$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/2a352ba9c87b4282d7d13250bd225df98e9bd73c.roa File: 2a352ba9c87b4282d7d13250bd225df98e9bd73c.roa (raw, json) Hash identifier: dh293dQrUBX+r408UUE8XttYMIiNWvxBAezmw0CPQck= Subject key identifier: 2F:85:DF:D0:79:A7:07:C2:E1:CB:9B:AE:1A:17:47:51:F5:D2:1A:37 Certificate issuer: /CN=eec9334789d4fb97b0c0aa483563906a5d69b4c2 Certificate serial: 0B900A Authority key identifier: 08:91:AA:C4:91:82:BB:0E:06:78:FA:DA:78:35:8C:58:DF:34:5C:CB Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/eec9334789d4fb97b0c0aa483563906a5d69b4c2.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/2a352ba9c87b4282d7d13250bd225df98e9bd73c.roa Signing time: Wed 24 Mar 2021 14:31:58 +0000 ROA not before: Wed 24 Mar 2021 14:31:57 +0000 ROA not after: Tue 24 Mar 2026 14:31:57 +0000 asID: 27993 IP address blocks: 170.210.8.0/21 maxlen: 24 170.210.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/eec9334789d4fb97b0c0aa483563906a5d69b4c2.crl rsync://repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/eec9334789d4fb97b0c0aa483563906a5d69b4c2.mft rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/eec9334789d4fb97b0c0aa483563906a5d69b4c2.cer rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 18 Mar 2023 02:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 757770 (0xb900a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eec9334789d4fb97b0c0aa483563906a5d69b4c2 Validity Not Before: Mar 24 14:31:57 2021 GMT Not After : Mar 24 14:31:57 2026 GMT Subject: CN=2a352ba9c87b4282d7d13250bd225df98e9bd73c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0c:fd:0a:3a:f4:8d:a6:ca:a6:d7:62:4b:04: 94:f0:86:22:80:68:39:8e:11:06:de:10:ee:93:a7: 20:98:3f:80:0c:40:ec:7b:7d:6f:39:57:6d:b9:42: 61:fb:bb:99:aa:59:ad:62:1c:8b:14:24:3a:e5:c1: 1c:80:f4:44:ae:e3:3f:64:cd:79:ce:73:40:ef:33: 9d:46:91:9e:87:41:d4:75:f3:75:fd:4d:88:37:c2: e7:bd:35:06:e7:8d:e2:dc:d6:11:09:40:dd:93:6c: 5b:c1:aa:ef:7a:16:67:c2:0c:f7:09:35:0d:e4:17: 5e:d6:4a:12:01:9c:c9:3b:70:ba:3a:fa:a9:01:06: 30:81:82:f4:f5:25:c1:5a:71:f4:c3:31:6d:85:be: 3c:e6:8f:8c:c6:bf:b0:87:ac:79:85:9f:34:35:3c: 35:1d:5a:a4:9b:e8:54:93:fd:53:77:3e:65:4a:3d: a1:85:94:1a:db:33:5f:93:f7:74:6d:07:14:b3:16: 76:cc:7b:47:c2:87:9b:e6:aa:8e:5d:7a:44:8d:98: e0:1d:58:24:21:23:30:5d:7c:31:f4:1e:fa:4c:59: 0a:5c:10:45:ce:2a:b7:82:9a:52:c2:ce:0f:dc:33: 1f:94:82:24:3b:6c:ff:ad:c3:d6:26:4a:48:ca:7f: c0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:85:DF:D0:79:A7:07:C2:E1:CB:9B:AE:1A:17:47:51:F5:D2:1A:37 X509v3 Authority Key Identifier: keyid:08:91:AA:C4:91:82:BB:0E:06:78:FA:DA:78:35:8C:58:DF:34:5C:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/eec9334789d4fb97b0c0aa483563906a5d69b4c2.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/2a352ba9c87b4282d7d13250bd225df98e9bd73c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/eec9334789d4fb97b0c0aa483563906a5d69b4c2.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.210.8.0/21 170.210.36.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:0d:3c:62:c9:27:8f:fc:54:18:9a:26:df:27:38:c1:9f:f0: b9:53:16:cc:32:8f:1f:13:d8:85:a7:63:f7:4f:00:b7:fe:0c: f1:90:1f:96:1a:0b:2a:2c:6c:de:14:47:cc:ec:2f:62:72:8f: 35:03:75:3d:e6:bd:0f:28:e5:46:22:6a:4c:13:20:ec:4e:e9: 32:88:80:d4:29:89:21:17:b8:33:1b:1d:52:34:b2:68:13:6c: c9:c4:5d:61:97:bf:95:c5:e8:d0:1b:99:80:f3:c8:d8:80:9f: 3e:f6:1e:6e:b4:d8:82:be:e6:51:6f:48:2d:de:ea:c8:bc:6f: c3:46:64:05:7b:a6:7a:f0:8e:be:8d:7e:bf:cd:c8:9d:cc:32: 63:58:00:25:44:cb:ef:7a:ef:a2:13:f1:21:eb:82:aa:ee:9b: f2:9a:2f:ad:b2:7d:d3:b2:a4:b2:f0:d5:44:67:c9:30:e8:fa: e4:86:94:bc:48:78:0e:be:4b:1c:f4:cf:c2:1b:7a:48:0b:87: fc:76:68:f9:a9:96:51:0b:32:5f:06:c3:96:49:27:04:74:25: 1a:1e:df:8d:13:ee:94:b6:c0:86:3e:d0:9c:62:80:28:dc:85: 7e:30:f4:01:e8:a5:d7:0a:8c:27:ab:c1:eb:a0:b6:60:88:b1: ae:45:3c:ab -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIDC5AKMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGVl YzkzMzQ3ODlkNGZiOTdiMGMwYWE0ODM1NjM5MDZhNWQ2OWI0YzIwHhcNMjEwMzI0 MTQzMTU3WhcNMjYwMzI0MTQzMTU3WjAzMTEwLwYDVQQDEygyYTM1MmJhOWM4N2I0 MjgyZDdkMTMyNTBiZDIyNWRmOThlOWJkNzNjMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAoQz9Cjr0jabKptdiSwSU8IYigGg5jhEG3hDuk6cgmD+ADEDs e31vOVdtuUJh+7uZqlmtYhyLFCQ65cEcgPREruM/ZM15znNA7zOdRpGeh0HUdfN1 /U2IN8LnvTUG543i3NYRCUDdk2xbwarvehZnwgz3CTUN5Bde1koSAZzJO3C6Ovqp AQYwgYL09SXBWnH0wzFthb485o+Mxr+wh6x5hZ80NTw1HVqkm+hUk/1Tdz5lSj2h hZQa2zNfk/d0bQcUsxZ2zHtHwoeb5qqOXXpEjZjgHVgkISMwXXwx9B76TFkKXBBF ziq3gppSws4P3DMflIIkO2z/rcPWJkpIyn/ADwIDAQABo4ICYTCCAl0wHQYDVR0O BBYEFC+F39B5pwfC4cubrhoXR1H10ho3MB8GA1UdIwQYMBaAFAiRqsSRgrsOBnj6 2ng1jFjfNFzLMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZWVjOTMz NDc4OWQ0ZmI5N2IwYzBhYTQ4MzU2MzkwNmE1ZDY5YjRjMi5jZXIwgZoGCCsGAQUF BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p Yy5uZXQvcnBraS9sYWNuaWMvZjhkNWJlNGQtZTc1MS00YzcwLTk2NmItY2ZmNWVk N2JmNWJlLzJhMzUyYmE5Yzg3YjQyODJkN2QxMzI1MGJkMjI1ZGY5OGU5YmQ3M2Mu cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj bmljLm5ldC9ycGtpL2xhY25pYy9mOGQ1YmU0ZC1lNzUxLTRjNzAtOTY2Yi1jZmY1 ZWQ3YmY1YmUvZWVjOTMzNDc4OWQ0ZmI5N2IwYzBhYTQ4MzU2MzkwNmE1ZDY5YjRj Mi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEA6rSCAMEAqrSJDANBgkqhkiG9w0BAQsFAAOCAQEAig08Yskn j/xUGJom3yc4wZ/wuVMWzDKPHxPYhadj908At/4M8ZAflhoLKixs3hRHzOwvYnKP NQN1Pea9DyjlRiJqTBMg7E7pMoiA1CmJIRe4MxsdUjSyaBNsycRdYZe/lcXo0BuZ gPPI2ICfPvYebrTYgr7mUW9ILd7qyLxvw0ZkBXumevCOvo1+v83IncwyY1gAJUTL 73rvohPxIeuCqu6b8povrbJ907KksvDVRGfJMOj65IaUvEh4Dr5LHPTPwht6SAuH /HZo+amWUQsyXwbDlkknBHQlGh7fjRPulLbAhj7QnGKAKNyFfjD0Aeil1wqMJ6vB 66C2YIixrkU8qw== -----END CERTIFICATE-----Generated at Wed Mar 15 11:35:26 2023 by rpki-client on console-ams.rpki-client.org