$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS22927.roa File: AS22927.roa (raw, json) Hash identifier: OMU1nLnUw9wP1xrYKS6kH3QR/bZaK8kodef6APt7K7A= Subject key identifier: BE:9A:CE:11:DD:96:49:98:7E:6B:37:6A:32:5A:04:31:F1:52:7D:3D Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1 Certificate serial: 06FFD5D87B007C8FD8D3BCD9AE4CE6EACF515759 Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS22927.roa Signing time: Wed 29 Oct 2025 23:00:00 +0000 ROA not before: Wed 29 Oct 2025 22:55:00 +0000 ROA not after: Wed 28 Oct 2026 23:00:00 +0000 asID: 22927 IP address blocks: 168.226.0.0/16 maxlen: 24 179.36.0.0/14 maxlen: 24 179.40.0.0/15 maxlen: 30 181.20.0.0/14 maxlen: 24 181.24.0.0/14 maxlen: 24 186.38.0.0/16 maxlen: 30 186.39.0.0/16 maxlen: 24 186.56.0.0/17 maxlen: 30 186.56.128.0/17 maxlen: 24 186.57.0.0/16 maxlen: 24 186.58.0.0/15 maxlen: 24 186.60.0.0/14 maxlen: 24 186.128.0.0/14 maxlen: 24 186.132.0.0/14 maxlen: 24 190.48.0.0/16 maxlen: 24 190.49.0.0/16 maxlen: 24 190.50.0.0/16 maxlen: 24 190.51.0.0/16 maxlen: 24 190.172.0.0/15 maxlen: 24 190.174.0.0/15 maxlen: 24 190.176.0.0/15 maxlen: 24 190.178.0.0/15 maxlen: 24 191.80.0.0/14 maxlen: 24 191.84.0.0/15 maxlen: 24 200.0.193.0/24 maxlen: 24 200.5.218.0/24 maxlen: 24 200.51.171.0/24 maxlen: 24 200.51.208.0/22 maxlen: 24 200.51.212.0/22 maxlen: 24 200.51.215.0/24 maxlen: 24 200.51.232.0/24 maxlen: 24 200.51.236.0/22 maxlen: 24 200.51.252.0/22 maxlen: 24 200.63.128.0/23 maxlen: 24 200.63.156.0/22 maxlen: 24 200.63.160.0/21 maxlen: 24 201.176.0.0/14 maxlen: 24 201.180.0.0/15 maxlen: 24 201.250.0.0/16 maxlen: 30 201.251.0.0/17 maxlen: 30 201.251.128.0/17 maxlen: 30 201.254.0.0/16 maxlen: 30 201.255.0.0/17 maxlen: 24 201.255.128.0/17 maxlen: 24 2800:380::/32 maxlen: 64 2800:381:6504::/48 maxlen: 48 2802:8000::/25 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 06 Nov 2025 21:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ff:d5:d8:7b:00:7c:8f:d8:d3:bc:d9:ae:4c:e6:ea:cf:51:57:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1 Validity Not Before: Oct 29 22:55:00 2025 GMT Not After : Oct 28 23:00:00 2026 GMT Subject: CN=BE9ACE11DD9649987E6B376A325A0431F1527D3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:b8:f6:6d:30:2e:6e:d3:7d:0e:57:85:2a:3a: a9:5e:7a:55:8d:0d:72:04:e5:7d:6b:e1:ff:67:ad: 62:ab:4e:3f:db:1f:1d:af:4f:2c:78:6b:8d:90:53: c3:a3:74:5c:60:f7:4d:c7:d3:fa:cf:02:c4:08:9d: 1c:d5:41:1c:df:60:20:18:fb:94:5d:ed:43:b7:db: d2:1d:9b:5f:f4:01:60:62:74:cd:e7:20:70:de:3f: 34:ba:0c:41:a8:0e:da:8d:20:d8:b0:23:6e:73:37: 37:25:4e:bf:93:f1:2a:f5:f2:db:b4:0c:de:86:1b: b3:96:45:f0:cd:9f:d5:a6:d3:06:e0:42:f6:f3:49: 52:3c:9d:54:1a:07:45:6c:f9:61:c6:5d:86:1d:b1: 57:38:a0:0a:28:1d:d1:5b:52:9c:99:b2:60:67:f2: 7e:93:7c:a3:8b:98:83:a1:f9:c8:ab:fd:1c:d2:66: d9:c7:dc:93:0f:cd:d1:52:0d:3b:5a:d5:26:74:74: ea:d3:65:c0:65:87:f8:b7:ff:4e:c1:1a:56:c8:e1: 5b:2e:ca:02:b9:0c:8d:30:cf:b8:20:e3:2a:41:8d: 3a:74:6c:a6:28:97:54:1a:91:4a:08:61:75:9c:15: c0:71:59:b6:ce:e4:84:05:a3:d0:14:35:61:f3:5d: c3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9A:CE:11:DD:96:49:98:7E:6B:37:6A:32:5A:04:31:F1:52:7D:3D X509v3 Authority Key Identifier: keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS22927.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.226.0.0/16 179.36.0.0-179.41.255.255 181.20.0.0-181.27.255.255 186.38.0.0/15 186.56.0.0/13 186.128.0.0/13 190.48.0.0/14 190.172.0.0-190.179.255.255 191.80.0.0-191.85.255.255 200.0.193.0/24 200.5.218.0/24 200.51.171.0/24 200.51.208.0/21 200.51.232.0/24 200.51.236.0/22 200.51.252.0/22 200.63.128.0/23 200.63.156.0-200.63.167.255 201.176.0.0-201.181.255.255 201.250.0.0/15 201.254.0.0/15 IPv6: 2800:380::/32 2800:381:6504::/48 2802:8000::/25 Signature Algorithm: sha256WithRSAEncryption 1f:5c:80:1a:5e:73:b5:1b:dc:be:4e:c1:38:f2:d6:7c:09:5f: 29:76:6c:23:04:18:a2:60:29:62:b3:bc:ce:c5:3c:24:11:0f: 1b:fe:c1:58:a6:89:ea:b1:00:d4:c4:7e:4f:34:d2:d2:e2:7b: a4:fa:fd:7b:33:38:9f:25:98:b0:50:92:fd:08:09:e9:64:1f: c5:d4:1e:b5:80:d2:f4:40:f1:d6:df:54:f6:03:56:0c:67:40: 1d:fd:be:fd:41:1c:e1:22:95:69:69:60:bf:b7:c1:ed:e2:c0: da:14:b5:64:8e:1f:f5:04:36:c8:d6:10:b6:b9:0b:1a:8d:34: 1d:40:aa:25:0a:31:f8:67:1f:8e:b9:f8:29:01:87:78:df:22: 7b:ec:43:b8:44:75:d4:8a:69:e1:f6:cd:91:17:78:2d:fd:26: 6f:6c:cf:96:f8:c6:01:11:d5:c0:10:ea:9d:06:39:11:cf:96: 82:b8:d8:8a:64:5e:27:34:6d:77:d3:72:ed:2d:dd:10:31:7a: 5c:3f:da:aa:51:19:23:c7:db:c5:3c:4c:b2:87:40:a8:cd:66: d6:7f:fa:0b:10:11:34:73:a8:62:94:61:60:ae:46:f3:ca:2f: 65:07:6d:d7:5e:75:12:c1:80:b0:ee:e7:cc:56:70:b5:c8:61: 6d:0a:78:9b -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUBv/V2HsAfI/Y07zZrkzm6s9RV1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDEwODE5QzdDOUI0Qzg1Q0UwQjFEMjI3NDFCRTVFNDBB MUYwRTdCMTAeFw0yNTEwMjkyMjU1MDBaFw0yNjEwMjgyMzAwMDBaMDMxMTAvBgNV BAMTKEJFOUFDRTExREQ5NjQ5OTg3RTZCMzc2QTMyNUEwNDMxRjE1MjdEM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMuPZtMC5u030OV4UqOqleelWN DXIE5X1r4f9nrWKrTj/bHx2vTyx4a42QU8OjdFxg903H0/rPAsQInRzVQRzfYCAY +5Rd7UO329Idm1/0AWBidM3nIHDePzS6DEGoDtqNINiwI25zNzclTr+T8Sr18tu0 DN6GG7OWRfDNn9Wm0wbgQvbzSVI8nVQaB0Vs+WHGXYYdsVc4oAooHdFbUpyZsmBn 8n6TfKOLmIOh+cir/RzSZtnH3JMPzdFSDTta1SZ0dOrTZcBlh/i3/07BGlbI4Vsu ygK5DI0wz7gg4ypBjTp0bKYol1QakUoIYXWcFcBxWbbO5IQFo9AUNWHzXcO9AgMB AAGjggNTMIIDTzAdBgNVHQ4EFgQUvprOEd2WSZh+azdqMloEMfFSfT0wHwYDVR0j BBgwFoAUQQgZx8m0yFzgsdInQb5eQKHw57EwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMw NDFDQ0YwNjQwODAzODQzODk4QkU1NkM0REY2QzMyLzAvNDEwODE5QzdDOUI0Qzg1 Q0UwQjFEMjI3NDFCRTVFNDBBMUYwRTdCMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80MTA4MTlDN0M5QjRDODVDRTBC MUQyMjc0MUJFNUU0MEExRjBFN0IxLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMwNDFDQ0YwNjQw ODAzODQzODk4QkU1NkM0REY2QzMyLzAvQVMyMjkyNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCB2QYIKwYBBQUHAQcBAf8EgckwgcYwgaQEAgABMIGdAwMA qOIwCgMDArMkAwMBsygwCgMDArUUAwMCtRgDAwG6JgMDA7o4AwMDuoADAwK+MDAK AwMCvqwDAwK+sDAKAwMEv1ADAwG/VAMEAMgAwQMEAMgF2gMEAMgzqwMEA8gz0AME AMgz6AMEAsgz7AMEAsgz/AMEAcg/gDAMAwQCyD+cAwQDyD+gMAoDAwTJsAMDAcm0 AwMByfoDAwHJ/jAdBAIAAjAXAwUAKAADgAMHACgAA4FlBAMFBygCgAAwDQYJKoZI hvcNAQELBQADggEBAB9cgBpec7Ub3L5OwTjy1nwJXyl2bCMEGKJgKWKzvM7FPCQR Dxv+wVimieqxANTEfk800tLie6T6/XszOJ8lmLBQkv0ICelkH8XUHrWA0vRA8dbf VPYDVgxnQB39vv1BHOEilWlpYL+3we3iwNoUtWSOH/UENsjWELa5CxqNNB1AqiUK MfhnH465+CkBh3jfInvsQ7hEddSKaeH2zZEXeC39Jm9sz5b4xgER1cAQ6p0GORHP loK42IpkXic0bXfTcu0t3RAxelw/2qpRGSPH28U8TLKHQKjNZtZ/+gsQETRzqGKU YWCuRvPKL2UHbddedRLBgLDu58xWcLXIYW0KeJs= -----END CERTIFICATE-----Generated at Mon Nov 3 11:35:20 2025 by rpki-client