$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/3133382e39392e3232302e302f32322d3234203d3e20323635373338.roa File: 3133382e39392e3232302e302f32322d3234203d3e20323635373338.roa (raw, json) Hash identifier: zq3m/g8Ipc7kWe0oqeWqTz92PGAcDG19xN3+p1SlTtk= Subject key identifier: 65:7E:11:62:75:2D:EF:C4:92:C1:BA:8A:00:A8:B7:DC:33:C9:B4:8F Certificate issuer: /CN=9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E Certificate serial: 0A8DFE48F8481FC00FBAD63DFC9D3980F707888D Authority key identifier: 9F:8E:C7:CE:66:A6:7C:20:F1:A2:4E:22:0E:07:01:A4:B8:12:9C:9E Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/3133382e39392e3232302e302f32322d3234203d3e20323635373338.roa Signing time: Tue 06 Jan 2026 19:06:55 +0000 ROA not before: Tue 06 Jan 2026 19:01:55 +0000 ROA not after: Tue 05 Jan 2027 19:06:55 +0000 asID: 265738 IP address blocks: 138.99.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.crl rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 06 Mar 2026 22:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8d:fe:48:f8:48:1f:c0:0f:ba:d6:3d:fc:9d:39:80:f7:07:88:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E Validity Not Before: Jan 6 19:01:55 2026 GMT Not After : Jan 5 19:06:55 2027 GMT Subject: CN=657E1162752DEFC492C1BA8A00A8B7DC33C9B48F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:94:99:45:2f:07:42:41:26:7b:64:71:42:06: 03:f4:9b:d4:a3:0c:93:3c:ee:5d:70:a4:23:2a:4e: 70:6d:29:83:f6:53:c2:a4:e0:c7:ab:c6:0b:f5:8e: fd:bc:1d:53:ac:58:51:80:fe:0e:1d:73:40:e4:13: 7b:fd:71:f2:ac:07:86:d6:ea:18:66:20:b4:e2:1c: 13:45:24:77:10:3a:b0:d4:d9:fd:92:84:ba:de:da: 5c:d8:9a:19:c4:4e:8f:56:16:c1:43:f4:3e:e8:8f: 7d:48:ab:d6:0e:4c:5d:5b:e9:4c:4d:c0:8e:31:55: be:ed:54:05:ab:2b:78:2f:7a:45:b0:89:79:88:71: 1d:3f:ef:ac:d1:22:16:2e:b7:3a:f2:a6:ee:50:04: 90:1a:14:3a:6b:c3:20:10:80:bc:35:04:89:83:3a: e7:51:da:56:1f:9a:c0:b3:90:6a:06:d9:0f:6f:4c: 57:fc:77:17:91:e6:2e:82:3b:ed:35:7c:30:37:13: ad:41:01:12:69:0f:8d:a9:99:85:70:74:33:de:20: 49:ec:74:a7:fa:bc:1f:76:1e:4e:a1:b8:3b:e8:6e: 1e:57:b0:b4:fc:72:72:5b:8e:57:99:81:72:9c:73: 92:e8:70:98:52:1a:60:81:e1:e7:cd:d8:41:e1:6a: f8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7E:11:62:75:2D:EF:C4:92:C1:BA:8A:00:A8:B7:DC:33:C9:B4:8F X509v3 Authority Key Identifier: keyid:9F:8E:C7:CE:66:A6:7C:20:F1:A2:4E:22:0E:07:01:A4:B8:12:9C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F8EC7CE66A67C20F1A24E220E0701A4B8129C9E.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/68CFB0FCBC226AFC08760338ADBF84DD9A5B072396FBCE375EB0685B506A99FB/0/3133382e39392e3232302e302f32322d3234203d3e20323635373338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.99.220.0/22 Signature Algorithm: sha256WithRSAEncryption 14:3e:a5:43:a8:08:02:ec:a5:1d:e5:22:13:8a:17:50:bf:68: c2:56:90:48:c8:4b:20:38:3d:69:37:de:a2:0f:b9:a6:e7:d0: 83:ff:46:80:57:f7:c4:06:4b:d1:fd:f0:63:47:69:76:4e:b9: 0f:e5:c5:9c:06:c9:5c:ef:b7:ba:49:94:1c:7f:1c:d0:25:6e: b5:91:d4:9a:33:f8:ff:e1:1f:94:ce:f3:c4:43:59:bb:43:40: d1:ba:aa:fa:18:ac:7f:ac:5a:a9:c5:2f:10:4a:18:41:91:09: f6:9e:73:b3:03:be:ea:c0:c4:90:bb:e3:1b:a5:a2:5a:78:94: 20:c7:47:55:78:1e:28:9b:c8:ed:e2:c6:2c:94:74:ac:9b:b2: 6c:c9:c1:00:ce:5d:6b:76:61:72:fe:63:05:fb:45:3a:be:64: 82:4f:45:4d:37:ce:bc:90:f1:54:4a:ac:f6:39:92:b2:8f:e2: 60:1d:7c:02:dd:f2:f9:f4:e1:5f:1b:4a:a3:c6:db:70:ba:7b: 68:71:41:83:3b:f9:3b:d8:68:dc:99:4f:e6:a7:ae:7d:fa:8f: e5:9f:f4:4e:4f:0d:52:f3:df:a9:75:7b:8c:33:6c:04:21:dc: 5f:69:e4:81:00:cb:84:89:03:1c:15:6a:24:dd:c4:cf:99:16: 77:17:c8:c5 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUCo3+SPhIH8APutY9/J05gPcHiI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY4RUM3Q0U2NkE2N0MyMEYxQTI0RTIyMEUwNzAxQTRC ODEyOUM5RTAeFw0yNjAxMDYxOTAxNTVaFw0yNzAxMDUxOTA2NTVaMDMxMTAvBgNV BAMTKDY1N0UxMTYyNzUyREVGQzQ5MkMxQkE4QTAwQThCN0RDMzNDOUI0OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCylJlFLwdCQSZ7ZHFCBgP0m9Sj DJM87l1wpCMqTnBtKYP2U8Kk4Merxgv1jv28HVOsWFGA/g4dc0DkE3v9cfKsB4bW 6hhmILTiHBNFJHcQOrDU2f2ShLre2lzYmhnETo9WFsFD9D7oj31Iq9YOTF1b6UxN wI4xVb7tVAWrK3gvekWwiXmIcR0/76zRIhYutzrypu5QBJAaFDprwyAQgLw1BImD OudR2lYfmsCzkGoG2Q9vTFf8dxeR5i6CO+01fDA3E61BARJpD42pmYVwdDPeIEns dKf6vB92Hk6huDvobh5XsLT8cnJbjleZgXKcc5LocJhSGmCB4efN2EHhaviDAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUZX4RYnUt78SSwbqKAKi33DPJtI8wHwYDVR0j BBgwFoAUn47HzmamfCDxok4iDgcBpLgSnJ4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy82OENGQjBGQ0JDMjI2QUZDMDg3NjAzMzhBREJGODRERDlB NUIwNzIzOTZGQkNFMzc1RUIwNjg1QjUwNkE5OUZCLzAvOUY4RUM3Q0U2NkE2N0My MEYxQTI0RTIyMEUwNzAxQTRCODEyOUM5RS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85RjhFQzdDRTY2QTY3QzIwRjFB MjRFMjIwRTA3MDFBNEI4MTI5QzlFLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvNjhDRkIwRkNCQzIyNkFGQzA4NzYwMzM4QURCRjg0REQ5QTVCMDcyMzk2 RkJDRTM3NUVCMDY4NUI1MDZBOTlGQi8wLzMxMzMzODJlMzkzOTJlMzIzMjMwMmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM1MzczMzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCimPc MA0GCSqGSIb3DQEBCwUAA4IBAQAUPqVDqAgC7KUd5SITihdQv2jCVpBIyEsgOD1p N96iD7mm59CD/0aAV/fEBkvR/fBjR2l2TrkP5cWcBslc77e6SZQcfxzQJW61kdSa M/j/4R+UzvPEQ1m7Q0DRuqr6GKx/rFqpxS8QShhBkQn2nnOzA77qwMSQu+MbpaJa eJQgx0dVeB4om8jt4sYslHSsm7JsycEAzl1rdmFy/mMF+0U6vmSCT0VNN868kPFU Sqz2OZKyj+JgHXwC3fL59OFfG0qjxttwuntocUGDO/k72GjcmU/mp659+o/ln/RO Tw1S89+pdXuMM2wEIdxfaeSBAMuEiQMcFWok3cTPmRZ3F8jF -----END CERTIFICATE-----Generated at Tue Mar 3 03:51:16 2026 by rpki-client