$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E4B9B5F0C45F94AB4A4EE2F3BE7D982CE44BDA77A96A10ED6CE001EAD7BD7133/0/3138312e3233332e39362e302f32322d3234203d3e20323635353334.roa File: 3138312e3233332e39362e302f32322d3234203d3e20323635353334.roa (raw, json) Hash identifier: WEpOMXiyjoF7bVGl426fHyDTN09Uraed9f1UlsO+rFo= Subject key identifier: 22:1D:95:CD:62:E1:A7:26:68:D7:EA:83:49:D9:21:A9:65:F6:A7:B9 Certificate issuer: /CN=2A3E18C8D040DD1C29E422399CF2718C4D9147AC Certificate serial: 4A6CB612DDC755AE4D661996CFBD2D4DB29A5943 Authority key identifier: 2A:3E:18:C8:D0:40:DD:1C:29:E4:22:39:9C:F2:71:8C:4D:91:47:AC Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2A3E18C8D040DD1C29E422399CF2718C4D9147AC.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E4B9B5F0C45F94AB4A4EE2F3BE7D982CE44BDA77A96A10ED6CE001EAD7BD7133/0/3138312e3233332e39362e302f32322d3234203d3e20323635353334.roa Signing time: Tue 04 Feb 2025 18:49:32 +0000 ROA not before: Tue 04 Feb 2025 18:44:32 +0000 ROA not after: Tue 03 Feb 2026 18:49:32 +0000 asID: 265534 IP address blocks: 181.233.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/E4B9B5F0C45F94AB4A4EE2F3BE7D982CE44BDA77A96A10ED6CE001EAD7BD7133/0/2A3E18C8D040DD1C29E422399CF2718C4D9147AC.crl rsync://repository.lacnic.net/rpki/lacnic/E4B9B5F0C45F94AB4A4EE2F3BE7D982CE44BDA77A96A10ED6CE001EAD7BD7133/0/2A3E18C8D040DD1C29E422399CF2718C4D9147AC.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2A3E18C8D040DD1C29E422399CF2718C4D9147AC.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 21 Apr 2025 11:56:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6c:b6:12:dd:c7:55:ae:4d:66:19:96:cf:bd:2d:4d:b2:9a:59:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A3E18C8D040DD1C29E422399CF2718C4D9147AC Validity Not Before: Feb 4 18:44:32 2025 GMT Not After : Feb 3 18:49:32 2026 GMT Subject: CN=221D95CD62E1A72668D7EA8349D921A965F6A7B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ad:76:dc:53:12:ed:6b:a9:c5:e8:b6:5c:75: 90:45:05:c9:31:b1:eb:f7:52:f7:b2:61:9d:e5:38: 72:c4:ac:0e:78:d3:2e:3a:ef:82:51:70:60:ee:c7: d8:76:7f:e4:ba:ab:43:fb:7c:49:99:b3:4b:1a:f1: 79:d3:93:83:81:9f:d3:0c:db:fb:c1:a3:83:96:83: 40:b9:22:a6:a5:41:89:0b:51:3d:0d:ca:af:a7:2a: 7d:9e:17:15:8d:f7:1b:79:29:bd:3d:84:9f:79:fb: 37:cb:d7:34:5c:01:6f:1c:49:58:39:b2:f9:0d:e3: a8:d4:82:cf:92:a0:9a:b0:97:cd:a1:13:f0:33:74: 89:f3:5f:4c:ee:80:9f:01:77:61:1b:a0:84:51:29: 4b:f8:3b:f4:a1:da:85:cb:f9:0a:c4:34:ba:00:38: 54:ca:84:6f:49:66:1a:5b:6f:ad:1b:48:c8:36:d5: c9:a7:aa:cf:78:77:ed:08:d4:c7:2d:bd:74:94:33: 4a:0a:24:44:80:dc:05:3e:6b:d3:db:c9:da:24:38: bf:7d:59:7e:18:43:30:2c:6d:fc:5b:c5:fc:93:f3: 04:81:0b:27:7e:72:3d:f9:4f:65:e2:28:b4:29:a9: f4:5e:07:0e:3f:77:d9:25:d7:1c:6f:b6:8a:33:78: c9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1D:95:CD:62:E1:A7:26:68:D7:EA:83:49:D9:21:A9:65:F6:A7:B9 X509v3 Authority Key Identifier: keyid:2A:3E:18:C8:D0:40:DD:1C:29:E4:22:39:9C:F2:71:8C:4D:91:47:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/E4B9B5F0C45F94AB4A4EE2F3BE7D982CE44BDA77A96A10ED6CE001EAD7BD7133/0/2A3E18C8D040DD1C29E422399CF2718C4D9147AC.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2A3E18C8D040DD1C29E422399CF2718C4D9147AC.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E4B9B5F0C45F94AB4A4EE2F3BE7D982CE44BDA77A96A10ED6CE001EAD7BD7133/0/3138312e3233332e39362e302f32322d3234203d3e20323635353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 181.233.96.0/22 Signature Algorithm: sha256WithRSAEncryption 90:be:8b:cf:9e:38:5e:38:9e:88:b7:b1:bf:c2:48:54:61:86: 3a:5b:73:59:0f:ee:5f:20:52:ff:36:2d:40:df:44:50:9b:13: f2:54:92:e5:a3:78:bd:e5:e6:4e:64:db:e5:54:08:26:2e:9b: d8:96:a6:23:b9:4c:21:41:a3:1f:86:48:92:0a:b8:4d:44:99: 33:9a:f8:2d:9d:1f:f7:f1:d4:8f:1b:2f:fc:0d:8a:cf:8e:23: 7e:3c:a0:05:a6:2d:a5:49:7a:04:cd:7f:5a:dc:e8:d1:ea:0e: 17:13:6e:89:17:57:1f:93:9b:64:79:b5:1a:f8:51:84:c4:bf: c4:14:f1:50:05:56:33:e7:48:83:b9:b5:76:57:6c:b9:dc:1e: 88:3c:0c:3a:1c:f6:6d:1d:82:34:9b:94:bd:1a:d9:c3:c2:70: 36:8a:5a:ff:de:18:81:f2:4d:8b:a7:dc:60:f9:09:bb:a9:d2: 17:a4:b9:59:98:ac:dc:0b:8b:80:4e:15:43:ba:fe:e5:56:cd: 42:de:b2:60:e8:2c:1a:23:91:8b:a4:2c:83:9a:6b:b8:7b:b6: 11:b3:fe:f9:dc:a2:ed:f1:5c:18:1d:e3:c6:2f:40:43:72:7c: 2c:99:51:d1:55:10:68:38:0e:87:f4:85:0e:2e:61:1d:cb:b2: 32:62:32:64 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUSmy2Et3HVa5NZhmWz70tTbKaWUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEzRTE4QzhEMDQwREQxQzI5RTQyMjM5OUNGMjcxOEM0 RDkxNDdBQzAeFw0yNTAyMDQxODQ0MzJaFw0yNjAyMDMxODQ5MzJaMDMxMTAvBgNV BAMTKDIyMUQ5NUNENjJFMUE3MjY2OEQ3RUE4MzQ5RDkyMUE5NjVGNkE3QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCerXbcUxLta6nF6LZcdZBFBckx sev3UveyYZ3lOHLErA540y4674JRcGDux9h2f+S6q0P7fEmZs0sa8XnTk4OBn9MM 2/vBo4OWg0C5IqalQYkLUT0Nyq+nKn2eFxWN9xt5Kb09hJ95+zfL1zRcAW8cSVg5 svkN46jUgs+SoJqwl82hE/AzdInzX0zugJ8Bd2EboIRRKUv4O/Sh2oXL+QrENLoA OFTKhG9JZhpbb60bSMg21cmnqs94d+0I1MctvXSUM0oKJESA3AU+a9PbydokOL99 WX4YQzAsbfxbxfyT8wSBCyd+cj35T2XiKLQpqfReBw4/d9kl1xxvtoozeMmtAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUIh2VzWLhpyZo1+qDSdkhqWX2p7kwHwYDVR0j BBgwFoAUKj4YyNBA3Rwp5CI5nPJxjE2RR6wwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9FNEI5QjVGMEM0NUY5NEFCNEE0RUUyRjNCRTdEOTgyQ0U0 NEJEQTc3QTk2QTEwRUQ2Q0UwMDFFQUQ3QkQ3MTMzLzAvMkEzRTE4QzhEMDQwREQx QzI5RTQyMjM5OUNGMjcxOEM0RDkxNDdBQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yQTNFMThDOEQwNDBERDFDMjlF NDIyMzk5Q0YyNzE4QzREOTE0N0FDLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRTRCOUI1RjBDNDVGOTRBQjRBNEVFMkYzQkU3RDk4MkNFNDRCREE3N0E5 NkExMEVENkNFMDAxRUFEN0JENzEzMy8wLzMxMzgzMTJlMzIzMzMzMmUzOTM2MmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM1MzUzMzM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtelg MA0GCSqGSIb3DQEBCwUAA4IBAQCQvovPnjheOJ6It7G/wkhUYYY6W3NZD+5fIFL/ Ni1A30RQmxPyVJLlo3i95eZOZNvlVAgmLpvYlqYjuUwhQaMfhkiSCrhNRJkzmvgt nR/38dSPGy/8DYrPjiN+PKAFpi2lSXoEzX9a3OjR6g4XE26JF1cfk5tkebUa+FGE xL/EFPFQBVYz50iDubV2V2y53B6IPAw6HPZtHYI0m5S9GtnDwnA2ilr/3hiB8k2L p9xg+Qm7qdIXpLlZmKzcC4uAThVDuv7lVs1C3rJg6CwaI5GLpCyDmmu4e7YRs/75 3KLt8VwYHePGL0BDcnwsmVHRVRBoOA6H9IUOLmEdy7IyYjJk -----END CERTIFICATE-----Generated at Thu Apr 17 23:10:40 2025 by rpki-client