$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/34352e3232342e3138382e302f32322d3234203d3e20323635383632.roa File: 34352e3232342e3138382e302f32322d3234203d3e20323635383632.roa (raw, json) Hash identifier: JoJ0VhE0c/koo9f+iA4lXwHVoTGEK2FkWwRDSfINZiI= Subject key identifier: 3F:DF:37:16:D4:56:7E:2A:6C:C5:BD:04:6A:FE:6F:A0:19:67:A6:A0 Certificate issuer: /CN=91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6 Certificate serial: 42BF0521A50C4E170BA9A779851301B1855E63A1 Authority key identifier: 91:DB:B2:B4:BA:25:E4:71:DB:FD:1A:B6:84:91:63:BE:A0:77:E1:A6 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/34352e3232342e3138382e302f32322d3234203d3e20323635383632.roa Signing time: Thu 18 Sep 2025 03:25:01 +0000 ROA not before: Thu 18 Sep 2025 03:20:01 +0000 ROA not after: Thu 17 Sep 2026 03:25:01 +0000 asID: 265862 IP address blocks: 45.224.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.crl rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 24 Oct 2025 00:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:bf:05:21:a5:0c:4e:17:0b:a9:a7:79:85:13:01:b1:85:5e:63:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6 Validity Not Before: Sep 18 03:20:01 2025 GMT Not After : Sep 17 03:25:01 2026 GMT Subject: CN=3FDF3716D4567E2A6CC5BD046AFE6FA01967A6A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3f:b9:f1:e1:44:5d:ff:1e:71:ac:ce:2a:79: fa:cf:a6:8c:ff:90:64:28:9b:73:17:a7:18:02:29: a8:da:0e:9c:1d:3e:35:09:24:f1:ad:f6:c3:ab:7e: 25:50:cb:03:0f:cf:cd:00:c8:bb:34:fc:05:b1:e8: 5b:2d:fb:3a:93:31:20:8d:40:c2:ed:b0:89:06:dd: 3b:56:e3:a5:d5:f3:0e:84:be:e9:c4:c0:87:f4:a3: f7:6d:12:b9:f5:1e:93:83:d4:c6:19:01:fe:0a:1f: ac:d9:b9:c6:3d:ea:04:67:57:ee:0e:b0:64:e6:f0: 9a:15:21:fd:8c:7a:9d:ef:46:58:a1:ac:af:ec:ce: d7:52:ae:eb:08:5a:6e:13:db:2e:da:90:02:e2:87: 4f:71:2b:64:a7:ac:31:82:37:3d:0d:5e:e4:aa:f3: ea:ce:73:bc:94:00:3e:4b:ec:b4:c7:d3:5c:39:c0: d6:82:eb:92:dc:a2:f6:83:ee:82:d0:fb:de:b7:29: 24:bf:1a:10:01:b9:bd:8e:5b:97:5c:71:8a:76:a7: 5b:34:da:df:5a:91:ab:e0:0c:55:52:4f:be:a3:fb: 61:c9:84:fc:45:1d:18:50:a4:bb:ba:5d:25:4f:b1: 81:d1:80:fe:1a:cd:a6:c6:1b:06:35:ba:8d:da:54: 3b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:DF:37:16:D4:56:7E:2A:6C:C5:BD:04:6A:FE:6F:A0:19:67:A6:A0 X509v3 Authority Key Identifier: keyid:91:DB:B2:B4:BA:25:E4:71:DB:FD:1A:B6:84:91:63:BE:A0:77:E1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/34352e3232342e3138382e302f32322d3234203d3e20323635383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.224.188.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:e9:86:0b:c8:d3:cc:a3:76:f7:ac:ca:0c:2e:38:91:e9:9a: 7c:45:93:e2:78:4d:99:32:8e:d7:76:cb:f6:f7:27:32:83:41: c6:9a:12:e0:1a:37:24:af:20:63:18:97:ae:d2:92:ac:34:2d: 6e:48:15:08:23:56:e2:c1:c1:e5:42:9b:ea:7b:8c:97:81:09: 79:40:69:e8:07:90:51:a3:1a:6a:27:ff:d0:6e:a3:45:65:ef: 3f:b3:ae:ab:d4:f2:61:16:6d:77:b7:f3:17:7b:ab:79:41:fc: ef:8d:1a:5c:c2:b0:0b:96:1c:9f:88:fb:8c:cf:0c:68:29:85: 95:79:c9:0a:74:68:b6:25:05:3a:f6:46:d3:52:cf:d1:20:7f: 00:01:70:34:2b:50:55:d8:b8:0b:50:82:92:38:22:eb:c4:80: 67:2b:c2:b3:a4:4f:5a:4c:61:ea:d9:22:a4:b6:44:17:c9:98: 17:47:fc:09:10:74:9c:96:dc:ae:3b:2d:eb:55:97:6c:cd:70: 45:f3:04:64:fc:26:61:33:08:5b:ef:77:81:0f:15:44:45:a4: 85:5e:cd:aa:a8:15:6b:bc:82:a5:ce:41:07:74:1b:a6:21:75: fe:34:8f:2d:19:c9:63:ff:09:e8:33:de:1d:8f:65:23:6e:db: 16:24:cf:5e -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIUQr8FIaUMThcLqad5hRMBsYVeY6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEQkIyQjRCQTI1RTQ3MURCRkQxQUI2ODQ5MTYzQkVB MDc3RTFBNjAeFw0yNTA5MTgwMzIwMDFaFw0yNjA5MTcwMzI1MDFaMDMxMTAvBgNV BAMTKDNGREYzNzE2RDQ1NjdFMkE2Q0M1QkQwNDZBRkU2RkEwMTk2N0E2QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrP7nx4URd/x5xrM4qefrPpoz/ kGQom3MXpxgCKajaDpwdPjUJJPGt9sOrfiVQywMPz80AyLs0/AWx6Fst+zqTMSCN QMLtsIkG3TtW46XV8w6EvunEwIf0o/dtErn1HpOD1MYZAf4KH6zZucY96gRnV+4O sGTm8JoVIf2Mep3vRlihrK/sztdSrusIWm4T2y7akALih09xK2SnrDGCNz0NXuSq 8+rOc7yUAD5L7LTH01w5wNaC65LcovaD7oLQ+963KSS/GhABub2OW5dccYp2p1s0 2t9akavgDFVST76j+2HJhPxFHRhQpLu6XSVPsYHRgP4azabGGwY1uo3aVDsPAgMB AAGjggLKMIICxjAdBgNVHQ4EFgQUP983FtRWfipsxb0Eav5voBlnpqAwHwYDVR0j BBgwFoAUkduytLol5HHb/Rq2hJFjvqB34aYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BMEZCMDhBRDFDQzNDRjI4RTQ0OUY0QjU1MTU4OUIxQzgy MzI4OEYyOTBBRjU3RkNGM0Q3OEY4OUI4MkQzQ0M5LzAvOTFEQkIyQjRCQTI1RTQ3 MURCRkQxQUI2ODQ5MTYzQkVBMDc3RTFBNi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85MURCQjJCNEJBMjVFNDcxREJG RDFBQjY4NDkxNjNCRUEwNzdFMUE2LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQTBGQjA4QUQxQ0MzQ0YyOEU0NDlGNEI1NTE1ODlCMUM4MjMyODhGMjkw QUY1N0ZDRjNENzhGODlCODJEM0NDOS8wLzM0MzUyZTMyMzIzNDJlMzEzODM4MmUz MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM1MzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLeC8 MA0GCSqGSIb3DQEBCwUAA4IBAQBb6YYLyNPMo3b3rMoMLjiR6Zp8RZPieE2ZMo7X dsv29ycyg0HGmhLgGjckryBjGJeu0pKsNC1uSBUII1biwcHlQpvqe4yXgQl5QGno B5BRoxpqJ//QbqNFZe8/s66r1PJhFm13t/MXe6t5QfzvjRpcwrALlhyfiPuMzwxo KYWVeckKdGi2JQU69kbTUs/RIH8AAXA0K1BV2LgLUIKSOCLrxIBnK8KzpE9aTGHq 2SKktkQXyZgXR/wJEHScltyuOy3rVZdszXBF8wRk/CZhMwhb73eBDxVERaSFXs2q qBVrvIKlzkEHdBumIXX+NI8tGclj/wnoM94dj2UjbtsWJM9e -----END CERTIFICATE-----Generated at Mon Oct 20 16:03:57 2025 by rpki-client