$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa File: AS28541.roa (raw, json) Hash identifier: 9QIOmf1oYjRhS0o9y2GXECjTrEX9kZe4Ld8TtuN7kyQ= Subject key identifier: 74:F5:77:E1:75:E5:07:B3:52:08:2E:F6:98:F1:6C:36:19:0A:9F:6E Certificate issuer: /CN=C586A9076CDE73FD896464010A3CE08E4C8FC4C5 Certificate serial: 32C7DA5C27CE38974D44ED134B666FCAF67A0416 Authority key identifier: C5:86:A9:07:6C:DE:73:FD:89:64:64:01:0A:3C:E0:8E:4C:8F:C4:C5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa Signing time: Fri 25 Jul 2025 04:05:00 +0000 ROA not before: Fri 25 Jul 2025 04:00:00 +0000 ROA not after: Fri 24 Jul 2026 04:05:00 +0000 asID: 28541 IP address blocks: 177.242.200.0/24 maxlen: 24 177.242.203.0/24 maxlen: 24 177.242.205.0/24 maxlen: 24 177.247.176.0/23 maxlen: 23 201.159.192.0/21 maxlen: 24 201.159.207.0/24 maxlen: 24 2806:260:1020::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 05 Aug 2025 13:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c7:da:5c:27:ce:38:97:4d:44:ed:13:4b:66:6f:ca:f6:7a:04:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C586A9076CDE73FD896464010A3CE08E4C8FC4C5 Validity Not Before: Jul 25 04:00:00 2025 GMT Not After : Jul 24 04:05:00 2026 GMT Subject: CN=74F577E175E507B352082EF698F16C36190A9F6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4b:14:2d:0b:be:4f:c4:54:6d:c2:f5:42:f2: 3c:21:8f:c6:ec:fa:66:c8:c2:c3:3b:11:49:78:9d: de:c1:27:9e:b2:12:48:30:1b:dd:e9:a3:b4:32:87: 03:27:8c:45:55:95:7b:ac:b0:01:58:40:b6:50:a2: 93:7e:86:61:22:81:f7:3a:05:c2:21:63:15:02:c5: 14:24:4d:95:af:e7:0e:71:e8:28:a0:85:90:80:dc: 1e:ee:f0:2b:d7:a9:72:46:cc:83:8c:0e:ec:03:61: 8c:51:5d:d3:79:72:c7:62:6e:46:b4:16:39:02:be: 0f:85:f4:05:58:63:51:21:c5:1c:e2:fb:4e:09:e8: 2e:9b:13:6d:7b:b8:95:9a:fd:02:ac:bd:97:38:88: 77:43:45:9b:1a:d6:21:f0:ca:0b:d7:7b:d5:05:c3: b7:ad:08:b3:04:28:62:a0:b4:ef:7c:e0:31:f3:4d: 7e:76:14:55:35:25:32:35:94:74:54:c4:5b:25:17: 39:86:d8:6b:56:57:93:14:48:10:3f:b8:00:03:b8: df:28:75:25:28:6b:72:08:0f:dc:03:fe:ef:e9:59: 3c:83:d0:8c:9d:df:bd:d7:c3:ac:09:a6:5a:74:53: 92:63:f1:7d:04:1e:ab:fb:3c:e5:d4:f9:0a:bf:39: 36:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F5:77:E1:75:E5:07:B3:52:08:2E:F6:98:F1:6C:36:19:0A:9F:6E X509v3 Authority Key Identifier: keyid:C5:86:A9:07:6C:DE:73:FD:89:64:64:01:0A:3C:E0:8E:4C:8F:C4:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C586A9076CDE73FD896464010A3CE08E4C8FC4C5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28541.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.242.200.0/24 177.242.203.0/24 177.242.205.0/24 177.247.176.0/23 201.159.192.0/21 201.159.207.0/24 IPv6: 2806:260:1020::/48 Signature Algorithm: sha256WithRSAEncryption 79:f5:45:05:ce:99:01:3f:b5:db:05:a4:f6:f7:a3:f2:d8:8b: 87:0a:1c:f1:61:f9:c1:d8:aa:4b:e8:71:42:40:e2:69:d3:cf: 1d:46:4b:99:62:ee:2f:3a:b1:56:48:53:d2:f4:2c:ee:ed:3f: 02:b4:b2:49:7e:4a:14:e7:d0:76:e0:8a:60:34:b3:f7:aa:13: a5:5e:7c:62:fd:e1:30:f3:ac:a3:0a:5c:e5:a7:61:e3:13:89: 18:c4:2f:c4:1b:32:be:8e:64:40:a3:c8:37:25:ae:5c:fb:c7: 48:83:4f:6f:c5:30:3f:b9:ad:15:ad:9b:9f:c9:3c:f0:31:a2: d2:25:f8:4e:d9:a2:3b:52:aa:7e:38:12:6d:51:b7:2b:ae:98: 92:56:0f:2b:93:2f:2e:54:7a:b4:55:ee:5a:93:c2:e4:e9:62: a5:c8:22:aa:7b:bc:61:e3:ce:e5:d1:fb:1f:ee:d5:00:a2:c2: f6:32:f8:21:d1:54:06:b1:0e:01:d6:6b:36:3c:3f:4e:02:94: 05:78:c9:e0:4b:53:c8:13:e2:48:32:06:41:25:42:39:d6:dd: ac:61:4b:bb:c8:c3:ad:f1:c3:9a:4a:ee:70:2a:bc:00:3f:71: 0b:45:12:3b:a5:3d:fb:0f:3d:03:1c:76:f5:ae:a4:4b:c0:a0: 25:04:94:bd -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIUMsfaXCfOOJdNRO0TS2ZvyvZ6BBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU4NkE5MDc2Q0RFNzNGRDg5NjQ2NDAxMEEzQ0UwOEU0 QzhGQzRDNTAeFw0yNTA3MjUwNDAwMDBaFw0yNjA3MjQwNDA1MDBaMDMxMTAvBgNV BAMTKDc0RjU3N0UxNzVFNTA3QjM1MjA4MkVGNjk4RjE2QzM2MTkwQTlGNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2SxQtC75PxFRtwvVC8jwhj8bs +mbIwsM7EUl4nd7BJ56yEkgwG93po7QyhwMnjEVVlXussAFYQLZQopN+hmEigfc6 BcIhYxUCxRQkTZWv5w5x6CighZCA3B7u8CvXqXJGzIOMDuwDYYxRXdN5csdibka0 FjkCvg+F9AVYY1EhxRzi+04J6C6bE217uJWa/QKsvZc4iHdDRZsa1iHwygvXe9UF w7etCLMEKGKgtO984DHzTX52FFU1JTI1lHRUxFslFzmG2GtWV5MUSBA/uAADuN8o dSUoa3IID9wD/u/pWTyD0Iyd373Xw6wJplp0U5Jj8X0EHqv7POXU+Qq/OTYJAgMB AAGjggLHMIICwzAdBgNVHQ4EFgQUdPV34XXlB7NSCC72mPFsNhkKn24wHwYDVR0j BBgwFoAUxYapB2zec/2JZGQBCjzgjkyPxMUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQzU4NkE5MDc2Q0RFNzNG RDg5NjQ2NDAxMEEzQ0UwOEU0QzhGQzRDNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DNTg2QTkwNzZDREU3M0ZEODk2 NDY0MDEwQTNDRTA4RTRDOEZDNEM1LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODU0MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBOBggrBgEFBQcBBwEB/wQ/MD0wKgQCAAEwJAMEALHyyAME ALHyywMEALHyzQMEAbH3sAMEA8mfwAMEAMmfzzAPBAIAAjAJAwcAKAYCYBAgMA0G CSqGSIb3DQEBCwUAA4IBAQB59UUFzpkBP7XbBaT296Py2IuHChzxYfnB2KpL6HFC QOJp088dRkuZYu4vOrFWSFPS9Czu7T8CtLJJfkoU59B24IpgNLP3qhOlXnxi/eEw 86yjClzlp2HjE4kYxC/EGzK+jmRAo8g3Ja5c+8dIg09vxTA/ua0VrZufyTzwMaLS JfhO2aI7Uqp+OBJtUbcrrpiSVg8rky8uVHq0Ve5ak8Lk6WKlyCKqe7xh487l0fsf 7tUAosL2Mvgh0VQGsQ4B1ms2PD9OApQFeMngS1PIE+JIMgZBJUI51t2sYUu7yMOt 8cOaSu5wKrwAP3ELRRI7pT37Dz0DHHb1rqRLwKAlBJS9 -----END CERTIFICATE-----Generated at Sat Aug 2 05:43:23 2025 by rpki-client