$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/3136382e3132312e3230382e302f32322d3234203d3e20323632313936.roa File: 3136382e3132312e3230382e302f32322d3234203d3e20323632313936.roa (raw, json) Hash identifier: vynVreTKOCtzu6f469tj+gB0Fc7FhoE9sh6kLUBkJWo= Subject key identifier: AC:48:73:3B:C4:13:B8:6F:FB:F0:D8:BD:1B:DD:01:96:0C:89:DB:2A Certificate issuer: /CN=236265F485589146D372FF70F0BD7364753EFBD3 Certificate serial: 325EFD780C29EE663DB9D6A55C9B558168ED84FE Authority key identifier: 23:62:65:F4:85:58:91:46:D3:72:FF:70:F0:BD:73:64:75:3E:FB:D3 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/236265F485589146D372FF70F0BD7364753EFBD3.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/3136382e3132312e3230382e302f32322d3234203d3e20323632313936.roa Signing time: Wed 05 Nov 2025 19:51:45 +0000 ROA not before: Wed 05 Nov 2025 19:46:45 +0000 ROA not after: Wed 04 Nov 2026 19:51:45 +0000 asID: 262196 IP address blocks: 168.121.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/236265F485589146D372FF70F0BD7364753EFBD3.crl rsync://repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/236265F485589146D372FF70F0BD7364753EFBD3.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/236265F485589146D372FF70F0BD7364753EFBD3.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 09 Nov 2025 01:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:5e:fd:78:0c:29:ee:66:3d:b9:d6:a5:5c:9b:55:81:68:ed:84:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=236265F485589146D372FF70F0BD7364753EFBD3 Validity Not Before: Nov 5 19:46:45 2025 GMT Not After : Nov 4 19:51:45 2026 GMT Subject: CN=AC48733BC413B86FFBF0D8BD1BDD01960C89DB2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:32:54:f0:7d:3a:46:fa:04:c7:37:b4:95:a5: 29:a9:ef:16:81:f8:a7:4f:8b:d0:29:e0:e8:35:34: 1e:60:0d:73:93:d4:4a:1c:07:fd:65:ab:c9:3a:f1: 86:09:16:66:92:fd:a0:70:35:00:53:5b:ae:fe:85: 48:85:0b:96:7b:ab:37:c0:7e:7f:df:cd:a5:a9:b6: 45:28:31:24:bc:4e:4d:62:c3:49:51:23:d8:c5:6a: aa:6a:32:52:fe:a7:99:c9:7f:6e:01:ad:09:c5:1d: bf:72:4b:cb:d3:34:c1:71:08:f2:d1:5e:cd:0b:70: 5d:a9:d3:56:fb:18:fa:75:5c:b9:a6:f5:81:d7:97: e0:1b:70:5f:66:c7:f3:ea:a7:bd:f7:d6:93:c0:a5: 39:c5:5f:15:98:15:e2:ea:f8:c5:bc:6e:41:e7:e6: ea:38:5c:fb:77:e3:f2:2c:e4:05:5c:63:ee:3a:68: 33:c0:e4:9a:2c:6d:5f:84:c7:4e:23:07:a8:5a:e1: 4a:39:c1:55:cd:de:7a:6b:d3:0e:53:ec:b3:bd:74: 80:e9:ab:5e:59:83:31:a7:64:24:f8:f9:8b:14:3e: 98:d2:d8:f8:df:0d:6a:46:cc:b8:45:cc:10:2c:63: 65:6e:cb:89:48:96:d5:ba:77:95:7e:51:a5:56:10: 2d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:48:73:3B:C4:13:B8:6F:FB:F0:D8:BD:1B:DD:01:96:0C:89:DB:2A X509v3 Authority Key Identifier: keyid:23:62:65:F4:85:58:91:46:D3:72:FF:70:F0:BD:73:64:75:3E:FB:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/236265F485589146D372FF70F0BD7364753EFBD3.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/236265F485589146D372FF70F0BD7364753EFBD3.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/3136382e3132312e3230382e302f32322d3234203d3e20323632313936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.121.208.0/22 Signature Algorithm: sha256WithRSAEncryption 29:e6:5a:ec:87:9b:22:bd:8a:39:da:06:4f:3c:cf:64:e8:c8: 68:be:56:b3:1a:2f:09:ac:e1:17:b0:71:15:99:86:4c:8b:b0: 92:a9:1d:56:46:d5:37:26:b6:a6:5a:02:29:3f:a3:95:34:87: 71:1e:4e:13:43:83:5e:99:e8:e5:90:2b:28:f5:e7:2f:4d:9b: 85:69:05:ef:c0:51:a7:29:7a:6f:43:23:38:7e:de:72:8d:4b: 6b:67:2a:d0:ed:b3:90:51:87:f8:00:59:a2:9b:78:4e:b7:7f: 0d:ce:40:e5:e7:e4:a4:f7:81:10:49:1f:19:49:a7:cd:d5:4b: 3d:2d:14:bf:68:d9:55:b1:af:bc:45:74:a2:2d:94:8e:9a:c5: 50:72:ab:40:01:1b:42:65:15:de:ba:a0:53:3c:bc:16:11:d4: 50:ec:2d:d7:cd:4d:50:40:d9:21:31:58:e9:1b:0a:74:b2:9a: fd:59:fb:9f:45:52:2d:c8:12:b4:a1:9e:8b:c3:e3:fe:f8:cc: 33:e1:ac:d9:e2:85:c2:c4:b8:b5:b8:1e:5e:48:79:d5:14:2a: 7f:2a:2b:9b:e6:28:a0:c5:ba:be:f2:b3:a8:ce:4b:6b:74:a9: 65:37:5b:8d:05:c6:6d:25:0c:cf:89:3b:8a:24:d1:b3:bb:42: cc:ec:41:40 -----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgIUMl79eAwp7mY9udalXJtVgWjthP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjM2MjY1RjQ4NTU4OTE0NkQzNzJGRjcwRjBCRDczNjQ3 NTNFRkJEMzAeFw0yNTExMDUxOTQ2NDVaFw0yNjExMDQxOTUxNDVaMDMxMTAvBgNV BAMTKEFDNDg3MzNCQzQxM0I4NkZGQkYwRDhCRDFCREQwMTk2MEM4OURCMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsMlTwfTpG+gTHN7SVpSmp7xaB +KdPi9Ap4Og1NB5gDXOT1EocB/1lq8k68YYJFmaS/aBwNQBTW67+hUiFC5Z7qzfA fn/fzaWptkUoMSS8Tk1iw0lRI9jFaqpqMlL+p5nJf24BrQnFHb9yS8vTNMFxCPLR Xs0LcF2p01b7GPp1XLmm9YHXl+AbcF9mx/Pqp7331pPApTnFXxWYFeLq+MW8bkHn 5uo4XPt34/Is5AVcY+46aDPA5JosbV+Ex04jB6ha4Uo5wVXN3npr0w5T7LO9dIDp q15ZgzGnZCT4+YsUPpjS2PjfDWpGzLhFzBAsY2Vuy4lIltW6d5V+UaVWEC2JAgMB AAGjggLMMIICyDAdBgNVHQ4EFgQUrEhzO8QTuG/78Ni9G90BlgyJ2yowHwYDVR0j BBgwFoAUI2Jl9IVYkUbTcv9w8L1zZHU++9MwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84ODk5RTdGQTZCQzA4QkU0MEYyQjVGNTlEMEE5QzhBQkUx ODVEMERDMTNCODMwN0UwOTcxRTk2NDM5QTJFNkFBLzAvMjM2MjY1RjQ4NTU4OTE0 NkQzNzJGRjcwRjBCRDczNjQ3NTNFRkJEMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yMzYyNjVGNDg1NTg5MTQ2RDM3 MkZGNzBGMEJENzM2NDc1M0VGQkQzLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvODg5OUU3RkE2QkMwOEJFNDBGMkI1RjU5RDBBOUM4QUJFMTg1RDBEQzEz QjgzMDdFMDk3MUU5NjQzOUEyRTZBQS8wLzMxMzYzODJlMzEzMjMxMmUzMjMwMzgy ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2MzIzMTM5MzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKo edAwDQYJKoZIhvcNAQELBQADggEBACnmWuyHmyK9ijnaBk88z2ToyGi+VrMaLwms 4RewcRWZhkyLsJKpHVZG1TcmtqZaAik/o5U0h3EeThNDg16Z6OWQKyj15y9Nm4Vp Be/AUacpem9DIzh+3nKNS2tnKtDts5BRh/gAWaKbeE63fw3OQOXn5KT3gRBJHxlJ p83VSz0tFL9o2VWxr7xFdKItlI6axVByq0ABG0JlFd66oFM8vBYR1FDsLdfNTVBA 2SExWOkbCnSymv1Z+59FUi3IErShnovD4/74zDPhrNnihcLEuLW4Hl5IedUUKn8q K5vmKKDFur7ys6jOS2t0qWU3W40Fxm0lDM+JO4ok0bO7QszsQUA= -----END CERTIFICATE-----Generated at Wed Nov 5 23:08:59 2025 by rpki-client