$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/3133312e3136312e3232302e302f32322d3234203d3e20323730303439.roa File: 3133312e3136312e3232302e302f32322d3234203d3e20323730303439.roa (raw, json) Hash identifier: cWMeG6MC7CG9LS2pXN3Q+CuvzNLCEhxqMLu4ut/xSGQ= Subject key identifier: 22:39:1D:8B:00:BB:03:FF:CA:E0:7B:E4:21:40:90:80:38:02:AB:50 Certificate issuer: /CN=FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15 Certificate serial: 523698FF5264300C3140D1C4760B9B9EF6C1F8DE Authority key identifier: FF:96:63:FE:43:D3:3F:28:F6:E1:EF:71:7F:EA:AD:D2:1E:1D:5E:15 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/3133312e3136312e3232302e302f32322d3234203d3e20323730303439.roa Signing time: Tue 04 Feb 2025 18:21:29 +0000 ROA not before: Tue 04 Feb 2025 18:16:29 +0000 ROA not after: Tue 03 Feb 2026 18:21:29 +0000 asID: 270049 IP address blocks: 131.161.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15.crl rsync://repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 14:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:36:98:ff:52:64:30:0c:31:40:d1:c4:76:0b:9b:9e:f6:c1:f8:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15 Validity Not Before: Feb 4 18:16:29 2025 GMT Not After : Feb 3 18:21:29 2026 GMT Subject: CN=22391D8B00BB03FFCAE07BE4214090803802AB50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:76:b3:97:7a:a0:fd:6b:5b:8d:68:47:0a:dc: 16:2a:05:42:ab:02:fd:a7:90:9f:1e:d4:2a:e2:15: 6e:aa:18:cd:65:65:78:cb:dd:a1:5e:c7:7f:ff:76: 6c:38:5c:8d:a4:90:d5:bb:df:72:b5:e2:f3:88:24: 9d:9a:b8:91:ea:6f:e4:d3:4b:94:00:43:e5:9e:54: 3a:de:08:7b:be:41:a7:67:a4:8e:cf:9b:78:36:13: 4a:88:ab:a5:8b:fa:a3:0d:cf:b2:58:a2:71:4c:bd: 67:48:af:79:f5:67:54:37:97:1a:34:13:36:14:b2: 19:7f:a9:69:4b:b8:e8:1e:bd:d2:8d:ce:13:02:28: 00:13:d9:f5:56:e6:72:86:8e:97:80:04:f3:e9:6f: f3:29:7c:fa:6e:c2:46:73:50:52:3b:a3:d4:84:89: 15:72:6e:f7:e9:91:e3:b6:ee:a8:9a:d2:9e:e6:15: e2:b0:f9:d0:87:0f:40:ea:0d:0c:bc:27:90:a0:85: b3:a0:6b:20:08:9e:ff:e1:46:4b:93:53:37:c5:c0: c7:44:5d:cd:78:43:cd:03:5a:b3:48:a6:d7:61:07: 0c:31:87:ea:4a:b3:c5:49:ae:41:1a:06:09:0e:57: 63:77:bc:06:36:a5:8c:2c:35:1b:17:b3:06:bf:95: 14:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:39:1D:8B:00:BB:03:FF:CA:E0:7B:E4:21:40:90:80:38:02:AB:50 X509v3 Authority Key Identifier: keyid:FF:96:63:FE:43:D3:3F:28:F6:E1:EF:71:7F:EA:AD:D2:1E:1D:5E:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/3133312e3136312e3232302e302f32322d3234203d3e20323730303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.161.220.0/22 Signature Algorithm: sha256WithRSAEncryption 61:7a:6f:e0:8c:05:2b:4e:8e:36:a0:f3:16:a4:d7:a0:2e:ae: 0c:4e:42:e8:59:90:a3:c2:7e:21:4f:df:e5:3d:0e:d5:e1:dc: f2:59:8a:43:f3:79:8f:bd:af:bb:3a:ae:47:1b:d1:48:94:4e: a1:fe:74:b0:30:09:f1:ef:69:72:cb:13:14:b0:8b:4b:bb:cd: 62:14:51:d1:59:97:80:b5:46:f0:34:13:04:3a:94:f8:c8:82: cc:85:3f:b8:3e:62:80:40:b1:57:3e:33:06:8b:70:f9:32:1d: bc:39:07:65:27:71:b8:7b:9d:68:22:40:72:3c:35:02:9b:6c: 87:72:b1:5f:e6:71:82:ee:1e:79:fc:57:4a:ee:fc:00:4b:24: c6:b2:95:76:15:91:89:c0:35:34:a7:41:3d:73:2b:21:1b:98: 49:71:8a:c8:ff:e4:d7:c6:4e:4b:3c:76:8d:bb:6c:3a:95:ee: 4e:3d:9f:c0:54:fd:84:82:da:95:c7:4d:2e:4e:4d:31:62:76: 4e:2b:15:23:65:4c:19:a5:ec:2b:ae:a4:fb:46:63:6d:fc:64: e9:8c:b6:4e:ae:32:cd:fb:02:3c:03:17:b6:3b:2b:1c:30:c2: f1:10:a9:e7:1d:92:83:c7:c5:92:5d:a4:16:e2:80:20:5f:4b: a9:7d:c2:d9 -----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgIUUjaY/1JkMAwxQNHEdgubnvbB+N4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY5NjYzRkU0M0QzM0YyOEY2RTFFRjcxN0ZFQUFERDIx RTFENUUxNTAeFw0yNTAyMDQxODE2MjlaFw0yNjAyMDMxODIxMjlaMDMxMTAvBgNV BAMTKDIyMzkxRDhCMDBCQjAzRkZDQUUwN0JFNDIxNDA5MDgwMzgwMkFCNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCudrOXeqD9a1uNaEcK3BYqBUKr Av2nkJ8e1CriFW6qGM1lZXjL3aFex3//dmw4XI2kkNW733K14vOIJJ2auJHqb+TT S5QAQ+WeVDreCHu+QadnpI7Pm3g2E0qIq6WL+qMNz7JYonFMvWdIr3n1Z1Q3lxo0 EzYUshl/qWlLuOgevdKNzhMCKAAT2fVW5nKGjpeABPPpb/MpfPpuwkZzUFI7o9SE iRVybvfpkeO27qia0p7mFeKw+dCHD0DqDQy8J5CghbOgayAInv/hRkuTUzfFwMdE Xc14Q80DWrNIptdhBwwxh+pKs8VJrkEaBgkOV2N3vAY2pYwsNRsXswa/lRTzAgMB AAGjggLMMIICyDAdBgNVHQ4EFgQUIjkdiwC7A//K4HvkIUCQgDgCq1AwHwYDVR0j BBgwFoAU/5Zj/kPTPyj24e9xf+qt0h4dXhUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EODc3RTMwRDFGRkYxMDEwRUM0QTQwQkQxREQzOTZDNzBC NzRCRjMyRkIyQzlEMzAzOTc2NTI2MDZGQjY5OUY3LzAvRkY5NjYzRkU0M0QzM0Yy OEY2RTFFRjcxN0ZFQUFERDIxRTFENUUxNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GRjk2NjNGRTQzRDMzRjI4RjZF MUVGNzE3RkVBQUREMjFFMUQ1RTE1LmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDg3N0UzMEQxRkZGMTAxMEVDNEE0MEJEMUREMzk2QzcwQjc0QkYzMkZC MkM5RDMwMzk3NjUyNjA2RkI2OTlGNy8wLzMxMzMzMTJlMzEzNjMxMmUzMjMyMzAy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM3MzAzMDM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKD odwwDQYJKoZIhvcNAQELBQADggEBAGF6b+CMBStOjjag8xak16AurgxOQuhZkKPC fiFP3+U9DtXh3PJZikPzeY+9r7s6rkcb0UiUTqH+dLAwCfHvaXLLExSwi0u7zWIU UdFZl4C1RvA0EwQ6lPjIgsyFP7g+YoBAsVc+MwaLcPkyHbw5B2Uncbh7nWgiQHI8 NQKbbIdysV/mcYLuHnn8V0ru/ABLJMaylXYVkYnANTSnQT1zKyEbmElxisj/5NfG Tks8do27bDqV7k49n8BU/YSC2pXHTS5OTTFidk4rFSNlTBml7CuupPtGY238ZOmM tk6uMs37AjwDF7Y7KxwwwvEQqecdkoPHxZJdpBbigCBfS6l9wtk= -----END CERTIFICATE-----Generated at Sat Apr 5 16:31:43 2025 by rpki-client