$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/34352e3138392e3138392e302f32342d3234203d3e20323732393739.roa File: 34352e3138392e3138392e302f32342d3234203d3e20323732393739.roa (raw, json) Hash identifier: D8X0R/e0/huu0B+12D1HMOAegM4fiFix7xlFFBHgf+Q= Subject key identifier: 4A:FF:0D:79:BC:39:7E:07:73:5D:6D:09:B2:62:C9:DB:6B:59:9A:C1 Certificate issuer: /CN=B9661B0E7FC75ED767D18B56FC749BAED21FC195 Certificate serial: 5369D2C2F447C42991B5DC7434F56144A8F93E7F Authority key identifier: B9:66:1B:0E:7F:C7:5E:D7:67:D1:8B:56:FC:74:9B:AE:D2:1F:C1:95 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/34352e3138392e3138392e302f32342d3234203d3e20323732393739.roa Signing time: Thu 01 May 2025 19:17:27 +0000 ROA not before: Thu 01 May 2025 19:12:27 +0000 ROA not after: Thu 30 Apr 2026 19:17:27 +0000 asID: 272979 IP address blocks: 45.189.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.crl rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 09 Nov 2025 01:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:69:d2:c2:f4:47:c4:29:91:b5:dc:74:34:f5:61:44:a8:f9:3e:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9661B0E7FC75ED767D18B56FC749BAED21FC195 Validity Not Before: May 1 19:12:27 2025 GMT Not After : Apr 30 19:17:27 2026 GMT Subject: CN=4AFF0D79BC397E07735D6D09B262C9DB6B599AC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:87:ac:ea:3c:fc:59:c5:17:f3:fc:c5:cd:95: d7:f1:48:bb:41:f6:34:5b:d3:96:e6:b0:bf:16:82: 4f:fd:67:db:98:b6:f4:3f:2e:b0:1d:98:d5:65:de: d4:95:a6:9c:28:4b:41:25:36:23:b5:46:1f:32:ab: 72:64:7c:59:55:6d:b9:57:fb:07:31:c5:35:f8:25: 5e:13:67:91:26:ea:cd:83:9f:00:98:ed:1d:a3:cb: 73:23:fa:58:34:5b:56:2e:66:4f:7b:c4:5a:b0:69: b0:d1:37:a9:2f:75:8f:d2:17:a7:dc:08:6d:99:68: 92:55:98:19:85:fb:bf:e2:e1:01:c3:4c:25:b1:b0: f8:fe:24:54:ca:54:cf:c0:4a:b2:92:4a:6f:7d:50: 7f:03:6d:47:4a:95:20:8c:4b:d5:23:a7:96:2a:f4: e0:fb:1a:f4:cb:86:8b:e5:78:f0:c9:4c:b5:2c:27: f1:23:64:16:b9:80:1d:fc:09:77:42:a6:ed:ad:29: 04:8d:a4:23:80:87:8a:ae:0d:e3:73:b6:0d:d9:c7: 13:62:3a:34:fd:dc:4f:06:df:5d:c5:32:66:fc:88: cc:52:d7:34:56:09:b6:85:4d:aa:0f:a6:14:4e:d2: 1a:5c:88:04:24:0a:b6:a1:41:4f:4b:8f:bf:f9:e8: d8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FF:0D:79:BC:39:7E:07:73:5D:6D:09:B2:62:C9:DB:6B:59:9A:C1 X509v3 Authority Key Identifier: keyid:B9:66:1B:0E:7F:C7:5E:D7:67:D1:8B:56:FC:74:9B:AE:D2:1F:C1:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/34352e3138392e3138392e302f32342d3234203d3e20323732393739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.189.189.0/24 Signature Algorithm: sha256WithRSAEncryption 55:05:36:23:85:57:e3:eb:3e:e0:bb:7f:f9:8b:e1:26:1d:11: 7f:47:46:77:81:59:59:1b:12:4d:a5:6d:7f:6e:e8:77:1e:2b: 5e:fa:2f:56:7d:ba:fa:6b:63:fe:57:24:86:79:7a:38:14:70: ee:6c:af:26:f1:6f:02:3a:e6:7b:f5:84:c0:70:51:3d:74:54: 13:19:d9:3a:7d:ee:6c:8c:a3:a2:1f:a4:20:7a:b7:e9:21:b1: 5a:98:22:c7:28:1d:cf:ae:31:0d:1b:e9:4a:da:93:55:cf:1d: d6:7f:22:bf:c0:be:0e:66:1f:c8:36:0e:0a:02:7e:5f:0c:07: 20:73:22:a2:d5:59:df:48:31:34:d1:7a:35:9b:fc:a7:ac:86: ad:64:05:12:b5:63:51:80:8a:14:31:71:01:5e:cc:19:86:4f: 9b:9c:9b:b7:b8:ea:38:81:47:a4:d8:e9:15:44:ff:8b:02:fd: ac:de:ca:ce:48:c1:41:70:49:99:b8:49:68:7c:13:ca:88:21: 8e:cb:b4:0d:e6:63:cc:86:b6:02:05:fd:56:ad:b1:c6:43:8b: ff:d4:1b:d4:54:f5:68:6f:55:6b:d8:64:d0:c8:02:93:58:f2: bb:1b:09:02:eb:3f:4c:71:de:e6:98:35:45:3d:ac:1c:24:71: 9c:49:7f:c7 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUU2nSwvRHxCmRtdx0NPVhRKj5Pn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk2NjFCMEU3RkM3NUVENzY3RDE4QjU2RkM3NDlCQUVE MjFGQzE5NTAeFw0yNTA1MDExOTEyMjdaFw0yNjA0MzAxOTE3MjdaMDMxMTAvBgNV BAMTKDRBRkYwRDc5QkMzOTdFMDc3MzVENkQwOUIyNjJDOURCNkI1OTlBQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPh6zqPPxZxRfz/MXNldfxSLtB 9jRb05bmsL8Wgk/9Z9uYtvQ/LrAdmNVl3tSVppwoS0ElNiO1Rh8yq3JkfFlVbblX +wcxxTX4JV4TZ5Em6s2DnwCY7R2jy3Mj+lg0W1YuZk97xFqwabDRN6kvdY/SF6fc CG2ZaJJVmBmF+7/i4QHDTCWxsPj+JFTKVM/ASrKSSm99UH8DbUdKlSCMS9Ujp5Yq 9OD7GvTLhovlePDJTLUsJ/EjZBa5gB38CXdCpu2tKQSNpCOAh4quDeNztg3ZxxNi OjT93E8G313FMmb8iMxS1zRWCbaFTaoPphRO0hpciAQkCrahQU9Lj7/56Ni/AgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUSv8Nebw5fgdzXW0JsmLJ22tZmsEwHwYDVR0j BBgwFoAUuWYbDn/HXtdn0YtW/HSbrtIfwZUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy82NzIzNkI0Q0NFRkJDNDM4MjFBQTQyRDQ1RDFBRjJBMzc0 NzA4N0Y2QTA0NzY3MDFFNkYwQTg3MUUxRTE1QkJGLzAvQjk2NjFCMEU3RkM3NUVE NzY3RDE4QjU2RkM3NDlCQUVEMjFGQzE5NS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9COTY2MUIwRTdGQzc1RUQ3NjdE MThCNTZGQzc0OUJBRUQyMUZDMTk1LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNjcyMzZCNENDRUZCQzQzODIxQUE0MkQ0NUQxQUYyQTM3NDcwODdGNkEw NDc2NzAxRTZGMEE4NzFFMUUxNUJCRi8wLzM0MzUyZTMxMzgzOTJlMzEzODM5MmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzMyMzkzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALb29 MA0GCSqGSIb3DQEBCwUAA4IBAQBVBTYjhVfj6z7gu3/5i+EmHRF/R0Z3gVlZGxJN pW1/buh3Hite+i9Wfbr6a2P+VySGeXo4FHDubK8m8W8COuZ79YTAcFE9dFQTGdk6 fe5sjKOiH6QgerfpIbFamCLHKB3PrjENG+lK2pNVzx3WfyK/wL4OZh/INg4KAn5f DAcgcyKi1VnfSDE00Xo1m/ynrIatZAUStWNRgIoUMXEBXswZhk+bnJu3uOo4gUek 2OkVRP+LAv2s3srOSMFBcEmZuElofBPKiCGOy7QN5mPMhrYCBf1WrbHGQ4v/1BvU VPVob1Vr2GTQyAKTWPK7GwkC6z9Mcd7mmDVFPawcJHGcSX/H -----END CERTIFICATE-----Generated at Thu Nov 6 01:16:45 2025 by rpki-client