$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326332303a3a2f34332d3634203d3e203634313230.roa File: 323830333a663038303a326332303a3a2f34332d3634203d3e203634313230.roa (raw, json) Hash identifier: mcmhXldMQZcE4urywI12FqWBzXly4vM3c8jr33DTmBA= Subject key identifier: 69:EB:0C:0C:04:53:13:60:1E:10:8A:58:7E:9B:2B:5C:4B:D9:6F:E7 Certificate issuer: /CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Certificate serial: 423A39DBB264B869E8C0AB2033D81575E72A0806 Authority key identifier: D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326332303a3a2f34332d3634203d3e203634313230.roa Signing time: Tue 29 Apr 2025 03:17:04 +0000 ROA not before: Tue 29 Apr 2025 03:12:04 +0000 ROA not after: Tue 28 Apr 2026 03:17:04 +0000 asID: 64120 IP address blocks: 2803:f080:2c20::/43 maxlen: 64 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 05 May 2025 07:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:3a:39:db:b2:64:b8:69:e8:c0:ab:20:33:d8:15:75:e7:2a:08:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Validity Not Before: Apr 29 03:12:04 2025 GMT Not After : Apr 28 03:17:04 2026 GMT Subject: CN=69EB0C0C045313601E108A587E9B2B5C4BD96FE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:87:96:ac:26:35:27:3a:0b:73:c5:12:72:4b: fb:81:5d:c8:d1:04:ff:ae:44:5f:5c:4d:41:8a:d7: b0:72:90:0c:6a:84:b3:39:49:ef:5f:68:cb:40:19: 9f:62:5b:c6:1e:bb:b5:9a:7b:05:4f:d3:8c:64:b2: 2b:46:1a:1c:4d:c1:58:36:62:d8:22:08:14:6a:48: f8:bb:a7:95:d0:fe:6e:13:07:37:47:bd:e1:ed:e3: 35:30:01:9b:1c:f2:4d:bd:05:5f:b2:34:a0:f9:e9: 5e:f4:46:7d:d1:d2:14:7c:71:a9:41:6b:bb:e0:2f: f7:91:25:49:23:b9:f7:94:45:11:12:be:81:42:c5: 5e:2a:43:78:6c:5e:9e:6a:7e:35:70:33:51:61:b7: 42:81:3e:b0:e1:f7:51:d6:86:7d:11:b3:d3:22:dc: 77:e5:c8:ff:cc:19:5e:d9:39:d0:1d:f5:12:31:28: ac:ce:c6:90:bd:c5:1e:2a:ed:70:5f:90:b8:dc:7a: 42:66:79:f6:d4:58:9c:6a:cd:bc:f9:36:60:79:d7: 0f:0f:8e:4d:be:c9:dd:f9:39:36:69:58:01:c3:f6: 8b:57:3a:b0:d6:6f:44:f8:36:24:e5:cc:7a:a2:b3: 52:3e:10:b4:51:a6:76:1d:9c:b4:34:03:1b:2a:28: a0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:EB:0C:0C:04:53:13:60:1E:10:8A:58:7E:9B:2B:5C:4B:D9:6F:E7 X509v3 Authority Key Identifier: keyid:D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326332303a3a2f34332d3634203d3e203634313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:f080:2c20::/43 Signature Algorithm: sha256WithRSAEncryption 9c:0d:d2:93:84:c3:20:ec:50:e2:a2:69:59:eb:bc:20:e7:51: 5d:64:4f:2f:c1:3b:4f:c2:f9:82:16:84:0a:05:21:91:7c:b1: d5:7b:4e:61:c7:dc:70:a5:f7:72:28:61:9b:03:41:ba:d9:d8: 01:44:b5:17:ed:0d:bd:2d:e1:43:69:b7:56:fa:ae:7f:97:1f: e1:38:47:43:4f:75:1d:89:1e:ad:68:48:16:1a:fc:b8:3a:5d: 72:cb:93:ad:9f:c7:f0:ed:e1:09:73:de:06:3b:9d:32:69:3a: 2b:28:3f:2d:57:82:28:5f:3f:f8:68:ac:60:c0:a6:69:90:0e: b2:6c:01:ba:ba:46:37:ea:29:bf:3c:73:16:6a:32:70:55:e4: 1a:a2:2a:cd:f1:94:cf:4e:73:23:75:8d:e6:f6:2d:1b:d2:c8: b5:c2:c5:14:49:9c:bf:d8:68:31:7c:ad:67:5f:e8:ea:59:f2: 8b:2b:50:d5:4a:2f:63:8d:b9:82:dc:29:c8:e2:8d:86:b2:59: 06:fa:6a:6e:40:2a:01:83:38:e5:67:d9:17:07:42:7c:ac:1b: 23:5b:62:c4:2e:5d:b0:da:20:25:f6:c1:d2:e3:0c:70:d3:1e: b7:4e:da:38:60:b5:65:d6:f2:42:91:d7:94:03:b6:fb:1f:f9: 29:69:af:03 -----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgIUQjo527JkuGnowKsgM9gVdecqCAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYwMTdBQUNGQjc4NUVBQjdFQTU2RDI0MzM3Q0RDRDcy NEVBQzJBRDAeFw0yNTA0MjkwMzEyMDRaFw0yNjA0MjgwMzE3MDRaMDMxMTAvBgNV BAMTKDY5RUIwQzBDMDQ1MzEzNjAxRTEwOEE1ODdFOUIyQjVDNEJEOTZGRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7h5asJjUnOgtzxRJyS/uBXcjR BP+uRF9cTUGK17BykAxqhLM5Se9faMtAGZ9iW8Yeu7WaewVP04xksitGGhxNwVg2 YtgiCBRqSPi7p5XQ/m4TBzdHveHt4zUwAZsc8k29BV+yNKD56V70Rn3R0hR8calB a7vgL/eRJUkjufeURRESvoFCxV4qQ3hsXp5qfjVwM1Fht0KBPrDh91HWhn0Rs9Mi 3HflyP/MGV7ZOdAd9RIxKKzOxpC9xR4q7XBfkLjcekJmefbUWJxqzbz5NmB51w8P jk2+yd35OTZpWAHD9otXOrDWb0T4NiTlzHqis1I+ELRRpnYdnLQ0AxsqKKCPAgMB AAGjggLTMIICzzAdBgNVHQ4EFgQUaesMDARTE2AeEIpYfpsrXEvZb+cwHwYDVR0j BBgwFoAU1gF6rPt4Xqt+pW0kM3zc1yTqwq0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQzIxREZEOTYxODhGRjAzMTg3NDA5M0JFRjc4QjdGQzdF NUUzQ0M0MEYyMzkyMkQ5Q0RFNTlDRDExNjU4Qzg0LzAvRDYwMTdBQUNGQjc4NUVB QjdFQTU2RDI0MzM3Q0RDRDcyNEVBQzJBRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ENjAxN0FBQ0ZCNzg1RUFCN0VB NTZEMjQzMzdDRENENzI0RUFDMkFELmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUMyMURGRDk2MTg4RkYwMzE4NzQwOTNCRUY3OEI3RkM3RTVFM0NDNDBG MjM5MjJEOUNERTU5Q0QxMTY1OEM4NC8wLzMyMzgzMDMzM2E2NjMwMzgzMDNhMzI2 MzMyMzAzYTNhMmYzNDMzMmQzNjM0MjAzZDNlMjAzNjM0MzEzMjMwLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcFKAPwgCwgMA0GCSqGSIb3DQEBCwUAA4IBAQCcDdKThMMg7FDiomlZ67wg51Fd ZE8vwTtPwvmCFoQKBSGRfLHVe05hx9xwpfdyKGGbA0G62dgBRLUX7Q29LeFDabdW +q5/lx/hOEdDT3UdiR6taEgWGvy4Ol1yy5Otn8fw7eEJc94GO50yaTorKD8tV4Io Xz/4aKxgwKZpkA6ybAG6ukY36im/PHMWajJwVeQaoirN8ZTPTnMjdY3m9i0b0si1 wsUUSZy/2GgxfK1nX+jqWfKLK1DVSi9jjbmC3CnI4o2GslkG+mpuQCoBgzjlZ9kX B0J8rBsjW2LELl2w2iAl9sHS4wxw0x63Tto4YLVl1vJCkdeUA7b7H/kpaa8D -----END CERTIFICATE-----Generated at Thu May 1 19:30:53 2025 by rpki-client