$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1E21FFE37CF0A0F08CBFD272A7B00A34F48C9B49688F7CDA45CD807CA6D2E854/0/3230302e36312e37302e302f32342d3234203d3e203135303334.roa File: 3230302e36312e37302e302f32342d3234203d3e203135303334.roa (raw, json) Hash identifier: 8EAKHQzm0uL/jabJoLvbNoAMi+ibS2i31oYNzqCgAXE= Subject key identifier: DC:9F:3F:71:7C:AA:07:1F:C3:7F:59:19:24:D5:7F:B3:4E:6F:9A:22 Certificate issuer: /CN=F0D79F5D9704D037A5FD3789F7A807BE09AC8B7F Certificate serial: 1D6707739C71F4D6EBCE9119939D0583B39D990A Authority key identifier: F0:D7:9F:5D:97:04:D0:37:A5:FD:37:89:F7:A8:07:BE:09:AC:8B:7F Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0D79F5D9704D037A5FD3789F7A807BE09AC8B7F.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1E21FFE37CF0A0F08CBFD272A7B00A34F48C9B49688F7CDA45CD807CA6D2E854/0/3230302e36312e37302e302f32342d3234203d3e203135303334.roa Signing time: Mon 01 Sep 2025 18:30:01 +0000 ROA not before: Mon 01 Sep 2025 18:25:01 +0000 ROA not after: Mon 31 Aug 2026 18:30:01 +0000 asID: 15034 IP address blocks: 200.61.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/1E21FFE37CF0A0F08CBFD272A7B00A34F48C9B49688F7CDA45CD807CA6D2E854/0/F0D79F5D9704D037A5FD3789F7A807BE09AC8B7F.crl rsync://repository.lacnic.net/rpki/lacnic/1E21FFE37CF0A0F08CBFD272A7B00A34F48C9B49688F7CDA45CD807CA6D2E854/0/F0D79F5D9704D037A5FD3789F7A807BE09AC8B7F.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0D79F5D9704D037A5FD3789F7A807BE09AC8B7F.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 24 Oct 2025 00:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:67:07:73:9c:71:f4:d6:eb:ce:91:19:93:9d:05:83:b3:9d:99:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F0D79F5D9704D037A5FD3789F7A807BE09AC8B7F Validity Not Before: Sep 1 18:25:01 2025 GMT Not After : Aug 31 18:30:01 2026 GMT Subject: CN=DC9F3F717CAA071FC37F591924D57FB34E6F9A22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e0:09:11:fe:2d:be:1e:53:7a:9a:ff:71:5f: 50:e3:38:cc:74:c2:db:ee:5f:00:c0:be:5b:a6:3b: 30:5c:b7:7a:f2:54:01:71:7b:8e:f0:b7:61:d3:c9: 4d:bc:a7:0d:91:b9:06:45:7d:51:55:ff:06:94:47: 54:5c:a0:8c:82:58:b8:1b:bd:58:b3:27:af:6d:05: 0e:9f:a2:b4:70:f4:3e:be:e5:35:e8:7e:83:6b:91: b1:27:69:8a:39:eb:a0:74:a3:eb:b1:f0:f5:e2:0d: 60:90:6b:2a:b6:d7:e4:08:1b:88:2e:53:03:66:f5: f8:a1:80:e6:a8:97:ce:fa:77:a8:f7:4b:bd:92:8c: 6e:2b:6c:bf:94:5f:b5:46:89:87:17:c4:d8:ea:1c: 22:57:33:dc:c2:81:44:aa:52:22:b7:f6:38:9c:81: 66:bb:d0:a7:3b:e1:9e:a1:55:62:5b:e6:62:95:fe: 10:ae:5e:8e:7d:1b:63:4e:ac:ab:ba:dd:02:82:8d: f5:63:54:7c:a7:fc:dd:cf:31:69:48:66:9d:86:8d: 0b:e1:49:22:6a:85:7f:fe:8f:b2:46:29:42:13:c9: 7d:d8:a6:4b:03:0f:74:b3:20:87:b7:54:8f:3f:ad: fc:ae:69:fb:f3:65:64:4e:23:a7:05:ea:69:45:a7: ab:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:9F:3F:71:7C:AA:07:1F:C3:7F:59:19:24:D5:7F:B3:4E:6F:9A:22 X509v3 Authority Key Identifier: keyid:F0:D7:9F:5D:97:04:D0:37:A5:FD:37:89:F7:A8:07:BE:09:AC:8B:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/1E21FFE37CF0A0F08CBFD272A7B00A34F48C9B49688F7CDA45CD807CA6D2E854/0/F0D79F5D9704D037A5FD3789F7A807BE09AC8B7F.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0D79F5D9704D037A5FD3789F7A807BE09AC8B7F.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1E21FFE37CF0A0F08CBFD272A7B00A34F48C9B49688F7CDA45CD807CA6D2E854/0/3230302e36312e37302e302f32342d3234203d3e203135303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.61.70.0/24 Signature Algorithm: sha256WithRSAEncryption 53:e2:09:f0:60:ae:b2:f4:61:47:3f:ea:89:eb:b8:9b:af:1f: ef:d3:37:ba:d4:8d:04:41:36:17:8e:dd:33:7d:d3:d8:07:0a: 64:b2:f3:64:22:94:5a:c0:80:1c:a2:a7:06:4d:81:8d:4c:83: 65:61:3b:d8:ad:84:e3:45:2f:71:38:5f:84:c0:0c:1e:f6:7e: f9:73:00:3a:6c:bd:95:5e:db:fd:57:22:fa:53:81:79:69:27: eb:d3:e6:3b:63:16:2a:cd:87:be:23:79:e8:33:38:16:02:e8: 69:fa:96:23:cd:57:00:4c:7d:40:17:4d:0c:11:f8:f2:66:af: f7:59:67:db:28:a9:55:70:4f:ce:d0:62:78:1c:94:71:7b:09: 13:4e:76:9e:93:38:b1:de:db:03:b7:f3:c4:1e:dd:8f:7b:3f: e5:17:8a:cd:81:e4:38:66:ac:2e:1b:24:00:f2:52:b7:61:e1: 86:9b:9b:b9:c6:c9:20:95:e8:8c:54:b3:82:23:58:5d:58:bf: 12:17:61:c6:da:b7:05:72:26:f3:29:44:1c:a9:91:8d:6a:c8: da:de:95:0f:7a:ec:02:82:26:f3:c3:93:33:79:76:4f:4b:a5: 0e:48:13:07:16:e7:46:68:05:5c:66:16:43:2f:1b:cf:d8:ad: f5:ef:15:5d -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUHWcHc5xx9NbrzpEZk50Fg7OdmQowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjBENzlGNUQ5NzA0RDAzN0E1RkQzNzg5RjdBODA3QkUw OUFDOEI3RjAeFw0yNTA5MDExODI1MDFaFw0yNjA4MzExODMwMDFaMDMxMTAvBgNV BAMTKERDOUYzRjcxN0NBQTA3MUZDMzdGNTkxOTI0RDU3RkIzNEU2RjlBMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy4AkR/i2+HlN6mv9xX1DjOMx0 wtvuXwDAvlumOzBct3ryVAFxe47wt2HTyU28pw2RuQZFfVFV/waUR1RcoIyCWLgb vVizJ69tBQ6forRw9D6+5TXofoNrkbEnaYo566B0o+ux8PXiDWCQayq21+QIG4gu UwNm9fihgOaol876d6j3S72SjG4rbL+UX7VGiYcXxNjqHCJXM9zCgUSqUiK39jic gWa70Kc74Z6hVWJb5mKV/hCuXo59G2NOrKu63QKCjfVjVHyn/N3PMWlIZp2GjQvh SSJqhX/+j7JGKUITyX3YpksDD3SzIIe3VI8/rfyuafvzZWROI6cF6mlFp6s/AgMB AAGjggLGMIICwjAdBgNVHQ4EFgQU3J8/cXyqBx/Df1kZJNV/s05vmiIwHwYDVR0j BBgwFoAU8NefXZcE0Del/TeJ96gHvgmsi38wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8xRTIxRkZFMzdDRjBBMEYwOENCRkQyNzJBN0IwMEEzNEY0 OEM5QjQ5Njg4RjdDREE0NUNEODA3Q0E2RDJFODU0LzAvRjBENzlGNUQ5NzA0RDAz N0E1RkQzNzg5RjdBODA3QkUwOUFDOEI3Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GMEQ3OUY1RDk3MDREMDM3QTVG RDM3ODlGN0E4MDdCRTA5QUM4QjdGLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvMUUyMUZGRTM3Q0YwQTBGMDhDQkZEMjcyQTdCMDBBMzRGNDhDOUI0OTY4 OEY3Q0RBNDVDRDgwN0NBNkQyRTg1NC8wLzMyMzAzMDJlMzYzMTJlMzczMDJlMzAy ZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMDMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADIPUYwDQYJ KoZIhvcNAQELBQADggEBAFPiCfBgrrL0YUc/6onruJuvH+/TN7rUjQRBNheO3TN9 09gHCmSy82QilFrAgByipwZNgY1Mg2VhO9ithONFL3E4X4TADB72fvlzADpsvZVe 2/1XIvpTgXlpJ+vT5jtjFirNh74jeegzOBYC6Gn6liPNVwBMfUAXTQwR+PJmr/dZ Z9soqVVwT87QYngclHF7CRNOdp6TOLHe2wO388Qe3Y97P+UXis2B5DhmrC4bJADy Urdh4Yabm7nGySCV6IxUs4IjWF1YvxIXYcbatwVyJvMpRBypkY1qyNrelQ967AKC JvPDkzN5dk9LpQ5IEwcW50ZoBVxmFkMvG8/YrfXvFV0= -----END CERTIFICATE-----Generated at Mon Oct 20 23:06:36 2025 by rpki-client