$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e302e302f31362d3234203d3e2037343138.roa File: 3230302e32382e302e302f31362d3234203d3e2037343138.roa (raw, json) Hash identifier: bEmyAcXkemD/dc9EBswfDvqV0RYn5u0Pxw+b2kKNCBk= Subject key identifier: 5B:EC:04:4E:D2:2D:BC:77:C0:91:04:D3:DF:A5:92:B9:86:5E:81:F5 Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Certificate serial: 519687CAFBC959ACD28FA9E4DC5A5FF926A24F88 Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e302e302f31362d3234203d3e2037343138.roa Signing time: Tue 04 Feb 2025 18:29:58 +0000 ROA not before: Tue 04 Feb 2025 18:24:58 +0000 ROA not after: Tue 03 Feb 2026 18:29:58 +0000 asID: 7418 IP address blocks: 200.28.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 31 Oct 2025 09:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:96:87:ca:fb:c9:59:ac:d2:8f:a9:e4:dc:5a:5f:f9:26:a2:4f:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Validity Not Before: Feb 4 18:24:58 2025 GMT Not After : Feb 3 18:29:58 2026 GMT Subject: CN=5BEC044ED22DBC77C09104D3DFA592B9865E81F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:dd:4d:88:e7:1a:bd:61:fd:89:6f:10:18: f5:ac:54:55:b4:d2:f1:d5:9d:ca:d0:e1:74:a5:92: 0d:a8:17:cf:4b:05:e1:ad:4d:e6:6e:90:91:cf:42: c5:b8:77:f6:de:68:e4:1c:a9:e9:15:89:09:47:59: 89:e8:77:40:98:dc:db:ef:36:bb:db:6b:63:db:ab: dd:dd:ea:54:60:24:df:05:98:16:e9:3c:ba:8a:e8: 99:5e:46:d9:21:4b:8f:53:af:a6:d9:91:16:e4:d5: 91:e8:7e:21:e1:41:15:ed:66:65:7e:df:83:c4:ad: 85:7b:05:4d:d6:29:8d:44:21:cc:89:00:c8:cd:1b: c8:f5:e0:2f:93:14:ff:f8:9b:10:96:1e:fa:fc:ca: 71:63:9d:f9:b9:81:50:43:a3:04:ad:37:bc:ee:29: 8a:a7:d0:ac:d2:61:ca:a8:f2:8d:78:43:c7:c0:2b: b1:af:5c:b1:66:dc:5a:50:ea:c1:f8:09:f7:15:ee: cb:13:e6:4e:29:2c:24:67:19:4a:9e:c3:d2:07:14: 99:a3:c7:fb:67:25:a3:aa:1c:58:24:e0:cd:f1:83: c2:55:c0:ad:01:17:e2:c6:5d:1e:86:0d:53:3a:41: 6b:3d:04:1c:24:ac:48:d6:60:50:01:22:bd:7b:d5: 1f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:EC:04:4E:D2:2D:BC:77:C0:91:04:D3:DF:A5:92:B9:86:5E:81:F5 X509v3 Authority Key Identifier: keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e302e302f31362d3234203d3e2037343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.28.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:5a:72:37:e2:9a:80:69:0c:c1:3e:e6:0c:94:70:84:1a:fd: c5:1a:58:56:3c:26:c4:42:92:58:21:e3:f4:3e:69:e9:87:db: 1f:ed:4c:d3:25:5f:51:e5:15:99:ae:37:51:8d:88:67:0f:24: 3b:b5:0f:cb:f1:79:7f:76:6c:93:1d:cd:0b:15:15:c7:e7:e5: 07:c0:9e:01:7c:25:52:c0:fc:98:a2:d0:02:ff:41:2e:5d:dc: e0:32:f2:de:29:9c:dd:be:d1:d9:84:c3:2b:52:9d:4d:cf:16: 7d:2c:9f:a5:22:42:2c:27:c9:3f:7c:f4:5a:52:75:b7:b3:c2: 0b:4f:b5:dd:d0:56:de:a2:ad:77:d4:a4:dd:2c:37:a5:a7:24: c9:aa:8f:4e:e2:8e:e2:f6:83:79:71:c6:73:0f:cb:a1:a5:01: 00:16:ba:d6:ed:2c:1d:ce:c3:91:01:87:33:b0:04:74:27:a6: 24:6c:8c:c6:26:07:47:81:1f:d7:41:8e:bf:23:37:d9:26:e4: 29:7c:7c:71:25:9b:cf:06:a6:52:b8:27:2a:33:69:89:fb:68: 7e:a1:71:4c:33:6c:7a:5e:22:ba:b8:bf:d4:0a:64:ef:fc:ef: fc:48:73:83:d4:15:9c:97:dd:53:64:81:a4:a0:b6:12:e0:8f: 87:3e:3f:42 -----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgIUUZaHyvvJWazSj6nk3Fpf+SaiT4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0 RTBFMzY2MTAeFw0yNTAyMDQxODI0NThaFw0yNjAyMDMxODI5NThaMDMxMTAvBgNV BAMTKDVCRUMwNDRFRDIyREJDNzdDMDkxMDREM0RGQTU5MkI5ODY1RTgxRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO9N1NiOcavWH9iW8QGPWsVFW0 0vHVncrQ4XSlkg2oF89LBeGtTeZukJHPQsW4d/beaOQcqekViQlHWYnod0CY3Nvv Nrvba2Pbq93d6lRgJN8FmBbpPLqK6JleRtkhS49Tr6bZkRbk1ZHofiHhQRXtZmV+ 34PErYV7BU3WKY1EIcyJAMjNG8j14C+TFP/4mxCWHvr8ynFjnfm5gVBDowStN7zu KYqn0KzSYcqo8o14Q8fAK7GvXLFm3FpQ6sH4CfcV7ssT5k4pLCRnGUqew9IHFJmj x/tnJaOqHFgk4M3xg8JVwK0BF+LGXR6GDVM6QWs9BBwkrEjWYFABIr171R+xAgMB AAGjggLBMIICvTAdBgNVHQ4EFgQUW+wETtItvHfAkQTT36WSuYZegfUwHwYDVR0j BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBwQYIKwYBBQUHAQsEgbQwgbEwga4G CCsGAQUFBzALhoGhcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMDJlMzIzODJlMzAyZTMwMmYz MTM2MmQzMjM0MjAzZDNlMjAzNzM0MzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMgcMA0GCSqGSIb3 DQEBCwUAA4IBAQB+WnI34pqAaQzBPuYMlHCEGv3FGlhWPCbEQpJYIeP0Pmnph9sf 7UzTJV9R5RWZrjdRjYhnDyQ7tQ/L8Xl/dmyTHc0LFRXH5+UHwJ4BfCVSwPyYotAC /0EuXdzgMvLeKZzdvtHZhMMrUp1NzxZ9LJ+lIkIsJ8k/fPRaUnW3s8ILT7Xd0Fbe oq131KTdLDelpyTJqo9O4o7i9oN5ccZzD8uhpQEAFrrW7SwdzsORAYczsAR0J6Yk bIzGJgdHgR/XQY6/IzfZJuQpfHxxJZvPBqZSuCcqM2mJ+2h+oXFMM2x6XiK6uL/U CmTv/O/8SHOD1BWcl91TZIGkoLYS4I+HPj9C -----END CERTIFICATE-----Generated at Tue Oct 28 06:08:41 2025 by rpki-client