$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa File: AS28541.roa (raw, json) Hash identifier: WPjEfstFhdoUMgkV/0MeQGhCCWRSgeFHv15/sjQdJ3A= Subject key identifier: A1:D9:AF:E2:A1:E5:B9:EF:D3:4B:EB:4A:33:48:E7:B7:82:0F:4F:98 Certificate issuer: /CN=C586A9076CDE73FD896464010A3CE08E4C8FC4C5 Certificate serial: 7577EECC8B4FC813F32987CC2DE36F1773FA6681 Authority key identifier: C5:86:A9:07:6C:DE:73:FD:89:64:64:01:0A:3C:E0:8E:4C:8F:C4:C5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa Signing time: Wed 15 Oct 2025 20:45:00 +0000 ROA not before: Wed 15 Oct 2025 20:40:00 +0000 ROA not after: Wed 14 Oct 2026 20:45:00 +0000 asID: 28541 IP address blocks: 177.242.192.0/21 maxlen: 21 177.242.200.0/21 maxlen: 24 177.247.176.0/23 maxlen: 23 201.159.192.0/21 maxlen: 24 201.159.207.0/24 maxlen: 24 2806:260:1020::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 24 Oct 2025 06:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:77:ee:cc:8b:4f:c8:13:f3:29:87:cc:2d:e3:6f:17:73:fa:66:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C586A9076CDE73FD896464010A3CE08E4C8FC4C5 Validity Not Before: Oct 15 20:40:00 2025 GMT Not After : Oct 14 20:45:00 2026 GMT Subject: CN=A1D9AFE2A1E5B9EFD34BEB4A3348E7B7820F4F98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6b:9c:22:42:5e:72:27:09:a0:ad:db:b8:a9: b9:1d:01:f8:28:e6:4d:6c:4f:1a:08:90:21:3a:5b: 71:89:aa:02:9e:3c:3d:61:0a:7e:48:e9:5b:0f:65: 71:64:b8:4e:2f:44:4f:13:03:38:36:04:79:db:14: 83:13:1f:fc:20:df:4e:f5:4c:40:bf:0e:6a:71:77: 1c:af:34:91:35:49:39:80:25:22:c1:cf:97:95:09: c1:33:ae:da:6f:aa:c2:84:50:c7:ac:2b:4d:fb:cf: 01:53:2d:06:75:e9:a9:cc:2d:ce:61:0a:2e:fc:23: 57:79:ce:81:8a:eb:35:3f:18:c8:83:46:90:05:01: 8f:9e:b2:83:cc:a4:9d:f1:fa:a2:b8:d0:4a:1a:df: 3b:46:a6:b6:29:7e:06:1a:63:3c:08:55:5b:7c:18: ae:86:67:8b:c6:95:10:33:48:e9:c2:51:9c:30:10: 3e:d6:cb:60:a7:74:28:eb:c2:2f:b1:22:83:61:61: f3:0d:c5:12:59:70:7d:8e:23:4b:44:6b:31:0f:58: d7:6d:d8:63:7b:cb:d0:9e:8c:14:f8:ab:60:b6:5b: cb:6a:48:02:50:54:06:d7:d7:70:af:e9:fc:aa:64: e0:66:73:f1:be:00:3b:e1:b9:03:c7:ad:cb:d0:4b: 51:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D9:AF:E2:A1:E5:B9:EF:D3:4B:EB:4A:33:48:E7:B7:82:0F:4F:98 X509v3 Authority Key Identifier: keyid:C5:86:A9:07:6C:DE:73:FD:89:64:64:01:0A:3C:E0:8E:4C:8F:C4:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.242.192.0/20 177.247.176.0/23 201.159.192.0/21 201.159.207.0/24 IPv6: 2806:260:1020::/48 Signature Algorithm: sha256WithRSAEncryption 1e:7b:27:96:19:c9:03:fa:85:30:ae:a7:53:59:5b:d3:da:dc: 82:8a:cf:26:16:47:d2:54:68:68:d7:82:61:02:ad:5d:9d:ea: fa:79:f9:e6:1f:4f:e5:f3:aa:ab:09:a0:1b:56:ad:0a:12:6d: 47:a0:8e:0d:da:ab:98:35:0d:e3:bc:2d:b2:8b:c3:83:73:7c: 32:e1:ee:cd:2a:62:7e:be:cc:2e:59:4c:03:97:b8:9e:ca:8a: bc:00:2f:5e:c5:a2:36:c8:1b:24:d3:bb:2a:09:0f:0e:a7:02: a9:e5:f0:f0:fc:69:25:27:d3:fb:db:47:cf:5c:79:c1:f1:f3: c6:0f:39:36:6d:04:38:6a:a0:09:10:81:36:87:af:7b:bc:7f: 80:99:44:a6:c2:77:a5:f3:77:db:a0:84:29:ae:57:3e:2f:be: 29:bd:07:ef:2e:e6:d8:47:32:fd:05:3c:2d:ff:40:2d:f5:3e: 76:cc:9c:ee:29:29:94:1f:b9:e3:57:ba:9a:d5:05:45:e3:01: da:2f:66:f1:25:09:2d:1b:8a:50:28:40:2d:b6:86:51:6d:f7: 5f:7a:24:0d:dd:9b:04:3e:ef:8d:92:40:96:50:42:05:7a:ee: 93:eb:1a:a9:c7:d7:34:a7:5c:9d:2d:3b:ac:30:75:65:27:00: d6:3d:35:9e -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgIUdXfuzItPyBPzKYfMLeNvF3P6ZoEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU4NkE5MDc2Q0RFNzNGRDg5NjQ2NDAxMEEzQ0UwOEU0 QzhGQzRDNTAeFw0yNTEwMTUyMDQwMDBaFw0yNjEwMTQyMDQ1MDBaMDMxMTAvBgNV BAMTKEExRDlBRkUyQTFFNUI5RUZEMzRCRUI0QTMzNDhFN0I3ODIwRjRGOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAa5wiQl5yJwmgrdu4qbkdAfgo 5k1sTxoIkCE6W3GJqgKePD1hCn5I6VsPZXFkuE4vRE8TAzg2BHnbFIMTH/wg3071 TEC/DmpxdxyvNJE1STmAJSLBz5eVCcEzrtpvqsKEUMesK037zwFTLQZ16anMLc5h Ci78I1d5zoGK6zU/GMiDRpAFAY+esoPMpJ3x+qK40Eoa3ztGprYpfgYaYzwIVVt8 GK6GZ4vGlRAzSOnCUZwwED7Wy2CndCjrwi+xIoNhYfMNxRJZcH2OI0tEazEPWNdt 2GN7y9CejBT4q2C2W8tqSAJQVAbX13Cv6fyqZOBmc/G+ADvhuQPHrcvQS1FTAgMB AAGjggK7MIICtzAdBgNVHQ4EFgQUodmv4qHlue/TS+tKM0jnt4IPT5gwHwYDVR0j BBgwFoAUxYapB2zec/2JZGQBCjzgjkyPxMUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQzU4NkE5MDc2Q0RFNzNG RDg5NjQ2NDAxMEEzQ0UwOEU0QzhGQzRDNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DNTg2QTkwNzZDREU3M0ZEODk2 NDY0MDEwQTNDRTA4RTRDOEZDNEM1LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODU0MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBCBggrBgEFBQcBBwEB/wQzMDEwHgQCAAEwGAMEBLHywAME AbH3sAMEA8mfwAMEAMmfzzAPBAIAAjAJAwcAKAYCYBAgMA0GCSqGSIb3DQEBCwUA A4IBAQAeeyeWGckD+oUwrqdTWVvT2tyCis8mFkfSVGho14JhAq1dner6efnmH0/l 86qrCaAbVq0KEm1HoI4N2quYNQ3jvC2yi8ODc3wy4e7NKmJ+vswuWUwDl7ieyoq8 AC9exaI2yBsk07sqCQ8OpwKp5fDw/GklJ9P720fPXHnB8fPGDzk2bQQ4aqAJEIE2 h697vH+AmUSmwnel83fboIQprlc+L74pvQfvLubYRzL9BTwt/0At9T52zJzuKSmU H7njV7qa1QVF4wHaL2bxJQktG4pQKEAttoZRbfdfeiQN3ZsEPu+NkkCWUEIFeu6T 6xqpx9c0p1ydLTusMHVlJwDWPTWe -----END CERTIFICATE-----Generated at Tue Oct 21 02:54:41 2025 by rpki-client