$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS22927.roa File: AS22927.roa (raw, json) Hash identifier: 8YLO57oMOW0yrf1tnOWBtrGuRroMXychXapFHkjVdTM= Subject key identifier: 9C:A7:59:55:77:96:FE:34:AF:7B:A3:8C:94:32:A8:D7:EF:9A:BF:54 Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1 Certificate serial: 10AAEC209A77ACE9C37ED8A663B5FA140854C8C5 Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS22927.roa Signing time: Tue 05 Mar 2024 18:08:01 +0000 ROA not before: Tue 05 Mar 2024 18:03:01 +0000 ROA not after: Tue 04 Mar 2025 18:08:01 +0000 asID: 22927 IP address blocks: 168.226.0.0/16 maxlen: 24 179.36.0.0/14 maxlen: 24 179.40.0.0/15 maxlen: 24 181.20.0.0/14 maxlen: 24 181.24.0.0/14 maxlen: 24 186.38.0.0/16 maxlen: 24 186.39.0.0/16 maxlen: 24 186.56.0.0/17 maxlen: 24 186.56.128.0/17 maxlen: 24 186.57.0.0/16 maxlen: 24 186.58.0.0/15 maxlen: 24 186.60.0.0/14 maxlen: 24 186.128.0.0/14 maxlen: 24 186.132.0.0/14 maxlen: 24 190.48.0.0/16 maxlen: 24 190.49.0.0/16 maxlen: 24 190.50.0.0/16 maxlen: 24 190.51.0.0/16 maxlen: 24 190.172.0.0/15 maxlen: 24 190.174.0.0/15 maxlen: 24 190.176.0.0/15 maxlen: 24 190.178.0.0/15 maxlen: 24 191.80.0.0/14 maxlen: 24 191.84.0.0/15 maxlen: 24 200.0.193.0/24 maxlen: 24 200.5.218.0/24 maxlen: 24 200.51.171.0/24 maxlen: 24 200.51.208.0/22 maxlen: 24 200.51.212.0/22 maxlen: 24 200.51.215.0/24 maxlen: 24 200.51.232.0/24 maxlen: 24 200.51.236.0/22 maxlen: 24 200.51.252.0/22 maxlen: 24 200.63.128.0/23 maxlen: 24 200.63.156.0/22 maxlen: 24 200.63.160.0/21 maxlen: 24 201.176.0.0/14 maxlen: 24 201.180.0.0/15 maxlen: 24 201.250.0.0/16 maxlen: 24 201.251.0.0/17 maxlen: 24 201.251.128.0/17 maxlen: 24 201.254.0.0/16 maxlen: 24 201.255.0.0/17 maxlen: 24 201.255.128.0/17 maxlen: 24 2800:380::/32 maxlen: 48 2800:381:6504::/48 maxlen: 48 2802:8000::/25 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Nov 2024 23:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:aa:ec:20:9a:77:ac:e9:c3:7e:d8:a6:63:b5:fa:14:08:54:c8:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1 Validity Not Before: Mar 5 18:03:01 2024 GMT Not After : Mar 4 18:08:01 2025 GMT Subject: CN=9CA759557796FE34AF7BA38C9432A8D7EF9ABF54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c9:82:a4:9d:bc:a8:4b:8a:ba:cb:a0:b4:2e: 0e:c4:7b:30:35:b5:8f:b3:09:58:25:71:ea:02:22: fb:ef:a7:c9:e9:e5:99:84:49:a0:2d:ef:51:52:83: 47:e1:26:35:66:85:e0:a4:63:d1:be:59:d6:95:58: 99:7e:a6:15:1a:76:72:4e:ff:43:2b:ab:35:32:39: 94:4c:b4:97:2f:d7:82:e3:c3:23:ae:3d:2a:f4:1d: 80:2f:77:48:73:b4:5b:fc:2c:66:10:55:fb:49:1f: 82:4b:9b:0d:9e:75:e0:fc:1a:2e:88:48:40:a9:0a: a3:23:ad:8e:b1:ec:7c:00:9e:a9:84:85:77:c0:f1: 96:f2:6e:5a:c6:96:1a:92:0f:66:57:d9:a0:b0:90: 36:b3:db:30:e6:0f:f0:89:0c:33:42:5f:53:bb:7e: a2:28:06:4c:03:47:68:30:aa:ac:c6:3e:35:0f:e8: 10:d8:d6:72:3d:39:f8:26:f7:7e:6a:b2:1c:bd:73: cd:86:4b:f6:d4:e2:d2:b0:d9:0d:8f:6d:0f:9a:c0: 56:ce:83:95:52:5c:0e:27:37:51:1b:a3:c1:6b:ae: cd:17:c2:9a:b5:92:9e:04:d1:5e:13:08:d4:b2:7e: 40:5f:b6:ed:9b:27:4a:a0:16:34:35:93:d5:5d:a1: d6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A7:59:55:77:96:FE:34:AF:7B:A3:8C:94:32:A8:D7:EF:9A:BF:54 X509v3 Authority Key Identifier: keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS22927.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.226.0.0/16 179.36.0.0-179.41.255.255 181.20.0.0-181.27.255.255 186.38.0.0/15 186.56.0.0/13 186.128.0.0/13 190.48.0.0/14 190.172.0.0-190.179.255.255 191.80.0.0-191.85.255.255 200.0.193.0/24 200.5.218.0/24 200.51.171.0/24 200.51.208.0/21 200.51.232.0/24 200.51.236.0/22 200.51.252.0/22 200.63.128.0/23 200.63.156.0-200.63.167.255 201.176.0.0-201.181.255.255 201.250.0.0/15 201.254.0.0/15 IPv6: 2800:380::/32 2800:381:6504::/48 2802:8000::/25 Signature Algorithm: sha256WithRSAEncryption aa:79:c2:0e:a7:04:d3:d1:66:f9:7e:1f:da:f9:45:2d:f5:5d: 4d:b8:8a:c2:dd:cf:c3:15:f5:8a:46:9c:88:b3:8e:b8:76:6b: af:24:56:35:16:61:f8:c1:75:81:fa:15:b2:bb:f9:5f:0b:14: cb:13:a4:10:48:2a:81:d3:5a:3a:49:7d:47:69:67:af:fc:0e: 94:d4:fe:8f:ce:0d:7c:37:d4:54:e4:62:1f:19:20:fa:01:73: ea:12:cd:94:c8:71:e7:f0:fa:a1:16:8e:91:0e:77:ac:2b:31: 65:67:05:fd:a1:87:51:29:c5:15:41:ac:28:21:c9:48:ac:d2: c8:ed:f6:de:47:c1:f0:1d:6c:c7:76:b6:66:39:27:fd:50:b5: 8f:12:d3:dc:31:77:42:87:01:73:d0:8d:52:6d:e8:6a:a6:81: 3f:7d:63:8e:41:15:ca:67:64:45:9f:94:8f:b4:69:0f:42:32: f1:6a:29:ec:e6:7c:b5:db:75:33:b2:3f:2c:df:60:37:7c:a5: 8c:b3:c3:5a:bf:01:15:6b:18:f8:f8:08:4a:2a:cf:0f:04:3c: 6a:71:2d:2d:69:b0:fb:13:85:49:65:0c:d8:97:b2:a6:c9:3b: 95:76:9f:a3:52:f7:10:11:e2:05:f2:05:66:c8:60:15:4f:16: a5:11:65:52 -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUEKrsIJp3rOnDftimY7X6FAhUyMUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDEwODE5QzdDOUI0Qzg1Q0UwQjFEMjI3NDFCRTVFNDBB MUYwRTdCMTAeFw0yNDAzMDUxODAzMDFaFw0yNTAzMDQxODA4MDFaMDMxMTAvBgNV BAMTKDlDQTc1OTU1Nzc5NkZFMzRBRjdCQTM4Qzk0MzJBOEQ3RUY5QUJGNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEyYKknbyoS4q6y6C0Lg7EezA1 tY+zCVglceoCIvvvp8np5ZmESaAt71FSg0fhJjVmheCkY9G+WdaVWJl+phUadnJO /0MrqzUyOZRMtJcv14LjwyOuPSr0HYAvd0hztFv8LGYQVftJH4JLmw2edeD8Gi6I SECpCqMjrY6x7HwAnqmEhXfA8ZbyblrGlhqSD2ZX2aCwkDaz2zDmD/CJDDNCX1O7 fqIoBkwDR2gwqqzGPjUP6BDY1nI9Ofgm935qshy9c82GS/bU4tKw2Q2PbQ+awFbO g5VSXA4nN1Ebo8Frrs0Xwpq1kp4E0V4TCNSyfkBftu2bJ0qgFjQ1k9VdodadAgMB AAGjggNTMIIDTzAdBgNVHQ4EFgQUnKdZVXeW/jSve6OMlDKo1++av1QwHwYDVR0j BBgwFoAUQQgZx8m0yFzgsdInQb5eQKHw57EwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMw NDFDQ0YwNjQwODAzODQzODk4QkU1NkM0REY2QzMyLzAvNDEwODE5QzdDOUI0Qzg1 Q0UwQjFEMjI3NDFCRTVFNDBBMUYwRTdCMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80MTA4MTlDN0M5QjRDODVDRTBC MUQyMjc0MUJFNUU0MEExRjBFN0IxLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMwNDFDQ0YwNjQw ODAzODQzODk4QkU1NkM0REY2QzMyLzAvQVMyMjkyNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCB2QYIKwYBBQUHAQcBAf8EgckwgcYwgaQEAgABMIGdAwMA qOIwCgMDArMkAwMBsygwCgMDArUUAwMCtRgDAwG6JgMDA7o4AwMDuoADAwK+MDAK AwMCvqwDAwK+sDAKAwMEv1ADAwG/VAMEAMgAwQMEAMgF2gMEAMgzqwMEA8gz0AME AMgz6AMEAsgz7AMEAsgz/AMEAcg/gDAMAwQCyD+cAwQDyD+gMAoDAwTJsAMDAcm0 AwMByfoDAwHJ/jAdBAIAAjAXAwUAKAADgAMHACgAA4FlBAMFBygCgAAwDQYJKoZI hvcNAQELBQADggEBAKp5wg6nBNPRZvl+H9r5RS31XU24isLdz8MV9YpGnIizjrh2 a68kVjUWYfjBdYH6FbK7+V8LFMsTpBBIKoHTWjpJfUdpZ6/8DpTU/o/ODXw31FTk Yh8ZIPoBc+oSzZTIcefw+qEWjpEOd6wrMWVnBf2hh1EpxRVBrCghyUis0sjt9t5H wfAdbMd2tmY5J/1QtY8S09wxd0KHAXPQjVJt6GqmgT99Y45BFcpnZEWflI+0aQ9C MvFqKezmfLXbdTOyPyzfYDd8pYyzw1q/ARVrGPj4CEoqzw8EPGpxLS1psPsThUll DNiXsqbJO5V2n6NS9xAR4gXyBWbIYBVPFqURZVI= -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:23 2024 by rpki-client on console-ams.rpki-client.org