$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e35362e3131322e302f32302d3234203d3e2036353033.roa File: 3230302e35362e3131322e302f32302d3234203d3e2036353033.roa (raw, json) Hash identifier: q31CNU+LkKn5grO83eLhixK3eZdRXhUTijAWiiOqImY= Subject key identifier: F4:20:C5:4D:E4:79:6B:18:4F:E0:44:A3:27:C2:CE:D5:CA:CC:00:51 Certificate issuer: /CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15 Certificate serial: 39DD29CB102DD53CA8C03C0BC7A127C839A06332 Authority key identifier: E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e35362e3131322e302f32302d3234203d3e2036353033.roa Signing time: Tue 04 Feb 2025 18:52:41 +0000 ROA not before: Tue 04 Feb 2025 18:47:41 +0000 ROA not after: Tue 03 Feb 2026 18:52:41 +0000 asID: 6503 IP address blocks: 200.56.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.crl rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:dd:29:cb:10:2d:d5:3c:a8:c0:3c:0b:c7:a1:27:c8:39:a0:63:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15 Validity Not Before: Feb 4 18:47:41 2025 GMT Not After : Feb 3 18:52:41 2026 GMT Subject: CN=F420C54DE4796B184FE044A327C2CED5CACC0051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:92:5a:32:72:99:cb:e5:c7:77:b8:f2:0d:1a: ce:13:9c:ec:20:63:a7:74:ed:27:ae:27:e7:e4:c8: 3f:b8:c9:3f:e6:fc:52:4b:c8:e4:26:d1:2b:30:b5: 03:4c:48:4c:10:76:34:55:82:68:e0:8f:22:38:cc: cb:3b:91:fe:a3:f0:11:1f:88:a2:d3:24:49:7c:f0: aa:7a:02:a6:ce:e4:0a:5e:f8:14:2a:3d:f6:85:f1: b0:f0:11:c3:99:a7:ef:8f:4a:e4:9a:c8:16:29:cd: db:c1:49:96:bf:fb:cd:1a:b8:b1:5e:f3:45:a4:f9: a6:1e:d5:6e:bc:87:13:1b:3e:15:94:7b:14:47:fd: eb:ef:81:13:8c:c0:cf:7d:4f:50:4c:7e:74:71:02: ea:1f:fa:d7:3e:b2:36:52:ca:ba:a6:09:a8:bc:b9: 17:2f:6c:16:e9:f4:5d:f1:58:36:11:21:1b:bf:cd: 28:65:6d:45:0f:44:55:15:c2:72:85:ee:58:9a:19: b5:25:a3:b5:b6:f8:41:40:0e:67:85:3b:dc:5e:8b: 12:a1:20:89:7d:be:3f:49:14:a3:0d:45:de:6b:79: db:07:e0:55:3f:18:4e:96:07:24:1a:ed:2f:9b:7b: 7a:72:b9:1b:44:e2:8d:53:6b:f3:a5:a6:4d:05:36: 3b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:20:C5:4D:E4:79:6B:18:4F:E0:44:A3:27:C2:CE:D5:CA:CC:00:51 X509v3 Authority Key Identifier: keyid:E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e35362e3131322e302f32302d3234203d3e2036353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.56.112.0/20 Signature Algorithm: sha256WithRSAEncryption 49:85:30:83:02:49:13:66:f0:45:5b:9b:a1:c3:b0:93:06:15: 8d:94:1a:d9:be:3a:2e:43:87:da:ff:82:a8:bb:b4:22:ed:e5: c2:50:ff:fb:6c:df:93:f7:d4:0e:b7:37:a6:7d:92:99:58:3a: db:6e:44:0f:7e:a9:8f:2a:15:e1:89:b9:40:fc:d6:20:06:ff: 13:dd:b2:3a:b2:49:77:c3:f0:7e:c9:40:0c:ae:3e:16:56:b1: 54:2c:11:e0:5a:4d:f0:7a:b1:6c:d2:58:f1:9f:9f:e7:ab:4d: b2:a5:c8:51:b2:ca:bf:1b:87:3e:cd:d7:50:ef:dc:67:61:f9: cb:64:55:0f:67:09:0c:3a:9b:e7:d4:09:bc:0e:07:69:91:7c: 57:78:5a:c3:17:03:d8:7e:55:d2:9f:86:7b:cd:78:28:37:a7: df:41:8a:1e:ad:ff:db:1e:bd:73:87:15:10:82:99:be:43:84: e8:ab:20:06:91:28:2d:94:df:46:f8:32:08:64:d0:fb:80:42: d6:20:eb:56:27:2d:2a:c5:11:f9:c3:fe:a0:c0:44:71:a6:25: 8a:18:f5:4e:51:e5:0a:8d:81:78:d7:67:69:f0:bd:b0:3d:0a: 5a:db:1e:b9:ba:24:08:63:1b:1e:c2:06:13:a8:48:4b:1d:d9: 1f:9e:cc:b6 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUOd0pyxAt1TyowDwLx6EnyDmgYzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM1REQyOTNFMUMzQkM1RjRERTE1MzE4RkFDNTk2N0U3 RDU1QkYxNTAeFw0yNTAyMDQxODQ3NDFaFw0yNjAyMDMxODUyNDFaMDMxMTAvBgNV BAMTKEY0MjBDNTRERTQ3OTZCMTg0RkUwNDRBMzI3QzJDRUQ1Q0FDQzAwNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNkloycpnL5cd3uPINGs4TnOwg Y6d07SeuJ+fkyD+4yT/m/FJLyOQm0SswtQNMSEwQdjRVgmjgjyI4zMs7kf6j8BEf iKLTJEl88Kp6AqbO5Ape+BQqPfaF8bDwEcOZp++PSuSayBYpzdvBSZa/+80auLFe 80Wk+aYe1W68hxMbPhWUexRH/evvgROMwM99T1BMfnRxAuof+tc+sjZSyrqmCai8 uRcvbBbp9F3xWDYRIRu/zShlbUUPRFUVwnKF7liaGbUlo7W2+EFADmeFO9xeixKh IIl9vj9JFKMNRd5redsH4FU/GE6WByQa7S+be3pyuRtE4o1Ta/Olpk0FNjvdAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQU9CDFTeR5axhP4ESjJ8LO1crMAFEwHwYDVR0j BBgwFoAU413Sk+HDvF9N4VMY+sWWfn1VvxUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9ERjY0OTVERkU1NTdBOTY1NkFGRDkzNDYzN0U5NjYzNEQz RDI3MzlENTA3MkQxN0YxMDgwNThGMEE5Q0E5OTM4LzAvRTM1REQyOTNFMUMzQkM1 RjRERTE1MzE4RkFDNTk2N0U3RDU1QkYxNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FMzVERDI5M0UxQzNCQzVGNERF MTUzMThGQUM1OTY3RTdENTVCRjE1LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvREY2NDk1REZFNTU3QTk2NTZBRkQ5MzQ2MzdFOTY2MzREM0QyNzM5RDUw NzJEMTdGMTA4MDU4RjBBOUNBOTkzOC8wLzMyMzAzMDJlMzUzNjJlMzEzMTMyMmUz MDJmMzIzMDJkMzIzNDIwM2QzZTIwMzYzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATIOHAwDQYJ KoZIhvcNAQELBQADggEBAEmFMIMCSRNm8EVbm6HDsJMGFY2UGtm+Oi5Dh9r/gqi7 tCLt5cJQ//ts35P31A63N6Z9kplYOttuRA9+qY8qFeGJuUD81iAG/xPdsjqySXfD 8H7JQAyuPhZWsVQsEeBaTfB6sWzSWPGfn+erTbKlyFGyyr8bhz7N11Dv3Gdh+ctk VQ9nCQw6m+fUCbwOB2mRfFd4WsMXA9h+VdKfhnvNeCg3p99Bih6t/9sevXOHFRCC mb5DhOirIAaRKC2U30b4Mghk0PuAQtYg61YnLSrFEfnD/qDARHGmJYoY9U5R5QqN gXjXZ2nwvbA9ClrbHrm6JAhjGx7CBhOoSEsd2R+ezLY= -----END CERTIFICATE-----Generated at Sat Apr 5 16:37:05 2025 by rpki-client