$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D3825A7AEBBD78E1348C3C07BBBA3D1DBE040B1549B2B71139E6B8108B9F2382/0/34352e3137342e3232382e302f32322d3234203d3e20323635353334.roa File: 34352e3137342e3232382e302f32322d3234203d3e20323635353334.roa (raw, json) Hash identifier: y82JpCiQWiwHdhkL+cYveCa/G6ofUko8YcVgxzajMP4= Subject key identifier: 15:8A:28:B7:3C:8A:55:3D:88:A5:C9:DD:7C:F5:0D:C3:C9:13:40:75 Certificate issuer: /CN=57B20D3EC21961A6505DCA0AD0B33DC33C5CCD41 Certificate serial: 4662142763488A467740942CF85BCD40596CFC12 Authority key identifier: 57:B2:0D:3E:C2:19:61:A6:50:5D:CA:0A:D0:B3:3D:C3:3C:5C:CD:41 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/57B20D3EC21961A6505DCA0AD0B33DC33C5CCD41.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D3825A7AEBBD78E1348C3C07BBBA3D1DBE040B1549B2B71139E6B8108B9F2382/0/34352e3137342e3232382e302f32322d3234203d3e20323635353334.roa Signing time: Tue 04 Feb 2025 20:05:30 +0000 ROA not before: Tue 04 Feb 2025 20:00:30 +0000 ROA not after: Tue 03 Feb 2026 20:05:30 +0000 asID: 265534 IP address blocks: 45.174.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D3825A7AEBBD78E1348C3C07BBBA3D1DBE040B1549B2B71139E6B8108B9F2382/0/57B20D3EC21961A6505DCA0AD0B33DC33C5CCD41.crl rsync://repository.lacnic.net/rpki/lacnic/D3825A7AEBBD78E1348C3C07BBBA3D1DBE040B1549B2B71139E6B8108B9F2382/0/57B20D3EC21961A6505DCA0AD0B33DC33C5CCD41.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/57B20D3EC21961A6505DCA0AD0B33DC33C5CCD41.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:62:14:27:63:48:8a:46:77:40:94:2c:f8:5b:cd:40:59:6c:fc:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57B20D3EC21961A6505DCA0AD0B33DC33C5CCD41 Validity Not Before: Feb 4 20:00:30 2025 GMT Not After : Feb 3 20:05:30 2026 GMT Subject: CN=158A28B73C8A553D88A5C9DD7CF50DC3C9134075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c1:31:8f:ab:42:27:d5:94:85:5b:fd:dc:e5: 3d:59:b7:6b:4e:53:8b:c6:65:d9:2c:24:3c:b9:5c: 65:4f:f0:ed:af:cb:cb:c9:21:6d:38:87:6b:5b:7b: b7:e7:04:5c:3b:97:03:28:8b:22:72:be:81:78:0a: 02:c0:b1:c7:a6:79:34:4a:97:cc:2a:cb:ff:9b:54: c7:6d:ae:24:20:a3:9f:b0:67:ef:9d:8e:59:54:ae: a6:01:4c:93:d6:fe:73:49:01:c9:7e:b7:da:ba:89: 08:a5:a6:a7:bb:08:36:c5:25:93:93:5b:32:69:3d: 19:a5:85:c1:c0:50:a0:8d:23:e8:28:aa:b5:71:e3: 2a:98:5c:19:83:51:1c:b5:28:f2:ee:69:bd:39:da: 3a:d1:b7:ca:3b:fa:e1:b0:ae:bb:48:f9:12:b2:ac: 50:c4:fb:f5:4d:b9:54:53:35:37:3f:f1:60:df:f1: b4:dd:a7:6f:f7:4b:f6:81:30:8a:29:97:5c:e8:03: 6a:72:24:cc:b1:34:12:9b:6e:59:0b:68:ae:2c:4f: d1:c2:b7:3a:a4:34:6e:9d:fb:33:bf:54:3d:e2:de: b5:e6:73:36:57:0c:53:e1:af:09:3c:33:46:9c:a9: 1b:ba:09:0a:e9:8d:ab:80:e3:24:bd:6f:41:f2:a1: 37:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:8A:28:B7:3C:8A:55:3D:88:A5:C9:DD:7C:F5:0D:C3:C9:13:40:75 X509v3 Authority Key Identifier: keyid:57:B2:0D:3E:C2:19:61:A6:50:5D:CA:0A:D0:B3:3D:C3:3C:5C:CD:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D3825A7AEBBD78E1348C3C07BBBA3D1DBE040B1549B2B71139E6B8108B9F2382/0/57B20D3EC21961A6505DCA0AD0B33DC33C5CCD41.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/57B20D3EC21961A6505DCA0AD0B33DC33C5CCD41.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D3825A7AEBBD78E1348C3C07BBBA3D1DBE040B1549B2B71139E6B8108B9F2382/0/34352e3137342e3232382e302f32322d3234203d3e20323635353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.174.228.0/22 Signature Algorithm: sha256WithRSAEncryption 73:5c:00:83:69:ef:e3:cc:45:0f:45:e6:c3:66:f8:b7:1e:3e: 31:26:11:14:30:4c:bd:3e:43:c9:72:26:6b:e6:9c:d9:ea:d6: 08:69:cd:59:8d:8a:7c:c9:3d:b9:13:ea:de:45:63:49:3b:6f: 0d:e7:93:31:77:26:f8:1d:dc:f5:71:5a:d9:58:03:d8:8b:2b: be:93:46:9b:be:7c:88:4a:4f:fa:20:47:20:cc:67:91:da:ae: ac:b9:b3:46:37:e3:ee:f6:e5:a8:11:11:33:20:6b:69:bd:9b: 6a:ea:a1:e3:fe:65:eb:df:a8:c3:9e:2e:4c:b7:2b:37:90:2c: b2:9d:00:22:cf:6b:40:27:56:6e:25:74:97:9a:b2:4a:f7:2f: 5d:c2:a6:2c:4b:76:e6:f8:ff:38:d7:1a:a8:8b:5c:88:ef:f4: 65:ec:23:48:98:c7:0a:74:9c:8c:1d:74:22:44:e6:37:45:b8: 8e:2c:78:a4:6c:aa:e8:c7:7d:bb:30:9d:6c:f1:d8:14:24:7d: cf:eb:ca:ac:95:e8:5b:c2:66:a5:60:4c:f0:3f:30:8f:79:5b: 60:92:39:b5:a7:3a:28:64:34:a0:63:b3:9a:7a:97:4a:62:b7: d9:5e:cb:a8:cb:a9:b2:a3:46:d3:84:04:67:73:d8:fd:dd:c9: 5a:2b:61:7f -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIURmIUJ2NIikZ3QJQs+FvNQFls/BIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdCMjBEM0VDMjE5NjFBNjUwNURDQTBBRDBCMzNEQzMz QzVDQ0Q0MTAeFw0yNTAyMDQyMDAwMzBaFw0yNjAyMDMyMDA1MzBaMDMxMTAvBgNV BAMTKDE1OEEyOEI3M0M4QTU1M0Q4OEE1QzlERDdDRjUwREMzQzkxMzQwNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbwTGPq0In1ZSFW/3c5T1Zt2tO U4vGZdksJDy5XGVP8O2vy8vJIW04h2tbe7fnBFw7lwMoiyJyvoF4CgLAscemeTRK l8wqy/+bVMdtriQgo5+wZ++djllUrqYBTJPW/nNJAcl+t9q6iQilpqe7CDbFJZOT WzJpPRmlhcHAUKCNI+goqrVx4yqYXBmDURy1KPLuab052jrRt8o7+uGwrrtI+RKy rFDE+/VNuVRTNTc/8WDf8bTdp2/3S/aBMIopl1zoA2pyJMyxNBKbblkLaK4sT9HC tzqkNG6d+zO/VD3i3rXmczZXDFPhrwk8M0acqRu6CQrpjauA4yS9b0HyoTeHAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUFYootzyKVT2IpcndfPUNw8kTQHUwHwYDVR0j BBgwFoAUV7INPsIZYaZQXcoK0LM9wzxczUEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EMzgyNUE3QUVCQkQ3OEUxMzQ4QzNDMDdCQkJBM0QxREJF MDQwQjE1NDlCMkI3MTEzOUU2QjgxMDhCOUYyMzgyLzAvNTdCMjBEM0VDMjE5NjFB NjUwNURDQTBBRDBCMzNEQzMzQzVDQ0Q0MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81N0IyMEQzRUMyMTk2MUE2NTA1 RENBMEFEMEIzM0RDMzNDNUNDRDQxLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDM4MjVBN0FFQkJENzhFMTM0OEMzQzA3QkJCQTNEMURCRTA0MEIxNTQ5 QjJCNzExMzlFNkI4MTA4QjlGMjM4Mi8wLzM0MzUyZTMxMzczNDJlMzIzMjM4MmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM1MzUzMzM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLa7k MA0GCSqGSIb3DQEBCwUAA4IBAQBzXACDae/jzEUPRebDZvi3Hj4xJhEUMEy9PkPJ ciZr5pzZ6tYIac1ZjYp8yT25E+reRWNJO28N55Mxdyb4Hdz1cVrZWAPYiyu+k0ab vnyISk/6IEcgzGeR2q6subNGN+Pu9uWoEREzIGtpvZtq6qHj/mXr36jDni5Mtys3 kCyynQAiz2tAJ1ZuJXSXmrJK9y9dwqYsS3bm+P841xqoi1yI7/Rl7CNImMcKdJyM HXQiROY3RbiOLHikbKrox327MJ1s8dgUJH3P68qslehbwmalYEzwPzCPeVtgkjm1 pzooZDSgY7OaepdKYrfZXsuoy6myo0bThARnc9j93claK2F/ -----END CERTIFICATE-----Generated at Sun Apr 6 00:37:54 2025 by rpki-client