$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e302e302f31362d3234203d3e203136363239.roa File: 3230302e32382e302e302f31362d3234203d3e203136363239.roa (raw, json) Hash identifier: fdToRfnrhoJjK0HSZ8IToujHKBwPXVs2S3v0fdiPa2E= Subject key identifier: 4D:C3:3C:71:2C:14:AC:51:2C:84:70:84:53:37:65:D9:8D:41:49:F3 Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Certificate serial: 520AD6A07217324FC6121E1ECE8A3B75526812D1 Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e302e302f31362d3234203d3e203136363239.roa Signing time: Tue 04 Feb 2025 18:29:57 +0000 ROA not before: Tue 04 Feb 2025 18:24:57 +0000 ROA not after: Tue 03 Feb 2026 18:29:57 +0000 asID: 16629 IP address blocks: 200.28.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:0a:d6:a0:72:17:32:4f:c6:12:1e:1e:ce:8a:3b:75:52:68:12:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Validity Not Before: Feb 4 18:24:57 2025 GMT Not After : Feb 3 18:29:57 2026 GMT Subject: CN=4DC33C712C14AC512C847084533765D98D4149F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:99:d8:d9:a9:57:fb:d5:0d:4a:4b:00:b5:41: 24:90:08:cb:66:ec:ac:74:95:5d:4a:85:19:63:10: 5d:e9:44:fe:ed:3a:29:d5:fe:da:3a:fb:d1:3b:fb: 23:f1:4c:f0:0c:61:ed:ac:35:3a:fb:a3:d0:6d:30: 07:84:7f:c6:4d:1e:93:e8:76:e1:e2:44:af:de:82: 81:1f:22:ee:d7:24:ec:57:0a:ce:a3:35:04:2b:a6: a6:ef:40:40:80:6e:6d:11:eb:56:30:21:74:c7:ef: 3d:0c:8b:54:f1:88:5e:2b:89:c5:f9:ab:ac:88:45: 00:12:d9:63:5f:bc:eb:3c:6e:f6:f1:54:33:b3:f9: e2:ca:ad:69:56:6f:e9:c8:6a:49:33:54:c0:3b:ec: 02:2e:56:8d:77:7a:0f:51:06:c8:ac:c1:7a:5d:d6: e0:01:77:36:63:d7:38:c7:6f:73:2e:de:d3:13:ab: c9:f6:aa:d9:d6:5e:03:e8:8e:c1:56:ec:73:ba:96: 8d:ca:29:b1:e6:c9:09:e8:61:7f:0d:1c:ac:0c:ee: d7:2f:41:36:cd:84:b5:d9:c1:38:48:3e:61:f9:06: 97:e3:58:43:db:22:2c:20:95:6e:d7:12:f6:11:1e: c9:49:19:f6:4b:77:23:f4:83:ec:b4:11:45:3b:91: b2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C3:3C:71:2C:14:AC:51:2C:84:70:84:53:37:65:D9:8D:41:49:F3 X509v3 Authority Key Identifier: keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e302e302f31362d3234203d3e203136363239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.28.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:ae:6a:4f:68:1f:4b:7e:39:9e:1b:76:f0:c7:53:75:f0:af: d4:00:33:59:86:ba:f3:d7:c6:b9:b4:8b:22:10:6a:bf:fb:bc: 88:31:a0:da:95:34:c9:b1:1e:29:9c:69:e8:cf:30:28:dc:41: b0:84:c0:e2:fb:8e:ba:2f:18:95:06:ac:eb:6c:0b:d2:c2:04: 64:03:8d:c0:44:1a:7f:14:15:42:ef:01:68:a0:51:46:cb:63: 42:82:92:69:4a:8b:5e:73:b0:30:26:f1:fb:79:86:7a:7b:ea: 9f:57:78:04:1b:23:6a:ae:73:89:8b:b4:29:28:73:30:4d:f2: 0c:59:0e:12:ad:9d:28:85:01:f3:ff:07:43:54:d2:3a:0c:a8: 73:8d:d3:f2:84:7d:fd:c3:80:44:7d:6a:c0:ed:b5:1d:b8:3f: b5:6e:34:7b:f8:33:ff:c9:87:ba:fd:cf:4e:19:d6:b2:b0:0f: 2a:6b:b2:c7:ef:6c:77:b5:2a:2c:30:bd:cc:ca:e8:93:f7:5e: 39:b6:9b:72:63:74:5f:d6:62:9d:00:6f:40:69:ff:01:49:2a: f9:f9:31:ae:7f:a4:0b:a8:5f:60:f0:55:6f:30:b7:17:57:85: 5e:06:e7:2f:fc:b7:e6:e9:71:5d:38:97:ab:35:87:db:99:b9: 2d:92:77:70 -----BEGIN CERTIFICATE----- MIIFuTCCBKGgAwIBAgIUUgrWoHIXMk/GEh4ezoo7dVJoEtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0 RTBFMzY2MTAeFw0yNTAyMDQxODI0NTdaFw0yNjAyMDMxODI5NTdaMDMxMTAvBgNV BAMTKDREQzMzQzcxMkMxNEFDNTEyQzg0NzA4NDUzMzc2NUQ5OEQ0MTQ5RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQComdjZqVf71Q1KSwC1QSSQCMtm 7Kx0lV1KhRljEF3pRP7tOinV/to6+9E7+yPxTPAMYe2sNTr7o9BtMAeEf8ZNHpPo duHiRK/egoEfIu7XJOxXCs6jNQQrpqbvQECAbm0R61YwIXTH7z0Mi1TxiF4ricX5 q6yIRQAS2WNfvOs8bvbxVDOz+eLKrWlWb+nIakkzVMA77AIuVo13eg9RBsiswXpd 1uABdzZj1zjHb3Mu3tMTq8n2qtnWXgPojsFW7HO6lo3KKbHmyQnoYX8NHKwM7tcv QTbNhLXZwThIPmH5BpfjWEPbIiwglW7XEvYRHslJGfZLdyP0g+y0EUU7kbIzAgMB AAGjggLDMIICvzAdBgNVHQ4EFgQUTcM8cSwUrFEshHCEUzdl2Y1BSfMwHwYDVR0j BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMDJlMzIzODJlMzAyZTMwMmYz MTM2MmQzMjM0MjAzZDNlMjAzMTM2MzYzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAyBwwDQYJKoZI hvcNAQELBQADggEBADGuak9oH0t+OZ4bdvDHU3Xwr9QAM1mGuvPXxrm0iyIQar/7 vIgxoNqVNMmxHimcaejPMCjcQbCEwOL7jrovGJUGrOtsC9LCBGQDjcBEGn8UFULv AWigUUbLY0KCkmlKi15zsDAm8ft5hnp76p9XeAQbI2quc4mLtCkoczBN8gxZDhKt nSiFAfP/B0NU0joMqHON0/KEff3DgER9asDttR24P7VuNHv4M//Jh7r9z04Z1rKw DyprssfvbHe1KiwwvczK6JP3Xjm2m3JjdF/WYp0Ab0Bp/wFJKvn5Ma5/pAuoX2Dw VW8wtxdXhV4G5y/8t+bpcV04l6s1h9uZuS2Sd3A= -----END CERTIFICATE-----Generated at Sat Apr 5 17:11:16 2025 by rpki-client