$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DFF1B81EAB88ECD114088D99260FFAB48D680EDF516A43ADB29187AD25591E1B/0/34352e3233382e3137362e302f32332d3234203d3e20323636383436.roa File: 34352e3233382e3137362e302f32332d3234203d3e20323636383436.roa (raw, json) Hash identifier: Ih7oDld5f4O9rxONT5YsfxaDf1v+Yr2JwZVTF/Bo4bU= Subject key identifier: 8F:5F:D9:D9:EB:4D:52:58:8E:AD:48:80:F7:9C:50:72:F3:33:03:09 Certificate issuer: /CN=D81AA43DF031E03121B10374C05B52BBB17ACBEA Certificate serial: 09863EA05E56B8A1F6C459CF402331FC5901AB34 Authority key identifier: D8:1A:A4:3D:F0:31:E0:31:21:B1:03:74:C0:5B:52:BB:B1:7A:CB:EA Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D81AA43DF031E03121B10374C05B52BBB17ACBEA.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DFF1B81EAB88ECD114088D99260FFAB48D680EDF516A43ADB29187AD25591E1B/0/34352e3233382e3137362e302f32332d3234203d3e20323636383436.roa Signing time: Tue 04 Feb 2025 18:54:10 +0000 ROA not before: Tue 04 Feb 2025 18:49:10 +0000 ROA not after: Tue 03 Feb 2026 18:54:10 +0000 asID: 266846 IP address blocks: 45.238.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/DFF1B81EAB88ECD114088D99260FFAB48D680EDF516A43ADB29187AD25591E1B/0/D81AA43DF031E03121B10374C05B52BBB17ACBEA.crl rsync://repository.lacnic.net/rpki/lacnic/DFF1B81EAB88ECD114088D99260FFAB48D680EDF516A43ADB29187AD25591E1B/0/D81AA43DF031E03121B10374C05B52BBB17ACBEA.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D81AA43DF031E03121B10374C05B52BBB17ACBEA.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 06:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:86:3e:a0:5e:56:b8:a1:f6:c4:59:cf:40:23:31:fc:59:01:ab:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D81AA43DF031E03121B10374C05B52BBB17ACBEA Validity Not Before: Feb 4 18:49:10 2025 GMT Not After : Feb 3 18:54:10 2026 GMT Subject: CN=8F5FD9D9EB4D52588EAD4880F79C5072F3330309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:a1:cc:67:ed:e0:db:1e:2d:b5:68:e1:e8:43: 50:a9:d0:81:bc:be:c7:30:65:66:a5:32:c6:38:34: 71:8a:d2:01:da:de:ac:16:15:d3:91:ea:11:a7:e8: 2d:cf:85:3e:ba:84:ea:57:1a:bd:8c:5d:93:e6:ef: ca:5e:93:54:01:a1:86:05:83:60:8b:ea:c9:b6:cf: bd:35:b1:53:b4:b4:c9:85:08:e3:a5:39:35:48:03: 55:2b:1d:0d:05:18:d1:f6:01:6b:68:0b:bf:d9:25: 06:56:c8:af:4d:95:f2:38:59:3b:11:5a:0a:8e:36: d8:fc:d5:c8:24:d7:c6:fc:3f:12:db:2c:13:cf:4e: 07:11:4e:46:0c:19:27:f0:60:e6:d1:7b:fd:fc:00: 87:17:65:a6:ed:ef:f7:68:3f:8f:9c:2d:34:7d:5f: bc:76:49:fc:65:93:2b:48:f5:2b:bd:a5:9c:0c:e1: 7e:4f:4f:9c:0e:65:54:c4:67:8b:39:48:d6:0a:72: 43:e1:10:6a:4a:d8:ae:68:2f:b8:04:d0:02:c1:71: b9:fa:bb:6a:6a:d5:06:b3:13:df:7b:1c:47:c9:9a: df:8f:b8:74:c9:85:b0:ef:55:40:b6:e0:0c:b9:aa: 31:1b:44:e7:7e:3c:96:e8:50:6f:1d:d2:d3:92:bf: d0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:5F:D9:D9:EB:4D:52:58:8E:AD:48:80:F7:9C:50:72:F3:33:03:09 X509v3 Authority Key Identifier: keyid:D8:1A:A4:3D:F0:31:E0:31:21:B1:03:74:C0:5B:52:BB:B1:7A:CB:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/DFF1B81EAB88ECD114088D99260FFAB48D680EDF516A43ADB29187AD25591E1B/0/D81AA43DF031E03121B10374C05B52BBB17ACBEA.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D81AA43DF031E03121B10374C05B52BBB17ACBEA.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DFF1B81EAB88ECD114088D99260FFAB48D680EDF516A43ADB29187AD25591E1B/0/34352e3233382e3137362e302f32332d3234203d3e20323636383436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.238.176.0/23 Signature Algorithm: sha256WithRSAEncryption a4:29:3f:3b:0d:d8:f9:af:b5:e3:da:80:d2:1d:10:8d:07:0f: 71:9f:3c:cf:82:88:ea:f7:cb:17:f8:1c:4e:18:bf:9c:72:9d: 80:c4:68:38:f4:c9:ef:d2:33:b0:d5:fc:c3:21:72:e2:c6:ef: 11:be:5a:d9:a7:1a:03:1a:d0:f5:ca:34:c0:25:bd:61:15:3d: 15:b6:e4:68:3a:1e:35:05:97:89:96:5e:21:a5:35:79:6f:a8: 86:17:7b:88:3b:99:02:53:9f:85:19:f1:ee:86:78:5e:09:d5: 4e:22:01:0e:72:bd:8a:47:26:91:2a:ed:a6:6f:df:17:17:9b: cb:0b:37:8a:a6:00:f9:26:ac:a5:c1:c1:b1:41:fc:76:b0:35: 81:1b:00:e5:00:29:48:30:2e:27:e9:85:9b:66:f9:ff:bb:2e: a5:11:a6:36:06:28:1c:a9:8c:9f:d4:c9:97:a3:28:bb:43:43: 00:22:b0:53:bd:15:1d:7e:41:94:dd:f4:2e:95:5e:25:de:83: a0:4d:e9:57:ed:39:eb:d8:2c:61:ad:f0:60:fc:46:af:00:b2: b2:3c:6c:17:09:b0:eb:06:22:8e:9b:0f:fa:4f:b9:5a:5a:1d: db:33:9c:30:64:ee:d9:c7:e4:50:c9:03:d6:e1:f4:3e:c7:e4: 8b:b6:43:c4 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUCYY+oF5WuKH2xFnPQCMx/FkBqzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDgxQUE0M0RGMDMxRTAzMTIxQjEwMzc0QzA1QjUyQkJC MTdBQ0JFQTAeFw0yNTAyMDQxODQ5MTBaFw0yNjAyMDMxODU0MTBaMDMxMTAvBgNV BAMTKDhGNUZEOUQ5RUI0RDUyNTg4RUFENDg4MEY3OUM1MDcyRjMzMzAzMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwocxn7eDbHi21aOHoQ1Cp0IG8 vscwZWalMsY4NHGK0gHa3qwWFdOR6hGn6C3PhT66hOpXGr2MXZPm78pek1QBoYYF g2CL6sm2z701sVO0tMmFCOOlOTVIA1UrHQ0FGNH2AWtoC7/ZJQZWyK9NlfI4WTsR WgqONtj81cgk18b8PxLbLBPPTgcRTkYMGSfwYObRe/38AIcXZabt7/doP4+cLTR9 X7x2SfxlkytI9Su9pZwM4X5PT5wOZVTEZ4s5SNYKckPhEGpK2K5oL7gE0ALBcbn6 u2pq1QazE997HEfJmt+PuHTJhbDvVUC24Ay5qjEbROd+PJboUG8d0tOSv9BJAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUj1/Z2etNUliOrUiA95xQcvMzAwkwHwYDVR0j BBgwFoAU2BqkPfAx4DEhsQN0wFtSu7F6y+owDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9ERkYxQjgxRUFCODhFQ0QxMTQwODhEOTkyNjBGRkFCNDhE NjgwRURGNTE2QTQzQURCMjkxODdBRDI1NTkxRTFCLzAvRDgxQUE0M0RGMDMxRTAz MTIxQjEwMzc0QzA1QjUyQkJCMTdBQ0JFQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EODFBQTQzREYwMzFFMDMxMjFC MTAzNzRDMDVCNTJCQkIxN0FDQkVBLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvREZGMUI4MUVBQjg4RUNEMTE0MDg4RDk5MjYwRkZBQjQ4RDY4MEVERjUx NkE0M0FEQjI5MTg3QUQyNTU5MUUxQi8wLzM0MzUyZTMyMzMzODJlMzEzNzM2MmUz MDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzNjM2MzgzNDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLe6w MA0GCSqGSIb3DQEBCwUAA4IBAQCkKT87Ddj5r7Xj2oDSHRCNBw9xnzzPgojq98sX +BxOGL+ccp2AxGg49Mnv0jOw1fzDIXLixu8RvlrZpxoDGtD1yjTAJb1hFT0VtuRo Oh41BZeJll4hpTV5b6iGF3uIO5kCU5+FGfHuhnheCdVOIgEOcr2KRyaRKu2mb98X F5vLCzeKpgD5JqylwcGxQfx2sDWBGwDlAClIMC4n6YWbZvn/uy6lEaY2BigcqYyf 1MmXoyi7Q0MAIrBTvRUdfkGU3fQulV4l3oOgTelX7Tnr2CxhrfBg/EavALKyPGwX CbDrBiKOmw/6T7laWh3bM5wwZO7Zx+RQyQPW4fQ+x+SLtkPE -----END CERTIFICATE-----Generated at Sat Apr 5 15:27:55 2025 by rpki-client