$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/AS23520.roa File: AS23520.roa (raw, json) Hash identifier: uFPnHrisFyUsPfF3klGW7veCi65dIqNLobf10U9O/Bw= Subject key identifier: 21:83:2F:48:48:68:A5:F4:2A:AD:17:0A:24:D9:2D:05:10:8F:DF:4E Certificate issuer: /CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784 Certificate serial: 2DDC7F77A7F23C1EC3772B78B0BA3E1605162196 Authority key identifier: 76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/AS23520.roa Signing time: Thu 31 Oct 2024 20:10:00 +0000 ROA not before: Thu 31 Oct 2024 20:05:00 +0000 ROA not after: Thu 30 Oct 2025 20:10:00 +0000 asID: 23520 IP address blocks: 190.242.10.0/24 maxlen: 24 190.242.12.0/24 maxlen: 24 190.242.14.0/24 maxlen: 24 190.242.20.0/24 maxlen: 24 190.242.31.0/24 maxlen: 24 190.242.36.0/22 maxlen: 24 190.242.40.0/23 maxlen: 24 190.242.46.0/23 maxlen: 24 190.242.48.0/24 maxlen: 24 190.242.49.0/24 maxlen: 24 190.242.56.0/23 maxlen: 24 190.242.57.0/24 maxlen: 24 190.242.102.0/24 maxlen: 24 190.242.105.0/24 maxlen: 24 190.242.118.0/24 maxlen: 24 190.242.119.0/24 maxlen: 24 190.242.126.0/24 maxlen: 24 190.242.132.0/24 maxlen: 24 190.242.133.0/24 maxlen: 24 190.242.134.0/24 maxlen: 24 190.242.135.0/24 maxlen: 24 190.242.136.0/23 maxlen: 24 190.242.140.0/24 maxlen: 24 190.242.141.0/24 maxlen: 24 190.242.142.0/24 maxlen: 24 190.242.145.0/24 maxlen: 24 190.242.147.0/24 maxlen: 24 190.242.155.0/24 maxlen: 24 190.242.156.0/24 maxlen: 24 190.242.157.0/24 maxlen: 24 190.242.163.0/24 maxlen: 24 190.242.166.0/24 maxlen: 24 190.242.167.0/24 maxlen: 24 190.242.169.0/24 maxlen: 24 190.242.170.0/24 maxlen: 24 190.242.171.0/24 maxlen: 24 190.242.172.0/24 maxlen: 24 190.242.173.0/24 maxlen: 24 190.242.174.0/24 maxlen: 24 190.242.175.0/24 maxlen: 24 190.242.176.0/24 maxlen: 24 190.242.177.0/24 maxlen: 24 190.242.178.0/24 maxlen: 24 190.242.179.0/24 maxlen: 24 190.242.180.0/24 maxlen: 24 190.242.181.0/24 maxlen: 24 190.242.182.0/24 maxlen: 24 190.242.183.0/24 maxlen: 24 190.242.192.0/24 maxlen: 24 190.242.255.0/24 maxlen: 24 2803:f950::/32 maxlen: 64 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.crl rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 22 Nov 2024 14:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:dc:7f:77:a7:f2:3c:1e:c3:77:2b:78:b0:ba:3e:16:05:16:21:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784 Validity Not Before: Oct 31 20:05:00 2024 GMT Not After : Oct 30 20:10:00 2025 GMT Subject: CN=21832F484868A5F42AAD170A24D92D05108FDF4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2a:af:8f:08:cc:7c:37:43:27:44:a2:39:72: 71:4b:4b:12:7e:00:6a:f0:f0:85:a6:52:57:77:51: fe:f3:98:7d:a0:6c:1a:db:cf:ea:bc:fc:88:cf:23: b7:96:dd:70:9e:f3:e7:a7:b2:08:2c:ba:dd:13:0b: 9e:1a:bb:3e:39:6d:20:09:68:47:97:8c:10:b3:04: c9:62:92:65:45:14:b4:ae:bb:a0:e2:20:e8:e8:13: 56:73:8c:39:d1:7d:83:7e:84:c7:04:16:ca:39:c3: 41:09:54:87:d1:61:46:57:7f:c6:e1:28:14:c5:0b: c3:57:11:ec:16:81:96:7b:33:dd:00:a4:8d:61:7b: 21:36:c0:81:a7:4a:be:2f:79:f5:15:0f:1c:40:f6: 42:1d:64:00:ed:a3:a0:a1:0e:1f:f0:5f:11:37:07: 58:d2:e6:e3:4a:8a:49:80:e6:03:c5:ef:d8:ca:79: 37:ae:c5:ea:e5:46:27:ce:5f:9e:a9:7b:e3:29:0b: 57:f0:f0:87:cb:99:7f:70:3c:b6:23:6e:09:cc:2d: 73:70:f6:5c:d4:58:14:a2:5f:ec:58:e5:e8:39:3e: 6a:36:07:a8:ea:12:2c:42:06:d6:7f:17:2e:90:51: 7b:8c:a4:89:64:31:cd:7e:ba:42:d3:04:5c:51:6c: c4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:83:2F:48:48:68:A5:F4:2A:AD:17:0A:24:D9:2D:05:10:8F:DF:4E X509v3 Authority Key Identifier: keyid:76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/AS23520.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 190.242.10.0/24 190.242.12.0/24 190.242.14.0/24 190.242.20.0/24 190.242.31.0/24 190.242.36.0-190.242.41.255 190.242.46.0-190.242.49.255 190.242.56.0/23 190.242.102.0/24 190.242.105.0/24 190.242.118.0/23 190.242.126.0/24 190.242.132.0-190.242.137.255 190.242.140.0-190.242.142.255 190.242.145.0/24 190.242.147.0/24 190.242.155.0-190.242.157.255 190.242.163.0/24 190.242.166.0/23 190.242.169.0-190.242.183.255 190.242.192.0/24 190.242.255.0/24 IPv6: 2803:f950::/32 Signature Algorithm: sha256WithRSAEncryption cd:30:32:c1:7e:0c:82:e8:e3:f6:6c:36:ff:72:a3:56:db:b5: 69:40:cb:af:4e:e3:71:96:07:dc:06:ae:45:0f:09:e9:2f:5f: 32:44:15:38:98:9c:13:3a:7b:ea:3e:89:d6:8a:14:f0:61:a2: 36:60:5c:54:41:9a:37:cc:a8:4d:06:3d:a0:e6:f8:87:8c:c7: c0:04:d3:65:2e:48:0d:35:50:5e:62:a4:3e:c8:3e:b3:3c:c0: a0:80:05:ab:67:02:2f:d6:9f:bd:10:20:53:3f:75:36:a1:50: ea:76:22:47:20:d1:6e:55:33:fe:64:e9:74:35:d7:d6:91:78: 75:69:09:8f:23:03:4f:ca:db:fd:1c:fe:7e:a6:0d:21:d8:b7: 1c:79:d0:8f:63:da:77:d9:83:a6:3b:7a:7b:33:67:55:07:a8: 45:32:e0:94:e3:38:b0:69:59:cf:74:f3:28:d5:a6:7b:f7:d3: d0:14:dc:4d:6d:4a:4f:66:28:03:2a:64:bd:df:77:0a:4b:55: af:5c:a5:5b:9a:84:23:b9:2b:c5:e3:3b:71:15:ae:a0:ee:fe: 39:66:33:7d:82:90:49:95:a4:7d:6b:f7:1e:39:88:e5:4e:0b: f3:e0:2d:02:50:c2:de:82:ce:f6:f9:55:9e:86:48:bd:00:67: e7:ee:1f:87 -----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgIULdx/d6fyPB7Ddyt4sLo+FgUWIZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzZBREQzMUYwNkEwQjc0NUNGREE2QjkzODM1RTE5OERE QjBEQjc4NDAeFw0yNDEwMzEyMDA1MDBaFw0yNTEwMzAyMDEwMDBaMDMxMTAvBgNV BAMTKDIxODMyRjQ4NDg2OEE1RjQyQUFEMTcwQTI0RDkyRDA1MTA4RkRGNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmKq+PCMx8N0MnRKI5cnFLSxJ+ AGrw8IWmUld3Uf7zmH2gbBrbz+q8/IjPI7eW3XCe8+ensggsut0TC54auz45bSAJ aEeXjBCzBMlikmVFFLSuu6DiIOjoE1ZzjDnRfYN+hMcEFso5w0EJVIfRYUZXf8bh KBTFC8NXEewWgZZ7M90ApI1heyE2wIGnSr4vefUVDxxA9kIdZADto6ChDh/wXxE3 B1jS5uNKikmA5gPF79jKeTeuxerlRifOX56pe+MpC1fw8IfLmX9wPLYjbgnMLXNw 9lzUWBSiX+xY5eg5Pmo2B6jqEixCBtZ/Fy6QUXuMpIlkMc1+ukLTBFxRbMTVAgMB AAGjggNaMIIDVjAdBgNVHQ4EFgQUIYMvSEhopfQqrRcKJNktBRCP304wHwYDVR0j BBgwFoAUdq3THwagt0XP2muTg14ZjdsNt4QwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy82MUU2MzZGOTBFNzIzQ0ExNTlGOERGNTFCMjgzQTJBMDVD NUE0MDNEOEU0QTQ2NjFCOUQ4NkQ4OTJEQjYyRDAyLzAvNzZBREQzMUYwNkEwQjc0 NUNGREE2QjkzODM1RTE5OEREQjBEQjc4NC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83NkFERDMxRjA2QTBCNzQ1Q0ZE QTZCOTM4MzVFMTk4RERCMERCNzg0LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy82MUU2MzZGOTBFNzIzQ0ExNTlGOERGNTFCMjgzQTJBMDVDNUE0MDNEOEU0 QTQ2NjFCOUQ4NkQ4OTJEQjYyRDAyLzAvQVMyMzUyMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCB4AYIKwYBBQUHAQcBAf8EgdAwgc0wgbsEAgABMIG0AwQA vvIKAwQAvvIMAwQAvvIOAwQAvvIUAwQAvvIfMAwDBAK+8iQDBAG+8igwDAMEAb7y LgMEAb7yMAMEAb7yOAMEAL7yZgMEAL7yaQMEAb7ydgMEAL7yfjAMAwQCvvKEAwQB vvKIMAwDBAK+8owDBAC+8o4DBAC+8pEDBAC+8pMwDAMEAL7ymwMEAb7ynAMEAL7y owMEAb7ypjAMAwQAvvKpAwQDvvKwAwQAvvLAAwQAvvL/MA0EAgACMAcDBQAoA/lQ MA0GCSqGSIb3DQEBCwUAA4IBAQDNMDLBfgyC6OP2bDb/cqNW27VpQMuvTuNxlgfc Bq5FDwnpL18yRBU4mJwTOnvqPonWihTwYaI2YFxUQZo3zKhNBj2g5viHjMfABNNl LkgNNVBeYqQ+yD6zPMCggAWrZwIv1p+9ECBTP3U2oVDqdiJHINFuVTP+ZOl0NdfW kXh1aQmPIwNPytv9HP5+pg0h2LccedCPY9p32YOmO3p7M2dVB6hFMuCU4ziwaVnP dPMo1aZ799PQFNxNbUpPZigDKmS933cKS1WvXKVbmoQjuSvF4ztxFa6g7v45ZjN9 gpBJlaR9a/ceOYjlTgvz4C0CUMLegs72+VWehki9AGfn7h+H -----END CERTIFICATE-----Generated at Tue Nov 19 14:26:04 2024 by rpki-client on console-fra.rpki-client.org