$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326336303a3a2f34332d3634203d3e203634313230.roa File: 323830333a663038303a326336303a3a2f34332d3634203d3e203634313230.roa (raw, json) Hash identifier: r9s1DVEO6PtT3cx009agfbV177Vq56Yo/xcaVW2nw8k= Subject key identifier: 03:85:17:CE:CE:9B:B1:2E:F5:56:E4:5A:20:7E:5B:18:F2:A7:43:90 Certificate issuer: /CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Certificate serial: 68F3278B163B308591CB3A5F9058F6BB07434060 Authority key identifier: D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326336303a3a2f34332d3634203d3e203634313230.roa Signing time: Tue 29 Apr 2025 03:17:07 +0000 ROA not before: Tue 29 Apr 2025 03:12:07 +0000 ROA not after: Tue 28 Apr 2026 03:17:07 +0000 asID: 64120 IP address blocks: 2803:f080:2c60::/43 maxlen: 64 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 08 May 2025 08:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:f3:27:8b:16:3b:30:85:91:cb:3a:5f:90:58:f6:bb:07:43:40:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD Validity Not Before: Apr 29 03:12:07 2025 GMT Not After : Apr 28 03:17:07 2026 GMT Subject: CN=038517CECE9BB12EF556E45A207E5B18F2A74390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:33:0c:67:c2:b4:7b:a5:8a:67:dc:12:a1:b2: 94:14:bf:db:3e:c9:95:76:c3:cf:b2:11:0d:e9:21: e3:7e:4e:5a:dd:69:b1:30:56:3f:a9:7b:a9:84:1f: 0d:8d:75:1d:a6:13:f7:04:75:72:04:6d:1a:60:1f: 71:1d:99:41:15:47:e6:8b:c2:40:8f:5a:7b:7f:9d: 04:51:d9:b3:2f:62:50:6c:8a:56:43:35:3f:74:0e: e2:4d:2f:aa:e0:e0:d9:d0:c0:85:2e:2d:71:22:df: e8:d0:c9:6b:08:8b:34:49:a5:1d:0c:2d:14:9f:97: f0:67:22:a4:30:6f:7f:71:dd:00:ba:c6:b3:6c:96: 07:8a:52:7c:00:de:96:eb:be:17:40:da:91:66:ea: 31:5e:fb:54:ec:3c:f4:9a:66:02:aa:1b:06:d1:13: 4a:30:7f:84:db:81:6c:46:04:9d:02:73:76:e8:29: f7:a2:2e:7b:7a:c9:e7:bf:54:53:b2:09:4e:f8:dc: b1:cd:c6:df:d7:1b:c5:d1:0a:60:5a:8f:18:ef:bb: 83:83:02:d7:d4:6b:a7:38:ed:ec:5d:d6:51:aa:13: 9e:cd:04:ed:3f:37:9f:02:2a:ae:e2:db:92:c5:b0: 91:8c:4b:90:12:e5:2b:5c:29:f4:70:1c:61:93:a2: 7a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:85:17:CE:CE:9B:B1:2E:F5:56:E4:5A:20:7E:5B:18:F2:A7:43:90 X509v3 Authority Key Identifier: keyid:D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326336303a3a2f34332d3634203d3e203634313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:f080:2c60::/43 Signature Algorithm: sha256WithRSAEncryption 8d:25:fb:64:34:bd:81:59:55:da:de:50:f2:e5:99:53:35:65: 1d:b4:1e:3a:1f:66:dd:e4:1e:9e:ce:d6:bd:80:e5:ff:a1:bf: 52:eb:e9:9a:03:4d:9c:2d:32:37:10:99:75:cb:e4:db:4a:e8: 0e:9f:20:98:1c:89:53:a3:54:95:d7:ca:8e:0f:94:0d:91:ee: 81:83:fe:74:2a:f0:e4:7d:7d:62:0a:de:a5:0f:ad:99:36:f6: 68:22:da:39:0b:c2:a2:08:a2:a6:23:ed:04:62:1a:90:b2:c7: c6:74:2f:1b:55:0c:fa:df:7a:31:ae:50:70:ee:34:c2:d4:92: e0:8b:fd:9b:9b:14:ff:c0:f2:4d:52:32:be:d9:4b:17:48:3d: 79:f7:57:73:e7:07:18:ec:2a:b9:2c:bd:a8:fa:33:87:5e:e8: 1d:c1:e2:d0:b9:2c:f6:58:c0:8e:77:8c:10:ee:e0:d7:99:a2: e1:45:3d:fa:20:39:9a:fc:55:86:1d:4e:3c:cb:b8:d2:65:11: 06:ba:5b:ae:96:c0:fc:0c:8c:28:aa:59:97:8b:ce:fb:ea:a4: 8d:d3:44:98:56:8e:73:f2:6c:45:4a:4a:89:fa:ab:65:79:63: a3:af:a3:eb:d9:b5:ba:2c:fb:0b:b3:6a:f4:aa:70:67:9e:69: 8c:b2:90:59 -----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgIUaPMnixY7MIWRyzpfkFj2uwdDQGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYwMTdBQUNGQjc4NUVBQjdFQTU2RDI0MzM3Q0RDRDcy NEVBQzJBRDAeFw0yNTA0MjkwMzEyMDdaFw0yNjA0MjgwMzE3MDdaMDMxMTAvBgNV BAMTKDAzODUxN0NFQ0U5QkIxMkVGNTU2RTQ1QTIwN0U1QjE4RjJBNzQzOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYMwxnwrR7pYpn3BKhspQUv9s+ yZV2w8+yEQ3pIeN+TlrdabEwVj+pe6mEHw2NdR2mE/cEdXIEbRpgH3EdmUEVR+aL wkCPWnt/nQRR2bMvYlBsilZDNT90DuJNL6rg4NnQwIUuLXEi3+jQyWsIizRJpR0M LRSfl/BnIqQwb39x3QC6xrNslgeKUnwA3pbrvhdA2pFm6jFe+1TsPPSaZgKqGwbR E0owf4TbgWxGBJ0Cc3boKfeiLnt6yee/VFOyCU743LHNxt/XG8XRCmBajxjvu4OD AtfUa6c47exd1lGqE57NBO0/N58CKq7i25LFsJGMS5AS5StcKfRwHGGTonrnAgMB AAGjggLTMIICzzAdBgNVHQ4EFgQUA4UXzs6bsS71VuRaIH5bGPKnQ5AwHwYDVR0j BBgwFoAU1gF6rPt4Xqt+pW0kM3zc1yTqwq0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQzIxREZEOTYxODhGRjAzMTg3NDA5M0JFRjc4QjdGQzdF NUUzQ0M0MEYyMzkyMkQ5Q0RFNTlDRDExNjU4Qzg0LzAvRDYwMTdBQUNGQjc4NUVB QjdFQTU2RDI0MzM3Q0RDRDcyNEVBQzJBRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ENjAxN0FBQ0ZCNzg1RUFCN0VB NTZEMjQzMzdDRENENzI0RUFDMkFELmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUMyMURGRDk2MTg4RkYwMzE4NzQwOTNCRUY3OEI3RkM3RTVFM0NDNDBG MjM5MjJEOUNERTU5Q0QxMTY1OEM4NC8wLzMyMzgzMDMzM2E2NjMwMzgzMDNhMzI2 MzM2MzAzYTNhMmYzNDMzMmQzNjM0MjAzZDNlMjAzNjM0MzEzMjMwLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcFKAPwgCxgMA0GCSqGSIb3DQEBCwUAA4IBAQCNJftkNL2BWVXa3lDy5ZlTNWUd tB46H2bd5B6ezta9gOX/ob9S6+maA02cLTI3EJl1y+TbSugOnyCYHIlTo1SV18qO D5QNke6Bg/50KvDkfX1iCt6lD62ZNvZoIto5C8KiCKKmI+0EYhqQssfGdC8bVQz6 33oxrlBw7jTC1JLgi/2bmxT/wPJNUjK+2UsXSD1591dz5wcY7Cq5LL2o+jOHXugd weLQuSz2WMCOd4wQ7uDXmaLhRT36IDma/FWGHU48y7jSZREGuluulsD8DIwoqlmX i8776qSN00SYVo5z8mxFSkqJ+qtleWOjr6Pr2bW6LPsLs2r0qnBnnmmMspBZ -----END CERTIFICATE-----Generated at Sun May 4 12:40:28 2025 by rpki-client