$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e34382e302f32302d3234203d3e2037343138.roa File: 3230302e32392e34382e302f32302d3234203d3e2037343138.roa (raw, json) Hash identifier: h+P+VD3xDKl/R7R/1a2d+ZdBc5mlfnULVdiE3wGnGaA= Subject key identifier: C4:39:B7:B8:BE:36:EE:54:72:B2:A4:1D:99:58:8C:78:D0:0B:75:15 Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Certificate serial: 4AE36DAC17447668E6994CD44228FC8EFAF83690 Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e34382e302f32302d3234203d3e2037343138.roa Signing time: Tue 05 Mar 2024 17:52:26 +0000 ROA not before: Tue 05 Mar 2024 17:47:26 +0000 ROA not after: Tue 04 Mar 2025 17:52:26 +0000 asID: 7418 IP address blocks: 200.29.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 09 May 2024 03:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:e3:6d:ac:17:44:76:68:e6:99:4c:d4:42:28:fc:8e:fa:f8:36:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Validity Not Before: Mar 5 17:47:26 2024 GMT Not After : Mar 4 17:52:26 2025 GMT Subject: CN=C439B7B8BE36EE5472B2A41D99588C78D00B7515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6b:9f:e2:16:8c:c5:52:95:bc:05:af:a8:59: c4:e8:12:22:b2:e3:53:e4:c0:35:6d:d1:8b:cf:14: f2:dc:14:8c:8d:c3:ae:b4:b8:85:a7:9c:7c:a8:6e: 93:bb:db:b4:0b:f8:60:d5:f6:1d:d4:29:de:9b:2b: b0:eb:dd:08:40:c4:71:17:b7:03:0f:9e:98:32:6d: 64:64:b2:02:52:7e:18:0d:fd:72:77:27:5b:ed:50: 87:88:2c:36:6a:c9:5c:88:91:96:7c:8b:2b:f1:4f: 34:a1:f4:91:35:21:d5:25:d4:9d:b0:01:c2:6e:23: 20:bb:53:de:05:2c:56:be:c4:05:bd:e9:70:5a:64: 87:f4:7e:cf:81:bd:11:ba:4a:47:84:1a:64:b0:f0: 5f:a2:bd:b3:d1:32:06:0f:45:ef:a4:3a:2e:61:5c: a4:11:b1:88:0c:90:41:e8:bb:5d:a3:5e:ff:89:6e: 0c:79:07:05:87:03:4d:8d:16:e5:92:a2:2f:86:ab: c5:82:9f:c5:93:67:86:0e:7c:e6:73:41:05:54:23: 1a:d7:37:20:95:f7:ed:38:7a:e4:a1:e7:a6:48:db: 44:a3:9c:ac:dd:03:6f:0b:1f:f9:eb:90:bb:f4:59: 81:6f:6f:62:4e:b3:7f:a8:cc:9f:fa:6b:8f:79:76: 39:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:39:B7:B8:BE:36:EE:54:72:B2:A4:1D:99:58:8C:78:D0:0B:75:15 X509v3 Authority Key Identifier: keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e34382e302f32302d3234203d3e2037343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.29.48.0/20 Signature Algorithm: sha256WithRSAEncryption 9d:a1:00:2c:70:30:18:33:e1:97:70:9e:d0:c0:8b:be:d4:7e: 81:fd:19:1e:92:98:15:11:f1:82:26:ad:f3:c3:f9:06:8b:3e: ec:24:e6:67:b7:0d:46:24:2b:e0:4d:a9:d5:54:c8:6f:1b:32: 05:c5:bb:8c:72:a3:7d:eb:cc:ee:da:f4:cd:69:4f:2a:de:d3: 12:63:97:63:81:de:9a:67:ea:ff:c0:2e:ad:25:42:ab:3c:5a: f4:a6:8d:26:3d:52:b7:6e:fa:53:e0:8c:40:ba:86:1c:e1:de: 67:5f:83:fd:e0:b9:11:78:c7:ff:90:e4:64:9c:82:2f:e9:81: cb:a2:4a:4a:33:cf:ad:21:2d:a4:6e:1b:b0:99:1e:20:d2:bb: f6:a3:1e:6c:90:d6:19:f4:ac:eb:f9:2c:9b:10:9d:40:93:41: f2:cc:a5:b4:98:c5:30:5a:ef:f6:a6:28:76:6a:d5:9f:36:9f: 71:0b:85:0c:ac:77:f0:43:fe:1b:ac:3b:9e:aa:d3:e5:a1:3e: 8e:f7:d0:6a:39:a0:43:0f:7d:f6:82:31:35:34:e2:3a:e6:6a: 60:c4:37:d1:9f:0e:a0:3f:35:3a:f4:01:26:86:f7:bc:dd:ff: f8:d9:88:c0:81:6f:7e:8c:bb:1b:88:f5:01:d8:4c:c6:d9:11: bb:1f:54:eb -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUSuNtrBdEdmjmmUzUQij8jvr4NpAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0 RTBFMzY2MTAeFw0yNDAzMDUxNzQ3MjZaFw0yNTAzMDQxNzUyMjZaMDMxMTAvBgNV BAMTKEM0MzlCN0I4QkUzNkVFNTQ3MkIyQTQxRDk5NTg4Qzc4RDAwQjc1MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxa5/iFozFUpW8Ba+oWcToEiKy 41PkwDVt0YvPFPLcFIyNw660uIWnnHyobpO727QL+GDV9h3UKd6bK7Dr3QhAxHEX twMPnpgybWRksgJSfhgN/XJ3J1vtUIeILDZqyVyIkZZ8iyvxTzSh9JE1IdUl1J2w AcJuIyC7U94FLFa+xAW96XBaZIf0fs+BvRG6SkeEGmSw8F+ivbPRMgYPRe+kOi5h XKQRsYgMkEHou12jXv+Jbgx5BwWHA02NFuWSoi+Gq8WCn8WTZ4YOfOZzQQVUIxrX NyCV9+04euSh56ZI20SjnKzdA28LH/nrkLv0WYFvb2JOs3+ozJ/6a495djnNAgMB AAGjggLEMIICwDAdBgNVHQ4EFgQUxDm3uL427lRysqQdmViMeNALdRUwHwYDVR0j BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMDJlMzIzOTJlMzQzODJlMzAy ZjMyMzAyZDMyMzQyMDNkM2UyMDM3MzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyB0wMA0GCSqG SIb3DQEBCwUAA4IBAQCdoQAscDAYM+GXcJ7QwIu+1H6B/RkekpgVEfGCJq3zw/kG iz7sJOZntw1GJCvgTanVVMhvGzIFxbuMcqN968zu2vTNaU8q3tMSY5djgd6aZ+r/ wC6tJUKrPFr0po0mPVK3bvpT4IxAuoYc4d5nX4P94LkReMf/kORknIIv6YHLokpK M8+tIS2kbhuwmR4g0rv2ox5skNYZ9Kzr+SybEJ1Ak0HyzKW0mMUwWu/2pih2atWf Np9xC4UMrHfwQ/4brDueqtPloT6O99BqOaBDD332gjE1NOI65mpgxDfRnw6gPzU6 9AEmhve83f/42YjAgW9+jLsbiPUB2EzG2RG7H1Tr -----END CERTIFICATE-----Generated at Sun May 5 00:13:58 2024 by rpki-client on console-ams.rpki-client.org