$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/323830333a633163303a3a2f33322d3332203d3e203532333631.roa File: 323830333a633163303a3a2f33322d3332203d3e203532333631.roa (raw, json) Hash identifier: bIPxM/eAKCH1HOeImt+RkI9rG978xG9f6ZV24H0ZxxU= Subject key identifier: 84:8E:10:2F:25:26:CE:08:52:3B:35:CC:89:B9:0C:EC:49:A6:48:A2 Certificate issuer: /CN=604B953E7CDFD156CD44C7E9BEDC37AE69B43881 Certificate serial: 4C0ACF6D02E4A523D39F0B8B154EC8F9336DE548 Authority key identifier: 60:4B:95:3E:7C:DF:D1:56:CD:44:C7:E9:BE:DC:37:AE:69:B4:38:81 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/604B953E7CDFD156CD44C7E9BEDC37AE69B43881.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/323830333a633163303a3a2f33322d3332203d3e203532333631.roa Signing time: Tue 04 Feb 2025 18:19:28 +0000 ROA not before: Tue 04 Feb 2025 18:14:28 +0000 ROA not after: Tue 03 Feb 2026 18:19:28 +0000 asID: 52361 IP address blocks: 2803:c1c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/604B953E7CDFD156CD44C7E9BEDC37AE69B43881.crl rsync://repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/604B953E7CDFD156CD44C7E9BEDC37AE69B43881.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/604B953E7CDFD156CD44C7E9BEDC37AE69B43881.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 18 Apr 2025 17:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:0a:cf:6d:02:e4:a5:23:d3:9f:0b:8b:15:4e:c8:f9:33:6d:e5:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604B953E7CDFD156CD44C7E9BEDC37AE69B43881 Validity Not Before: Feb 4 18:14:28 2025 GMT Not After : Feb 3 18:19:28 2026 GMT Subject: CN=848E102F2526CE08523B35CC89B90CEC49A648A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8f:84:2a:dc:35:b4:64:33:f9:0a:96:3a:99: 1b:b3:fc:c1:69:e1:80:57:3d:b6:f0:8c:15:28:0c: bb:94:6c:4a:7b:81:5c:05:c9:e5:a4:d3:9c:d0:34: c1:6a:71:05:86:51:eb:07:16:f1:fb:94:70:7d:cd: 6c:f9:23:16:af:e4:5c:bd:7f:91:96:f5:36:de:a8: b8:af:f7:fe:6c:4d:a4:d4:d3:4d:18:89:d3:f6:9c: 60:1b:1e:48:7e:d8:33:62:35:cd:0b:ae:b5:18:14: 41:8d:54:f8:19:0a:bb:0e:77:f5:1e:16:4d:84:e8: 13:54:e9:94:a3:f2:9d:59:75:7c:3e:11:2f:76:01: e6:6f:52:66:10:16:ac:e0:91:79:70:28:d4:5d:df: 22:c6:bf:2f:49:09:bc:b6:1f:1e:cb:98:e4:12:59: 99:bb:65:1f:53:dc:08:58:13:55:d5:1a:83:e9:6e: 56:17:c1:ae:37:5e:0c:80:51:ab:2c:ce:f3:b1:19: 6d:63:46:90:15:94:03:c5:2c:b4:42:ec:eb:35:cc: f4:85:6c:0b:16:f5:7d:f9:b2:40:43:eb:f9:3c:7f: 5d:9b:5d:8f:d2:6f:78:a8:06:cd:73:54:f4:8d:66: 2d:c9:cb:4f:d0:0b:f7:59:9c:f6:2d:c2:57:e1:14: 05:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:8E:10:2F:25:26:CE:08:52:3B:35:CC:89:B9:0C:EC:49:A6:48:A2 X509v3 Authority Key Identifier: keyid:60:4B:95:3E:7C:DF:D1:56:CD:44:C7:E9:BE:DC:37:AE:69:B4:38:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/604B953E7CDFD156CD44C7E9BEDC37AE69B43881.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/604B953E7CDFD156CD44C7E9BEDC37AE69B43881.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/323830333a633163303a3a2f33322d3332203d3e203532333631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:c1c0::/32 Signature Algorithm: sha256WithRSAEncryption 45:db:fc:a7:a8:d6:b0:0e:83:6e:34:f4:ab:ef:a0:5e:dd:65: 7b:27:a3:c8:aa:30:2d:42:05:31:95:2a:98:86:1f:62:4f:32: 57:49:40:ae:47:39:3d:08:6d:c1:bd:c9:f6:af:bb:44:a6:6c: 48:34:fc:74:96:63:23:af:a7:b1:93:65:42:90:0b:88:2a:12: 7e:99:c3:89:30:fd:f3:23:e2:c1:e3:0f:33:45:36:58:b2:c0: ac:d7:61:60:eb:c4:6c:bb:45:3d:31:e6:7d:c4:fe:15:bb:cb: ab:48:b1:3f:50:98:c9:8c:bf:48:f4:a9:69:1e:fd:cf:78:b1: 14:31:1e:58:65:c7:87:a7:82:8b:29:ab:d4:9a:a0:88:12:37: 24:11:40:0a:7a:48:6f:7d:0c:43:00:9d:64:75:49:00:10:ca: 32:47:ab:c6:bf:af:99:30:d4:40:8c:7d:91:e5:9c:17:88:f9: 8c:2e:a8:5b:dd:ad:7a:de:2e:c7:09:f1:7a:42:8f:87:bf:a1: 16:96:5d:62:eb:4b:cd:6e:b0:df:fc:63:79:3d:8a:28:ce:fe: 7c:aa:24:c4:17:86:6e:5b:2a:0c:0c:d6:51:3b:97:e2:15:69: 61:90:80:17:04:d4:61:bf:56:a7:4a:3f:ff:f5:dd:1a:37:4a: da:b6:72:57 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIUTArPbQLkpSPTnwuLFU7I+TNt5UgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0Qjk1M0U3Q0RGRDE1NkNENDRDN0U5QkVEQzM3QUU2 OUI0Mzg4MTAeFw0yNTAyMDQxODE0MjhaFw0yNjAyMDMxODE5MjhaMDMxMTAvBgNV BAMTKDg0OEUxMDJGMjUyNkNFMDg1MjNCMzVDQzg5QjkwQ0VDNDlBNjQ4QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBj4Qq3DW0ZDP5CpY6mRuz/MFp 4YBXPbbwjBUoDLuUbEp7gVwFyeWk05zQNMFqcQWGUesHFvH7lHB9zWz5Ixav5Fy9 f5GW9TbeqLiv9/5sTaTU000YidP2nGAbHkh+2DNiNc0LrrUYFEGNVPgZCrsOd/Ue Fk2E6BNU6ZSj8p1ZdXw+ES92AeZvUmYQFqzgkXlwKNRd3yLGvy9JCby2Hx7LmOQS WZm7ZR9T3AhYE1XVGoPpblYXwa43XgyAUasszvOxGW1jRpAVlAPFLLRC7Os1zPSF bAsW9X35skBD6/k8f12bXY/Sb3ioBs1zVPSNZi3Jy0/QC/dZnPYtwlfhFAXrAgMB AAGjggLHMIICwzAdBgNVHQ4EFgQUhI4QLyUmzghSOzXMibkM7EmmSKIwHwYDVR0j BBgwFoAUYEuVPnzf0VbNRMfpvtw3rmm0OIEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9ENTM3OTY3MTg5RjRCMjVBMUE3RUJFRDNBMkE5QzQ1RUJD OTlERTlCQjY4RUNBRTZENUY2MEQxMzU0RUQ2Mzg3LzAvNjA0Qjk1M0U3Q0RGRDE1 NkNENDRDN0U5QkVEQzM3QUU2OUI0Mzg4MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC82MDRCOTUzRTdDREZEMTU2Q0Q0 NEM3RTlCRURDMzdBRTY5QjQzODgxLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDUzNzk2NzE4OUY0QjI1QTFBN0VCRUQzQTJBOUM0NUVCQzk5REU5QkI2 OEVDQUU2RDVGNjBEMTM1NEVENjM4Ny8wLzMyMzgzMDMzM2E2MzMxNjMzMDNhM2Ey ZjMzMzIyZDMzMzIyMDNkM2UyMDM1MzIzMzM2MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA8HAMA0G CSqGSIb3DQEBCwUAA4IBAQBF2/ynqNawDoNuNPSr76Be3WV7J6PIqjAtQgUxlSqY hh9iTzJXSUCuRzk9CG3Bvcn2r7tEpmxINPx0lmMjr6exk2VCkAuIKhJ+mcOJMP3z I+LB4w8zRTZYssCs12Fg68Rsu0U9MeZ9xP4Vu8urSLE/UJjJjL9I9KlpHv3PeLEU MR5YZceHp4KLKavUmqCIEjckEUAKekhvfQxDAJ1kdUkAEMoyR6vGv6+ZMNRAjH2R 5ZwXiPmMLqhb3a163i7HCfF6Qo+Hv6EWll1i60vNbrDf/GN5PYoozv58qiTEF4Zu WyoMDNZRO5fiFWlhkIAXBNRhv1anSj//9d0aN0ratnJX -----END CERTIFICATE-----Generated at Tue Apr 15 00:47:38 2025 by rpki-client