$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DAA9493C1F59860E4AF212245832BDCCA500BE51B3915BB0BCFC8D3D72DAD8CF/0/323830333a386135303a3a2f33322d3332203d3e20323733313735.roa File: 323830333a386135303a3a2f33322d3332203d3e20323733313735.roa (raw, json) Hash identifier: 52CkrWIeh3/WtMUuKWKH8nsK+HsC8V+k1+vyMgSvhdE= Subject key identifier: 70:6C:06:23:2C:D2:8A:75:22:A0:B0:B0:A5:94:6D:7B:E4:0F:2C:37 Certificate issuer: /CN=21AFD4435E9D87781118BD16F97AD81F119BFBD6 Certificate serial: 5900B529EF3B28E7F0B55F61003A9BC45A950E13 Authority key identifier: 21:AF:D4:43:5E:9D:87:78:11:18:BD:16:F9:7A:D8:1F:11:9B:FB:D6 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21AFD4435E9D87781118BD16F97AD81F119BFBD6.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DAA9493C1F59860E4AF212245832BDCCA500BE51B3915BB0BCFC8D3D72DAD8CF/0/323830333a386135303a3a2f33322d3332203d3e20323733313735.roa Signing time: Thu 27 Mar 2025 12:12:59 +0000 ROA not before: Thu 27 Mar 2025 12:07:59 +0000 ROA not after: Thu 26 Mar 2026 12:12:59 +0000 asID: 273175 IP address blocks: 2803:8a50::/32 maxlen: 32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/DAA9493C1F59860E4AF212245832BDCCA500BE51B3915BB0BCFC8D3D72DAD8CF/0/21AFD4435E9D87781118BD16F97AD81F119BFBD6.crl rsync://repository.lacnic.net/rpki/lacnic/DAA9493C1F59860E4AF212245832BDCCA500BE51B3915BB0BCFC8D3D72DAD8CF/0/21AFD4435E9D87781118BD16F97AD81F119BFBD6.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21AFD4435E9D87781118BD16F97AD81F119BFBD6.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 20:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:00:b5:29:ef:3b:28:e7:f0:b5:5f:61:00:3a:9b:c4:5a:95:0e:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AFD4435E9D87781118BD16F97AD81F119BFBD6 Validity Not Before: Mar 27 12:07:59 2025 GMT Not After : Mar 26 12:12:59 2026 GMT Subject: CN=706C06232CD28A7522A0B0B0A5946D7BE40F2C37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c3:5a:b2:54:97:10:d8:30:ee:45:67:3d:df: c8:65:d9:c7:65:26:9d:49:6a:94:af:7c:17:7d:e5: 1e:38:71:fc:4a:36:82:b7:c2:7b:c1:3c:7f:9b:44: d3:c6:e3:80:3f:54:0a:8d:ef:c0:fa:85:22:a1:0a: 29:85:39:63:31:ba:ff:0a:67:af:bb:54:09:da:06: c7:c5:6b:8a:2e:c2:ab:78:70:a8:b2:1d:2a:e9:5d: 8d:b7:b9:b2:fd:37:c5:56:24:2a:12:b1:ff:02:ae: b4:89:8a:3b:b6:5d:3e:0a:c2:8a:92:22:f9:f5:be: a4:ed:f0:2f:b1:6d:69:f6:c1:37:63:64:db:3d:68: 38:6e:52:a2:1c:2a:d7:f9:78:37:01:cc:25:08:b1: 60:27:e5:99:ca:87:00:b4:23:ae:0e:35:52:d3:8f: 6c:44:88:97:49:9e:38:ef:77:be:c0:5e:55:72:9d: eb:77:9e:5b:33:4e:24:54:35:f7:2e:83:aa:30:ba: 43:ce:6d:88:0f:93:7a:bb:ff:63:b4:10:17:a2:08: 1a:2d:71:a3:59:e1:a3:ae:70:d0:e1:de:8c:70:66: 1a:01:58:94:28:32:da:13:d9:cd:08:5e:62:4b:f9: a0:e3:01:40:37:dc:4b:d0:18:87:f3:a5:dd:16:d7: 94:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6C:06:23:2C:D2:8A:75:22:A0:B0:B0:A5:94:6D:7B:E4:0F:2C:37 X509v3 Authority Key Identifier: keyid:21:AF:D4:43:5E:9D:87:78:11:18:BD:16:F9:7A:D8:1F:11:9B:FB:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/DAA9493C1F59860E4AF212245832BDCCA500BE51B3915BB0BCFC8D3D72DAD8CF/0/21AFD4435E9D87781118BD16F97AD81F119BFBD6.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21AFD4435E9D87781118BD16F97AD81F119BFBD6.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DAA9493C1F59860E4AF212245832BDCCA500BE51B3915BB0BCFC8D3D72DAD8CF/0/323830333a386135303a3a2f33322d3332203d3e20323733313735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:8a50::/32 Signature Algorithm: sha256WithRSAEncryption 8d:25:ec:8a:bb:75:9e:b8:32:e5:9a:1f:d0:78:ad:21:a6:ae: 01:ea:03:90:d2:54:2c:cf:88:97:fa:de:a5:cf:c3:4d:af:b2: 9b:31:d4:da:2a:df:f0:e6:16:d7:d2:4e:c8:93:3d:53:64:76: 90:e7:04:28:b9:04:3d:bd:5e:07:92:34:b2:7b:14:2b:62:9a: 63:72:df:bc:66:3f:97:c5:03:f8:d3:83:98:9b:83:98:78:36: a3:d1:5c:b6:85:23:e1:10:73:6c:38:5f:cf:2f:6f:f1:f0:72: 72:09:e7:85:c2:96:15:2f:21:fe:f7:e1:03:5c:5b:59:8d:3f: 87:c8:a7:3f:b0:ef:8d:91:20:dc:e2:c4:50:44:7d:7a:dc:3e: d6:2e:16:8f:47:11:72:cc:ac:36:f0:ad:db:b2:de:00:8f:81: 86:6d:c4:d9:25:a2:98:f5:86:a5:26:73:93:05:62:0b:6d:69: 9a:2c:8f:03:a3:1a:4e:8e:66:00:a7:d2:1d:5d:53:87:55:24: 49:0e:94:f6:74:32:e8:42:8e:04:83:99:28:09:b4:ad:9e:c3: ae:f2:6a:0c:34:a3:6f:29:af:35:1a:b3:52:0f:11:be:f8:85: 3c:50:27:f9:2d:a4:17:c3:af:24:80:ab:2b:7f:03:91:06:21: 5a:b3:f7:92 -----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgIUWQC1Ke87KOfwtV9hADqbxFqVDhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBRkQ0NDM1RTlEODc3ODExMThCRDE2Rjk3QUQ4MUYx MTlCRkJENjAeFw0yNTAzMjcxMjA3NTlaFw0yNjAzMjYxMjEyNTlaMDMxMTAvBgNV BAMTKDcwNkMwNjIzMkNEMjhBNzUyMkEwQjBCMEE1OTQ2RDdCRTQwRjJDMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0w1qyVJcQ2DDuRWc938hl2cdl Jp1JapSvfBd95R44cfxKNoK3wnvBPH+bRNPG44A/VAqN78D6hSKhCimFOWMxuv8K Z6+7VAnaBsfFa4ouwqt4cKiyHSrpXY23ubL9N8VWJCoSsf8CrrSJiju2XT4KwoqS Ivn1vqTt8C+xbWn2wTdjZNs9aDhuUqIcKtf5eDcBzCUIsWAn5ZnKhwC0I64ONVLT j2xEiJdJnjjvd77AXlVynet3nlszTiRUNfcug6owukPObYgPk3q7/2O0EBeiCBot caNZ4aOucNDh3oxwZhoBWJQoMtoT2c0IXmJL+aDjAUA33EvQGIfzpd0W15SnAgMB AAGjggLJMIICxTAdBgNVHQ4EFgQUcGwGIyzSinUioLCwpZRte+QPLDcwHwYDVR0j BBgwFoAUIa/UQ16dh3gRGL0W+XrYHxGb+9YwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EQUE5NDkzQzFGNTk4NjBFNEFGMjEyMjQ1ODMyQkRDQ0E1 MDBCRTUxQjM5MTVCQjBCQ0ZDOEQzRDcyREFEOENGLzAvMjFBRkQ0NDM1RTlEODc3 ODExMThCRDE2Rjk3QUQ4MUYxMTlCRkJENi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yMUFGRDQ0MzVFOUQ4Nzc4MTEx OEJEMTZGOTdBRDgxRjExOUJGQkQ2LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvREFBOTQ5M0MxRjU5ODYwRTRBRjIxMjI0NTgzMkJEQ0NBNTAwQkU1MUIz OTE1QkIwQkNGQzhEM0Q3MkRBRDhDRi8wLzMyMzgzMDMzM2EzODYxMzUzMDNhM2Ey ZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzczMzMxMzczNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDilAw DQYJKoZIhvcNAQELBQADggEBAI0l7Iq7dZ64MuWaH9B4rSGmrgHqA5DSVCzPiJf6 3qXPw02vspsx1Noq3/DmFtfSTsiTPVNkdpDnBCi5BD29XgeSNLJ7FCtimmNy37xm P5fFA/jTg5ibg5h4NqPRXLaFI+EQc2w4X88vb/HwcnIJ54XClhUvIf734QNcW1mN P4fIpz+w742RINzixFBEfXrcPtYuFo9HEXLMrDbwrduy3gCPgYZtxNklopj1hqUm c5MFYgttaZosjwOjGk6OZgCn0h1dU4dVJEkOlPZ0MuhCjgSDmSgJtK2ew67yagw0 o28przUas1IPEb74hTxQJ/ktpBfDrySAqyt/A5EGIVqz95I= -----END CERTIFICATE-----Generated at Fri Apr 18 22:57:17 2025 by rpki-client