$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e302e302f31362d3234203d3e2037343138.roa File: 3230302e32382e302e302f31362d3234203d3e2037343138.roa (raw, json) Hash identifier: KEbX3mo5oFy/ldoMbabCFricqtbCwVNh4AfjJB806TY= Subject key identifier: 24:77:49:2A:7A:27:1F:9A:C3:B7:D3:2B:52:EA:B1:98:37:76:D5:5B Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Certificate serial: 3EB6BCDB79A0EC316EF2EB5E1F715878A0782FA9 Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e302e302f31362d3234203d3e2037343138.roa Signing time: Tue 05 Mar 2024 17:52:13 +0000 ROA not before: Tue 05 Mar 2024 17:47:13 +0000 ROA not after: Tue 04 Mar 2025 17:52:13 +0000 asID: 7418 IP address blocks: 200.28.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 09 May 2024 03:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:b6:bc:db:79:a0:ec:31:6e:f2:eb:5e:1f:71:58:78:a0:78:2f:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Validity Not Before: Mar 5 17:47:13 2024 GMT Not After : Mar 4 17:52:13 2025 GMT Subject: CN=2477492A7A271F9AC3B7D32B52EAB1983776D55B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6d:49:61:8b:d3:49:5c:6d:7f:cd:6c:d3:57: cc:c6:54:fe:ed:30:8d:64:7b:78:3c:d6:0d:a1:f4: 52:92:4e:da:cc:96:39:5d:72:b8:c9:ac:37:d3:bf: c5:05:4f:73:3b:a9:4e:99:8b:45:28:be:93:24:ab: 0a:5e:59:b2:e3:9a:a2:96:f1:7f:6c:53:22:f5:61: 69:97:75:de:d3:a1:69:0d:4f:d5:0f:ee:60:7e:30: 2f:5e:30:2d:bb:8b:ef:0f:89:c4:5b:99:af:3c:b9: 14:87:2f:f2:d6:8d:f3:7a:b8:61:13:16:43:a2:ca: a3:b8:e1:06:3d:5f:1a:ee:d5:31:5e:4b:4f:b7:23: be:8e:bb:76:b3:b0:c6:b4:44:55:1d:a6:c1:7d:e1: 73:57:a3:99:c8:14:d7:40:b4:17:77:63:da:14:ef: 92:ff:e3:4b:67:f9:f5:b9:50:d6:4f:b5:18:56:b3: 48:a5:61:2d:7d:6b:ec:ca:21:b4:e3:d1:c7:f6:2c: 4d:5f:ac:f9:f4:af:19:08:90:b3:7f:20:01:41:ba: 72:5b:c8:e7:4a:77:7c:ea:36:7a:39:d3:cf:f1:e5: 4c:63:55:71:10:a9:2e:bf:25:42:32:15:75:16:63: 34:2f:18:d8:e8:79:50:e0:96:36:dd:ad:39:c0:f3: 37:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:77:49:2A:7A:27:1F:9A:C3:B7:D3:2B:52:EA:B1:98:37:76:D5:5B X509v3 Authority Key Identifier: keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e302e302f31362d3234203d3e2037343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.28.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:95:49:f0:e6:e7:08:80:e9:2c:7a:62:a8:b2:75:6f:8a:07: b2:fd:7d:b1:e9:73:1a:ff:99:3c:f3:8c:c3:03:79:78:04:77: 6a:93:91:d0:a9:72:f4:76:15:23:1b:b1:c1:d2:56:c3:ea:09: eb:41:ad:ec:7f:72:92:3d:25:a9:95:0a:68:db:4a:28:c4:26: 5c:2f:d5:af:25:bb:d9:5e:5e:51:78:ff:35:ad:a7:e2:9c:5d: 2e:ee:b5:83:59:21:00:0f:49:e3:82:2e:f8:57:c9:e1:80:cf: 63:00:12:82:09:95:cb:04:de:63:e3:bb:da:5f:de:aa:c6:8e: eb:c2:26:cb:cb:cd:40:9e:6e:b3:ef:cc:81:b4:c6:d7:3c:f1: 7d:2e:8a:dd:81:b6:03:27:b1:8e:16:da:b7:f6:c9:0c:ab:17: 5a:fa:75:9b:63:b4:75:1e:c8:d1:4c:e9:4c:5b:f1:e0:71:c7: 20:94:f8:68:be:cd:08:9c:08:ef:b2:02:44:f9:d8:8e:11:db: 44:2d:c6:48:20:40:ee:35:78:62:d1:87:14:f5:b4:ee:6f:54: 2c:92:86:f3:4f:20:c4:ee:26:ce:58:ca:f5:f4:74:a3:5f:a6: 57:86:c8:23:09:aa:71:b2:b0:cc:f9:c0:22:2d:fa:a8:28:c5: 1d:7e:84:9a -----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgIUPra823mg7DFu8uteH3FYeKB4L6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0 RTBFMzY2MTAeFw0yNDAzMDUxNzQ3MTNaFw0yNTAzMDQxNzUyMTNaMDMxMTAvBgNV BAMTKDI0Nzc0OTJBN0EyNzFGOUFDM0I3RDMyQjUyRUFCMTk4Mzc3NkQ1NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWbUlhi9NJXG1/zWzTV8zGVP7t MI1ke3g81g2h9FKSTtrMljldcrjJrDfTv8UFT3M7qU6Zi0UovpMkqwpeWbLjmqKW 8X9sUyL1YWmXdd7ToWkNT9UP7mB+MC9eMC27i+8PicRbma88uRSHL/LWjfN6uGET FkOiyqO44QY9Xxru1TFeS0+3I76Ou3azsMa0RFUdpsF94XNXo5nIFNdAtBd3Y9oU 75L/40tn+fW5UNZPtRhWs0ilYS19a+zKIbTj0cf2LE1frPn0rxkIkLN/IAFBunJb yOdKd3zqNno508/x5UxjVXEQqS6/JUIyFXUWYzQvGNjoeVDgljbdrTnA8zclAgMB AAGjggLBMIICvTAdBgNVHQ4EFgQUJHdJKnonH5rDt9MrUuqxmDd21VswHwYDVR0j BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBwQYIKwYBBQUHAQsEgbQwgbEwga4G CCsGAQUFBzALhoGhcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMDJlMzIzODJlMzAyZTMwMmYz MTM2MmQzMjM0MjAzZDNlMjAzNzM0MzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMgcMA0GCSqGSIb3 DQEBCwUAA4IBAQCjlUnw5ucIgOksemKosnVvigey/X2x6XMa/5k884zDA3l4BHdq k5HQqXL0dhUjG7HB0lbD6gnrQa3sf3KSPSWplQpo20ooxCZcL9WvJbvZXl5ReP81 rafinF0u7rWDWSEAD0njgi74V8nhgM9jABKCCZXLBN5j47vaX96qxo7rwibLy81A nm6z78yBtMbXPPF9LordgbYDJ7GOFtq39skMqxda+nWbY7R1HsjRTOlMW/Hgcccg lPhovs0InAjvsgJE+diOEdtELcZIIEDuNXhi0YcU9bTub1QskobzTyDE7ibOWMr1 9HSjX6ZXhsgjCapxsrDM+cAiLfqoKMUdfoSa -----END CERTIFICATE-----Generated at Sun May 5 00:13:58 2024 by rpki-client on console-ams.rpki-client.org