$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/3137302e302e31312e302f32342d3234203d3e20323730303838.roa File: 3137302e302e31312e302f32342d3234203d3e20323730303838.roa (raw, json) Hash identifier: j3KGJiIApfOCmWSXbBZkimvQsk01fPgRM2I3soYPGQY= Subject key identifier: 70:2A:3A:36:48:59:E7:D3:13:0A:E1:91:16:30:AC:48:29:DB:CC:E7 Certificate issuer: /CN=08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D Certificate serial: 563CD8D0AD20B38C0B1E8AE6D198B611CA5C58E2 Authority key identifier: 08:AA:2E:4D:3C:7C:DF:96:26:D3:31:AC:D3:8D:17:19:F3:D4:A7:2D Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/3137302e302e31312e302f32342d3234203d3e20323730303838.roa Signing time: Sat 31 May 2025 14:35:00 +0000 ROA not before: Sat 31 May 2025 14:30:00 +0000 ROA not after: Sat 30 May 2026 14:35:00 +0000 asID: 270088 IP address blocks: 170.0.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.crl rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 25 Jun 2025 23:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:3c:d8:d0:ad:20:b3:8c:0b:1e:8a:e6:d1:98:b6:11:ca:5c:58:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D Validity Not Before: May 31 14:30:00 2025 GMT Not After : May 30 14:35:00 2026 GMT Subject: CN=702A3A364859E7D3130AE1911630AC4829DBCCE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:41:52:44:21:a6:20:e9:c6:bf:1a:1f:ac:e8: 5a:76:ed:18:65:8b:c3:18:1a:d7:23:36:b8:cc:51: 6b:e6:aa:5c:e6:c6:53:44:bf:59:29:1e:8d:4d:9a: 44:7c:46:b3:2f:18:f1:4f:f0:27:4c:dc:d6:4a:46: f0:8b:b0:7f:f1:3a:03:63:cd:5d:93:83:29:92:f1: 06:8a:da:c0:1b:a1:79:b4:0f:1e:98:75:03:af:26: 78:a7:d9:fa:bb:43:95:ae:5a:58:7f:6d:d9:5b:f2: 3d:ef:30:41:f2:ef:2c:e8:14:2e:4d:48:e4:12:2f: 5f:b9:3b:db:8c:a9:4e:b6:ac:38:97:f1:b4:a0:7f: ca:a7:6c:aa:10:88:9f:7a:c5:66:10:2d:8f:63:00: 12:aa:b4:b6:5a:a4:e7:54:a3:ae:8f:c6:5b:c8:2a: 44:65:84:41:ff:02:d1:b2:12:28:44:57:a7:0e:bc: cb:80:3c:42:9b:56:c7:60:a8:9e:11:3a:5f:c7:2c: e6:24:f4:e7:d0:f0:9c:36:30:2f:cf:72:8c:2e:d8: af:7e:43:23:31:4a:74:e6:27:5f:c2:c8:d2:1e:b8: a2:72:86:2e:6a:1b:3d:e2:43:8d:52:d5:37:10:f6: 24:68:c2:7d:62:5a:3f:9c:6e:81:dd:9e:f7:3d:5b: 0d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2A:3A:36:48:59:E7:D3:13:0A:E1:91:16:30:AC:48:29:DB:CC:E7 X509v3 Authority Key Identifier: keyid:08:AA:2E:4D:3C:7C:DF:96:26:D3:31:AC:D3:8D:17:19:F3:D4:A7:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/3137302e302e31312e302f32342d3234203d3e20323730303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.0.11.0/24 Signature Algorithm: sha256WithRSAEncryption 25:8e:54:d3:75:5b:49:b0:6f:e7:9b:4c:aa:cd:a7:bd:75:14: e6:ea:6e:91:84:9a:80:bf:ee:e2:5e:8d:9f:ac:b1:82:ae:c3: 1a:de:95:73:52:13:b9:bd:b9:4e:96:48:22:4a:e8:4f:bc:41: b2:62:f8:e4:4c:e1:8d:fc:65:5e:b1:f8:b7:72:02:dc:24:2d: a9:80:df:66:59:1c:66:92:70:d4:00:f8:57:92:54:e8:f3:eb: 1f:4e:4f:ee:3d:53:66:fd:ed:d4:85:d3:02:de:fc:db:cd:4d: a3:6f:f9:23:75:cf:a0:20:1a:14:a9:10:22:b2:85:d3:d3:8f: 3a:ef:77:a4:3e:d7:f7:4d:00:3e:bc:5e:c2:0e:65:5e:64:bf: 11:24:c6:ed:88:34:2b:c8:67:d5:0d:81:8d:d1:9e:c3:d8:3d: 74:0a:62:cb:91:8d:4e:ac:89:82:5d:e6:cb:d6:c7:15:14:e0: 5b:4f:7c:c7:3f:40:73:ee:e2:73:08:20:ef:6e:9f:cf:60:cb: 7e:b6:7a:86:d0:42:1d:07:87:63:e8:c0:56:45:89:3e:27:ed: 37:5d:70:15:29:db:1c:7e:9b:f9:27:d2:30:19:bb:48:89:4a: 77:e0:d4:41:d4:4e:bc:e1:23:eb:db:21:ef:a7:d5:e8:36:26: 9a:a7:5f:0e -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUVjzY0K0gs4wLHorm0Zi2EcpcWOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhBQTJFNEQzQzdDREY5NjI2RDMzMUFDRDM4RDE3MTlG M0Q0QTcyRDAeFw0yNTA1MzExNDMwMDBaFw0yNjA1MzAxNDM1MDBaMDMxMTAvBgNV BAMTKDcwMkEzQTM2NDg1OUU3RDMxMzBBRTE5MTE2MzBBQzQ4MjlEQkNDRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjQVJEIaYg6ca/Gh+s6Fp27Rhl i8MYGtcjNrjMUWvmqlzmxlNEv1kpHo1NmkR8RrMvGPFP8CdM3NZKRvCLsH/xOgNj zV2TgymS8QaK2sAboXm0Dx6YdQOvJnin2fq7Q5WuWlh/bdlb8j3vMEHy7yzoFC5N SOQSL1+5O9uMqU62rDiX8bSgf8qnbKoQiJ96xWYQLY9jABKqtLZapOdUo66PxlvI KkRlhEH/AtGyEihEV6cOvMuAPEKbVsdgqJ4ROl/HLOYk9OfQ8Jw2MC/Pcowu2K9+ QyMxSnTmJ1/CyNIeuKJyhi5qGz3iQ41S1TcQ9iRown1iWj+cboHdnvc9Ww1rAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUcCo6NkhZ59MTCuGRFjCsSCnbzOcwHwYDVR0j BBgwFoAUCKouTTx835Ym0zGs040XGfPUpy0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84RDRCQjI0MjFDMjREMTlGMzEyM0IwQzY4MUIwMUFEODJB OTI5NDE1ODJDOURBQkI5NDkzRTA5N0YzRjJGODkzLzAvMDhBQTJFNEQzQzdDREY5 NjI2RDMzMUFDRDM4RDE3MTlGM0Q0QTcyRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wOEFBMkU0RDNDN0NERjk2MjZE MzMxQUNEMzhEMTcxOUYzRDRBNzJELmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvOEQ0QkIyNDIxQzI0RDE5RjMxMjNCMEM2ODFCMDFBRDgyQTkyOTQxNTgy QzlEQUJCOTQ5M0UwOTdGM0YyRjg5My8wLzMxMzczMDJlMzAyZTMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM3MzAzMDM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACqAAswDQYJ KoZIhvcNAQELBQADggEBACWOVNN1W0mwb+ebTKrNp711FObqbpGEmoC/7uJejZ+s sYKuwxrelXNSE7m9uU6WSCJK6E+8QbJi+ORM4Y38ZV6x+LdyAtwkLamA32ZZHGaS cNQA+FeSVOjz6x9OT+49U2b97dSF0wLe/NvNTaNv+SN1z6AgGhSpECKyhdPTjzrv d6Q+1/dNAD68XsIOZV5kvxEkxu2INCvIZ9UNgY3RnsPYPXQKYsuRjU6siYJd5svW xxUU4FtPfMc/QHPu4nMIIO9un89gy362eobQQh0Hh2PowFZFiT4n7TddcBUp2xx+ m/kn0jAZu0iJSnfg1EHUTrzhI+vbIe+n1eg2JpqnXw4= -----END CERTIFICATE-----Generated at Sun Jun 22 18:01:23 2025 by rpki-client