$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS22927.roa File: AS22927.roa (raw, json) Hash identifier: 0jxDCf9h/IDpPpQ463TYxmDY/UakzVIw70gVWF9qCyE= Subject key identifier: C9:71:57:87:C7:71:65:A6:C9:7A:EF:CD:CF:3F:3D:1B:B9:98:3C:7C Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1 Certificate serial: 24052DE25BF4C5ADFF583850D50EC74D94C56963 Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS22927.roa Signing time: Mon 09 Dec 2024 21:15:00 +0000 ROA not before: Mon 09 Dec 2024 21:10:00 +0000 ROA not after: Mon 08 Dec 2025 21:15:00 +0000 asID: 22927 IP address blocks: 168.226.0.0/16 maxlen: 24 179.36.0.0/14 maxlen: 24 179.40.0.0/15 maxlen: 24 181.20.0.0/14 maxlen: 24 181.24.0.0/14 maxlen: 24 186.38.0.0/16 maxlen: 24 186.39.0.0/16 maxlen: 24 186.56.0.0/17 maxlen: 24 186.56.128.0/17 maxlen: 24 186.57.0.0/16 maxlen: 24 186.58.0.0/15 maxlen: 24 186.60.0.0/14 maxlen: 24 186.128.0.0/14 maxlen: 24 186.132.0.0/14 maxlen: 24 190.48.0.0/16 maxlen: 24 190.49.0.0/16 maxlen: 24 190.50.0.0/16 maxlen: 24 190.51.0.0/16 maxlen: 24 190.172.0.0/15 maxlen: 24 190.174.0.0/15 maxlen: 24 190.176.0.0/15 maxlen: 24 190.178.0.0/15 maxlen: 24 191.80.0.0/14 maxlen: 24 191.84.0.0/15 maxlen: 24 200.0.193.0/24 maxlen: 24 200.5.218.0/24 maxlen: 24 200.51.171.0/24 maxlen: 24 200.51.208.0/22 maxlen: 24 200.51.212.0/22 maxlen: 24 200.51.215.0/24 maxlen: 24 200.51.232.0/24 maxlen: 24 200.51.236.0/22 maxlen: 24 200.51.252.0/22 maxlen: 24 200.63.128.0/23 maxlen: 24 200.63.156.0/22 maxlen: 24 200.63.160.0/21 maxlen: 24 201.176.0.0/14 maxlen: 24 201.180.0.0/15 maxlen: 24 201.250.0.0/16 maxlen: 24 201.251.0.0/17 maxlen: 24 201.251.128.0/17 maxlen: 24 201.254.0.0/16 maxlen: 24 201.255.0.0/17 maxlen: 24 201.255.128.0/17 maxlen: 24 2800:380::/32 maxlen: 64 2800:381:6504::/48 maxlen: 48 2802:8000::/25 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 12:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:05:2d:e2:5b:f4:c5:ad:ff:58:38:50:d5:0e:c7:4d:94:c5:69:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1 Validity Not Before: Dec 9 21:10:00 2024 GMT Not After : Dec 8 21:15:00 2025 GMT Subject: CN=C9715787C77165A6C97AEFCDCF3F3D1BB9983C7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a6:87:a8:f8:e9:6f:35:f7:51:85:1e:23:78: ab:ec:d4:13:44:f2:39:35:fe:23:77:32:12:8a:de: 9b:45:55:12:11:fd:b7:cf:04:d7:c6:ff:56:78:aa: 51:be:a1:d5:a4:ba:55:62:1a:88:78:14:39:04:81: 03:29:9b:45:c5:81:ee:85:85:64:11:8f:c2:87:56: 47:9f:43:5d:ba:d1:6e:9c:a9:a7:63:21:f6:01:aa: 2e:b8:56:3a:b0:e3:c9:ff:7c:64:7f:67:99:7d:64: c6:53:d4:05:d1:ec:52:9c:fa:5a:39:52:92:5b:32: 76:b2:4d:2e:ab:ed:38:ef:a7:f4:ef:b9:1b:6c:9f: 81:ed:0d:09:47:7e:ed:3e:18:01:3c:ed:95:ed:bd: 5c:04:16:af:50:6c:59:da:91:c4:9c:b7:1a:ee:48: 58:c0:23:50:83:ed:1b:45:05:2e:97:ed:87:b2:c3: 95:3b:8f:9e:fc:fc:98:87:27:cd:15:b3:88:f3:40: 97:08:0d:44:f2:43:72:b0:4b:12:48:a2:9b:85:2b: 69:1f:d8:51:d3:4b:ac:12:c0:06:f1:05:7f:4e:64: b8:6b:34:69:bb:f0:e4:74:d5:57:1a:0b:1c:05:2d: 8e:74:39:77:c6:1b:e3:77:87:b7:77:3b:75:57:0e: e6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:71:57:87:C7:71:65:A6:C9:7A:EF:CD:CF:3F:3D:1B:B9:98:3C:7C X509v3 Authority Key Identifier: keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS22927.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.226.0.0/16 179.36.0.0-179.41.255.255 181.20.0.0-181.27.255.255 186.38.0.0/15 186.56.0.0/13 186.128.0.0/13 190.48.0.0/14 190.172.0.0-190.179.255.255 191.80.0.0-191.85.255.255 200.0.193.0/24 200.5.218.0/24 200.51.171.0/24 200.51.208.0/21 200.51.232.0/24 200.51.236.0/22 200.51.252.0/22 200.63.128.0/23 200.63.156.0-200.63.167.255 201.176.0.0-201.181.255.255 201.250.0.0/15 201.254.0.0/15 IPv6: 2800:380::/32 2800:381:6504::/48 2802:8000::/25 Signature Algorithm: sha256WithRSAEncryption 8f:1b:9d:2b:a6:f6:6f:60:d3:2b:fd:bf:d1:78:4f:b5:06:45: 34:5d:8b:65:d2:02:9c:59:20:09:e4:70:3e:b9:20:3b:26:b6: 14:a3:0a:28:c4:bc:61:89:9a:ee:a2:42:ac:ef:fe:28:f9:52: 2e:58:41:10:db:64:a5:4e:9d:b2:17:21:2f:ed:09:48:d3:e9: 3f:aa:40:47:e6:b4:bf:5c:2a:91:06:24:da:05:60:54:72:54: 9a:91:38:d9:f5:c0:e5:e5:09:56:d8:db:d7:82:a8:e6:30:bb: af:56:c2:7b:33:8e:c2:e1:09:e9:64:45:b7:17:60:c9:74:5f: 00:6d:0f:04:ad:69:c4:fb:35:54:c7:1e:ad:13:61:c0:09:51: 23:10:5e:35:ca:df:40:1c:d2:66:5e:b7:01:eb:f8:c5:a0:b9: 74:ba:16:5e:12:b0:44:0d:c3:06:8d:1a:eb:16:58:8f:5f:58: a8:72:d1:e1:c9:7c:09:fa:d9:f4:3f:e7:c8:09:cb:ef:53:a3: e7:a4:9d:ca:82:19:8f:48:9b:c9:8b:b9:47:93:07:5a:76:42: 50:60:f0:a1:4e:de:98:ce:2c:fb:16:07:79:d2:9a:04:6f:3e: 33:eb:1b:83:a6:9a:3a:c4:d3:29:68:4e:3e:b5:52:e6:7f:db: 7e:46:7b:2c -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUJAUt4lv0xa3/WDhQ1Q7HTZTFaWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDEwODE5QzdDOUI0Qzg1Q0UwQjFEMjI3NDFCRTVFNDBB MUYwRTdCMTAeFw0yNDEyMDkyMTEwMDBaFw0yNTEyMDgyMTE1MDBaMDMxMTAvBgNV BAMTKEM5NzE1Nzg3Qzc3MTY1QTZDOTdBRUZDRENGM0YzRDFCQjk5ODNDN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXpoeo+OlvNfdRhR4jeKvs1BNE 8jk1/iN3MhKK3ptFVRIR/bfPBNfG/1Z4qlG+odWkulViGoh4FDkEgQMpm0XFge6F hWQRj8KHVkefQ1260W6cqadjIfYBqi64Vjqw48n/fGR/Z5l9ZMZT1AXR7FKc+lo5 UpJbMnayTS6r7Tjvp/TvuRtsn4HtDQlHfu0+GAE87ZXtvVwEFq9QbFnakcSctxru SFjAI1CD7RtFBS6X7Yeyw5U7j578/JiHJ80Vs4jzQJcIDUTyQ3KwSxJIopuFK2kf 2FHTS6wSwAbxBX9OZLhrNGm78OR01VcaCxwFLY50OXfGG+N3h7d3O3VXDuZNAgMB AAGjggNTMIIDTzAdBgNVHQ4EFgQUyXFXh8dxZabJeu/Nzz89G7mYPHwwHwYDVR0j BBgwFoAUQQgZx8m0yFzgsdInQb5eQKHw57EwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMw NDFDQ0YwNjQwODAzODQzODk4QkU1NkM0REY2QzMyLzAvNDEwODE5QzdDOUI0Qzg1 Q0UwQjFEMjI3NDFCRTVFNDBBMUYwRTdCMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80MTA4MTlDN0M5QjRDODVDRTBC MUQyMjc0MUJFNUU0MEExRjBFN0IxLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMwNDFDQ0YwNjQw ODAzODQzODk4QkU1NkM0REY2QzMyLzAvQVMyMjkyNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCB2QYIKwYBBQUHAQcBAf8EgckwgcYwgaQEAgABMIGdAwMA qOIwCgMDArMkAwMBsygwCgMDArUUAwMCtRgDAwG6JgMDA7o4AwMDuoADAwK+MDAK AwMCvqwDAwK+sDAKAwMEv1ADAwG/VAMEAMgAwQMEAMgF2gMEAMgzqwMEA8gz0AME AMgz6AMEAsgz7AMEAsgz/AMEAcg/gDAMAwQCyD+cAwQDyD+gMAoDAwTJsAMDAcm0 AwMByfoDAwHJ/jAdBAIAAjAXAwUAKAADgAMHACgAA4FlBAMFBygCgAAwDQYJKoZI hvcNAQELBQADggEBAI8bnSum9m9g0yv9v9F4T7UGRTRdi2XSApxZIAnkcD65IDsm thSjCijEvGGJmu6iQqzv/ij5Ui5YQRDbZKVOnbIXIS/tCUjT6T+qQEfmtL9cKpEG JNoFYFRyVJqRONn1wOXlCVbY29eCqOYwu69WwnszjsLhCelkRbcXYMl0XwBtDwSt acT7NVTHHq0TYcAJUSMQXjXK30Ac0mZetwHr+MWguXS6Fl4SsEQNwwaNGusWWI9f WKhy0eHJfAn62fQ/58gJy+9To+ekncqCGY9Im8mLuUeTB1p2QlBg8KFO3pjOLPsW B3nSmgRvPjPrG4OmmjrE0yloTj61UuZ/235Geyw= -----END CERTIFICATE-----Generated at Sat Apr 5 09:06:14 2025 by rpki-client