$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e39312e332e302f32342d3234203d3e203133343234.roa File: 3230302e39312e332e302f32342d3234203d3e203133343234.roa (raw, json) Hash identifier: V19vhLBhCiLdH17Q8j5F4Kq5jsuR5WuQSl9/V5DYKM4= Subject key identifier: B5:AA:1D:E5:2F:F0:17:37:7E:16:A3:2E:B7:26:4A:31:EF:15:EC:6D Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Certificate serial: 6B7C40F11158DE28D161627B06FE0B42F337FBED Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e39312e332e302f32342d3234203d3e203133343234.roa Signing time: Wed 22 Jan 2025 20:35:00 +0000 ROA not before: Wed 22 Jan 2025 20:30:00 +0000 ROA not after: Wed 21 Jan 2026 20:35:00 +0000 asID: 13424 IP address blocks: 200.91.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:7c:40:f1:11:58:de:28:d1:61:62:7b:06:fe:0b:42:f3:37:fb:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Validity Not Before: Jan 22 20:30:00 2025 GMT Not After : Jan 21 20:35:00 2026 GMT Subject: CN=B5AA1DE52FF017377E16A32EB7264A31EF15EC6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b1:d8:e6:da:ef:09:bf:3e:fd:21:5f:31:7d: 78:5b:59:c5:58:88:98:e7:63:ef:d4:35:5f:7f:b3: e2:bc:9c:5b:a8:b1:ef:cf:d5:0e:49:62:c1:b8:84: d5:a4:b3:9a:ce:0c:64:48:94:f6:64:f6:7e:83:59: dd:e3:9d:78:9f:3c:f7:d6:8c:01:0d:ee:dd:f3:41: af:90:a4:d4:b4:f8:42:6e:25:3a:21:e0:bb:2f:60: dd:e0:32:42:f2:07:b0:c2:98:14:be:8c:87:42:e1: a0:55:9f:73:da:5a:67:19:63:2c:36:b0:cd:b1:19: 49:9e:a0:94:8d:5e:c6:c4:ee:34:bc:00:ab:db:e8: e1:11:da:15:50:1c:4a:d4:37:e1:53:b4:df:25:ed: 98:78:17:71:65:41:c7:4c:49:3b:32:7a:fa:db:fa: c3:2f:f4:1b:bc:f1:18:f5:b5:b2:4a:69:b4:92:0f: 5d:28:0b:eb:81:8e:88:d6:88:71:e4:ae:34:3f:f3: 96:9d:99:e4:02:39:3b:3a:f4:0a:5b:04:df:96:d2: 93:4e:98:18:a8:45:95:12:94:bd:d6:9c:41:8e:b7: 56:eb:ce:d2:7b:01:e5:61:d2:f5:de:7a:bf:09:83: bd:4e:75:cf:a6:ea:4a:f1:78:cd:b9:23:a5:68:41: e6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AA:1D:E5:2F:F0:17:37:7E:16:A3:2E:B7:26:4A:31:EF:15:EC:6D X509v3 Authority Key Identifier: keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e39312e332e302f32342d3234203d3e203133343234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.91.3.0/24 Signature Algorithm: sha256WithRSAEncryption b5:c0:49:39:33:ae:8c:86:18:4f:ae:a6:90:a2:fc:26:6f:ae: 33:b9:33:fa:d7:53:cb:65:86:2d:1a:bd:aa:a7:69:ef:c2:fc: 81:d6:81:71:50:e7:29:44:68:26:50:04:16:3a:d6:5a:0b:4f: a8:88:ed:8f:45:bd:a4:b6:80:3e:0f:d4:2b:38:6d:01:85:f3: 70:64:f3:41:be:03:80:f3:ec:5f:c9:b4:37:e4:3d:14:44:31: a6:b6:ab:8c:90:40:7d:60:8c:7d:68:45:1a:33:a4:e6:7b:3c: 8f:7a:64:9b:3a:e7:58:b2:0b:88:97:a3:32:c2:b5:4d:6f:91: e2:16:74:3c:cb:83:3b:05:89:5e:09:1d:d3:37:cf:81:9d:cf: 25:f9:55:48:5c:b0:00:21:96:d4:c9:1e:f7:51:d7:26:f7:d8: 77:51:ae:94:0e:02:10:18:03:3e:db:9d:57:4a:34:a2:ee:3c: ee:00:c3:19:a2:f9:09:8e:e2:82:b1:a2:89:a7:e8:bd:e0:bb: 3d:f7:03:cb:da:74:f8:80:55:3f:44:b1:3a:37:d1:91:20:94: 01:2f:c1:0c:88:f5:c9:f5:93:8b:14:28:de:32:12:f8:57:de: cc:c1:b1:bc:3a:4a:7a:68:6d:67:3a:96:d9:26:0d:64:ca:6f: d3:65:50:81 -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUa3xA8RFY3ijRYWJ7Bv4LQvM3++0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0 RTBFMzY2MTAeFw0yNTAxMjIyMDMwMDBaFw0yNjAxMjEyMDM1MDBaMDMxMTAvBgNV BAMTKEI1QUExREU1MkZGMDE3Mzc3RTE2QTMyRUI3MjY0QTMxRUYxNUVDNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbsdjm2u8Jvz79IV8xfXhbWcVY iJjnY+/UNV9/s+K8nFuose/P1Q5JYsG4hNWks5rODGRIlPZk9n6DWd3jnXifPPfW jAEN7t3zQa+QpNS0+EJuJToh4LsvYN3gMkLyB7DCmBS+jIdC4aBVn3PaWmcZYyw2 sM2xGUmeoJSNXsbE7jS8AKvb6OER2hVQHErUN+FTtN8l7Zh4F3FlQcdMSTsyevrb +sMv9Bu88Rj1tbJKabSSD10oC+uBjojWiHHkrjQ/85admeQCOTs69ApbBN+W0pNO mBioRZUSlL3WnEGOt1brztJ7AeVh0vXeer8Jg71Odc+m6krxeM25I6VoQeZ/AgMB AAGjggLEMIICwDAdBgNVHQ4EFgQUtaod5S/wFzd+FqMutyZKMe8V7G0wHwYDVR0j BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMDJlMzkzMTJlMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyFsDMA0GCSqG SIb3DQEBCwUAA4IBAQC1wEk5M66MhhhPrqaQovwmb64zuTP611PLZYYtGr2qp2nv wvyB1oFxUOcpRGgmUAQWOtZaC0+oiO2PRb2ktoA+D9QrOG0BhfNwZPNBvgOA8+xf ybQ35D0URDGmtquMkEB9YIx9aEUaM6TmezyPemSbOudYsguIl6MywrVNb5HiFnQ8 y4M7BYleCR3TN8+Bnc8l+VVIXLAAIZbUyR73Udcm99h3Ua6UDgIQGAM+251XSjSi 7jzuAMMZovkJjuKCsaKJp+i94Ls99wPL2nT4gFU/RLE6N9GRIJQBL8EMiPXJ9ZOL FCjeMhL4V97MwbG8Okp6aG1nOpbZJg1kym/TZVCB -----END CERTIFICATE-----Generated at Sat Apr 5 11:55:09 2025 by rpki-client