$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FF7BA75055F799758F3F4CE811BADBA2491BF1E32384FBB3AF8A39E7FB506C2B/0/3230302e31332e3230332e302f32342d3234203d3e203431333437.roa File: 3230302e31332e3230332e302f32342d3234203d3e203431333437.roa (raw, json) Hash identifier: zZ5koelBv7fgZtLDt6iTOqMvspslK9zGUlfO0u9k7/M= Subject key identifier: 95:A2:2A:CB:C7:56:2C:8C:C8:6A:F1:4C:86:AA:0F:31:27:2A:92:68 Certificate issuer: /CN=36E19E2D4EE8F3EAD0C14660B2A8646AC9F20AF5 Certificate serial: 4ED7E7A524318E684ED51772E60C1FD4D961C456 Authority key identifier: 36:E1:9E:2D:4E:E8:F3:EA:D0:C1:46:60:B2:A8:64:6A:C9:F2:0A:F5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/36E19E2D4EE8F3EAD0C14660B2A8646AC9F20AF5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FF7BA75055F799758F3F4CE811BADBA2491BF1E32384FBB3AF8A39E7FB506C2B/0/3230302e31332e3230332e302f32342d3234203d3e203431333437.roa Signing time: Mon 06 Oct 2025 21:55:07 +0000 ROA not before: Mon 06 Oct 2025 21:50:07 +0000 ROA not after: Mon 05 Oct 2026 21:55:07 +0000 asID: 41347 IP address blocks: 200.13.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/FF7BA75055F799758F3F4CE811BADBA2491BF1E32384FBB3AF8A39E7FB506C2B/0/36E19E2D4EE8F3EAD0C14660B2A8646AC9F20AF5.crl rsync://repository.lacnic.net/rpki/lacnic/FF7BA75055F799758F3F4CE811BADBA2491BF1E32384FBB3AF8A39E7FB506C2B/0/36E19E2D4EE8F3EAD0C14660B2A8646AC9F20AF5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/36E19E2D4EE8F3EAD0C14660B2A8646AC9F20AF5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 24 Oct 2025 00:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d7:e7:a5:24:31:8e:68:4e:d5:17:72:e6:0c:1f:d4:d9:61:c4:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E19E2D4EE8F3EAD0C14660B2A8646AC9F20AF5 Validity Not Before: Oct 6 21:50:07 2025 GMT Not After : Oct 5 21:55:07 2026 GMT Subject: CN=95A22ACBC7562C8CC86AF14C86AA0F31272A9268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:fc:bb:af:93:8a:b3:43:9f:1d:12:8d:38:47: 93:ca:08:cf:3a:b0:7b:1e:8f:66:3c:fd:c9:13:97: c8:68:2e:4b:0b:e7:a5:a7:31:be:ce:d6:99:5a:f6: 91:ee:b6:eb:5c:df:d5:c0:a5:be:2a:7f:c4:f1:fc: 4d:fe:87:b9:09:66:90:ed:8a:e6:23:83:4c:c2:fc: fa:8c:2e:46:7a:2b:14:9b:0a:2c:49:c5:ee:fb:68: 6a:c8:bf:47:52:a4:4c:a6:f1:d8:42:2c:00:ec:cd: 24:06:8b:d2:60:a9:da:cc:db:9c:9c:5b:1c:30:3f: a0:0f:80:69:43:63:5a:5c:c5:c7:9a:2f:f1:8e:6e: 6e:2f:42:6c:64:49:69:c8:31:c3:06:ae:e1:75:00: 77:6b:4c:80:07:1f:b9:72:bd:cf:c5:50:f8:91:2a: 74:a2:14:4e:85:c1:1b:39:a8:77:b2:1a:36:a1:95: a4:5c:bd:5d:71:b8:e9:1d:32:42:2c:65:c2:13:33: d5:40:1a:e7:12:92:b6:ef:6a:4d:5d:96:f3:33:b1: e9:16:b1:d5:c2:81:0b:9c:85:97:a5:21:e7:70:ed: 51:01:59:ab:0c:a1:95:39:88:6e:9c:b2:9d:7d:bf: 0f:3c:95:f7:56:6e:8d:c9:a1:73:fa:f2:71:dc:4d: d8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:A2:2A:CB:C7:56:2C:8C:C8:6A:F1:4C:86:AA:0F:31:27:2A:92:68 X509v3 Authority Key Identifier: keyid:36:E1:9E:2D:4E:E8:F3:EA:D0:C1:46:60:B2:A8:64:6A:C9:F2:0A:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/FF7BA75055F799758F3F4CE811BADBA2491BF1E32384FBB3AF8A39E7FB506C2B/0/36E19E2D4EE8F3EAD0C14660B2A8646AC9F20AF5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/36E19E2D4EE8F3EAD0C14660B2A8646AC9F20AF5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FF7BA75055F799758F3F4CE811BADBA2491BF1E32384FBB3AF8A39E7FB506C2B/0/3230302e31332e3230332e302f32342d3234203d3e203431333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.13.203.0/24 Signature Algorithm: sha256WithRSAEncryption 81:88:96:aa:bf:23:2e:e8:91:f7:77:e4:25:ab:b0:18:93:a4: 6b:f2:be:05:ec:18:0e:6d:0c:f9:8d:a1:ef:69:87:33:cb:74: 5b:2d:5e:92:f1:f8:22:16:da:96:89:35:e7:6b:92:6c:5c:1a: b2:67:7c:08:cc:b1:d3:6a:37:af:45:8a:5d:38:2d:32:d6:ca: fd:22:14:8b:5a:c4:b3:32:ac:26:7c:ec:de:72:b5:c9:79:5a: aa:23:c3:54:b4:ab:4d:f8:65:af:cd:d2:4d:f0:68:de:bf:c4: 4f:6b:af:40:65:23:41:05:ff:08:c3:5f:98:22:2b:31:f1:f1: 4a:b7:26:7d:47:8f:34:79:d5:ea:e4:df:37:92:8a:87:fc:de: fb:8b:5d:85:0a:ae:39:90:99:5e:05:1e:84:50:a2:cd:8b:a1: 87:0e:4e:af:f9:86:89:ca:93:52:ea:40:57:47:81:f4:f9:56: 51:3f:f0:04:9a:8a:6c:ea:47:2d:4b:f0:9f:63:1d:6d:62:09: 6a:f4:0a:8d:de:e3:c7:3f:5d:d6:61:d8:fd:9c:a4:4e:bd:87: 19:1a:c9:90:f5:c9:38:5d:8f:07:dc:45:b5:2d:a8:f2:6b:89: 94:e8:de:79:b9:40:a1:9d:52:c4:b8:73:74:e7:a5:b8:17:e0: 9b:f2:21:9a -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgIUTtfnpSQxjmhO1Rdy5gwf1NlhxFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFMTlFMkQ0RUU4RjNFQUQwQzE0NjYwQjJBODY0NkFD OUYyMEFGNTAeFw0yNTEwMDYyMTUwMDdaFw0yNjEwMDUyMTU1MDdaMDMxMTAvBgNV BAMTKDk1QTIyQUNCQzc1NjJDOENDODZBRjE0Qzg2QUEwRjMxMjcyQTkyNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCM/Luvk4qzQ58dEo04R5PKCM86 sHsej2Y8/ckTl8hoLksL56WnMb7O1pla9pHututc39XApb4qf8Tx/E3+h7kJZpDt iuYjg0zC/PqMLkZ6KxSbCixJxe77aGrIv0dSpEym8dhCLADszSQGi9JgqdrM25yc WxwwP6APgGlDY1pcxceaL/GObm4vQmxkSWnIMcMGruF1AHdrTIAHH7lyvc/FUPiR KnSiFE6FwRs5qHeyGjahlaRcvV1xuOkdMkIsZcITM9VAGucSkrbvak1dlvMzsekW sdXCgQuchZelIedw7VEBWasMoZU5iG6csp19vw88lfdWbo3JoXP68nHcTdihAgMB AAGjggLIMIICxDAdBgNVHQ4EFgQUlaIqy8dWLIzIavFMhqoPMScqkmgwHwYDVR0j BBgwFoAUNuGeLU7o8+rQwUZgsqhkasnyCvUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9GRjdCQTc1MDU1Rjc5OTc1OEYzRjRDRTgxMUJBREJBMjQ5 MUJGMUUzMjM4NEZCQjNBRjhBMzlFN0ZCNTA2QzJCLzAvMzZFMTlFMkQ0RUU4RjNF QUQwQzE0NjYwQjJBODY0NkFDOUYyMEFGNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zNkUxOUUyRDRFRThGM0VBRDBD MTQ2NjBCMkE4NjQ2QUM5RjIwQUY1LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvRkY3QkE3NTA1NUY3OTk3NThGM0Y0Q0U4MTFCQURCQTI0OTFCRjFFMzIz ODRGQkIzQUY4QTM5RTdGQjUwNkMyQi8wLzMyMzAzMDJlMzEzMzJlMzIzMDMzMmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzMTMzMzQzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMgNyzAN BgkqhkiG9w0BAQsFAAOCAQEAgYiWqr8jLuiR93fkJauwGJOka/K+BewYDm0M+Y2h 72mHM8t0Wy1ekvH4Ihbalok152uSbFwasmd8CMyx02o3r0WKXTgtMtbK/SIUi1rE szKsJnzs3nK1yXlaqiPDVLSrTfhlr83STfBo3r/ET2uvQGUjQQX/CMNfmCIrMfHx SrcmfUePNHnV6uTfN5KKh/ze+4tdhQquOZCZXgUehFCizYuhhw5Or/mGicqTUupA V0eB9PlWUT/wBJqKbOpHLUvwn2MdbWIJavQKjd7jxz9d1mHY/ZykTr2HGRrJkPXJ OF2PB9xFtS2o8muJlOjeeblAoZ1SxLhzdOeluBfgm/Ihmg== -----END CERTIFICATE-----Generated at Mon Oct 20 11:22:50 2025 by rpki-client