$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa File: AS28541.roa (raw, json) Hash identifier: zZsVS2xf8rwlqU2YJMjgguK+RU0pbfu503d8ybgf0vk= Subject key identifier: 6B:61:1F:E7:C9:93:80:0C:BD:D2:D0:7A:3C:38:0B:F5:33:B3:E8:92 Certificate issuer: /CN=E71A68011C0812045A1DBBC6433B7791B5DDF0D2 Certificate serial: 427E496F28A9092094E4F20BADA4B669F8090444 Authority key identifier: E7:1A:68:01:1C:08:12:04:5A:1D:BB:C6:43:3B:77:91:B5:DD:F0:D2 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa Signing time: Wed 25 Jun 2025 07:20:00 +0000 ROA not before: Wed 25 Jun 2025 07:15:00 +0000 ROA not after: Wed 24 Jun 2026 07:20:00 +0000 asID: 28541 IP address blocks: 177.225.248.0/21 maxlen: 21 177.242.200.0/24 maxlen: 24 177.242.203.0/24 maxlen: 24 177.242.205.0/24 maxlen: 24 177.247.176.0/23 maxlen: 23 201.159.192.0/21 maxlen: 24 201.159.207.0/24 maxlen: 24 2806:260:1020::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Jul 2025 18:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:7e:49:6f:28:a9:09:20:94:e4:f2:0b:ad:a4:b6:69:f8:09:04:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E71A68011C0812045A1DBBC6433B7791B5DDF0D2 Validity Not Before: Jun 25 07:15:00 2025 GMT Not After : Jun 24 07:20:00 2026 GMT Subject: CN=6B611FE7C993800CBDD2D07A3C380BF533B3E892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:af:d8:84:6d:1f:fa:11:48:be:5a:2f:55:e5: df:09:dc:fd:d3:9c:b1:af:aa:c5:7c:2e:7a:88:d6: 46:78:23:51:b4:8e:bf:45:00:47:a3:8a:56:d6:6c: 15:a6:cb:5a:99:b0:2b:3d:a6:d1:61:5d:78:ed:99: d4:28:6a:38:02:3d:68:74:61:b7:c7:d1:40:83:06: ae:8d:fd:8e:ae:34:55:17:4b:79:cb:39:a3:a5:83: 0f:90:a3:0c:76:b4:2b:b5:92:da:ff:ca:4a:64:91: 0d:8b:17:6b:73:8c:49:eb:e0:1f:30:ea:f1:83:ef: 9c:cb:20:68:f8:0b:2b:0a:fb:ed:f0:1f:d1:be:f5: 71:ef:d7:a4:f8:89:48:d0:f6:d3:66:a5:4d:73:1c: 6a:7e:95:b5:63:1b:2f:c2:07:14:f9:b3:94:fe:49: 43:7a:78:78:03:22:36:bf:3f:25:fe:da:ba:2e:11: 12:27:dd:f1:a4:71:55:7d:93:eb:b2:13:d0:81:fd: ec:e5:89:25:99:6a:59:e4:4e:d9:32:e1:52:73:0f: f7:ff:5d:83:dd:8a:3d:eb:2f:4d:6a:9a:08:2e:1f: ea:f7:60:3a:28:d7:eb:3b:d4:0e:ae:18:e0:cf:38: c4:cf:7c:f4:c3:b8:fd:60:b2:55:14:10:2d:22:67: b5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:61:1F:E7:C9:93:80:0C:BD:D2:D0:7A:3C:38:0B:F5:33:B3:E8:92 X509v3 Authority Key Identifier: keyid:E7:1A:68:01:1C:08:12:04:5A:1D:BB:C6:43:3B:77:91:B5:DD:F0:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.225.248.0/21 177.242.200.0/24 177.242.203.0/24 177.242.205.0/24 177.247.176.0/23 201.159.192.0/21 201.159.207.0/24 IPv6: 2806:260:1020::/48 Signature Algorithm: sha256WithRSAEncryption d7:9c:a4:57:b1:98:fe:74:3d:f0:bd:74:58:97:17:2b:f1:10: 63:35:aa:81:75:d9:06:29:60:48:3d:15:c8:ae:9d:b8:4e:8a: 4a:e7:8a:a3:75:7c:0f:f0:d2:bf:2a:78:d8:e1:04:ea:f2:77: c5:c6:70:28:b8:09:28:ca:2a:38:dc:63:68:65:71:d5:7f:a2: ed:13:90:23:de:34:71:9a:0c:4c:63:32:23:3e:83:7d:1f:e0: 42:e6:6a:12:60:42:86:92:25:75:3d:a9:4a:a2:fb:92:fb:88: e3:45:94:34:23:2f:ba:94:18:de:d8:aa:1e:cb:96:91:fd:1b: d8:dd:61:15:ce:2d:98:9f:8f:2d:92:c0:c3:df:99:b9:55:2b: 1c:89:49:aa:ff:51:48:02:5f:72:1a:54:da:f3:9c:00:d5:61: 69:5f:8b:dc:40:a4:ed:46:ad:5b:a6:51:86:f6:88:1f:ba:98: 68:80:81:49:94:d4:fc:f5:d5:b4:0d:93:a6:c9:80:38:6d:0e: e5:24:67:20:4d:32:85:c3:44:3c:ce:9b:79:0c:84:9d:47:60: 46:c9:9f:b8:3c:c9:6e:1b:83:e1:7b:b4:81:cf:6c:b3:24:82: d2:84:de:f6:6c:e2:2d:c1:41:98:b8:e5:29:e2:a1:fe:48:83: fb:ff:39:6d -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgIUQn5JbyipCSCU5PILraS2afgJBEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTcxQTY4MDExQzA4MTIwNDVBMURCQkM2NDMzQjc3OTFC NURERjBEMjAeFw0yNTA2MjUwNzE1MDBaFw0yNjA2MjQwNzIwMDBaMDMxMTAvBgNV BAMTKDZCNjExRkU3Qzk5MzgwMENCREQyRDA3QTNDMzgwQkY1MzNCM0U4OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJr9iEbR/6EUi+Wi9V5d8J3P3T nLGvqsV8LnqI1kZ4I1G0jr9FAEejilbWbBWmy1qZsCs9ptFhXXjtmdQoajgCPWh0 YbfH0UCDBq6N/Y6uNFUXS3nLOaOlgw+Qowx2tCu1ktr/ykpkkQ2LF2tzjEnr4B8w 6vGD75zLIGj4CysK++3wH9G+9XHv16T4iUjQ9tNmpU1zHGp+lbVjGy/CBxT5s5T+ SUN6eHgDIja/PyX+2rouERIn3fGkcVV9k+uyE9CB/ezliSWZalnkTtky4VJzD/f/ XYPdij3rL01qmgguH+r3YDoo1+s71A6uGODPOMTPfPTDuP1gslUUEC0iZ7WTAgMB AAGjggLNMIICyTAdBgNVHQ4EFgQUa2Ef58mTgAy90tB6PDgL9TOz6JIwHwYDVR0j BBgwFoAU5xpoARwIEgRaHbvGQzt3kbXd8NIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvRTcxQTY4MDExQzA4MTIw NDVBMURCQkM2NDMzQjc3OTFCNURERjBEMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FNzFBNjgwMTFDMDgxMjA0NUEx REJCQzY0MzNCNzc5MUI1RERGMEQyLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODU0MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBUBggrBgEFBQcBBwEB/wRFMEMwMAQCAAEwKgMEA7Hh+AME ALHyyAMEALHyywMEALHyzQMEAbH3sAMEA8mfwAMEAMmfzzAPBAIAAjAJAwcAKAYC YBAgMA0GCSqGSIb3DQEBCwUAA4IBAQDXnKRXsZj+dD3wvXRYlxcr8RBjNaqBddkG KWBIPRXIrp24TopK54qjdXwP8NK/KnjY4QTq8nfFxnAouAkoyio43GNoZXHVf6Lt E5Aj3jRxmgxMYzIjPoN9H+BC5moSYEKGkiV1PalKovuS+4jjRZQ0Iy+6lBje2Koe y5aR/RvY3WEVzi2Yn48tksDD35m5VSsciUmq/1FIAl9yGlTa85wA1WFpX4vcQKTt Rq1bplGG9ogfuphogIFJlNT89dW0DZOmyYA4bQ7lJGcgTTKFw0Q8zpt5DISdR2BG yZ+4PMluG4Phe7SBz2yzJILShN72bOItwUGYuOUp4qH+SIP7/zlt -----END CERTIFICATE-----Generated at Fri Jul 4 16:13:52 2025 by rpki-client