$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D480B8677CF715BF17224C10EC07A310FFBD6D900314B8F0CDC5E62C1097B75B/0/3133382e39392e302e302f32322d3234203d3e203236363137.roa File: 3133382e39392e302e302f32322d3234203d3e203236363137.roa (raw, json) Hash identifier: 9/uSVcGPDikIY/5InrsKaKD/r2SbGLLewdq485k+J98= Subject key identifier: 65:A5:D3:C4:3F:C7:27:3E:58:13:53:7F:92:52:4C:CC:5A:96:DE:1B Certificate issuer: /CN=5B5D29B9FD18B3301011ABFDEC89A5E556A2DDD5 Certificate serial: 7FF96BAFBD260ED4FA3D6B62E6B83A42EB9091A8 Authority key identifier: 5B:5D:29:B9:FD:18:B3:30:10:11:AB:FD:EC:89:A5:E5:56:A2:DD:D5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5B5D29B9FD18B3301011ABFDEC89A5E556A2DDD5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D480B8677CF715BF17224C10EC07A310FFBD6D900314B8F0CDC5E62C1097B75B/0/3133382e39392e302e302f32322d3234203d3e203236363137.roa Signing time: Tue 04 Feb 2025 18:47:35 +0000 ROA not before: Tue 04 Feb 2025 18:42:35 +0000 ROA not after: Tue 03 Feb 2026 18:47:35 +0000 asID: 26617 IP address blocks: 138.99.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D480B8677CF715BF17224C10EC07A310FFBD6D900314B8F0CDC5E62C1097B75B/0/5B5D29B9FD18B3301011ABFDEC89A5E556A2DDD5.crl rsync://repository.lacnic.net/rpki/lacnic/D480B8677CF715BF17224C10EC07A310FFBD6D900314B8F0CDC5E62C1097B75B/0/5B5D29B9FD18B3301011ABFDEC89A5E556A2DDD5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5B5D29B9FD18B3301011ABFDEC89A5E556A2DDD5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:f9:6b:af:bd:26:0e:d4:fa:3d:6b:62:e6:b8:3a:42:eb:90:91:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B5D29B9FD18B3301011ABFDEC89A5E556A2DDD5 Validity Not Before: Feb 4 18:42:35 2025 GMT Not After : Feb 3 18:47:35 2026 GMT Subject: CN=65A5D3C43FC7273E5813537F92524CCC5A96DE1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b9:e6:14:6f:29:cb:4b:4c:5f:09:76:7f:a5: 24:e3:de:84:a8:49:ce:cb:72:67:25:24:30:ab:e4: 1c:50:d8:27:e7:1a:91:76:2a:67:9f:e4:c2:35:49: ab:38:63:9c:fd:45:f9:7f:60:76:be:c5:21:0d:c8: 84:81:75:94:d8:7d:a2:b4:1a:a9:89:ba:0e:45:f3: 6a:3c:f6:88:e2:04:39:b0:15:93:e8:2b:71:74:50: 10:48:dc:32:d7:2a:4a:5a:ec:78:37:4c:46:b2:4a: b8:a6:5b:fa:17:06:e6:f7:0d:6c:5d:cb:f3:65:aa: 23:d9:04:cb:46:6d:28:38:9b:e8:14:3f:27:32:54: 8f:a0:4f:e3:7b:53:6d:2e:07:82:e9:74:33:78:9e: 94:19:e2:fb:b3:38:ab:fc:77:9b:a7:ea:05:c7:b2: 06:40:84:98:11:51:82:e6:bb:b9:42:48:2a:96:71: b2:d6:fa:28:b9:95:ef:95:19:53:d4:a7:c3:6a:20: 16:fd:e5:bb:69:3c:17:94:10:f8:7e:98:3e:b9:dd: 56:6e:fe:60:ac:7d:05:0b:2e:42:ac:ab:8a:7a:e0: 2c:6a:d5:d0:be:0d:09:87:41:91:39:24:58:80:87: 6c:a5:72:5d:66:07:58:cc:e2:2c:56:77:58:c4:9b: 67:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A5:D3:C4:3F:C7:27:3E:58:13:53:7F:92:52:4C:CC:5A:96:DE:1B X509v3 Authority Key Identifier: keyid:5B:5D:29:B9:FD:18:B3:30:10:11:AB:FD:EC:89:A5:E5:56:A2:DD:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D480B8677CF715BF17224C10EC07A310FFBD6D900314B8F0CDC5E62C1097B75B/0/5B5D29B9FD18B3301011ABFDEC89A5E556A2DDD5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5B5D29B9FD18B3301011ABFDEC89A5E556A2DDD5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D480B8677CF715BF17224C10EC07A310FFBD6D900314B8F0CDC5E62C1097B75B/0/3133382e39392e302e302f32322d3234203d3e203236363137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.99.0.0/22 Signature Algorithm: sha256WithRSAEncryption 55:f9:d7:eb:19:ec:66:55:a4:2d:90:38:32:5b:e5:80:ba:c9: 0f:48:c0:98:45:dc:ac:39:0c:6c:6d:f7:1b:21:24:21:8e:3c: ca:fc:78:b7:e9:0d:be:f3:fc:66:77:9f:d5:a2:8c:d3:a9:c8: da:1e:75:e1:46:fc:1e:05:d7:c3:ec:df:f8:48:96:f8:e8:1f: bd:2a:1a:e7:b3:1c:18:92:b3:43:d8:d1:fc:62:a6:ae:f6:3e: 8a:2a:f7:dd:47:c4:e5:db:7a:78:ac:36:be:5c:8f:f4:b2:46: 62:dd:ee:3e:04:cf:07:1b:f1:b5:5e:b1:3c:1b:0f:d9:7d:94: b1:24:89:a7:cd:a0:c7:9c:71:2a:25:84:f9:cd:6c:e4:01:1a: a1:fe:e9:15:fc:07:3b:9d:75:43:9f:39:fe:99:5f:c1:eb:f2: 74:45:a7:67:2b:c2:e5:87:e3:ac:af:7d:86:2e:3e:68:0a:9a: 26:aa:fa:c4:49:27:3e:1b:3a:a6:36:e7:d5:a8:8f:69:39:83: a8:8c:25:2f:d7:ef:f8:b9:0c:36:0d:c6:e9:46:34:0b:a9:c7: 76:93:d8:bd:01:ee:41:2a:3d:4c:0c:fb:f3:69:9d:39:4e:6e: 4b:c6:bd:05:c9:41:5a:7c:40:43:6a:e9:29:79:43:4f:94:2f: 10:78:75:9f -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUf/lrr70mDtT6PWti5rg6QuuQkagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI1RDI5QjlGRDE4QjMzMDEwMTFBQkZERUM4OUE1RTU1 NkEyRERENTAeFw0yNTAyMDQxODQyMzVaFw0yNjAyMDMxODQ3MzVaMDMxMTAvBgNV BAMTKDY1QTVEM0M0M0ZDNzI3M0U1ODEzNTM3RjkyNTI0Q0NDNUE5NkRFMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjueYUbynLS0xfCXZ/pSTj3oSo Sc7LcmclJDCr5BxQ2CfnGpF2Kmef5MI1Sas4Y5z9Rfl/YHa+xSENyISBdZTYfaK0 GqmJug5F82o89ojiBDmwFZPoK3F0UBBI3DLXKkpa7Hg3TEaySrimW/oXBub3DWxd y/NlqiPZBMtGbSg4m+gUPycyVI+gT+N7U20uB4LpdDN4npQZ4vuzOKv8d5un6gXH sgZAhJgRUYLmu7lCSCqWcbLW+ii5le+VGVPUp8NqIBb95btpPBeUEPh+mD653VZu /mCsfQULLkKsq4p64Cxq1dC+DQmHQZE5JFiAh2ylcl1mB1jM4ixWd1jEm2cfAgMB AAGjggLEMIICwDAdBgNVHQ4EFgQUZaXTxD/HJz5YE1N/klJMzFqW3hswHwYDVR0j BBgwFoAUW10puf0YszAQEav97Iml5Vai3dUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9ENDgwQjg2NzdDRjcxNUJGMTcyMjRDMTBFQzA3QTMxMEZG QkQ2RDkwMDMxNEI4RjBDREM1RTYyQzEwOTdCNzVCLzAvNUI1RDI5QjlGRDE4QjMz MDEwMTFBQkZERUM4OUE1RTU1NkEyRERENS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81QjVEMjlCOUZEMThCMzMwMTAx MUFCRkRFQzg5QTVFNTU2QTJEREQ1LmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDQ4MEI4Njc3Q0Y3MTVCRjE3MjI0QzEwRUMwN0EzMTBGRkJENkQ5MDAz MTRCOEYwQ0RDNUU2MkMxMDk3Qjc1Qi8wLzMxMzMzODJlMzkzOTJlMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMjM2MzYzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCimMAMA0GCSqG SIb3DQEBCwUAA4IBAQBV+dfrGexmVaQtkDgyW+WAuskPSMCYRdysOQxsbfcbISQh jjzK/Hi36Q2+8/xmd5/VoozTqcjaHnXhRvweBdfD7N/4SJb46B+9KhrnsxwYkrND 2NH8Yqau9j6KKvfdR8Tl23p4rDa+XI/0skZi3e4+BM8HG/G1XrE8Gw/ZfZSxJImn zaDHnHEqJYT5zWzkARqh/ukV/Ac7nXVDnzn+mV/B6/J0RadnK8Llh+Osr32GLj5o CpomqvrESSc+GzqmNufVqI9pOYOojCUv1+/4uQw2DcbpRjQLqcd2k9i9Ae5BKj1M DPvzaZ05Tm5Lxr0FyUFafEBDaukpeUNPlC8QeHWf -----END CERTIFICATE-----Generated at Sat Apr 5 10:39:15 2025 by rpki-client