$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/3137302e302e382e302f32342d3234203d3e203138363738.roa File: 3137302e302e382e302f32342d3234203d3e203138363738.roa (raw, json) Hash identifier: IbPxwBz3L3A3PLIAvuBlA7aDjQzEsxHRfbGFL74IfFg= Subject key identifier: F5:AB:90:3E:95:06:72:C7:18:28:E7:98:E6:F3:B5:23:C8:99:21:20 Certificate issuer: /CN=08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D Certificate serial: 09C7BB76861AB07EA82E9586EB9E1B417B54164A Authority key identifier: 08:AA:2E:4D:3C:7C:DF:96:26:D3:31:AC:D3:8D:17:19:F3:D4:A7:2D Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/3137302e302e382e302f32342d3234203d3e203138363738.roa Signing time: Mon 22 Sep 2025 13:20:00 +0000 ROA not before: Mon 22 Sep 2025 13:15:00 +0000 ROA not after: Mon 21 Sep 2026 13:20:00 +0000 asID: 18678 IP address blocks: 170.0.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.crl rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 24 Oct 2025 00:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:c7:bb:76:86:1a:b0:7e:a8:2e:95:86:eb:9e:1b:41:7b:54:16:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D Validity Not Before: Sep 22 13:15:00 2025 GMT Not After : Sep 21 13:20:00 2026 GMT Subject: CN=F5AB903E950672C71828E798E6F3B523C8992120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:54:9a:6b:e2:2e:54:c6:d1:09:b9:59:ca:7d: 0a:fb:04:2a:a7:1b:5a:e2:fb:70:de:cb:cf:74:a0: 64:78:7a:65:bf:d6:b2:0f:20:a2:e2:7c:49:0a:e5: 96:a3:85:fc:4c:d2:ec:c8:1d:4e:84:f4:fd:ea:83: f2:8e:85:87:f7:5e:94:6a:c2:30:ff:d1:0b:74:6b: 01:42:4b:e8:0c:b8:e5:5f:87:be:95:5c:da:9d:83: e3:c1:08:50:04:74:1c:77:49:97:54:2f:4b:0f:09: 68:df:8d:e9:b2:b5:72:a8:6b:07:b1:f7:0a:0b:87: 75:34:7b:85:c8:ab:83:4b:8b:2f:8d:35:4d:ab:34: 2a:48:a8:18:bf:b1:d5:13:3c:17:f4:e9:ad:f7:85: 36:d0:68:f3:5e:85:f2:41:88:17:d8:79:0d:cc:ca: e5:48:2a:41:de:02:c9:66:4a:d0:ea:16:87:92:6f: cd:e8:fc:0b:e3:88:99:18:b6:52:a3:95:d2:ef:a0: fd:07:d9:b7:00:ae:21:8f:35:13:f3:52:16:43:a6: a8:3b:ba:99:fa:e4:03:c9:60:55:68:2c:58:a7:63: 2e:c5:68:38:4e:74:0f:5b:8e:49:4c:2b:9a:ee:c7: 45:be:18:e9:d9:ec:88:74:fe:5d:17:11:45:bf:57: 5f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:AB:90:3E:95:06:72:C7:18:28:E7:98:E6:F3:B5:23:C8:99:21:20 X509v3 Authority Key Identifier: keyid:08:AA:2E:4D:3C:7C:DF:96:26:D3:31:AC:D3:8D:17:19:F3:D4:A7:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/3137302e302e382e302f32342d3234203d3e203138363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.0.8.0/24 Signature Algorithm: sha256WithRSAEncryption 31:2d:81:c3:78:98:6d:d3:61:e9:4f:c0:0c:2d:17:b3:ce:ac: cf:55:bb:40:cc:6d:1b:5d:cc:87:ab:d9:75:61:c6:d0:dd:b2: 7d:f9:b8:1e:3f:f4:19:d4:76:c7:3c:06:f7:40:9f:10:dd:3e: 8d:bf:e2:cb:f1:63:c6:1e:9d:4b:62:c8:60:eb:ce:82:83:39: 38:0d:6c:52:c0:dc:a3:12:de:e0:77:6d:eb:c3:8d:3f:6c:bd: c9:08:11:e8:3d:e4:bd:7d:29:a8:30:45:51:56:a4:a8:08:43: 3d:37:71:ae:28:b2:46:ac:eb:0f:d0:ca:de:50:02:21:07:41: 9a:d8:73:75:d5:15:0e:ee:e1:ca:8b:b5:0c:2d:14:47:df:92: 01:8f:5f:f8:7b:d9:84:81:05:d9:19:5d:05:6b:5d:f5:a9:a4: 40:41:e1:28:d4:e7:85:fe:ec:9c:c3:0a:51:1a:fa:e5:6e:1c: de:61:9d:e6:e2:db:5c:ac:17:32:73:8f:b7:1c:e1:cb:ad:50: 79:28:cb:59:c0:36:56:1f:96:e3:d2:eb:fe:c8:5d:ef:aa:f8: 08:a9:a1:40:e8:25:a3:bd:14:07:84:1a:2e:64:00:23:9c:fb: 0a:b7:aa:16:53:bb:59:26:db:09:cb:6c:53:d1:de:e8:cd:fa: 4b:9a:00:76 -----BEGIN CERTIFICATE----- MIIFuDCCBKCgAwIBAgIUCce7doYasH6oLpWG654bQXtUFkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhBQTJFNEQzQzdDREY5NjI2RDMzMUFDRDM4RDE3MTlG M0Q0QTcyRDAeFw0yNTA5MjIxMzE1MDBaFw0yNjA5MjExMzIwMDBaMDMxMTAvBgNV BAMTKEY1QUI5MDNFOTUwNjcyQzcxODI4RTc5OEU2RjNCNTIzQzg5OTIxMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEVJpr4i5UxtEJuVnKfQr7BCqn G1ri+3Dey890oGR4emW/1rIPIKLifEkK5ZajhfxM0uzIHU6E9P3qg/KOhYf3XpRq wjD/0Qt0awFCS+gMuOVfh76VXNqdg+PBCFAEdBx3SZdUL0sPCWjfjemytXKoawex 9woLh3U0e4XIq4NLiy+NNU2rNCpIqBi/sdUTPBf06a33hTbQaPNehfJBiBfYeQ3M yuVIKkHeAslmStDqFoeSb83o/AvjiJkYtlKjldLvoP0H2bcAriGPNRPzUhZDpqg7 upn65APJYFVoLFinYy7FaDhOdA9bjklMK5rux0W+GOnZ7Ih0/l0XEUW/V1+tAgMB AAGjggLCMIICvjAdBgNVHQ4EFgQU9auQPpUGcscYKOeY5vO1I8iZISAwHwYDVR0j BBgwFoAUCKouTTx835Ym0zGs040XGfPUpy0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy84RDRCQjI0MjFDMjREMTlGMzEyM0IwQzY4MUIwMUFEODJB OTI5NDE1ODJDOURBQkI5NDkzRTA5N0YzRjJGODkzLzAvMDhBQTJFNEQzQzdDREY5 NjI2RDMzMUFDRDM4RDE3MTlGM0Q0QTcyRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wOEFBMkU0RDNDN0NERjk2MjZE MzMxQUNEMzhEMTcxOUYzRDRBNzJELmNlcjCBwQYIKwYBBQUHAQsEgbQwgbEwga4G CCsGAQUFBzALhoGhcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvOEQ0QkIyNDIxQzI0RDE5RjMxMjNCMEM2ODFCMDFBRDgyQTkyOTQxNTgy QzlEQUJCOTQ5M0UwOTdGM0YyRjg5My8wLzMxMzczMDJlMzAyZTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODM2MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKoACDANBgkqhkiG 9w0BAQsFAAOCAQEAMS2Bw3iYbdNh6U/ADC0Xs86sz1W7QMxtG13Mh6vZdWHG0N2y ffm4Hj/0GdR2xzwG90CfEN0+jb/iy/Fjxh6dS2LIYOvOgoM5OA1sUsDcoxLe4Hdt 68ONP2y9yQgR6D3kvX0pqDBFUVakqAhDPTdxriiyRqzrD9DK3lACIQdBmthzddUV Du7hyou1DC0UR9+SAY9f+HvZhIEF2RldBWtd9amkQEHhKNTnhf7snMMKURr65W4c 3mGd5uLbXKwXMnOPtxzhy61QeSjLWcA2Vh+W49Lr/shd76r4CKmhQOglo70UB4Qa LmQAI5z7CreqFlO7WSbbCctsU9He6M36S5oAdg== -----END CERTIFICATE-----Generated at Mon Oct 20 17:43:09 2025 by rpki-client