$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/323830303a3332303a3430633a3a2f34382d3438203d3e203237383832.roa File: 323830303a3332303a3430633a3a2f34382d3438203d3e203237383832.roa (raw, json) Hash identifier: +345MOoqyqDAgfk0WAuQ3RFXTWTGA1e+4sSXKJYV6ks= Subject key identifier: 7E:3A:56:CB:1A:49:64:4F:D2:AF:EB:3E:2D:FD:79:6C:34:6F:14:A3 Certificate issuer: /CN=B3866813178FF550E6FCABCD492387DD1D0E08A5 Certificate serial: 4571881E90010F6A9C22D72E5F4F6B1889B0F638 Authority key identifier: B3:86:68:13:17:8F:F5:50:E6:FC:AB:CD:49:23:87:DD:1D:0E:08:A5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/323830303a3332303a3430633a3a2f34382d3438203d3e203237383832.roa Signing time: Tue 04 Feb 2025 20:05:39 +0000 ROA not before: Tue 04 Feb 2025 20:00:39 +0000 ROA not after: Tue 03 Feb 2026 20:05:39 +0000 asID: 27882 IP address blocks: 2800:320:40c::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.crl rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 14 Apr 2025 20:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:71:88:1e:90:01:0f:6a:9c:22:d7:2e:5f:4f:6b:18:89:b0:f6:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3866813178FF550E6FCABCD492387DD1D0E08A5 Validity Not Before: Feb 4 20:00:39 2025 GMT Not After : Feb 3 20:05:39 2026 GMT Subject: CN=7E3A56CB1A49644FD2AFEB3E2DFD796C346F14A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c3:9f:78:9f:da:e7:2a:a8:a5:3f:75:ec:57: 83:36:56:75:87:91:e7:dc:bc:ae:04:93:e8:0e:b2: 61:14:06:c5:7b:9c:37:9b:84:db:e5:fd:84:fb:11: a9:ee:29:70:d2:3a:30:18:35:4e:50:ce:58:a6:bf: 04:3c:cd:b2:db:22:58:d1:e8:00:67:ed:6b:04:15: 7c:ff:54:3c:47:8d:2d:dd:44:40:51:11:54:86:87: 6c:0b:53:37:82:ed:a3:40:70:cf:11:33:98:5d:5c: 5d:39:9a:fc:b7:8f:cc:bc:e7:a3:6b:fe:30:53:e1: d2:75:44:f4:40:33:98:a5:cf:ba:df:cb:c1:58:97: fe:76:62:72:b6:bc:ae:b7:15:5b:82:81:0f:7a:77: 15:6f:8e:4c:3f:8b:39:28:aa:d7:ad:34:9b:22:ed: a1:e3:cf:c0:e6:33:f9:e7:1d:e0:da:66:68:d3:b9: a5:d8:ce:9a:d5:f4:74:e8:e5:60:7f:90:6c:e2:43: 98:98:a5:a6:e0:1c:3e:17:0f:20:4f:87:45:0c:06: ea:94:bc:0d:96:9f:37:29:da:8a:d7:4b:79:02:cb: e4:3c:68:98:c4:54:f5:58:d7:aa:0e:3f:44:d3:9a: c9:d9:ff:5b:b6:df:60:2a:b7:81:5b:76:ca:f9:85: 0e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:3A:56:CB:1A:49:64:4F:D2:AF:EB:3E:2D:FD:79:6C:34:6F:14:A3 X509v3 Authority Key Identifier: keyid:B3:86:68:13:17:8F:F5:50:E6:FC:AB:CD:49:23:87:DD:1D:0E:08:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/323830303a3332303a3430633a3a2f34382d3438203d3e203237383832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2800:320:40c::/48 Signature Algorithm: sha256WithRSAEncryption 15:7b:5f:28:df:92:25:7e:f5:c6:66:cd:e5:5e:34:d5:16:a6: b5:fd:75:f3:20:ca:6c:5f:5a:73:64:2d:d8:f9:9f:1d:9b:26: 6f:6f:bc:4a:bd:65:35:96:19:76:0a:4e:d5:8d:58:e0:9b:39: 0e:1b:e1:90:5c:1d:e6:9d:db:c8:18:e3:02:7d:21:ad:62:0c: 91:ef:2c:ad:1e:8d:ed:d9:9b:7e:c5:9f:3f:93:cc:ed:7c:7b: ac:42:23:92:47:a1:31:d8:5c:be:f4:ff:27:92:86:a2:e0:c4: df:78:0a:5f:a0:69:93:0c:ce:f6:b3:fd:15:6e:83:4c:e8:14: 43:98:c3:82:f4:3f:14:78:52:83:08:93:69:10:7d:f1:b6:b7: 54:95:71:7f:a0:14:a7:fe:b4:e3:c9:5e:e5:d5:f6:cb:0a:81: 8a:e7:eb:20:fe:f1:c8:ad:15:81:f6:b1:7a:d0:85:bf:1f:bb: 59:5b:56:e1:61:76:5d:75:7e:0a:96:a6:68:08:65:c7:59:ea: 9f:bb:95:15:90:5d:7b:f8:79:56:32:4b:9d:62:e8:64:8b:0b: 91:ba:88:81:ee:5c:7f:1a:3b:2f:1d:6d:c7:8d:9d:8e:14:42: cb:a3:80:bb:e3:3c:ae:4f:4e:a9:8b:b3:0d:88:05:e9:da:74: 1a:07:3f:64 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURXGIHpABD2qcItcuX09rGImw9jgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM4NjY4MTMxNzhGRjU1MEU2RkNBQkNENDkyMzg3REQx RDBFMDhBNTAeFw0yNTAyMDQyMDAwMzlaFw0yNjAyMDMyMDA1MzlaMDMxMTAvBgNV BAMTKDdFM0E1NkNCMUE0OTY0NEZEMkFGRUIzRTJERkQ3OTZDMzQ2RjE0QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNw594n9rnKqilP3XsV4M2VnWH kefcvK4Ek+gOsmEUBsV7nDebhNvl/YT7EanuKXDSOjAYNU5QzlimvwQ8zbLbIljR 6ABn7WsEFXz/VDxHjS3dREBREVSGh2wLUzeC7aNAcM8RM5hdXF05mvy3j8y856Nr /jBT4dJ1RPRAM5ilz7rfy8FYl/52YnK2vK63FVuCgQ96dxVvjkw/izkoqtetNJsi 7aHjz8DmM/nnHeDaZmjTuaXYzprV9HTo5WB/kGziQ5iYpabgHD4XDyBPh0UMBuqU vA2Wnzcp2orXS3kCy+Q8aJjEVPVY16oOP0TTmsnZ/1u232Aqt4Fbdsr5hQ5PAgMB AAGjggLPMIICyzAdBgNVHQ4EFgQUfjpWyxpJZE/Sr+s+Lf15bDRvFKMwHwYDVR0j BBgwFoAUs4ZoExeP9VDm/KvNSSOH3R0OCKUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9GMTU3QkQ1OURBQkNCNkQ5NjFBQzBGMkQwMEJBNTk2NzU5 RkFDODJBMEVBRURFN0QxMjlERjI0MUNCRUZCRjE5LzAvQjM4NjY4MTMxNzhGRjU1 MEU2RkNBQkNENDkyMzg3REQxRDBFMDhBNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CMzg2NjgxMzE3OEZGNTUwRTZG Q0FCQ0Q0OTIzODdERDFEMEUwOEE1LmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRjE1N0JENTlEQUJDQjZEOTYxQUMwRjJEMDBCQTU5Njc1OUZBQzgyQTBF QUVERTdEMTI5REYyNDFDQkVGQkYxOS8wLzMyMzgzMDMwM2EzMzMyMzAzYTM0MzA2 MzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzczODM4MzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAo AAMgBAwwDQYJKoZIhvcNAQELBQADggEBABV7XyjfkiV+9cZmzeVeNNUWprX9dfMg ymxfWnNkLdj5nx2bJm9vvEq9ZTWWGXYKTtWNWOCbOQ4b4ZBcHead28gY4wJ9Ia1i DJHvLK0eje3Zm37Fnz+TzO18e6xCI5JHoTHYXL70/yeShqLgxN94Cl+gaZMMzvaz /RVug0zoFEOYw4L0PxR4UoMIk2kQffG2t1SVcX+gFKf+tOPJXuXV9ssKgYrn6yD+ 8citFYH2sXrQhb8fu1lbVuFhdl11fgqWpmgIZcdZ6p+7lRWQXXv4eVYyS51i6GSL C5G6iIHuXH8aOy8dbceNnY4UQsujgLvjPK5PTqmLsw2IBenadBoHP2Q= -----END CERTIFICATE-----Generated at Fri Apr 11 21:55:14 2025 by rpki-client