$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa File: AS28541.roa (raw, json) Hash identifier: 8wj0KpXXsMh/mnbWHIZ2W+i8vZLYdcfSGcsxbcvBa/w= Subject key identifier: BC:B8:B8:A6:A9:E6:A7:5E:C6:37:71:CB:B7:EE:FA:03:83:8B:60:AA Certificate issuer: /CN=E71A68011C0812045A1DBBC6433B7791B5DDF0D2 Certificate serial: 186C52C03476D35F53B4B68C4A044227042478D8 Authority key identifier: E7:1A:68:01:1C:08:12:04:5A:1D:BB:C6:43:3B:77:91:B5:DD:F0:D2 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa Signing time: Mon 24 Feb 2025 20:50:00 +0000 ROA not before: Mon 24 Feb 2025 20:45:00 +0000 ROA not after: Mon 23 Feb 2026 20:50:00 +0000 asID: 28541 IP address blocks: 177.225.248.0/21 maxlen: 21 177.242.200.0/24 maxlen: 24 177.242.203.0/24 maxlen: 24 177.242.205.0/24 maxlen: 24 177.247.176.0/23 maxlen: 23 201.159.192.0/21 maxlen: 24 201.159.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Mar 2025 05:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:6c:52:c0:34:76:d3:5f:53:b4:b6:8c:4a:04:42:27:04:24:78:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E71A68011C0812045A1DBBC6433B7791B5DDF0D2 Validity Not Before: Feb 24 20:45:00 2025 GMT Not After : Feb 23 20:50:00 2026 GMT Subject: CN=BCB8B8A6A9E6A75EC63771CBB7EEFA03838B60AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:39:6f:bf:a4:df:03:f9:da:85:72:07:f8:7c: 6e:e9:27:d1:54:ac:ef:3c:0b:f9:13:94:98:bd:19: 4d:c8:b9:7d:20:88:3a:34:96:fa:62:a9:ec:4e:84: cd:9d:32:09:ec:a8:5f:29:4f:7a:e0:6a:1f:cd:4e: 8d:cc:a9:13:ad:5a:3d:c5:1f:d9:d5:db:de:f5:a6: b7:f1:b1:ee:05:27:aa:b9:77:79:29:5b:14:8c:a6: 04:c6:e7:ef:46:c3:c7:b8:30:53:9d:70:45:5a:c8: de:8a:8e:d1:15:04:6c:52:ca:01:79:e4:de:b8:39: d1:44:3a:d0:86:2f:45:23:80:77:5f:a5:82:ff:b6: 5f:f4:9d:69:8c:82:bb:a8:d6:77:8f:db:22:dd:9c: 0a:74:bb:49:40:1d:6d:2a:fe:cd:7b:32:06:d5:6c: dc:d7:c6:d2:cb:56:68:4d:06:b7:e8:98:76:f1:10: b8:3c:2b:9f:b9:0b:ff:9e:03:ca:a5:70:9f:6d:6b: c1:aa:08:a3:b3:34:14:7c:27:23:4f:35:f4:85:1e: c3:07:90:79:f7:a7:72:2f:66:bf:64:f3:06:ca:1b: 69:c6:bf:2b:a3:15:b0:69:68:0f:60:9e:67:20:e7: 13:22:3f:93:da:76:a9:44:32:09:ed:29:6c:1a:b9: 58:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B8:B8:A6:A9:E6:A7:5E:C6:37:71:CB:B7:EE:FA:03:83:8B:60:AA X509v3 Authority Key Identifier: keyid:E7:1A:68:01:1C:08:12:04:5A:1D:BB:C6:43:3B:77:91:B5:DD:F0:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.225.248.0/21 177.242.200.0/24 177.242.203.0/24 177.242.205.0/24 177.247.176.0/23 201.159.192.0/21 201.159.207.0/24 Signature Algorithm: sha256WithRSAEncryption 30:b9:e3:dd:0c:14:a6:3e:9e:a0:b6:c5:6d:5c:3b:9d:56:fd: bc:7b:6c:f3:33:dc:86:74:9f:f7:99:27:3d:7e:56:c6:8d:59: 3d:72:41:d8:09:ca:6e:26:7e:bb:57:27:d6:95:09:26:6a:80: 52:5c:f9:8b:19:d4:bf:c2:d9:15:f0:e8:ca:3c:4d:15:89:db: 29:0a:e7:3c:ec:21:26:1c:2b:a4:63:d0:8f:d3:87:48:e0:36: 27:d4:82:11:fb:cb:80:af:31:ef:7f:c4:e5:6b:6b:c8:a4:18: fe:45:6e:a4:9a:b9:66:44:16:bc:a9:98:aa:38:c3:f4:b7:be: 7d:6d:33:2e:83:41:77:78:c2:ea:1c:59:b1:a6:2a:21:3b:dd: d5:3f:aa:1b:49:42:d2:9f:7b:07:7a:15:05:d6:90:ef:d4:56: d1:a3:ad:3d:98:c7:d9:7d:12:07:c8:e1:6a:21:da:08:de:70: 58:e9:9d:9a:b1:1a:e1:d7:d0:36:38:cc:89:69:47:f6:50:41: ee:bf:0f:2b:2f:f9:b2:1d:88:e6:b9:b5:14:96:20:f8:fd:eb: 2c:b7:7b:01:2e:9b:0d:b9:2f:54:1d:58:7a:b0:29:c4:09:99: f0:b4:2f:3e:17:e5:e4:57:46:48:bc:4b:2d:1b:da:e0:1f:b7: ff:a6:75:e4 -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgIUGGxSwDR2019TtLaMSgRCJwQkeNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTcxQTY4MDExQzA4MTIwNDVBMURCQkM2NDMzQjc3OTFC NURERjBEMjAeFw0yNTAyMjQyMDQ1MDBaFw0yNjAyMjMyMDUwMDBaMDMxMTAvBgNV BAMTKEJDQjhCOEE2QTlFNkE3NUVDNjM3NzFDQkI3RUVGQTAzODM4QjYwQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6OW+/pN8D+dqFcgf4fG7pJ9FU rO88C/kTlJi9GU3IuX0giDo0lvpiqexOhM2dMgnsqF8pT3rgah/NTo3MqROtWj3F H9nV2971prfxse4FJ6q5d3kpWxSMpgTG5+9Gw8e4MFOdcEVayN6KjtEVBGxSygF5 5N64OdFEOtCGL0UjgHdfpYL/tl/0nWmMgruo1neP2yLdnAp0u0lAHW0q/s17MgbV bNzXxtLLVmhNBrfomHbxELg8K5+5C/+eA8qlcJ9ta8GqCKOzNBR8JyNPNfSFHsMH kHn3p3IvZr9k8wbKG2nGvyujFbBpaA9gnmcg5xMiP5PadqlEMgntKWwauVj9AgMB AAGjggK8MIICuDAdBgNVHQ4EFgQUvLi4pqnmp17GN3HLt+76A4OLYKowHwYDVR0j BBgwFoAU5xpoARwIEgRaHbvGQzt3kbXd8NIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvRTcxQTY4MDExQzA4MTIw NDVBMURCQkM2NDMzQjc3OTFCNURERjBEMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FNzFBNjgwMTFDMDgxMjA0NUEx REJCQzY0MzNCNzc5MUI1RERGMEQyLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODU0MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBDBggrBgEFBQcBBwEB/wQ0MDIwMAQCAAEwKgMEA7Hh+AME ALHyyAMEALHyywMEALHyzQMEAbH3sAMEA8mfwAMEAMmfzzANBgkqhkiG9w0BAQsF AAOCAQEAMLnj3QwUpj6eoLbFbVw7nVb9vHts8zPchnSf95knPX5Wxo1ZPXJB2AnK biZ+u1cn1pUJJmqAUlz5ixnUv8LZFfDoyjxNFYnbKQrnPOwhJhwrpGPQj9OHSOA2 J9SCEfvLgK8x73/E5WtryKQY/kVupJq5ZkQWvKmYqjjD9Le+fW0zLoNBd3jC6hxZ saYqITvd1T+qG0lC0p97B3oVBdaQ79RW0aOtPZjH2X0SB8jhaiHaCN5wWOmdmrEa 4dfQNjjMiWlH9lBB7r8PKy/5sh2I5rm1FJYg+P3rLLd7AS6bDbkvVB1YerApxAmZ 8LQvPhfl5FdGSLxLLRva4B+3/6Z15A== -----END CERTIFICATE-----Generated at Thu Mar 13 21:59:20 2025 by rpki-client