$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E9194624D3A085A0ED6E22542D018E88E162B88413FDE3977251B20446CEA008/0/3136382e3139372e3137322e302f32322d3234203d3e20323634373733.roa File: 3136382e3139372e3137322e302f32322d3234203d3e20323634373733.roa (raw, json) Hash identifier: 3rfNOwpMTnnVLYvbkknBiFpW3dsqoeSfVXWluCnVzC8= Subject key identifier: C9:FC:E0:25:37:3C:D4:1F:AD:96:0A:05:4B:EB:14:94:FE:87:1D:A8 Certificate issuer: /CN=68C8542A3CA38BCC7673F17E9F11BA5DD51B25E4 Certificate serial: 438794B1D2A671744AFD88C847E29F0AB7CF37B0 Authority key identifier: 68:C8:54:2A:3C:A3:8B:CC:76:73:F1:7E:9F:11:BA:5D:D5:1B:25:E4 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/68C8542A3CA38BCC7673F17E9F11BA5DD51B25E4.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E9194624D3A085A0ED6E22542D018E88E162B88413FDE3977251B20446CEA008/0/3136382e3139372e3137322e302f32322d3234203d3e20323634373733.roa Signing time: Tue 04 Feb 2025 18:03:41 +0000 ROA not before: Tue 04 Feb 2025 17:58:41 +0000 ROA not after: Tue 03 Feb 2026 18:03:41 +0000 asID: 264773 IP address blocks: 168.197.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/E9194624D3A085A0ED6E22542D018E88E162B88413FDE3977251B20446CEA008/0/68C8542A3CA38BCC7673F17E9F11BA5DD51B25E4.crl rsync://repository.lacnic.net/rpki/lacnic/E9194624D3A085A0ED6E22542D018E88E162B88413FDE3977251B20446CEA008/0/68C8542A3CA38BCC7673F17E9F11BA5DD51B25E4.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/68C8542A3CA38BCC7673F17E9F11BA5DD51B25E4.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 28 Oct 2025 12:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:87:94:b1:d2:a6:71:74:4a:fd:88:c8:47:e2:9f:0a:b7:cf:37:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68C8542A3CA38BCC7673F17E9F11BA5DD51B25E4 Validity Not Before: Feb 4 17:58:41 2025 GMT Not After : Feb 3 18:03:41 2026 GMT Subject: CN=C9FCE025373CD41FAD960A054BEB1494FE871DA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:87:00:ae:61:58:a8:4c:cb:a6:1c:0b:56:d8: c4:ef:48:b5:8b:88:53:04:fe:80:16:d2:3e:f0:0a: dd:c3:16:10:c7:32:f8:53:b4:32:1a:cd:c6:ad:98: 01:e8:c9:bf:1a:4b:8e:cc:10:f4:a6:ca:89:9b:fb: df:6d:a8:5c:d0:46:59:7a:e3:45:8f:10:51:d1:34: 43:28:48:e0:f7:1c:90:26:da:cc:2f:14:d5:4a:86: 8e:ab:d6:ac:38:1e:06:75:3d:78:74:4c:62:90:f6: 8a:d9:3e:70:1a:a5:37:68:98:80:a2:a7:49:1d:66: 8f:cd:f7:74:64:e1:1e:92:20:69:83:02:12:02:46: ec:92:fe:d0:c5:d3:62:88:01:1e:d2:47:44:72:5e: a8:49:ad:8d:66:83:a9:81:2d:bc:6a:f3:c0:76:c9: c6:be:2b:57:57:eb:b6:d4:09:e7:af:85:ea:22:95: 0f:a1:d7:d7:e8:fe:a4:9e:c2:16:88:a1:ad:43:52: 76:7d:4f:60:79:8c:9e:a7:8d:6b:8d:4f:eb:22:b0: 9d:01:af:fb:40:50:f4:01:6b:bc:7d:69:d0:bb:86: 10:81:68:8e:9a:8c:fb:70:be:eb:88:85:19:13:9e: 7f:29:b0:6a:c7:41:bf:5e:07:2f:2c:bb:34:57:72: 53:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:FC:E0:25:37:3C:D4:1F:AD:96:0A:05:4B:EB:14:94:FE:87:1D:A8 X509v3 Authority Key Identifier: keyid:68:C8:54:2A:3C:A3:8B:CC:76:73:F1:7E:9F:11:BA:5D:D5:1B:25:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/E9194624D3A085A0ED6E22542D018E88E162B88413FDE3977251B20446CEA008/0/68C8542A3CA38BCC7673F17E9F11BA5DD51B25E4.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/68C8542A3CA38BCC7673F17E9F11BA5DD51B25E4.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E9194624D3A085A0ED6E22542D018E88E162B88413FDE3977251B20446CEA008/0/3136382e3139372e3137322e302f32322d3234203d3e20323634373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.197.172.0/22 Signature Algorithm: sha256WithRSAEncryption 14:12:19:28:24:ba:db:9f:69:95:df:86:55:bd:ae:99:df:81: 0a:f6:42:e6:8a:6b:6b:ab:bd:ce:32:10:ce:0e:03:fe:ac:20: df:77:e1:bd:8d:09:3f:99:5f:54:a8:0a:54:76:62:56:2b:99: bd:2f:40:83:5b:b9:ca:cd:a4:d8:4d:08:59:e6:4e:3c:07:bc: f0:0e:e7:53:ac:93:57:87:33:73:2c:ff:c5:78:83:70:6e:19: f8:38:ba:ed:71:a7:78:e5:3d:01:81:2d:af:20:63:70:92:13: 5e:73:3a:7b:79:96:d8:02:b4:52:45:11:32:f7:c9:11:83:54: f9:f1:7d:30:db:92:32:29:33:2f:c9:c8:1d:12:ae:81:21:27: 01:c6:9f:45:01:f1:1e:6b:36:28:b4:e8:b3:b7:2d:66:aa:9d: d1:67:05:99:44:6b:fa:7d:62:2a:54:37:ce:77:c8:33:d1:00: 9f:29:bf:e9:36:64:2f:bf:e0:ea:6a:65:c9:ce:1e:c1:a9:17: 5f:b3:34:1a:d0:93:44:a0:8a:c3:f1:fb:56:dd:ec:0e:60:1f: e4:15:af:65:c3:4d:81:b7:ab:35:99:00:d0:7a:05:2d:5e:b8: f5:21:1e:ac:3b:26:53:96:0a:71:b4:b3:31:d5:2d:92:4f:1b: da:4c:cb:ab -----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgIUQ4eUsdKmcXRK/YjIR+KfCrfPN7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhDODU0MkEzQ0EzOEJDQzc2NzNGMTdFOUYxMUJBNURE NTFCMjVFNDAeFw0yNTAyMDQxNzU4NDFaFw0yNjAyMDMxODAzNDFaMDMxMTAvBgNV BAMTKEM5RkNFMDI1MzczQ0Q0MUZBRDk2MEEwNTRCRUIxNDk0RkU4NzFEQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCDhwCuYVioTMumHAtW2MTvSLWL iFME/oAW0j7wCt3DFhDHMvhTtDIazcatmAHoyb8aS47MEPSmyomb+99tqFzQRll6 40WPEFHRNEMoSOD3HJAm2swvFNVKho6r1qw4HgZ1PXh0TGKQ9orZPnAapTdomICi p0kdZo/N93Rk4R6SIGmDAhICRuyS/tDF02KIAR7SR0RyXqhJrY1mg6mBLbxq88B2 yca+K1dX67bUCeevheoilQ+h19fo/qSewhaIoa1DUnZ9T2B5jJ6njWuNT+sisJ0B r/tAUPQBa7x9adC7hhCBaI6ajPtwvuuIhRkTnn8psGrHQb9eBy8suzRXclOFAgMB AAGjggLMMIICyDAdBgNVHQ4EFgQUyfzgJTc81B+tlgoFS+sUlP6HHagwHwYDVR0j BBgwFoAUaMhUKjyji8x2c/F+nxG6XdUbJeQwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9FOTE5NDYyNEQzQTA4NUEwRUQ2RTIyNTQyRDAxOEU4OEUx NjJCODg0MTNGREUzOTc3MjUxQjIwNDQ2Q0VBMDA4LzAvNjhDODU0MkEzQ0EzOEJD Qzc2NzNGMTdFOUYxMUJBNURENTFCMjVFNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC82OEM4NTQyQTNDQTM4QkNDNzY3 M0YxN0U5RjExQkE1REQ1MUIyNUU0LmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRTkxOTQ2MjREM0EwODVBMEVENkUyMjU0MkQwMThFODhFMTYyQjg4NDEz RkRFMzk3NzI1MUIyMDQ0NkNFQTAwOC8wLzMxMzYzODJlMzEzOTM3MmUzMTM3MzIy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2MzQzNzM3MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKo xawwDQYJKoZIhvcNAQELBQADggEBABQSGSgkutufaZXfhlW9rpnfgQr2QuaKa2ur vc4yEM4OA/6sIN934b2NCT+ZX1SoClR2YlYrmb0vQINbucrNpNhNCFnmTjwHvPAO 51Osk1eHM3Ms/8V4g3BuGfg4uu1xp3jlPQGBLa8gY3CSE15zOnt5ltgCtFJFETL3 yRGDVPnxfTDbkjIpMy/JyB0SroEhJwHGn0UB8R5rNii06LO3LWaqndFnBZlEa/p9 YipUN853yDPRAJ8pv+k2ZC+/4OpqZcnOHsGpF1+zNBrQk0SgisPx+1bd7A5gH+QV r2XDTYG3qzWZANB6BS1euPUhHqw7JlOWCnG0szHVLZJPG9pMy6s= -----END CERTIFICATE-----Generated at Fri Oct 24 18:13:38 2025 by rpki-client