$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/3133382e3131372e3230302e302f32322d3234203d3e20323633363939.roa File: 3133382e3131372e3230302e302f32322d3234203d3e20323633363939.roa (raw, json) Hash identifier: 23+4Vw/xTr5RAQM4HmJuUST8M0TIZC1Og4rVqMflUgY= Subject key identifier: BE:58:D3:91:53:B6:A0:E9:56:D6:7C:04:CE:48:9E:19:74:F0:40:FB Certificate issuer: /CN=5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F Certificate serial: 3B2353DE7FCD410D99F816BCC9694A7B77743B67 Authority key identifier: 5E:40:F5:09:D8:EC:34:62:F8:B8:D1:E2:2D:50:FF:EE:08:48:A4:1F Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/3133382e3131372e3230302e302f32322d3234203d3e20323633363939.roa Signing time: Tue 04 Feb 2025 18:06:12 +0000 ROA not before: Tue 04 Feb 2025 18:01:12 +0000 ROA not after: Tue 03 Feb 2026 18:06:12 +0000 asID: 263699 IP address blocks: 138.117.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F.crl rsync://repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 12:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:23:53:de:7f:cd:41:0d:99:f8:16:bc:c9:69:4a:7b:77:74:3b:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F Validity Not Before: Feb 4 18:01:12 2025 GMT Not After : Feb 3 18:06:12 2026 GMT Subject: CN=BE58D39153B6A0E956D67C04CE489E1974F040FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:21:43:e5:6c:35:dd:2d:7c:d5:a9:39:c9:62: 66:93:b7:fd:75:c6:ce:32:5b:d8:56:49:1b:46:84: d2:17:c1:c3:60:d1:a8:99:67:9b:2e:b4:e4:49:e0: 7b:94:6e:f5:ed:de:ff:b2:59:33:3b:26:bc:5f:f6: a2:c5:ca:eb:3f:6a:a9:2f:c7:d0:bb:ab:3a:de:98: ef:31:df:fe:e2:50:08:a1:81:81:f3:6f:e6:ab:39: 22:88:29:9b:cb:51:bb:22:5d:e3:fb:5f:a0:32:20: a6:d5:67:89:d8:1d:85:fd:2b:a9:5a:b0:98:1c:81: 38:59:8c:71:cd:1d:f9:04:73:e3:0c:27:2b:5e:4e: 96:92:61:ea:c5:4c:52:e7:4c:65:c9:57:38:6e:f6: 24:d1:dc:bc:0a:c4:e0:ed:dd:f3:f9:07:61:ed:be: f2:3a:0d:bd:23:23:8a:22:4a:db:07:68:e5:d2:ec: 2c:eb:84:37:59:c1:cf:a3:23:f7:17:c9:0b:6d:8d: 09:d7:6d:61:e6:75:a9:01:1b:cc:82:73:83:2a:92: 54:77:ca:3c:03:3f:c6:ac:af:fa:94:61:45:f9:20: fd:1f:25:79:31:9c:8b:7c:06:70:9d:57:77:1e:54: 6c:38:66:4b:be:ee:94:b5:9c:7e:05:c2:67:02:fa: 0d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:58:D3:91:53:B6:A0:E9:56:D6:7C:04:CE:48:9E:19:74:F0:40:FB X509v3 Authority Key Identifier: keyid:5E:40:F5:09:D8:EC:34:62:F8:B8:D1:E2:2D:50:FF:EE:08:48:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/3133382e3131372e3230302e302f32322d3234203d3e20323633363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.117.200.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:dc:db:4d:d2:06:f1:13:b8:87:34:22:8e:f9:a4:13:4b:f9: 5f:e4:18:59:71:a3:27:db:33:f7:fd:56:d3:c6:57:0e:8b:da: 95:b5:57:7b:b7:8a:80:5f:0b:a0:17:9f:3a:d6:7c:f8:bb:92: 01:2f:83:ba:40:d9:59:2e:28:f8:3e:5d:b4:db:4f:39:a0:05: be:e5:f0:e0:03:d7:b0:56:2f:d1:a1:49:1e:09:4b:8b:50:49: 8e:a8:22:b0:f1:89:c3:73:f0:8f:99:d6:64:de:61:73:d9:65: f0:55:c1:dd:50:96:1b:fe:94:6f:fe:ef:e9:30:f0:a7:4c:be: 13:a5:27:08:5a:b0:8d:02:ab:1b:a8:68:d9:1e:eb:16:2b:cd: 94:ea:4e:d4:4e:ca:fc:37:03:72:bc:78:68:00:2e:1b:64:ca: 4f:0e:88:3e:91:69:1f:2c:b5:ef:88:3c:6b:33:a2:75:ab:05: 59:67:e3:44:b4:d2:a1:05:c6:e7:be:7c:1c:78:7b:44:22:dc: 50:5c:d2:a4:16:fb:f9:aa:29:fa:4c:cd:88:a3:bc:38:4e:20: 65:5d:49:8b:99:4e:b7:e8:bb:7f:c8:83:77:46:17:10:74:7d: 23:a7:b6:59:aa:56:bc:4d:37:19:96:d5:55:5c:b5:c7:c5:19: a9:cb:93:32 -----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgIUOyNT3n/NQQ2Z+Ba8yWlKe3d0O2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU0MEY1MDlEOEVDMzQ2MkY4QjhEMUUyMkQ1MEZGRUUw ODQ4QTQxRjAeFw0yNTAyMDQxODAxMTJaFw0yNjAyMDMxODA2MTJaMDMxMTAvBgNV BAMTKEJFNThEMzkxNTNCNkEwRTk1NkQ2N0MwNENFNDg5RTE5NzRGMDQwRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsIUPlbDXdLXzVqTnJYmaTt/11 xs4yW9hWSRtGhNIXwcNg0aiZZ5sutORJ4HuUbvXt3v+yWTM7Jrxf9qLFyus/aqkv x9C7qzremO8x3/7iUAihgYHzb+arOSKIKZvLUbsiXeP7X6AyIKbVZ4nYHYX9K6la sJgcgThZjHHNHfkEc+MMJyteTpaSYerFTFLnTGXJVzhu9iTR3LwKxODt3fP5B2Ht vvI6Db0jI4oiStsHaOXS7CzrhDdZwc+jI/cXyQttjQnXbWHmdakBG8yCc4MqklR3 yjwDP8asr/qUYUX5IP0fJXkxnIt8BnCdV3ceVGw4Zku+7pS1nH4FwmcC+g13AgMB AAGjggLMMIICyDAdBgNVHQ4EFgQUvljTkVO2oOlW1nwEzkieGXTwQPswHwYDVR0j BBgwFoAUXkD1CdjsNGL4uNHiLVD/7ghIpB8wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EQURGNkYyNjM1NzgyQzk1RUE2NkY4REQ1REIwRTgyRTFB RkEwMjFGN0JGRDVGOTNBNDlCOTkwMjc4RjM1MEE1LzAvNUU0MEY1MDlEOEVDMzQ2 MkY4QjhEMUUyMkQ1MEZGRUUwODQ4QTQxRi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81RTQwRjUwOUQ4RUMzNDYyRjhC OEQxRTIyRDUwRkZFRTA4NDhBNDFGLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvREFERjZGMjYzNTc4MkM5NUVBNjZGOERENURCMEU4MkUxQUZBMDIxRjdC RkQ1RjkzQTQ5Qjk5MDI3OEYzNTBBNS8wLzMxMzMzODJlMzEzMTM3MmUzMjMwMzAy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2MzMzNjM5Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKK dcgwDQYJKoZIhvcNAQELBQADggEBACvc203SBvETuIc0Io75pBNL+V/kGFlxoyfb M/f9VtPGVw6L2pW1V3u3ioBfC6AXnzrWfPi7kgEvg7pA2VkuKPg+XbTbTzmgBb7l 8OAD17BWL9GhSR4JS4tQSY6oIrDxicNz8I+Z1mTeYXPZZfBVwd1Qlhv+lG/+7+kw 8KdMvhOlJwhasI0CqxuoaNke6xYrzZTqTtROyvw3A3K8eGgALhtkyk8OiD6RaR8s te+IPGszonWrBVln40S00qEFxue+fBx4e0Qi3FBc0qQW+/mqKfpMzYijvDhOIGVd SYuZTrfou3/Ig3dGFxB0fSOntlmqVrxNNxmW1VVctcfFGanLkzI= -----END CERTIFICATE-----Generated at Sun Apr 6 08:09:50 2025 by rpki-client