ4NDBaFw0yNjAyMDMxODUzNDBaMDMxMTAvBgNV BAMTKDEyQ0Q3RUI4RkE5REQxNTNGQkU4OEVDMzQwMDE4QjE5QUE5RTNCOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeB3aexUq0kkXRT+FQ+8m/LUCX +92MzcmHo3vjvxis/usiXZnDGZxGLjZc8ttuSWnwRqLan0w2ZjprpMLnGzF5y+po b9mqZxhXmLMP621xV0Ixt2OH8leqCf0VpIGT0NgiLLlaRjUhQQzSodSNHBGIwOkm /N+beaef13cefOO2ygf16qEgoXOdqR0+hyduJzT2mdGQEAfWojDfivjDlwAB+bQi 0NJs8DoxO84NwhfPDZ3llBErFaT/lrRVXyyWAyBL6L7lNpz1WO78soPDPK4TXpDC wivsGv6aplWR+nr5YGaFErxNcWk0SU4fEy/TYXxwuz3IhLuQzyt3Oc93AcWbAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUEs1+uPqd0VP76I7DQAGLGaqeO5swHwYDVR0j BBgwFoAUQs1dj/WPGmz80QQsiEdilsscm+EwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EMTEwRjA1QjE1RURBRkUzNzBBODVDOTk0NThEMzk5RDFB NUVBM0YzMTlCMjMxOTI2MjBEQjNEM0U2NkNFOTU5LzAvNDJDRDVEOEZGNThGMUE2 Q0ZDRDEwNDJDODg0NzYyOTZDQjFDOUJFMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80MkNENUQ4RkY1OEYxQTZDRkNE MTA0MkM4ODQ3NjI5NkNCMUM5QkUxLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDExMEYwNUIxNUVEQUZFMzcwQTg1Qzk5NDU4RDM5OUQxQTVFQTNGMzE5 QjIzMTkyNjIwREIzRDNFNjZDRTk1OS8wLzM0MzUyZTMxMzkzMTJlMzEzOTM2MmUz MDJmMzIzMjJkMzIzNTIwM2QzZTIwMzIzNjM5MzgzOTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLb/E MA0GCSqGSIb3DQEBCwUAA4IBAQBjkCYykzUzfttCf5xsoVomM9jJOD4E1pkrxk56 W0NZHD0+H8XhHUfHS4fi9sUyVk2CY/GAXBRix9FiF+s878XsWHsNwzZ9iAUiEqEs n39dHnX9jMj17uTZzjMRMUAAd1ag1yFD//y4iDy8ZQaKFtl0P1ycnIIdIvf0U1X7 lQkMYDSUoFBIxGvlCIL4P5au8oo+8CilFkfn2Pr8S40XqxdysbPnalR7Ays48fhd 8+TSXTmHkZnGPKN72VG3TiDdW73njFKfv1go6HDDjlIZ2mSQ0gZEtjtfDnwsw3sP 4nhjL7lUJrfG+QWRKVP3Iw0th43XfeN2535C53Gl2cZvzcRn -----END CERTIFICATE-----Generated at Sat Apr 5 22:21:35 2025 by rpki-client