$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa File: AS28481.roa (raw, json) Hash identifier: 6SNTXtRjkpYBiLXwLHiD+UA6bGa8u1DhL01nOeTNFnw= Subject key identifier: 0F:3C:19:59:4B:D7:97:F5:A6:AE:6F:02:4E:40:75:DC:56:AB:61:A6 Certificate issuer: /CN=C586A9076CDE73FD896464010A3CE08E4C8FC4C5 Certificate serial: 1CF2712AD762DE698F84F071D46ADA11349C1BCF Authority key identifier: C5:86:A9:07:6C:DE:73:FD:89:64:64:01:0A:3C:E0:8E:4C:8F:C4:C5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa Signing time: Fri 19 Sep 2025 17:15:00 +0000 ROA not before: Fri 19 Sep 2025 17:10:00 +0000 ROA not after: Fri 18 Sep 2026 17:15:00 +0000 asID: 28481 IP address blocks: 177.225.216.0/21 maxlen: 21 189.195.46.0/24 maxlen: 24 189.196.168.0/22 maxlen: 24 189.199.248.0/23 maxlen: 24 200.92.220.0/22 maxlen: 22 200.92.232.0/22 maxlen: 22 200.94.228.0/23 maxlen: 23 200.94.230.0/23 maxlen: 23 200.94.232.0/23 maxlen: 23 200.94.234.0/23 maxlen: 23 200.94.236.0/23 maxlen: 24 201.132.132.0/22 maxlen: 23 201.132.136.0/21 maxlen: 22 201.132.144.0/21 maxlen: 22 201.132.156.0/22 maxlen: 23 201.164.48.0/21 maxlen: 22 2806:260:1012::/47 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 24 Oct 2025 00:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:f2:71:2a:d7:62:de:69:8f:84:f0:71:d4:6a:da:11:34:9c:1b:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C586A9076CDE73FD896464010A3CE08E4C8FC4C5 Validity Not Before: Sep 19 17:10:00 2025 GMT Not After : Sep 18 17:15:00 2026 GMT Subject: CN=0F3C19594BD797F5A6AE6F024E4075DC56AB61A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:05:73:a0:ed:68:40:de:0c:80:92:7a:90:de: c4:91:9f:40:7b:10:c1:4f:56:bc:97:10:34:61:e2: d2:f7:1e:6d:7e:bb:4e:79:1b:ed:59:5c:3f:10:60: 01:2f:3b:de:e7:b6:99:dc:33:99:7b:cb:7c:30:90: e6:26:e3:b8:e9:17:f0:f0:9f:e8:42:4c:e7:e5:e3: 9e:da:b0:4d:40:17:31:06:02:b3:e4:ba:16:73:42: 64:59:e1:ae:65:92:2a:4f:4d:29:d1:d5:d8:01:14: fa:f9:30:15:58:3e:d9:4c:70:dc:c1:d6:e0:30:57: 4e:82:a5:d7:94:b6:29:af:81:03:fd:98:11:dc:ba: 2d:4d:7f:97:52:de:a3:3b:91:6f:56:99:15:13:98: de:47:12:0f:68:a0:8a:7c:0a:c2:91:00:85:d8:fc: 14:83:76:f4:ac:4b:7b:b2:ad:be:bc:14:8f:32:9f: 62:76:c3:85:2c:00:42:06:e7:a6:01:64:2d:22:5b: 2a:ea:ca:3a:7e:83:19:ab:d9:63:3a:94:0c:31:f2: e6:f8:09:d1:b8:52:d2:e6:e9:e1:86:d0:0f:5e:29: cb:06:89:0f:05:26:77:e6:1e:8d:54:a5:ab:7d:98: d2:b9:86:d1:6f:b9:37:1b:4a:43:34:58:ca:81:1c: 7b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:3C:19:59:4B:D7:97:F5:A6:AE:6F:02:4E:40:75:DC:56:AB:61:A6 X509v3 Authority Key Identifier: keyid:C5:86:A9:07:6C:DE:73:FD:89:64:64:01:0A:3C:E0:8E:4C:8F:C4:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.225.216.0/21 189.195.46.0/24 189.196.168.0/22 189.199.248.0/23 200.92.220.0/22 200.92.232.0/22 200.94.228.0-200.94.237.255 201.132.132.0-201.132.151.255 201.132.156.0/22 201.164.48.0/21 IPv6: 2806:260:1012::/47 Signature Algorithm: sha256WithRSAEncryption 2e:db:98:53:38:49:9b:c3:cc:20:a3:f3:0b:62:e1:57:c0:76: e9:69:af:ff:88:30:95:e4:df:9e:d9:4f:49:9f:f6:ab:3f:22: f0:65:27:d3:1b:7b:4e:c1:5b:30:e1:f6:48:e4:0e:2f:a4:ad: 70:d1:47:83:eb:82:bb:4c:3b:10:79:00:d9:8c:76:43:e7:00: eb:62:ba:cc:86:98:7a:cf:05:51:73:24:a2:85:23:da:27:c5: 48:06:f1:9c:12:be:03:ae:36:5f:a5:4e:a9:da:1c:14:62:74: 2b:e8:89:92:92:f6:6c:fe:95:f4:bd:f0:a2:73:85:a6:70:fc: ee:f4:6d:fb:b3:17:e9:e1:bb:34:74:fc:84:e4:2d:40:7a:9a: 1b:af:64:d8:da:b9:f1:07:dd:ca:07:60:ab:c9:57:e3:c4:74: 21:50:21:5b:59:a2:d5:93:b2:91:d5:04:06:d9:96:8b:6e:a6: 4b:0f:c1:92:ec:4d:2b:96:b0:21:be:ac:46:74:3e:34:d4:d9: 42:bb:e0:28:2a:81:c0:5c:90:08:05:d2:ba:2b:0c:8a:49:9f: 7d:c8:b8:2a:02:9b:5d:01:ac:23:7f:91:1b:80:20:12:b8:da: 5a:fb:09:74:e2:14:1c:83:14:34:64:36:04:56:6a:ba:98:7e: 98:9f:f9:6d -----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgIUHPJxKtdi3mmPhPBx1GraETScG88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU4NkE5MDc2Q0RFNzNGRDg5NjQ2NDAxMEEzQ0UwOEU0 QzhGQzRDNTAeFw0yNTA5MTkxNzEwMDBaFw0yNjA5MTgxNzE1MDBaMDMxMTAvBgNV BAMTKDBGM0MxOTU5NEJENzk3RjVBNkFFNkYwMjRFNDA3NURDNTZBQjYxQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWBXOg7WhA3gyAknqQ3sSRn0B7 EMFPVryXEDRh4tL3Hm1+u055G+1ZXD8QYAEvO97ntpncM5l7y3wwkOYm47jpF/Dw n+hCTOfl457asE1AFzEGArPkuhZzQmRZ4a5lkipPTSnR1dgBFPr5MBVYPtlMcNzB 1uAwV06CpdeUtimvgQP9mBHcui1Nf5dS3qM7kW9WmRUTmN5HEg9ooIp8CsKRAIXY /BSDdvSsS3uyrb68FI8yn2J2w4UsAEIG56YBZC0iWyrqyjp+gxmr2WM6lAwx8ub4 CdG4UtLm6eGG0A9eKcsGiQ8FJnfmHo1Upat9mNK5htFvuTcbSkM0WMqBHHvPAgMB AAGjggLvMIIC6zAdBgNVHQ4EFgQUDzwZWUvXl/Wmrm8CTkB13FarYaYwHwYDVR0j BBgwFoAUxYapB2zec/2JZGQBCjzgjkyPxMUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQzU4NkE5MDc2Q0RFNzNG RDg5NjQ2NDAxMEEzQ0UwOEU0QzhGQzRDNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DNTg2QTkwNzZDREU3M0ZEODk2 NDY0MDEwQTNDRTA4RTRDOEZDNEM1LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODQ4MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjB2BggrBgEFBQcBBwEB/wRnMGUwUgQCAAEwTAMEA7Hh2AME AL3DLgMEAr3EqAMEAb3H+AMEAshc3AMEAshc6DAMAwQCyF7kAwQByF7sMAwDBALJ hIQDBAPJhJADBALJhJwDBAPJpDAwDwQCAAIwCQMHASgGAmAQEjANBgkqhkiG9w0B AQsFAAOCAQEALtuYUzhJm8PMIKPzC2LhV8B26Wmv/4gwleTfntlPSZ/2qz8i8GUn 0xt7TsFbMOH2SOQOL6StcNFHg+uCu0w7EHkA2Yx2Q+cA62K6zIaYes8FUXMkooUj 2ifFSAbxnBK+A642X6VOqdocFGJ0K+iJkpL2bP6V9L3wonOFpnD87vRt+7MX6eG7 NHT8hOQtQHqaG69k2Nq58Qfdygdgq8lX48R0IVAhW1mi1ZOykdUEBtmWi26mSw/B kuxNK5awIb6sRnQ+NNTZQrvgKCqBwFyQCAXSuisMikmffci4KgKbXQGsI3+RG4Ag ErjaWvsJdOIUHIMUNGQ2BFZquph+mJ/5bQ== -----END CERTIFICATE-----Generated at Mon Oct 20 05:42:14 2025 by rpki-client