$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e34382e302f32302d3234203d3e203136363239.roa File: 3230302e32392e34382e302f32302d3234203d3e203136363239.roa (raw, json) Hash identifier: RyC7ouHmyzxBiYYdxvYCpm/n3WosT20TPUFxdoMgKMc= Subject key identifier: 28:5E:39:D8:91:19:0B:9B:6D:55:E1:03:B0:A5:D2:04:E9:60:DB:8E Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Certificate serial: 180F510DB6CA7AC5BE0ADB411B0896A5986A338C Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e34382e302f32302d3234203d3e203136363239.roa Signing time: Tue 06 Jan 2026 19:24:48 +0000 ROA not before: Tue 06 Jan 2026 19:19:48 +0000 ROA not after: Tue 05 Jan 2027 19:24:48 +0000 asID: 16629 IP address blocks: 200.29.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 06 Mar 2026 02:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:0f:51:0d:b6:ca:7a:c5:be:0a:db:41:1b:08:96:a5:98:6a:33:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661 Validity Not Before: Jan 6 19:19:48 2026 GMT Not After : Jan 5 19:24:48 2027 GMT Subject: CN=285E39D891190B9B6D55E103B0A5D204E960DB8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:65:68:d4:c8:89:69:a9:be:74:b9:f8:54:27: 78:71:04:b8:0c:18:2a:7d:d3:97:61:d1:07:ec:e9: 53:98:33:72:7f:6f:0b:26:d6:07:a9:ea:99:90:76: 13:17:44:71:03:69:ba:ab:dc:bd:b0:c4:6c:73:7f: 8b:e9:b8:1a:40:0a:b2:57:91:ee:1a:8e:0c:13:71: 44:b7:96:0d:27:57:1d:f4:5f:09:7f:3b:33:40:12: 7c:25:70:31:cb:e4:0f:36:29:4c:42:a0:43:af:a7: dc:ed:ce:9d:41:34:f3:16:b5:e5:42:d6:1f:e3:cc: e1:b5:b5:9e:39:b4:1f:55:94:77:c5:af:ba:08:01: 79:d4:1a:c6:ef:b9:32:e5:e8:a6:b1:d5:90:6a:8e: 1c:e3:fc:2e:1f:0f:d4:c4:de:e4:a2:dd:25:68:b8: 35:67:58:3a:5b:45:3d:89:bf:7a:3c:11:d6:66:e8: 18:9e:0f:a4:67:a6:1a:72:4c:26:cb:67:79:53:10: f4:55:b7:11:79:17:bf:c3:77:25:25:d9:e8:d0:68: 5d:9a:f2:f3:e4:2e:ae:8d:8b:ba:3e:3a:ec:92:57: 42:8f:95:d4:b7:c0:f8:b4:fe:20:43:e1:41:ff:9e: 19:54:c8:07:01:76:ae:77:da:eb:85:2a:da:39:9a: 5e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:5E:39:D8:91:19:0B:9B:6D:55:E1:03:B0:A5:D2:04:E9:60:DB:8E X509v3 Authority Key Identifier: keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e34382e302f32302d3234203d3e203136363239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.29.48.0/20 Signature Algorithm: sha256WithRSAEncryption b9:fc:f3:0e:08:1d:dd:53:70:e4:92:5c:25:ae:5f:c8:2c:87: 11:a2:26:20:03:77:1f:dd:f2:a7:4d:cb:9a:9c:b3:94:20:1a: 50:e7:f6:0c:f3:54:16:a7:94:fa:7e:6c:38:13:85:bd:ee:40: 10:b9:b7:b0:38:d7:c5:2c:73:71:86:ff:af:24:0d:f5:84:57: bc:94:c8:a1:31:7b:04:e1:9a:30:bb:39:5c:68:7e:f8:8f:69: 40:2d:d4:14:36:68:2a:58:e8:a6:11:1c:1c:1d:8f:8e:81:fe: 32:3f:97:34:70:e0:72:fa:09:6c:53:44:f1:32:b1:5d:d4:e0: 5a:51:98:f2:38:70:9c:1c:9b:ae:fe:3f:59:01:28:d4:0c:11: 31:66:77:f6:d5:c9:f0:77:3e:64:ec:86:6c:89:9a:7c:c4:31: e1:6f:60:96:4d:e6:ed:b5:5e:b9:23:12:33:8f:81:34:b7:ee: b8:d8:35:1e:04:58:e4:50:04:57:0b:21:10:80:51:27:49:1f: 04:0e:06:05:91:c7:82:fc:3e:6c:78:60:68:10:21:04:c0:bc: 00:c9:43:36:41:16:0d:60:41:35:5f:cc:d5:37:ff:b4:3a:52: de:0e:c5:d3:2b:6c:95:f3:73:4a:65:fa:36:a0:57:6b:a0:bc: 36:a6:17:4b -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUGA9RDbbKesW+CttBGwiWpZhqM4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0 RTBFMzY2MTAeFw0yNjAxMDYxOTE5NDhaFw0yNzAxMDUxOTI0NDhaMDMxMTAvBgNV BAMTKDI4NUUzOUQ4OTExOTBCOUI2RDU1RTEwM0IwQTVEMjA0RTk2MERCOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmZWjUyIlpqb50ufhUJ3hxBLgM GCp905dh0Qfs6VOYM3J/bwsm1gep6pmQdhMXRHEDabqr3L2wxGxzf4vpuBpACrJX ke4ajgwTcUS3lg0nVx30Xwl/OzNAEnwlcDHL5A82KUxCoEOvp9ztzp1BNPMWteVC 1h/jzOG1tZ45tB9VlHfFr7oIAXnUGsbvuTLl6Kax1ZBqjhzj/C4fD9TE3uSi3SVo uDVnWDpbRT2Jv3o8EdZm6BieD6RnphpyTCbLZ3lTEPRVtxF5F7/DdyUl2ejQaF2a 8vPkLq6Ni7o+OuySV0KPldS3wPi0/iBD4UH/nhlUyAcBdq532uuFKto5ml7RAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUKF452JEZC5ttVeEDsKXSBOlg244wHwYDVR0j BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMDJlMzIzOTJlMzQzODJlMzAy ZjMyMzAyZDMyMzQyMDNkM2UyMDMxMzYzNjMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATIHTAwDQYJ KoZIhvcNAQELBQADggEBALn88w4IHd1TcOSSXCWuX8gshxGiJiADdx/d8qdNy5qc s5QgGlDn9gzzVBanlPp+bDgThb3uQBC5t7A418Usc3GG/68kDfWEV7yUyKExewTh mjC7OVxofviPaUAt1BQ2aCpY6KYRHBwdj46B/jI/lzRw4HL6CWxTRPEysV3U4FpR mPI4cJwcm67+P1kBKNQMETFmd/bVyfB3PmTshmyJmnzEMeFvYJZN5u21XrkjEjOP gTS37rjYNR4EWORQBFcLIRCAUSdJHwQOBgWRx4L8Pmx4YGgQIQTAvADJQzZBFg1g QTVfzNU3/7Q6Ut4OxdMrbJXzc0pl+jagV2ugvDamF0s= -----END CERTIFICATE-----Generated at Mon Mar 2 21:58:00 2026 by rpki-client