$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/34352e3137342e3137322e302f32332d3234203d3e20323635353738.roa File: 34352e3137342e3137322e302f32332d3234203d3e20323635353738.roa (raw, json) Hash identifier: gaFz08cngNAgOlXufQVEUqSXu1xp8fiNuIt92ODg1NQ= Subject key identifier: FC:D2:E4:1A:EE:E1:8D:17:6D:44:EA:E9:AC:6D:59:6B:49:37:1E:D3 Certificate issuer: /CN=FA40F4074261959953C6B11359AE13D2C4B837D3 Certificate serial: 09C68228638A62199188A73AD07A4E5C2F668311 Authority key identifier: FA:40:F4:07:42:61:95:99:53:C6:B1:13:59:AE:13:D2:C4:B8:37:D3 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA40F4074261959953C6B11359AE13D2C4B837D3.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/34352e3137342e3137322e302f32332d3234203d3e20323635353738.roa Signing time: Mon 03 Nov 2025 17:55:00 +0000 ROA not before: Mon 03 Nov 2025 17:50:00 +0000 ROA not after: Mon 02 Nov 2026 17:55:00 +0000 asID: 265578 IP address blocks: 45.174.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/FA40F4074261959953C6B11359AE13D2C4B837D3.crl rsync://repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/FA40F4074261959953C6B11359AE13D2C4B837D3.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA40F4074261959953C6B11359AE13D2C4B837D3.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 09 Nov 2025 01:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:c6:82:28:63:8a:62:19:91:88:a7:3a:d0:7a:4e:5c:2f:66:83:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA40F4074261959953C6B11359AE13D2C4B837D3 Validity Not Before: Nov 3 17:50:00 2025 GMT Not After : Nov 2 17:55:00 2026 GMT Subject: CN=FCD2E41AEEE18D176D44EAE9AC6D596B49371ED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fd:17:dd:ce:9d:99:a6:48:9c:9c:d8:53:9d: 5e:5e:26:76:fc:13:d9:c1:80:1b:52:c0:32:c3:00: 11:65:e1:fe:25:68:22:09:60:41:d6:37:08:73:99: 95:e2:5d:1a:ae:cb:c2:49:ab:df:93:b9:3d:eb:18: b0:db:77:17:c7:d3:e7:12:2c:aa:a6:96:96:7c:0c: 2b:76:61:4a:4a:08:ed:e9:bc:6e:84:a9:ed:b6:e4: 0a:21:ec:16:7f:74:1c:4c:51:e4:94:5e:02:f7:d3: fa:e9:0e:bc:b6:28:fc:74:b8:7a:53:22:61:ee:bf: c8:8b:03:42:f9:5b:ba:1e:89:7a:76:ac:7d:a5:dc: b3:02:b5:92:77:92:e9:d9:79:40:0f:16:f5:9b:00: 89:e1:7b:4b:0e:5f:9d:b8:96:66:91:0e:13:0b:ac: d5:40:02:6b:ae:14:36:3f:95:e4:79:75:d1:d0:ea: 67:4d:8c:57:f2:e9:1f:5a:34:af:de:8b:92:5a:70: 3b:d3:d4:72:e7:ba:d8:43:1b:de:75:ee:c4:ca:4c: 83:d3:0b:71:74:08:70:50:10:3e:d6:c0:95:b0:d8: 9a:ec:43:55:88:95:57:dc:7a:f0:a8:7a:62:d5:de: c3:ca:b0:60:2d:bc:30:d8:d0:61:2a:56:0c:a1:3c: 3e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D2:E4:1A:EE:E1:8D:17:6D:44:EA:E9:AC:6D:59:6B:49:37:1E:D3 X509v3 Authority Key Identifier: keyid:FA:40:F4:07:42:61:95:99:53:C6:B1:13:59:AE:13:D2:C4:B8:37:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/FA40F4074261959953C6B11359AE13D2C4B837D3.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA40F4074261959953C6B11359AE13D2C4B837D3.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/34352e3137342e3137322e302f32332d3234203d3e20323635353738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.174.172.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:b1:1c:6d:80:ce:cb:b6:81:fe:b4:c5:17:31:d8:dd:9e:54: a7:b6:0d:fd:72:50:29:66:fe:6f:87:18:0f:f8:67:41:c3:14: bc:25:ae:fa:4e:34:9f:39:11:fd:c7:ea:83:07:15:fc:2e:ce: 6f:bb:fd:fa:ed:58:dc:78:55:55:78:27:bb:f8:0a:ae:13:76: ff:c3:98:17:79:85:42:23:ad:43:c4:f4:66:4a:39:74:b3:46: a0:f1:e6:f1:c6:da:27:98:a6:14:cc:7e:bc:19:82:78:b5:5c: 74:60:5a:20:ed:29:04:8a:76:99:2f:2e:78:3a:d4:03:0c:4b: 14:16:10:9d:b8:ac:24:e4:83:3c:49:81:36:5a:60:48:66:5d: 0f:db:52:20:ff:a5:f8:67:ce:f9:9a:55:46:eb:ae:fe:48:dd: f8:cd:47:52:4a:54:9e:75:71:bd:94:59:00:c0:c2:54:7d:66: cf:4e:48:34:22:3f:26:60:ec:16:ca:87:2d:55:15:3a:22:07: 68:2e:20:6c:74:71:22:a4:74:50:1a:5b:18:b6:a0:90:70:07: 56:0c:d8:c4:e2:79:f0:04:a0:04:d2:e2:ed:84:a6:41:63:f1: 29:ad:ac:de:e5:1c:4c:b5:96:e2:13:65:43:ce:25:9f:3b:db: dc:16:4e:68 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUCcaCKGOKYhmRiKc60HpOXC9mgxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE0MEY0MDc0MjYxOTU5OTUzQzZCMTEzNTlBRTEzRDJD NEI4MzdEMzAeFw0yNTExMDMxNzUwMDBaFw0yNjExMDIxNzU1MDBaMDMxMTAvBgNV BAMTKEZDRDJFNDFBRUVFMThEMTc2RDQ0RUFFOUFDNkQ1OTZCNDkzNzFFRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV/Rfdzp2ZpkicnNhTnV5eJnb8 E9nBgBtSwDLDABFl4f4laCIJYEHWNwhzmZXiXRquy8JJq9+TuT3rGLDbdxfH0+cS LKqmlpZ8DCt2YUpKCO3pvG6Eqe225Aoh7BZ/dBxMUeSUXgL30/rpDry2KPx0uHpT ImHuv8iLA0L5W7oeiXp2rH2l3LMCtZJ3kunZeUAPFvWbAInhe0sOX524lmaRDhML rNVAAmuuFDY/leR5ddHQ6mdNjFfy6R9aNK/ei5JacDvT1HLnuthDG9517sTKTIPT C3F0CHBQED7WwJWw2JrsQ1WIlVfcevCoemLV3sPKsGAtvDDY0GEqVgyhPD7fAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQU/NLkGu7hjRdtROrprG1Za0k3HtMwHwYDVR0j BBgwFoAU+kD0B0JhlZlTxrETWa4T0sS4N9MwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy80M0Q0RkYyN0RGQ0Y0QTVFRUM1RTRDRTE0MDIzMUUzMzE1 N0RCNTExMjJDMTA1Q0UxQUI1QUQ2RTM0REI0MzMyLzAvRkE0MEY0MDc0MjYxOTU5 OTUzQzZCMTEzNTlBRTEzRDJDNEI4MzdEMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GQTQwRjQwNzQyNjE5NTk5NTND NkIxMTM1OUFFMTNEMkM0QjgzN0QzLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNDNENEZGMjdERkNGNEE1RUVDNUU0Q0UxNDAyMzFFMzMxNTdEQjUxMTIy QzEwNUNFMUFCNUFENkUzNERCNDMzMi8wLzM0MzUyZTMxMzczNDJlMzEzNzMyMmUz MDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzNjM1MzUzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLa6s MA0GCSqGSIb3DQEBCwUAA4IBAQAesRxtgM7LtoH+tMUXMdjdnlSntg39clApZv5v hxgP+GdBwxS8Ja76TjSfORH9x+qDBxX8Ls5vu/367VjceFVVeCe7+AquE3b/w5gX eYVCI61DxPRmSjl0s0ag8ebxxtonmKYUzH68GYJ4tVx0YFog7SkEinaZLy54OtQD DEsUFhCduKwk5IM8SYE2WmBIZl0P21Ig/6X4Z875mlVG667+SN34zUdSSlSedXG9 lFkAwMJUfWbPTkg0Ij8mYOwWyoctVRU6IgdoLiBsdHEipHRQGlsYtqCQcAdWDNjE 4nnwBKAE0uLthKZBY/Epraze5RxMtZbiE2VDziWfO9vcFk5o -----END CERTIFICATE-----Generated at Wed Nov 5 21:05:39 2025 by rpki-client