$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/3230302e332e3230302e302f32312d3234203d3e203138383039.roa File: 3230302e332e3230302e302f32312d3234203d3e203138383039.roa (raw, json) Hash identifier: TrykwMbERnPmzKwKeyOA4GlLKWrpZRyekIpyMa2Kylg= Subject key identifier: 3D:A5:16:11:0C:B7:1B:8C:D6:AB:1B:3A:5D:12:54:1C:2C:36:73:98 Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E Certificate serial: 4EF208F96D5E59A8FBEFFD59DEB552124EB2BF78 Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/3230302e332e3230302e302f32312d3234203d3e203138383039.roa Signing time: Fri 24 Oct 2025 14:35:23 +0000 ROA not before: Fri 24 Oct 2025 14:30:23 +0000 ROA not after: Fri 23 Oct 2026 14:35:23 +0000 asID: 18809 IP address blocks: 200.3.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 01 Nov 2025 18:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f2:08:f9:6d:5e:59:a8:fb:ef:fd:59:de:b5:52:12:4e:b2:bf:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E Validity Not Before: Oct 24 14:30:23 2025 GMT Not After : Oct 23 14:35:23 2026 GMT Subject: CN=3DA516110CB71B8CD6AB1B3A5D12541C2C367398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:33:3c:62:31:90:51:64:c7:e2:bf:99:14:db: c9:40:12:87:fd:74:78:5e:06:1f:af:2d:dd:22:22: e9:69:43:4e:22:5d:fa:67:7f:ea:ee:17:c5:2b:09: e0:48:f8:2e:87:26:fa:8b:42:6a:d8:e1:32:f9:27: 64:74:04:0f:95:9a:c5:e4:83:b8:9a:30:37:91:08: 73:fd:ab:d3:22:13:35:58:35:5f:e3:01:57:8c:25: cf:a0:69:af:8c:34:4f:3b:d9:03:c0:dc:57:61:aa: 4f:56:77:7b:05:b7:66:ea:ac:16:e6:b7:f7:2d:e8: 1b:f8:7e:d8:51:da:c7:8b:40:52:d5:22:fd:40:9e: eb:48:2d:e1:83:c5:2c:75:e9:46:a7:2d:65:46:43: 99:70:1f:40:21:60:71:d0:a3:d2:00:7e:62:9a:06: 6c:06:64:46:c6:d9:9f:f3:fc:47:6d:d0:32:62:7f: 43:1a:24:fa:1e:98:07:5c:d0:44:85:da:2d:3e:c8: 11:f9:f2:d0:d9:49:b2:a2:f8:14:c3:9f:ed:62:90: bb:e7:0a:e0:a4:93:6e:bf:95:b0:a8:6c:67:01:11: 11:33:f8:7e:1a:3f:60:c4:bd:ff:05:fd:f9:98:6a: 2e:86:cd:06:87:d1:36:04:80:be:6a:c5:99:56:67: b7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A5:16:11:0C:B7:1B:8C:D6:AB:1B:3A:5D:12:54:1C:2C:36:73:98 X509v3 Authority Key Identifier: keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/3230302e332e3230302e302f32312d3234203d3e203138383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.3.200.0/21 Signature Algorithm: sha256WithRSAEncryption 48:da:12:48:19:6a:4b:ae:aa:94:cc:4a:05:82:26:45:2d:c1: d0:46:13:bf:95:9c:e1:ba:5e:28:1c:0e:df:ec:0e:58:d3:f8: ce:ff:6b:00:51:bd:98:ef:c0:d7:3f:18:0c:1c:e5:18:90:6f: fc:e6:f6:9f:0a:b8:fa:5d:e7:34:cc:66:d9:a8:f3:2d:47:45: 71:e8:ad:ec:cd:ba:8a:bc:c0:84:3a:c7:6c:6d:60:3e:b0:86: bd:ad:72:73:47:b5:39:27:0b:b0:ee:97:0e:08:76:60:65:e8: 12:c3:f4:90:65:90:68:81:13:3f:82:b6:4c:4a:c7:22:ff:8a: c6:c5:31:43:e9:85:e7:1c:4d:b0:98:60:96:c7:85:63:06:01: 66:50:8e:e1:a7:c2:32:fe:7e:60:7b:33:9c:95:06:fa:e5:dc: c2:a0:e0:09:8e:2b:63:4a:be:0c:f6:c5:8f:92:49:94:38:0a: 53:b2:ee:cc:ac:32:68:fd:be:ce:14:ac:b3:aa:50:98:f6:1d: 95:39:6e:c9:74:40:45:f9:84:0e:f0:d6:d2:0e:33:fd:13:61: 15:01:36:54:70:fc:44:60:0d:53:09:3b:a0:99:ff:d4:5d:9c: 21:5e:0b:b1:cd:67:33:3f:7b:99:36:eb:a4:9f:af:f9:c2:d4: c5:16:c5:0f -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUTvII+W1eWaj77/1Z3rVSEk6yv3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQxNThCRTYxQ0E5MTFCQzM0QTg4NzAwNUI5NjA1NkY0 QzQ3NEIxRTAeFw0yNTEwMjQxNDMwMjNaFw0yNjEwMjMxNDM1MjNaMDMxMTAvBgNV BAMTKDNEQTUxNjExMENCNzFCOENENkFCMUIzQTVEMTI1NDFDMkMzNjczOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdMzxiMZBRZMfiv5kU28lAEof9 dHheBh+vLd0iIulpQ04iXfpnf+ruF8UrCeBI+C6HJvqLQmrY4TL5J2R0BA+VmsXk g7iaMDeRCHP9q9MiEzVYNV/jAVeMJc+gaa+MNE872QPA3Fdhqk9Wd3sFt2bqrBbm t/ct6Bv4fthR2seLQFLVIv1AnutILeGDxSx16UanLWVGQ5lwH0AhYHHQo9IAfmKa BmwGZEbG2Z/z/Edt0DJif0MaJPoemAdc0ESF2i0+yBH58tDZSbKi+BTDn+1ikLvn CuCkk26/lbCobGcBEREz+H4aP2DEvf8F/fmYai6GzQaH0TYEgL5qxZlWZ7fFAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUPaUWEQy3G4zWqxs6XRJUHCw2c5gwHwYDVR0j BBgwFoAUXRWL5hypEbw0qIcAW5YFb0xHSx4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9ENTcyRUEyNjU5NzE1QjNCMDAyQjkyMjVBMTUyOTYwOEZD MjkzMjhCMEJGRUQ3OTU4Mzc5QThFRjlEMDA2RUY1LzAvNUQxNThCRTYxQ0E5MTFC QzM0QTg4NzAwNUI5NjA1NkY0QzQ3NEIxRS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81RDE1OEJFNjFDQTkxMUJDMzRB ODg3MDA1Qjk2MDU2RjRDNDc0QjFFLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDU3MkVBMjY1OTcxNUIzQjAwMkI5MjI1QTE1Mjk2MDhGQzI5MzI4QjBC RkVENzk1ODM3OUE4RUY5RDAwNkVGNS8wLzMyMzAzMDJlMzMyZTMyMzAzMDJlMzAy ZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzgzODMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPIA8gwDQYJ KoZIhvcNAQELBQADggEBAEjaEkgZakuuqpTMSgWCJkUtwdBGE7+VnOG6XigcDt/s DljT+M7/awBRvZjvwNc/GAwc5RiQb/zm9p8KuPpd5zTMZtmo8y1HRXHorezNuoq8 wIQ6x2xtYD6whr2tcnNHtTknC7Dulw4IdmBl6BLD9JBlkGiBEz+CtkxKxyL/isbF MUPpheccTbCYYJbHhWMGAWZQjuGnwjL+fmB7M5yVBvrl3MKg4AmOK2NKvgz2xY+S SZQ4ClOy7sysMmj9vs4UrLOqUJj2HZU5bsl0QEX5hA7w1tIOM/0TYRUBNlRw/ERg DVMJO6CZ/9RdnCFeC7HNZzM/e5k266Sfr/nC1MUWxQ8= -----END CERTIFICATE-----Generated at Tue Oct 28 07:12:40 2025 by rpki-client