$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa File: AS28481.roa (raw, json) Hash identifier: cmUACOU5MED2N+RVBwDG1YgCfKRLlFTyyX0WKi0+x7c= Subject key identifier: 09:FB:49:FC:4C:E3:D2:8F:EB:B7:B1:04:73:01:37:F3:BE:AF:F6:B8 Certificate issuer: /CN=C01F5C753EFDB7F8476C63BBB41417B8E194A2A3 Certificate serial: 6BC23729F4D7E7A71482E651E9839ACDE863C41D Authority key identifier: C0:1F:5C:75:3E:FD:B7:F8:47:6C:63:BB:B4:14:17:B8:E1:94:A2:A3 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa Signing time: Wed 29 May 2024 04:20:00 +0000 ROA not before: Wed 29 May 2024 04:15:00 +0000 ROA not after: Wed 28 May 2025 04:20:00 +0000 asID: 28481 IP address blocks: 200.92.220.0/22 maxlen: 22 200.92.232.0/22 maxlen: 22 200.94.228.0/23 maxlen: 23 200.94.230.0/23 maxlen: 23 200.94.232.0/23 maxlen: 23 200.94.234.0/23 maxlen: 23 200.94.236.0/23 maxlen: 24 201.132.132.0/22 maxlen: 23 201.132.136.0/21 maxlen: 22 201.132.144.0/21 maxlen: 22 201.132.156.0/22 maxlen: 23 201.164.48.0/21 maxlen: 22 201.164.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 30 Jun 2024 04:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:c2:37:29:f4:d7:e7:a7:14:82:e6:51:e9:83:9a:cd:e8:63:c4:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C01F5C753EFDB7F8476C63BBB41417B8E194A2A3 Validity Not Before: May 29 04:15:00 2024 GMT Not After : May 28 04:20:00 2025 GMT Subject: CN=09FB49FC4CE3D28FEBB7B104730137F3BEAFF6B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4c:e4:47:1d:c4:7b:7d:87:4f:bf:82:8b:71: 64:e2:af:9f:f4:e9:74:45:7a:d2:c5:80:0c:c2:b7: 67:31:b6:3e:9b:e8:4e:e7:2b:99:a3:ed:52:8d:d9: da:c7:38:1e:0f:bb:95:ca:3b:ad:4a:15:6b:a5:04: 8d:b1:f7:66:40:c5:48:8e:22:97:6c:1a:cb:ce:d0: df:f8:fa:1b:74:4f:4d:26:ae:6d:e0:c9:2f:86:46: 50:b0:8a:04:c4:e5:ec:96:56:71:37:02:6d:c1:70: ad:99:61:7c:19:97:2f:e2:d8:95:d9:0a:70:f4:a2: 4e:87:fc:d6:d5:1a:f0:e0:a2:d4:b9:8c:2a:75:3c: ca:40:68:c3:20:92:18:e4:b3:6c:0d:a3:bf:71:1d: e5:78:0a:3f:e9:92:6e:34:98:fa:2e:4c:88:dd:9d: 27:91:f8:3d:75:78:5f:f1:25:c7:29:e8:be:2d:4f: 56:4b:23:4e:c3:0a:4d:19:45:5b:1c:10:44:46:19: 44:37:8c:29:52:7f:9a:a0:55:20:c3:a9:81:a0:3d: 91:63:3b:5e:bb:df:01:82:e2:66:15:e6:03:41:4f: 97:90:e8:b1:90:eb:d8:63:d5:14:ec:34:ea:8d:c3: 64:3c:b4:0f:86:ea:1c:06:24:72:d4:34:a3:90:b9: 38:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FB:49:FC:4C:E3:D2:8F:EB:B7:B1:04:73:01:37:F3:BE:AF:F6:B8 X509v3 Authority Key Identifier: keyid:C0:1F:5C:75:3E:FD:B7:F8:47:6C:63:BB:B4:14:17:B8:E1:94:A2:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C01F5C753EFDB7F8476C63BBB41417B8E194A2A3.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.92.220.0/22 200.92.232.0/22 200.94.228.0-200.94.237.255 201.132.132.0-201.132.151.255 201.132.156.0/22 201.164.48.0/21 201.164.184.0/21 Signature Algorithm: sha256WithRSAEncryption 17:9a:a8:01:7b:fa:ba:ad:91:28:5f:0a:52:16:34:a9:9f:29: 09:de:ca:7a:9b:19:ea:0b:fe:c5:8a:ea:bf:98:35:7b:8c:82: bd:31:8b:ce:29:b5:bd:46:4a:f8:cf:76:1b:77:ea:4b:c8:0b: 9b:dc:73:53:1d:39:24:d2:2d:04:d9:7a:95:42:1e:90:71:67: 47:90:70:f0:75:34:38:fe:b3:ee:dd:b1:f0:50:14:70:98:9d: 33:30:0a:07:9f:47:d8:2e:14:8a:dd:7c:ac:07:49:d8:7e:75: e3:36:b0:35:5e:f6:1a:43:10:02:28:fa:b8:78:12:95:fe:9a: a0:96:04:6a:88:e9:c6:9d:b0:b2:d2:7e:4e:8d:98:c5:0b:65: ad:af:ee:2a:25:35:f2:4d:c4:2d:e3:1e:7e:ad:29:ac:07:22: e8:4a:af:5e:02:9e:a1:04:04:10:37:04:8e:d2:5d:8a:94:2d: bb:6f:05:91:c4:19:3a:12:80:05:9c:86:e7:cc:6d:56:52:f1: b0:84:c4:57:0a:e8:dc:54:e1:a9:64:47:fd:f5:7c:27:4a:ae: e3:29:76:77:fb:22:73:dd:60:47:24:ee:8c:16:32:af:ed:bc: 78:f2:54:38:7d:a5:ac:d8:3d:d2:57:69:51:ef:ca:42:21:f0: 60:6e:96:dd -----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgIUa8I3KfTX56cUguZR6YOazehjxB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAxRjVDNzUzRUZEQjdGODQ3NkM2M0JCQjQxNDE3QjhF MTk0QTJBMzAeFw0yNDA1MjkwNDE1MDBaFw0yNTA1MjgwNDIwMDBaMDMxMTAvBgNV BAMTKDA5RkI0OUZDNENFM0QyOEZFQkI3QjEwNDczMDEzN0YzQkVBRkY2QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHTORHHcR7fYdPv4KLcWTir5/0 6XRFetLFgAzCt2cxtj6b6E7nK5mj7VKN2drHOB4Pu5XKO61KFWulBI2x92ZAxUiO IpdsGsvO0N/4+ht0T00mrm3gyS+GRlCwigTE5eyWVnE3Am3BcK2ZYXwZly/i2JXZ CnD0ok6H/NbVGvDgotS5jCp1PMpAaMMgkhjks2wNo79xHeV4Cj/pkm40mPouTIjd nSeR+D11eF/xJccp6L4tT1ZLI07DCk0ZRVscEERGGUQ3jClSf5qgVSDDqYGgPZFj O1673wGC4mYV5gNBT5eQ6LGQ69hj1RTsNOqNw2Q8tA+G6hwGJHLUNKOQuTjVAgMB AAGjggLMMIICyDAdBgNVHQ4EFgQUCftJ/Ezj0o/rt7EEcwE3876v9rgwHwYDVR0j BBgwFoAUwB9cdT79t/hHbGO7tBQXuOGUoqMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQzAxRjVDNzUzRUZEQjdG ODQ3NkM2M0JCQjQxNDE3QjhFMTk0QTJBMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DMDFGNUM3NTNFRkRCN0Y4NDc2 QzYzQkJCNDE0MTdCOEUxOTRBMkEzLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODQ4MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBTBggrBgEFBQcBBwEB/wREMEIwQAQCAAEwOgMEAshc3AME Ashc6DAMAwQCyF7kAwQByF7sMAwDBALJhIQDBAPJhJADBALJhJwDBAPJpDADBAPJ pLgwDQYJKoZIhvcNAQELBQADggEBABeaqAF7+rqtkShfClIWNKmfKQneynqbGeoL /sWK6r+YNXuMgr0xi84ptb1GSvjPdht36kvIC5vcc1MdOSTSLQTZepVCHpBxZ0eQ cPB1NDj+s+7dsfBQFHCYnTMwCgefR9guFIrdfKwHSdh+deM2sDVe9hpDEAIo+rh4 EpX+mqCWBGqI6cadsLLSfk6NmMULZa2v7iolNfJNxC3jHn6tKawHIuhKr14CnqEE BBA3BI7SXYqULbtvBZHEGToSgAWchufMbVZS8bCExFcK6NxU4alkR/31fCdKruMp dnf7InPdYEck7owWMq/tvHjyVDh9pazYPdJXaVHvykIh8GBult0= -----END CERTIFICATE-----Generated at Tue Jun 25 17:42:34 2024 by rpki-client on console-ams.rpki-client.org