$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa File: AS28481.roa (raw, json) Hash identifier: qi91keM6NLYclLF905m73ld2ZHVlJK+FDUVb44xx4Vs= Subject key identifier: D6:18:E7:63:2A:48:19:92:CD:63:18:7C:BB:D1:0D:B9:CB:17:CA:82 Certificate issuer: /CN=E71A68011C0812045A1DBBC6433B7791B5DDF0D2 Certificate serial: 307CB242E3693E1C1F004524CEEC6EF1FD4BAB58 Authority key identifier: E7:1A:68:01:1C:08:12:04:5A:1D:BB:C6:43:3B:77:91:B5:DD:F0:D2 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa Signing time: Wed 25 Jun 2025 07:20:00 +0000 ROA not before: Wed 25 Jun 2025 07:15:00 +0000 ROA not after: Wed 24 Jun 2026 07:20:00 +0000 asID: 28481 IP address blocks: 177.225.216.0/21 maxlen: 21 189.195.46.0/24 maxlen: 24 189.196.168.0/22 maxlen: 24 200.92.220.0/22 maxlen: 22 200.92.232.0/22 maxlen: 22 200.94.228.0/23 maxlen: 23 200.94.230.0/23 maxlen: 23 200.94.232.0/23 maxlen: 23 200.94.234.0/23 maxlen: 23 200.94.236.0/23 maxlen: 24 201.132.132.0/22 maxlen: 23 201.132.136.0/21 maxlen: 22 201.132.144.0/21 maxlen: 22 201.132.156.0/22 maxlen: 23 201.164.48.0/21 maxlen: 22 2806:260:1012::/47 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Jul 2025 18:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7c:b2:42:e3:69:3e:1c:1f:00:45:24:ce:ec:6e:f1:fd:4b:ab:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E71A68011C0812045A1DBBC6433B7791B5DDF0D2 Validity Not Before: Jun 25 07:15:00 2025 GMT Not After : Jun 24 07:20:00 2026 GMT Subject: CN=D618E7632A481992CD63187CBBD10DB9CB17CA82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:29:b9:28:bc:ef:3d:42:e8:1f:8a:b7:2a:71: 5f:e3:0d:95:12:1d:14:c8:e8:da:ef:3e:0b:75:60: e4:1a:1d:92:91:8e:4b:e3:89:e5:4d:30:cb:6e:a9: bc:19:c6:1b:03:8e:41:28:f1:d5:9d:1d:12:33:2b: 80:30:5e:4a:9a:1f:20:7a:e5:39:d5:92:03:25:6c: 5d:ec:0f:aa:95:0c:22:14:1f:51:ac:44:13:58:36: ab:93:83:26:2e:f8:12:9d:17:aa:ed:a2:d2:af:6c: d4:88:4d:60:cf:3f:22:f5:8c:98:eb:54:18:57:b7: 42:be:87:b7:68:9c:97:31:c7:1b:cf:c6:7e:5c:75: 17:c2:05:47:12:d2:27:92:3d:9b:c9:64:a1:24:07: ed:b5:b2:c4:e0:f3:08:af:7b:24:6a:b5:11:06:b0: a9:01:f7:06:f9:47:84:b9:6d:a0:74:f3:ac:03:ef: 7d:11:ed:65:18:92:ce:60:e9:a1:a0:35:0b:9e:7a: 9f:80:9f:ff:78:31:29:4b:75:49:c4:25:2f:16:43: 95:14:89:cd:1b:bb:97:f6:16:9e:fb:57:e2:a8:bd: 69:e3:42:2d:0d:4e:d1:5f:19:32:a2:c9:db:cd:65: 4c:f6:59:2e:b7:0f:b1:1c:34:f2:f6:e7:d4:30:e2: 1f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:18:E7:63:2A:48:19:92:CD:63:18:7C:BB:D1:0D:B9:CB:17:CA:82 X509v3 Authority Key Identifier: keyid:E7:1A:68:01:1C:08:12:04:5A:1D:BB:C6:43:3B:77:91:B5:DD:F0:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.225.216.0/21 189.195.46.0/24 189.196.168.0/22 200.92.220.0/22 200.92.232.0/22 200.94.228.0-200.94.237.255 201.132.132.0-201.132.151.255 201.132.156.0/22 201.164.48.0/21 IPv6: 2806:260:1012::/47 Signature Algorithm: sha256WithRSAEncryption 5a:56:ef:db:3d:11:1d:30:b0:e1:00:73:24:28:f9:14:03:bb: f9:cb:c1:90:70:a2:14:59:a4:5f:cd:0f:2a:71:5d:52:e2:d8: 6e:3d:ed:86:06:91:45:3d:89:dc:06:ab:cd:52:62:62:a8:e4: ed:4a:b2:29:5e:12:80:94:4c:d3:2b:ee:dd:f2:2d:d2:c7:28: 5e:40:a3:40:14:cf:1e:8a:f5:7c:e3:89:24:96:8e:25:50:d5: 88:6b:06:7c:f0:ec:88:2a:2a:ef:cd:23:0e:4f:ef:06:08:b4: 57:ef:a5:e9:98:34:7c:27:8c:7c:e9:55:78:83:46:96:ae:73: a9:56:c5:a0:2a:51:c0:20:bf:62:83:73:69:e1:47:e1:4f:24: 50:22:1e:dd:5c:e3:a9:a0:3e:c8:e9:72:17:90:f4:e0:c1:59: 9b:b3:9a:52:71:8f:09:d0:92:86:92:fc:42:72:68:11:f0:ec: 72:4d:a6:e2:0a:1a:44:d7:76:81:f1:0d:fb:67:db:d5:74:c5: 7e:02:76:03:ae:31:f1:4e:6d:83:f3:3b:98:9a:c3:51:86:9a: fb:c6:50:20:4d:5e:a3:31:2b:34:d1:8b:de:9e:72:99:fc:59: d6:e7:16:aa:c7:56:83:0b:69:45:d6:2c:6b:f1:1c:96:25:cb: e4:75:7e:f4 -----BEGIN CERTIFICATE----- MIIF3zCCBMegAwIBAgIUMHyyQuNpPhwfAEUkzuxu8f1Lq1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTcxQTY4MDExQzA4MTIwNDVBMURCQkM2NDMzQjc3OTFC NURERjBEMjAeFw0yNTA2MjUwNzE1MDBaFw0yNjA2MjQwNzIwMDBaMDMxMTAvBgNV BAMTKEQ2MThFNzYzMkE0ODE5OTJDRDYzMTg3Q0JCRDEwREI5Q0IxN0NBODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWKbkovO89QugfircqcV/jDZUS HRTI6NrvPgt1YOQaHZKRjkvjieVNMMtuqbwZxhsDjkEo8dWdHRIzK4AwXkqaHyB6 5TnVkgMlbF3sD6qVDCIUH1GsRBNYNquTgyYu+BKdF6rtotKvbNSITWDPPyL1jJjr VBhXt0K+h7donJcxxxvPxn5cdRfCBUcS0ieSPZvJZKEkB+21ssTg8wiveyRqtREG sKkB9wb5R4S5baB086wD730R7WUYks5g6aGgNQueep+An/94MSlLdUnEJS8WQ5UU ic0bu5f2Fp77V+KovWnjQi0NTtFfGTKiydvNZUz2WS63D7EcNPL259Qw4h/BAgMB AAGjggLpMIIC5TAdBgNVHQ4EFgQU1hjnYypIGZLNYxh8u9ENucsXyoIwHwYDVR0j BBgwFoAU5xpoARwIEgRaHbvGQzt3kbXd8NIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvRTcxQTY4MDExQzA4MTIw NDVBMURCQkM2NDMzQjc3OTFCNURERjBEMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FNzFBNjgwMTFDMDgxMjA0NUEx REJCQzY0MzNCNzc5MUI1RERGMEQyLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODQ4MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBwBggrBgEFBQcBBwEB/wRhMF8wTAQCAAEwRgMEA7Hh2AME AL3DLgMEAr3EqAMEAshc3AMEAshc6DAMAwQCyF7kAwQByF7sMAwDBALJhIQDBAPJ hJADBALJhJwDBAPJpDAwDwQCAAIwCQMHASgGAmAQEjANBgkqhkiG9w0BAQsFAAOC AQEAWlbv2z0RHTCw4QBzJCj5FAO7+cvBkHCiFFmkX80PKnFdUuLYbj3thgaRRT2J 3AarzVJiYqjk7UqyKV4SgJRM0yvu3fIt0scoXkCjQBTPHor1fOOJJJaOJVDViGsG fPDsiCoq780jDk/vBgi0V++l6Zg0fCeMfOlVeINGlq5zqVbFoCpRwCC/YoNzaeFH 4U8kUCIe3VzjqaA+yOlyF5D04MFZm7OaUnGPCdCShpL8QnJoEfDsck2m4goaRNd2 gfEN+2fb1XTFfgJ2A64x8U5tg/M7mJrDUYaa+8ZQIE1eozErNNGL3p5ymfxZ1ucW qsdWgwtpRdYsa/EcliXL5HV+9A== -----END CERTIFICATE-----Generated at Fri Jul 4 16:12:28 2025 by rpki-client