$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/323830333a383639303a3530303a3a2f34302d3430203d3e20323732383839.roa File: 323830333a383639303a3530303a3a2f34302d3430203d3e20323732383839.roa (raw, json) Hash identifier: kfEh2Zj7/HBuW2uVry0CQUhqIiya/IQjhgflDVTazWw= Subject key identifier: 95:9A:F6:FB:DC:2E:F5:9E:6B:26:11:3D:77:0E:4A:E6:FA:E5:C0:D2 Certificate issuer: /CN=38112395A631DE9A8D5233FE171145D3E5F6FCFD Certificate serial: 315B883FF149BC6B5B2CFAB8676DEDE31E75673A Authority key identifier: 38:11:23:95:A6:31:DE:9A:8D:52:33:FE:17:11:45:D3:E5:F6:FC:FD Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/38112395A631DE9A8D5233FE171145D3E5F6FCFD.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/323830333a383639303a3530303a3a2f34302d3430203d3e20323732383839.roa Signing time: Mon 15 Sep 2025 02:46:36 +0000 ROA not before: Mon 15 Sep 2025 02:41:36 +0000 ROA not after: Mon 14 Sep 2026 02:46:36 +0000 asID: 272889 IP address blocks: 2803:8690:500::/40 maxlen: 40 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/38112395A631DE9A8D5233FE171145D3E5F6FCFD.crl rsync://repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/38112395A631DE9A8D5233FE171145D3E5F6FCFD.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/38112395A631DE9A8D5233FE171145D3E5F6FCFD.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 24 Oct 2025 00:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:5b:88:3f:f1:49:bc:6b:5b:2c:fa:b8:67:6d:ed:e3:1e:75:67:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38112395A631DE9A8D5233FE171145D3E5F6FCFD Validity Not Before: Sep 15 02:41:36 2025 GMT Not After : Sep 14 02:46:36 2026 GMT Subject: CN=959AF6FBDC2EF59E6B26113D770E4AE6FAE5C0D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:91:74:21:e4:a7:54:e9:f4:e0:d3:f8:81:b3: fd:eb:39:7e:19:c1:43:ab:19:b8:05:f0:f7:29:7d: 27:57:87:0d:84:2b:94:a9:97:7a:e0:b2:92:b9:8c: e9:4f:81:92:2c:f5:f0:39:67:e1:68:1e:d3:f2:63: 15:f1:a5:fa:35:af:0f:3a:f5:58:3e:42:77:84:a9: 9a:bc:d5:a1:5d:04:23:3c:95:73:76:49:90:d8:06: 8b:4a:42:2e:77:5c:96:36:f2:9f:d6:bc:85:f9:c6: a7:f0:a9:fa:1f:cf:16:77:e7:c3:b7:4f:77:2d:40: 1a:6b:64:c2:b0:b7:f7:30:e4:31:37:6e:21:ee:d9: c8:31:28:78:43:8b:77:2a:81:81:51:e4:72:d6:ac: e5:48:19:db:83:e2:34:fd:aa:80:18:0d:0c:bd:e8: 5f:6c:24:0a:10:ce:c0:da:0e:15:93:42:f3:dd:9c: a4:c4:c0:27:be:9e:6f:b2:20:57:1a:a1:78:e6:45: 20:ee:57:13:48:32:0c:c5:56:8a:6e:bd:8a:ad:70: 29:c4:bb:f7:6a:8c:2e:e7:21:c2:ba:51:24:b8:37: 17:f4:82:37:f3:b1:e0:b8:13:75:5c:e1:9c:7d:87: 7e:21:83:ab:40:c2:9d:1c:44:e5:91:51:12:98:00: 90:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9A:F6:FB:DC:2E:F5:9E:6B:26:11:3D:77:0E:4A:E6:FA:E5:C0:D2 X509v3 Authority Key Identifier: keyid:38:11:23:95:A6:31:DE:9A:8D:52:33:FE:17:11:45:D3:E5:F6:FC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/38112395A631DE9A8D5233FE171145D3E5F6FCFD.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/38112395A631DE9A8D5233FE171145D3E5F6FCFD.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/323830333a383639303a3530303a3a2f34302d3430203d3e20323732383839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:8690:500::/40 Signature Algorithm: sha256WithRSAEncryption 76:5a:2f:a9:43:37:6f:b7:db:e2:ac:e4:fe:56:64:ca:c1:28: b3:08:a2:2f:62:39:fd:4e:88:36:15:64:f4:e4:45:a7:45:3c: 03:22:22:46:fb:f8:a7:99:e4:e7:7b:13:37:cf:1e:c0:89:87: f8:bc:77:cc:99:cd:11:f0:05:4e:7d:70:73:0f:3c:c0:d8:a9: 83:21:ac:c0:69:48:ce:e2:66:01:9d:69:6f:34:be:08:9b:97: 97:74:72:82:ad:85:92:81:57:ed:a7:b9:60:c7:54:84:39:5e: fe:d3:f5:1d:83:9d:b4:6f:21:00:85:3d:28:e1:11:2b:6a:91: 62:c8:8e:d3:fb:c4:96:5c:c7:75:70:25:f7:90:85:61:a4:fb: ca:a6:f5:6f:da:f7:35:8c:19:00:59:14:d8:63:19:e8:38:34: 7b:c7:8c:dc:b0:4d:ef:29:a6:1f:86:5a:8b:56:c0:dd:1a:e8: 21:56:bf:89:90:e1:8b:ec:8e:d9:c9:1f:3f:27:c3:65:59:2c: d0:ff:c1:f1:86:89:93:6f:0a:31:2a:42:4d:e2:c2:86:91:96: 5a:e8:31:5e:71:61:9c:71:f8:89:91:87:fb:cb:b5:21:cb:e3: 5f:bb:bc:df:83:0c:93:77:a7:0a:a3:e4:23:35:64:b9:91:bc: 73:2f:70:24 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUMVuIP/FJvGtbLPq4Z23t4x51ZzowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzgxMTIzOTVBNjMxREU5QThENTIzM0ZFMTcxMTQ1RDNF NUY2RkNGRDAeFw0yNTA5MTUwMjQxMzZaFw0yNjA5MTQwMjQ2MzZaMDMxMTAvBgNV BAMTKDk1OUFGNkZCREMyRUY1OUU2QjI2MTEzRDc3MEU0QUU2RkFFNUMwRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3kXQh5KdU6fTg0/iBs/3rOX4Z wUOrGbgF8PcpfSdXhw2EK5Spl3rgspK5jOlPgZIs9fA5Z+FoHtPyYxXxpfo1rw86 9Vg+QneEqZq81aFdBCM8lXN2SZDYBotKQi53XJY28p/WvIX5xqfwqfofzxZ358O3 T3ctQBprZMKwt/cw5DE3biHu2cgxKHhDi3cqgYFR5HLWrOVIGduD4jT9qoAYDQy9 6F9sJAoQzsDaDhWTQvPdnKTEwCe+nm+yIFcaoXjmRSDuVxNIMgzFVopuvYqtcCnE u/dqjC7nIcK6USS4Nxf0gjfzseC4E3Vc4Zx9h34hg6tAwp0cROWRURKYAJDXAgMB AAGjggLSMIICzjAdBgNVHQ4EFgQUlZr2+9wu9Z5rJhE9dw5K5vrlwNIwHwYDVR0j BBgwFoAUOBEjlaYx3pqNUjP+FxFF0+X2/P0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQTFCRjZBQjA2MjE1RDg4NzY5RDgyMjkyMDUxNEQzN0Yx NEMwQ0Q4RDQ0MTE3RTY0RjBGNTQyMjk1QTFBQTI5LzAvMzgxMTIzOTVBNjMxREU5 QThENTIzM0ZFMTcxMTQ1RDNFNUY2RkNGRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zODExMjM5NUE2MzFERTlBOEQ1 MjMzRkUxNzExNDVEM0U1RjZGQ0ZELmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUExQkY2QUIwNjIxNUQ4ODc2OUQ4MjI5MjA1MTREMzdGMTRDMENEOEQ0 NDExN0U2NEYwRjU0MjI5NUExQUEyOS8wLzMyMzgzMDMzM2EzODM2MzkzMDNhMzUz MDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzNzMyMzgzODM5LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAI AwYAKAOGkAUwDQYJKoZIhvcNAQELBQADggEBAHZaL6lDN2+32+Ks5P5WZMrBKLMI oi9iOf1OiDYVZPTkRadFPAMiIkb7+KeZ5Od7EzfPHsCJh/i8d8yZzRHwBU59cHMP PMDYqYMhrMBpSM7iZgGdaW80vgibl5d0coKthZKBV+2nuWDHVIQ5Xv7T9R2DnbRv IQCFPSjhEStqkWLIjtP7xJZcx3VwJfeQhWGk+8qm9W/a9zWMGQBZFNhjGeg4NHvH jNywTe8pph+GWotWwN0a6CFWv4mQ4YvsjtnJHz8nw2VZLND/wfGGiZNvCjEqQk3i woaRllroMV5xYZxx+ImRh/vLtSHL41+7vN+DDJN3pwqj5CM1ZLmRvHMvcCQ= -----END CERTIFICATE-----Generated at Mon Oct 20 19:30:33 2025 by rpki-client