$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS262916.roa File: AS262916.roa (raw, json) Hash identifier: Emib83E32BHLN4SCRAcTyZgcyJIaydlZtvUSI828kXA= Subject key identifier: B9:81:B2:82:C4:57:3F:B0:0C:6D:61:98:C4:7C:AE:A1:AA:FA:61:8D Certificate issuer: /CN=C01F5C753EFDB7F8476C63BBB41417B8E194A2A3 Certificate serial: 0F02FE0240F4513A0F31D0C7F04775798E32016B Authority key identifier: C0:1F:5C:75:3E:FD:B7:F8:47:6C:63:BB:B4:14:17:B8:E1:94:A2:A3 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS262916.roa Signing time: Wed 29 May 2024 04:20:00 +0000 ROA not before: Wed 29 May 2024 04:15:00 +0000 ROA not after: Wed 28 May 2025 04:20:00 +0000 asID: 262916 IP address blocks: 200.52.172.0/24 maxlen: 24 200.52.194.0/24 maxlen: 24 200.52.200.0/23 maxlen: 24 200.52.203.0/24 maxlen: 24 200.52.206.0/24 maxlen: 24 200.56.130.0/23 maxlen: 24 200.56.134.0/24 maxlen: 24 200.66.39.0/24 maxlen: 24 200.77.45.0/24 maxlen: 24 200.77.46.0/24 maxlen: 24 200.77.50.0/24 maxlen: 24 200.77.121.0/24 maxlen: 24 200.92.129.0/24 maxlen: 24 200.92.152.0/24 maxlen: 24 200.92.199.0/24 maxlen: 24 200.92.201.0/24 maxlen: 24 200.92.202.0/23 maxlen: 24 200.92.204.0/23 maxlen: 23 200.92.208.0/23 maxlen: 23 200.92.210.0/24 maxlen: 24 200.92.216.0/24 maxlen: 24 201.132.2.0/23 maxlen: 24 201.132.4.0/24 maxlen: 24 201.132.7.0/24 maxlen: 24 201.132.11.0/24 maxlen: 24 201.132.18.0/23 maxlen: 24 201.132.21.0/24 maxlen: 24 201.132.22.0/24 maxlen: 24 201.132.80.0/22 maxlen: 24 201.132.84.0/24 maxlen: 24 201.132.104.0/24 maxlen: 24 201.132.110.0/24 maxlen: 24 201.132.119.0/24 maxlen: 24 201.132.155.0/24 maxlen: 24 201.132.160.0/24 maxlen: 24 201.132.162.0/24 maxlen: 24 201.132.203.0/24 maxlen: 24 201.164.45.0/24 maxlen: 24 201.164.47.0/24 maxlen: 24 201.164.61.0/24 maxlen: 24 201.164.62.0/24 maxlen: 24 201.164.152.0/24 maxlen: 24 201.164.155.0/24 maxlen: 24 201.164.176.0/23 maxlen: 24 201.164.180.0/22 maxlen: 24 201.165.55.0/24 maxlen: 24 201.165.86.0/24 maxlen: 24 201.165.222.0/24 maxlen: 24 201.165.252.0/24 maxlen: 24 201.165.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 30 Jun 2024 04:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:02:fe:02:40:f4:51:3a:0f:31:d0:c7:f0:47:75:79:8e:32:01:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C01F5C753EFDB7F8476C63BBB41417B8E194A2A3 Validity Not Before: May 29 04:15:00 2024 GMT Not After : May 28 04:20:00 2025 GMT Subject: CN=B981B282C4573FB00C6D6198C47CAEA1AAFA618D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3a:9a:50:da:bb:38:ef:f8:85:32:8a:0f:e6: 5a:57:af:e3:5c:14:87:76:a0:d7:9a:8e:b8:df:74: 23:4c:63:06:05:13:a7:49:9f:3d:a4:43:22:e9:a2: 44:fb:78:74:99:45:9b:ff:be:f6:35:bf:f3:19:71: a0:0c:ef:6f:f1:18:f6:e0:46:f4:44:bf:2f:5d:1e: d3:69:74:1c:cb:24:e9:84:57:be:dc:82:0a:a9:2e: 77:3e:2b:1b:b0:76:5c:c0:4c:d8:54:ca:2d:95:5f: 5c:08:d9:fd:83:94:ee:72:ee:0b:1c:99:25:c7:3b: 59:2c:f9:4e:fe:37:1c:ee:35:9b:3e:96:8d:5f:a4: 46:4d:25:19:6b:5c:09:95:69:f8:13:66:9c:61:77: 3d:ad:2a:cf:3a:26:b7:09:ef:4c:e5:92:b2:58:5b: d4:10:cc:3d:f2:a4:f0:15:31:c8:46:6f:0e:f9:1d: 08:23:22:45:3f:2c:00:24:b4:b8:2f:ad:4d:87:8a: a4:2d:94:4c:e7:cb:12:b6:e6:a0:24:19:8d:74:89: e9:ce:1f:e7:23:ce:47:57:c0:e0:b9:6a:81:89:88: 88:a0:d4:81:e6:9f:6a:a7:6b:3b:f6:e8:4b:17:0d: 56:1e:7e:87:02:a4:38:c3:04:d4:f6:59:27:49:b7: 9d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:81:B2:82:C4:57:3F:B0:0C:6D:61:98:C4:7C:AE:A1:AA:FA:61:8D X509v3 Authority Key Identifier: keyid:C0:1F:5C:75:3E:FD:B7:F8:47:6C:63:BB:B4:14:17:B8:E1:94:A2:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS262916.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.52.172.0/24 200.52.194.0/24 200.52.200.0/23 200.52.203.0/24 200.52.206.0/24 200.56.130.0/23 200.56.134.0/24 200.66.39.0/24 200.77.45.0-200.77.46.255 200.77.50.0/24 200.77.121.0/24 200.92.129.0/24 200.92.152.0/24 200.92.199.0/24 200.92.201.0-200.92.205.255 200.92.208.0-200.92.210.255 200.92.216.0/24 201.132.2.0-201.132.4.255 201.132.7.0/24 201.132.11.0/24 201.132.18.0/23 201.132.21.0-201.132.22.255 201.132.80.0-201.132.84.255 201.132.104.0/24 201.132.110.0/24 201.132.119.0/24 201.132.155.0/24 201.132.160.0/24 201.132.162.0/24 201.132.203.0/24 201.164.45.0/24 201.164.47.0/24 201.164.61.0-201.164.62.255 201.164.152.0/24 201.164.155.0/24 201.164.176.0/23 201.164.180.0/22 201.165.55.0/24 201.165.86.0/24 201.165.222.0/24 201.165.252.0/24 201.165.254.0/24 Signature Algorithm: sha256WithRSAEncryption 04:78:e5:9b:d2:d2:80:c2:d5:99:60:55:71:ed:18:14:7a:10: 71:ff:5e:24:67:0a:ac:f5:23:02:c0:1b:91:48:f1:90:55:5f: 35:77:4c:a8:a9:6c:34:8b:69:8c:68:38:eb:bf:80:fd:d7:5b: 0a:f1:a9:ec:0f:a7:b2:43:15:e4:04:02:64:c5:9f:07:44:74: 92:74:cd:58:f6:5b:b3:68:86:e0:4e:8c:59:d9:0f:ea:dd:1e: d2:3b:7e:12:c8:06:ad:80:1d:1a:58:22:c2:cf:ab:ba:9c:bb: 1d:f0:b0:b7:9b:34:e8:6d:5d:47:0e:6a:69:58:35:f1:b6:42: cc:9d:3d:88:7b:2c:c6:02:33:b1:8c:c2:dc:ca:63:36:52:de: 48:b7:1f:ed:08:a6:96:be:f5:f3:97:50:a4:b2:61:61:f0:82: 12:90:d9:ee:f0:ce:c0:35:af:f9:8f:b5:5f:43:64:d8:7c:1d: 03:d9:c1:9d:f0:08:74:82:a2:d1:b8:c6:9a:06:0c:42:b4:ac: 85:3f:90:0d:ac:f2:80:96:c1:12:19:44:c3:76:56:54:f6:96: e7:e4:75:a5:1f:96:b3:73:a2:04:29:34:ce:a0:98:ec:99:43: 39:c6:b2:58:49:90:b7:e1:40:39:b7:bf:17:de:ac:88:63:47: 96:f3:05:36 -----BEGIN CERTIFICATE----- MIIGxzCCBa+gAwIBAgIUDwL+AkD0UToPMdDH8Ed1eY4yAWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAxRjVDNzUzRUZEQjdGODQ3NkM2M0JCQjQxNDE3QjhF MTk0QTJBMzAeFw0yNDA1MjkwNDE1MDBaFw0yNTA1MjgwNDIwMDBaMDMxMTAvBgNV BAMTKEI5ODFCMjgyQzQ1NzNGQjAwQzZENjE5OEM0N0NBRUExQUFGQTYxOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxOppQ2rs47/iFMooP5lpXr+Nc FId2oNeajrjfdCNMYwYFE6dJnz2kQyLpokT7eHSZRZv/vvY1v/MZcaAM72/xGPbg RvREvy9dHtNpdBzLJOmEV77cggqpLnc+KxuwdlzATNhUyi2VX1wI2f2DlO5y7gsc mSXHO1ks+U7+NxzuNZs+lo1fpEZNJRlrXAmVafgTZpxhdz2tKs86JrcJ70zlkrJY W9QQzD3ypPAVMchGbw75HQgjIkU/LAAktLgvrU2HiqQtlEznyxK25qAkGY10ienO H+cjzkdXwOC5aoGJiIig1IHmn2qnazv26EsXDVYefocCpDjDBNT2WSdJt50xAgMB AAGjggPRMIIDzTAdBgNVHQ4EFgQUuYGygsRXP7AMbWGYxHyuoar6YY0wHwYDVR0j BBgwFoAUwB9cdT79t/hHbGO7tBQXuOGUoqMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQzAxRjVDNzUzRUZEQjdG ODQ3NkM2M0JCQjQxNDE3QjhFMTk0QTJBMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DMDFGNUM3NTNFRkRCN0Y4NDc2 QzYzQkJCNDE0MTdCOEUxOTRBMkEzLmNlcjCBmAYIKwYBBQUHAQsEgYswgYgwgYUG CCsGAQUFBzALhnlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyNjI5MTYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwggFVBggrBgEFBQcBBwEB/wSCAUQwggFAMIIBPAQCAAEw ggE0AwQAyDSsAwQAyDTCAwQByDTIAwQAyDTLAwQAyDTOAwQByDiCAwQAyDiGAwQA yEInMAwDBADITS0DBADITS4DBADITTIDBADITXkDBADIXIEDBADIXJgDBADIXMcw DAMEAMhcyQMEAchczDAMAwQEyFzQAwQAyFzSAwQAyFzYMAwDBAHJhAIDBADJhAQD BADJhAcDBADJhAsDBAHJhBIwDAMEAMmEFQMEAMmEFjAMAwQEyYRQAwQAyYRUAwQA yYRoAwQAyYRuAwQAyYR3AwQAyYSbAwQAyYSgAwQAyYSiAwQAyYTLAwQAyaQtAwQA yaQvMAwDBADJpD0DBADJpD4DBADJpJgDBADJpJsDBAHJpLADBALJpLQDBADJpTcD BADJpVYDBADJpd4DBADJpfwDBADJpf4wDQYJKoZIhvcNAQELBQADggEBAAR45ZvS 0oDC1ZlgVXHtGBR6EHH/XiRnCqz1IwLAG5FI8ZBVXzV3TKipbDSLaYxoOOu/gP3X WwrxqewPp7JDFeQEAmTFnwdEdJJ0zVj2W7NohuBOjFnZD+rdHtI7fhLIBq2AHRpY IsLPq7qcux3wsLebNOhtXUcOamlYNfG2QsydPYh7LMYCM7GMwtzKYzZS3ki3H+0I ppa+9fOXUKSyYWHwghKQ2e7wzsA1r/mPtV9DZNh8HQPZwZ3wCHSCotG4xpoGDEK0 rIU/kA2s8oCWwRIZRMN2VlT2lufkdaUflrNzogQpNM6gmOyZQznGslhJkLfhQDm3 vxferIhjR5bzBTY= -----END CERTIFICATE-----Generated at Tue Jun 25 17:42:34 2024 by rpki-client on console-ams.rpki-client.org