$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/AS20940.roa File: AS20940.roa (raw, json) Hash identifier: 7Lwt+g5NGx0+4P5pdyHcZQwahrjrWuU3Xh/LwwKsQos= Subject key identifier: 13:AC:B5:1D:60:11:67:4C:B1:74:28:13:52:13:22:41:31:16:B1:3C Certificate issuer: /CN=C868DC422443FA70E7761C0304061EB998BF7378 Certificate serial: 7370AB928E0F19BC6B036F18F179F9E894510236 Authority key identifier: C8:68:DC:42:24:43:FA:70:E7:76:1C:03:04:06:1E:B9:98:BF:73:78 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C868DC422443FA70E7761C0304061EB998BF7378.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/AS20940.roa Signing time: Fri 13 Mar 2026 00:33:41 +0000 ROA not before: Fri 13 Mar 2026 00:28:41 +0000 ROA not after: Fri 12 Mar 2027 00:33:41 +0000 asID: 20940 IP address blocks: 189.247.204.0/22 maxlen: 24 189.247.216.0/24 maxlen: 24 2806:1040:fc::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/C868DC422443FA70E7761C0304061EB998BF7378.crl rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/C868DC422443FA70E7761C0304061EB998BF7378.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C868DC422443FA70E7761C0304061EB998BF7378.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 29 Mar 2026 17:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:70:ab:92:8e:0f:19:bc:6b:03:6f:18:f1:79:f9:e8:94:51:02:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C868DC422443FA70E7761C0304061EB998BF7378 Validity Not Before: Mar 13 00:28:41 2026 GMT Not After : Mar 12 00:33:41 2027 GMT Subject: CN=13ACB51D6011674CB1742813521322413116B13C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:26:22:43:7e:40:36:7d:9f:48:13:92:98:56: 7b:7f:4f:76:fc:25:4b:31:95:5d:c5:9b:d8:12:41: 73:89:31:fa:96:f9:2b:d5:6f:99:39:d6:08:90:07: f5:43:ea:fe:05:c7:01:6f:bc:fa:3b:c0:0f:0d:fa: 02:46:c4:5c:67:78:36:9a:97:a4:74:cb:e2:bd:d4: f8:1e:27:de:d4:d0:bc:1b:1e:69:20:ce:0e:75:0b: fc:ca:31:f6:db:83:48:24:11:40:bb:66:1a:f9:78: b9:e6:79:fc:d9:8c:67:d8:af:6d:73:11:fa:6d:0f: 06:8f:3b:ef:17:54:05:e6:ca:7f:96:2d:fc:50:72: 43:83:2e:4c:8b:15:de:7d:2c:9d:ae:52:18:7b:ed: 7f:50:a6:fa:0a:02:ca:5b:e2:90:e0:de:a5:53:22: ec:84:ab:a6:38:1f:50:81:2e:4b:40:a8:48:2b:75: d6:10:be:a5:b5:63:a5:9b:c3:eb:06:75:c4:81:28: 9c:97:0d:22:00:3d:5c:9e:a2:48:fa:04:ae:41:77: 0d:a5:49:f0:8f:eb:5a:83:ce:d5:6b:88:db:20:42: cf:79:bd:23:08:31:14:02:6d:c4:32:a4:f1:ff:4b: 0f:30:09:80:36:50:6c:2a:1e:f9:48:47:dc:d2:b7: 97:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:AC:B5:1D:60:11:67:4C:B1:74:28:13:52:13:22:41:31:16:B1:3C X509v3 Authority Key Identifier: keyid:C8:68:DC:42:24:43:FA:70:E7:76:1C:03:04:06:1E:B9:98:BF:73:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/C868DC422443FA70E7761C0304061EB998BF7378.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C868DC422443FA70E7761C0304061EB998BF7378.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/AS20940.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 189.247.204.0/22 189.247.216.0/24 IPv6: 2806:1040:fc::/48 Signature Algorithm: sha256WithRSAEncryption a3:a0:a9:f5:7e:f1:40:54:9f:1f:33:86:ed:9c:11:d2:0e:a4: f1:37:48:c1:1d:8a:32:8b:db:ab:89:30:5d:4c:1d:41:0a:14: bf:3f:9b:d5:35:77:1e:a5:74:19:bb:99:5b:80:41:f3:02:72: b0:1f:32:39:01:1a:14:20:03:73:53:d1:fd:8c:2a:76:73:6c: 27:86:2f:e5:63:ee:b0:fe:a9:c6:c4:c3:ea:12:d4:b3:5a:30: 06:a4:bd:5d:59:13:33:e8:71:1f:c2:cc:28:dd:b4:c6:10:5f: b1:95:3e:06:6e:59:c0:fa:f7:fc:14:5f:fe:76:e6:98:2b:a5: 33:9c:59:bb:bb:6e:7f:f5:0c:38:14:29:87:34:e4:b8:f0:af: 29:04:aa:0f:77:ce:52:bf:3e:dd:eb:15:97:55:99:4f:cb:75: 9f:35:43:ee:61:b6:0d:6a:4b:1a:82:b6:28:95:e2:45:54:57: 27:80:c2:53:d1:19:0f:7d:7e:e8:54:34:3d:ab:58:c5:e5:47: fe:b2:73:4f:20:1d:b2:9e:15:4c:9a:f7:9a:e7:96:64:bb:f6: c9:e8:bd:53:96:0d:84:8a:cc:d7:ba:23:51:c3:6d:b0:a8:12: d3:75:75:d6:15:90:38:80:70:8b:2d:2f:d9:63:f0:e4:8e:3b: cc:d2:46:95 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgIUc3Crko4PGbxrA28Y8Xn56JRRAjYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg2OERDNDIyNDQzRkE3MEU3NzYxQzAzMDQwNjFFQjk5 OEJGNzM3ODAeFw0yNjAzMTMwMDI4NDFaFw0yNzAzMTIwMDMzNDFaMDMxMTAvBgNV BAMTKDEzQUNCNTFENjAxMTY3NENCMTc0MjgxMzUyMTMyMjQxMzExNkIxM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvJiJDfkA2fZ9IE5KYVnt/T3b8 JUsxlV3Fm9gSQXOJMfqW+SvVb5k51giQB/VD6v4FxwFvvPo7wA8N+gJGxFxneDaa l6R0y+K91PgeJ97U0LwbHmkgzg51C/zKMfbbg0gkEUC7Zhr5eLnmefzZjGfYr21z EfptDwaPO+8XVAXmyn+WLfxQckODLkyLFd59LJ2uUhh77X9QpvoKAspb4pDg3qVT IuyEq6Y4H1CBLktAqEgrddYQvqW1Y6Wbw+sGdcSBKJyXDSIAPVyeokj6BK5Bdw2l SfCP61qDztVriNsgQs95vSMIMRQCbcQypPH/Sw8wCYA2UGwqHvlIR9zSt5c/AgMB AAGjggKvMIICqzAdBgNVHQ4EFgQUE6y1HWARZ0yxdCgTUhMiQTEWsTwwHwYDVR0j BBgwFoAUyGjcQiRD+nDndhwDBAYeuZi/c3gwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zQjg3QzkzOTI5RUExQkU5NTE1NDlCOEI3NEEzODAwQzY0 ODMzRTg1QkU5RDUyM0JCQThFQzI0RTk0MzM5QUVELzAvQzg2OERDNDIyNDQzRkE3 MEU3NzYxQzAzMDQwNjFFQjk5OEJGNzM3OC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DODY4REM0MjI0NDNGQTcwRTc3 NjFDMDMwNDA2MUVCOTk4QkY3Mzc4LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy8zQjg3QzkzOTI5RUExQkU5NTE1NDlCOEI3NEEzODAwQzY0ODMzRTg1QkU5 RDUyM0JCQThFQzI0RTk0MzM5QUVELzAvQVMyMDk0MC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEAr33zAME AL332DAPBAIAAjAJAwcAKAYQQAD8MA0GCSqGSIb3DQEBCwUAA4IBAQCjoKn1fvFA VJ8fM4btnBHSDqTxN0jBHYoyi9uriTBdTB1BChS/P5vVNXcepXQZu5lbgEHzAnKw HzI5ARoUIANzU9H9jCp2c2wnhi/lY+6w/qnGxMPqEtSzWjAGpL1dWRMz6HEfwswo 3bTGEF+xlT4GblnA+vf8FF/+duaYK6UznFm7u25/9Qw4FCmHNOS48K8pBKoPd85S vz7d6xWXVZlPy3WfNUPuYbYNaksagrYoleJFVFcngMJT0RkPfX7oVDQ9q1jF5Uf+ snNPIB2ynhVMmvea55Zku/bJ6L1Tlg2EiszXuiNRw22wqBLTdXXWFZA4gHCLLS/Z Y/DkjjvM0kaV -----END CERTIFICATE-----Generated at Thu Mar 26 18:37:05 2026 by rpki-client