$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/366a451fcf917ec18e843a468ac601584e6b177c.roa File: 366a451fcf917ec18e843a468ac601584e6b177c.roa (raw, json) Hash identifier: 75/mDvGiRngrZVEQT3z0R/X32t7llDGvhOS7PgdLDsA= Subject key identifier: 7D:01:7E:B1:C6:F9:99:65:84:47:55:50:EF:DF:B3:BC:A6:3B:63:4C Certificate issuer: /CN=3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae Certificate serial: 036A Authority key identifier: 1A:71:DF:9A:5E:72:38:35:DC:82:02:55:D3:26:0A:01:8A:9E:55:7E Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/366a451fcf917ec18e843a468ac601584e6b177c.roa Signing time: Fri 19 Aug 2022 15:31:40 +0000 ROA not before: Fri 19 Aug 2022 15:30:12 +0000 ROA not after: Mon 19 Aug 2024 15:30:12 +0000 asID: 28396 IP address blocks: 200.9.182.0/24 maxlen: 24 200.9.183.0/24 maxlen: 24 200.9.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.crl rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.mft rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.cer rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 18 Mar 2023 02:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae Validity Not Before: Aug 19 15:30:12 2022 GMT Not After : Aug 19 15:30:12 2024 GMT Subject: CN=366a451fcf917ec18e843a468ac601584e6b177c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5f:3c:a3:95:75:2d:40:cd:2f:d3:ed:8c:f8: 78:4c:a6:3a:f4:b1:67:69:17:43:09:e1:96:45:f3: 5d:e1:69:af:bc:c6:a1:5a:36:65:e7:f9:4b:e3:25: 60:25:ca:76:dd:07:be:66:65:ef:98:b7:d5:71:f4: c7:63:96:41:a9:06:b1:f0:27:28:a1:3f:9a:2d:1c: 64:09:72:34:b0:14:23:7f:eb:64:d2:34:36:91:ea: 98:1d:b9:e0:f1:47:2d:77:4c:7e:c5:30:bb:18:1c: 0c:f7:15:29:3e:f7:b6:1a:f8:39:bd:de:75:a9:2f: 55:b7:99:8d:7c:5f:b2:9e:1a:7b:83:8d:32:05:35: d2:6f:44:77:85:c1:ea:42:c9:fa:00:88:b0:b5:a4: a1:5e:7c:dc:a1:a1:6b:0f:a5:4c:b2:41:2d:c7:b0: ef:b4:6e:2c:fb:2e:9f:a4:e9:15:4b:bd:77:13:f3: 80:46:52:49:1d:a9:ed:c0:63:31:4d:49:1d:88:df: 50:84:e9:02:e7:f3:56:9d:1d:a9:75:ba:82:cd:b7: ee:1c:c3:7c:f8:f0:30:42:ef:3b:59:59:92:72:70: 04:41:d3:7c:de:d6:b1:43:a1:92:3d:c4:98:a3:00: 82:35:58:0b:93:95:07:13:61:d1:5d:4b:97:c1:92: 81:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:01:7E:B1:C6:F9:99:65:84:47:55:50:EF:DF:B3:BC:A6:3B:63:4C X509v3 Authority Key Identifier: keyid:1A:71:DF:9A:5E:72:38:35:DC:82:02:55:D3:26:0A:01:8A:9E:55:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/366a451fcf917ec18e843a468ac601584e6b177c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.9.182.0-200.9.184.255 Signature Algorithm: sha256WithRSAEncryption 2f:a4:17:1a:ca:e9:06:b2:f5:61:70:db:b3:98:68:5b:e5:b5: 91:31:45:89:05:ab:80:94:ad:93:aa:ce:13:d8:78:f9:6e:81: 2b:bb:45:f3:6f:09:89:25:59:70:1d:df:ad:2f:bc:0f:53:74: 98:61:ea:dc:4d:ce:ec:97:14:5d:84:b9:8a:01:a4:38:89:4f: f0:ee:bc:72:03:63:5a:20:f0:26:55:68:a7:1b:f1:63:f6:83: f5:51:03:92:46:5c:90:df:fc:5d:63:f5:d4:cc:43:e2:6a:51: 2c:89:a9:ac:fc:9b:16:1e:53:ad:7f:a1:53:aa:0d:f5:29:22: 9a:bd:c5:66:18:95:c3:a3:33:ab:32:da:18:92:c1:8a:c5:e0: 46:99:b9:2c:de:cc:dd:f7:df:1d:fe:92:6b:d0:b1:2e:0a:44: 8d:07:be:35:ec:e4:7d:5c:d2:04:28:8d:e8:be:74:2e:0f:22: a2:b2:52:ab:5d:a9:d9:9e:46:b1:28:5b:5a:77:72:5a:da:b9: 5f:34:3d:15:91:0d:66:50:51:a4:55:96:3f:37:a6:5c:db:e3: 8b:d5:6b:da:c6:49:cb:fa:e0:b4:2c:9f:66:0e:69:d9:9f:f2: 44:54:40:79:19:7e:ad:68:34:64:c8:18:ee:b6:a1:a8:5d:cc: ee:fd:13:3e -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgICA2owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM2E0 ZmU5YjliZDA5NWExZWI3M2I5ZmQ4OTEwZDVhMGM2OWQ1MzhhZTAeFw0yMjA4MTkx NTMwMTJaFw0yNDA4MTkxNTMwMTJaMDMxMTAvBgNVBAMTKDM2NmE0NTFmY2Y5MTdl YzE4ZTg0M2E0NjhhYzYwMTU4NGU2YjE3N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEXzyjlXUtQM0v0+2M+HhMpjr0sWdpF0MJ4ZZF813haa+8xqFa NmXn+UvjJWAlynbdB75mZe+Yt9Vx9MdjlkGpBrHwJyihP5otHGQJcjSwFCN/62TS NDaR6pgdueDxRy13TH7FMLsYHAz3FSk+97Ya+Dm93nWpL1W3mY18X7KeGnuDjTIF NdJvRHeFwepCyfoAiLC1pKFefNyhoWsPpUyyQS3HsO+0biz7Lp+k6RVLvXcT84BG Ukkdqe3AYzFNSR2I31CE6QLn81adHal1uoLNt+4cw3z48DBC7ztZWZJycARB03ze 1rFDoZI9xJijAII1WAuTlQcTYdFdS5fBkoHPAgMBAAGjggJjMIICXzAdBgNVHQ4E FgQUfQF+scb5mWWER1VQ79+zvKY7Y0wwHwYDVR0jBBgwFoAUGnHfml5yODXcggJV 0yYKAYqeVX4wDgYDVR0PAQH/BAQDAgeAMIGaBggrBgEFBQcBAQSBjTCBijCBhwYI KwYBBQUHMAKGe3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFj bmljLzQ4ZjA4M2JiLWY2MDMtNDg5My05OTkwLTAyODRjMDRjZWI4NS8zYTRmZTli OWJkMDk1YTFlYjczYjlmZDg5MTBkNWEwYzY5ZDUzOGFlLmNlcjCBmgYIKwYBBQUH AQsEgY0wgYowgYcGCCsGAQUFBzALhntyc3luYzovL3JlcG9zaXRvcnkubGFjbmlj Lm5ldC9ycGtpL2xhY25pYy9hYjg5M2U5Zi04MzU1LTRjOWItYWIzMy02ZmUwNGE0 ZmZjNGYvMzY2YTQ1MWZjZjkxN2VjMThlODQzYTQ2OGFjNjAxNTg0ZTZiMTc3Yy5y b2EwgY8GA1UdHwSBhzCBhDCBgaB/oH2Ge3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNu aWMubmV0L3Jwa2kvbGFjbmljL2FiODkzZTlmLTgzNTUtNGM5Yi1hYjMzLTZmZTA0 YTRmZmM0Zi8zYTRmZTliOWJkMDk1YTFlYjczYjlmZDg5MTBkNWEwYzY5ZDUzOGFl LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgw FjAUBAIAATAOMAwDBAHICbYDBADICbgwDQYJKoZIhvcNAQELBQADggEBAC+kFxrK 6Qay9WFw27OYaFvltZExRYkFq4CUrZOqzhPYePlugSu7RfNvCYklWXAd360vvA9T dJhh6txNzuyXFF2EuYoBpDiJT/DuvHIDY1og8CZVaKcb8WP2g/VRA5JGXJDf/F1j 9dTMQ+JqUSyJqaz8mxYeU61/oVOqDfUpIpq9xWYYlcOjM6sy2hiSwYrF4EaZuSze zN333x3+kmvQsS4KRI0HvjXs5H1c0gQojei+dC4PIqKyUqtdqdmeRrEoW1p3clra uV80PRWRDWZQUaRVlj83plzb44vVa9rGScv64LQsn2YOadmf8kRUQHkZfq1oNGTI GO62oahdzO79Ez4= -----END CERTIFICATE-----Generated at Wed Mar 15 11:35:05 2023 by rpki-client on console-ams.rpki-client.org