$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D76BF8797EE18298E19657984AFF4D130219D436741754559A6007A0EE71E926/0/323830313a3132323a3a2f34302d3430203d3e2033383136.roa File: 323830313a3132323a3a2f34302d3430203d3e2033383136.roa (raw, json) Hash identifier: X9cMd3SG7qB808lvePxzwRtZPv+hb5qfR8JIfSFiJN0= Subject key identifier: 7B:47:76:B3:6F:56:96:D9:E3:90:DA:F5:79:9C:2D:5E:F9:89:D4:6F Certificate issuer: /CN=FFB4BF3D60B4FF2FAA8A3644652C2E2ABF836AC5 Certificate serial: 62B0C6FEBBF183E51C9FA958C8123E3B6E3F3E9B Authority key identifier: FF:B4:BF:3D:60:B4:FF:2F:AA:8A:36:44:65:2C:2E:2A:BF:83:6A:C5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FFB4BF3D60B4FF2FAA8A3644652C2E2ABF836AC5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D76BF8797EE18298E19657984AFF4D130219D436741754559A6007A0EE71E926/0/323830313a3132323a3a2f34302d3430203d3e2033383136.roa Signing time: Tue 04 Feb 2025 18:42:54 +0000 ROA not before: Tue 04 Feb 2025 18:37:54 +0000 ROA not after: Tue 03 Feb 2026 18:42:54 +0000 asID: 3816 IP address blocks: 2801:122::/40 maxlen: 40 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D76BF8797EE18298E19657984AFF4D130219D436741754559A6007A0EE71E926/0/FFB4BF3D60B4FF2FAA8A3644652C2E2ABF836AC5.crl rsync://repository.lacnic.net/rpki/lacnic/D76BF8797EE18298E19657984AFF4D130219D436741754559A6007A0EE71E926/0/FFB4BF3D60B4FF2FAA8A3644652C2E2ABF836AC5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FFB4BF3D60B4FF2FAA8A3644652C2E2ABF836AC5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 19:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:b0:c6:fe:bb:f1:83:e5:1c:9f:a9:58:c8:12:3e:3b:6e:3f:3e:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FFB4BF3D60B4FF2FAA8A3644652C2E2ABF836AC5 Validity Not Before: Feb 4 18:37:54 2025 GMT Not After : Feb 3 18:42:54 2026 GMT Subject: CN=7B4776B36F5696D9E390DAF5799C2D5EF989D46F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:dc:9b:25:89:91:96:a7:b0:05:50:38:04:24: 49:20:1e:fa:36:96:6b:29:ab:68:00:70:f8:b5:1b: 0d:87:68:ab:59:dd:1f:da:19:06:d3:d2:a3:a1:bd: a5:5b:61:f2:4f:8b:c3:52:8f:a1:95:01:ed:b8:ba: 66:6c:09:11:b6:c8:b4:95:43:b6:89:9f:79:29:7c: c1:2f:d7:d6:75:d6:15:72:13:a1:b6:5c:07:ba:89: 8d:7c:d1:ee:28:05:70:3f:bf:cd:53:91:4b:86:db: 52:7e:51:e0:01:da:b6:39:80:7e:ae:d8:78:97:25: 11:c9:67:dd:bb:e7:ab:db:01:40:09:67:a0:4c:36: 36:92:89:bf:25:c2:e7:45:3e:54:3f:a7:42:0a:67: de:04:2a:34:22:fc:10:b4:7b:09:bd:92:2b:e7:a7: af:87:a3:da:09:6d:5f:e7:37:54:e2:dc:09:a6:e0: bd:36:94:e2:24:79:51:e7:8f:1b:6c:c7:b9:2c:74: bd:15:3a:b0:d4:bd:d7:00:ab:d2:29:c4:a2:1a:44: 2a:1d:4e:e5:98:e9:ee:19:74:f5:72:dd:86:ee:1d: 14:5f:f1:21:ee:66:7b:19:69:a4:73:ab:4d:a9:8d: 66:50:ed:78:ba:92:13:8a:38:34:47:b3:2c:f3:86: f9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:47:76:B3:6F:56:96:D9:E3:90:DA:F5:79:9C:2D:5E:F9:89:D4:6F X509v3 Authority Key Identifier: keyid:FF:B4:BF:3D:60:B4:FF:2F:AA:8A:36:44:65:2C:2E:2A:BF:83:6A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D76BF8797EE18298E19657984AFF4D130219D436741754559A6007A0EE71E926/0/FFB4BF3D60B4FF2FAA8A3644652C2E2ABF836AC5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FFB4BF3D60B4FF2FAA8A3644652C2E2ABF836AC5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D76BF8797EE18298E19657984AFF4D130219D436741754559A6007A0EE71E926/0/323830313a3132323a3a2f34302d3430203d3e2033383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2801:122::/40 Signature Algorithm: sha256WithRSAEncryption 05:e3:71:33:9a:3e:21:4c:5d:97:3d:4a:64:86:b6:e8:65:cf: f4:b9:21:3a:af:98:2c:72:c1:d0:b0:54:40:87:4f:71:67:b9: 92:1c:33:1f:71:22:b9:70:d6:ca:96:55:58:d9:60:5d:44:5b: c4:c4:59:aa:76:01:8d:36:03:84:b5:8c:8c:b7:aa:e4:f6:38: 70:a4:32:d1:9c:7e:29:97:ae:f7:54:a8:23:74:88:6e:5c:6c: 37:26:6a:a4:cc:2d:01:1a:8c:aa:d2:d3:a0:77:38:c7:9b:15: 41:2d:65:43:ba:86:51:d2:0e:2d:20:f5:aa:cb:b5:7a:ba:cd: d2:fa:18:a2:05:79:80:4b:3c:b5:d6:d2:12:64:3d:06:6d:59: f2:a0:96:83:94:09:2c:f4:ca:96:33:0a:61:5b:3c:fb:e9:1f: aa:fb:ce:8b:36:d0:81:68:a9:e3:06:f8:e0:25:3e:41:bf:17: 23:37:d5:56:4b:ae:ca:f8:96:d6:fe:59:8e:b8:08:54:37:b9: 09:49:1e:77:74:1f:95:56:5d:10:cc:f7:7d:9b:34:80:8e:68: 3c:03:03:9c:ff:39:65:fd:02:57:37:a9:cb:ac:b7:d6:ae:4f: 7b:32:6e:3e:c9:8e:42:84:36:67:8b:55:61:7d:83:d2:79:71: 07:bf:0e:e3 -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUYrDG/rvxg+Ucn6lYyBI+O24/PpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkZCNEJGM0Q2MEI0RkYyRkFBOEEzNjQ0NjUyQzJFMkFC RjgzNkFDNTAeFw0yNTAyMDQxODM3NTRaFw0yNjAyMDMxODQyNTRaMDMxMTAvBgNV BAMTKDdCNDc3NkIzNkY1Njk2RDlFMzkwREFGNTc5OUMyRDVFRjk4OUQ0NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCR3JsliZGWp7AFUDgEJEkgHvo2 lmspq2gAcPi1Gw2HaKtZ3R/aGQbT0qOhvaVbYfJPi8NSj6GVAe24umZsCRG2yLSV Q7aJn3kpfMEv19Z11hVyE6G2XAe6iY180e4oBXA/v81TkUuG21J+UeAB2rY5gH6u 2HiXJRHJZ92756vbAUAJZ6BMNjaSib8lwudFPlQ/p0IKZ94EKjQi/BC0ewm9kivn p6+Ho9oJbV/nN1Ti3Amm4L02lOIkeVHnjxtsx7ksdL0VOrDUvdcAq9IpxKIaRCod TuWY6e4ZdPVy3YbuHRRf8SHuZnsZaaRzq02pjWZQ7Xi6khOKODRHsyzzhvmhAgMB AAGjggLEMIICwDAdBgNVHQ4EFgQUe0d2s29WltnjkNr1eZwtXvmJ1G8wHwYDVR0j BBgwFoAU/7S/PWC0/y+qijZEZSwuKr+DasUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9ENzZCRjg3OTdFRTE4Mjk4RTE5NjU3OTg0QUZGNEQxMzAy MTlENDM2NzQxNzU0NTU5QTYwMDdBMEVFNzFFOTI2LzAvRkZCNEJGM0Q2MEI0RkYy RkFBOEEzNjQ0NjUyQzJFMkFCRjgzNkFDNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GRkI0QkYzRDYwQjRGRjJGQUE4 QTM2NDQ2NTJDMkUyQUJGODM2QUM1LmNlcjCBwQYIKwYBBQUHAQsEgbQwgbEwga4G CCsGAQUFBzALhoGhcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDc2QkY4Nzk3RUUxODI5OEUxOTY1Nzk4NEFGRjREMTMwMjE5RDQzNjc0 MTc1NDU1OUE2MDA3QTBFRTcxRTkyNi8wLzMyMzgzMDMxM2EzMTMyMzIzYTNhMmYz NDMwMmQzNDMwMjAzZDNlMjAzMzM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACgBASIAMA0GCSqG SIb3DQEBCwUAA4IBAQAF43Ezmj4hTF2XPUpkhrboZc/0uSE6r5gscsHQsFRAh09x Z7mSHDMfcSK5cNbKllVY2WBdRFvExFmqdgGNNgOEtYyMt6rk9jhwpDLRnH4pl673 VKgjdIhuXGw3JmqkzC0BGoyq0tOgdzjHmxVBLWVDuoZR0g4tIPWqy7V6us3S+hii BXmASzy11tISZD0GbVnyoJaDlAks9MqWMwphWzz76R+q+86LNtCBaKnjBvjgJT5B vxcjN9VWS67K+JbW/lmOuAhUN7kJSR53dB+VVl0QzPd9mzSAjmg8AwOc/zll/QJX N6nLrLfWrk97Mm4+yY5ChDZni1VhfYPSeXEHvw7j -----END CERTIFICATE-----Generated at Sat Apr 5 11:53:59 2025 by rpki-client