$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS28498.roa File: AS28498.roa (raw, json) Hash identifier: 5dSRFedCjiDToqD7REqu625lMPpVPWJUDEG2UDg+eH4= Subject key identifier: F6:B3:6B:4E:30:CF:63:9B:F9:B3:AD:68:FB:B8:CC:0A:A2:60:20:43 Certificate issuer: /CN=55E5523033B41B7E990D9D490339137189366F33 Certificate serial: 037D3112FEF20E34B85745E3C17F6071DC1F4F93 Authority key identifier: 55:E5:52:30:33:B4:1B:7E:99:0D:9D:49:03:39:13:71:89:36:6F:33 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS28498.roa Signing time: Wed 29 Jan 2025 17:30:04 +0000 ROA not before: Wed 29 Jan 2025 17:25:04 +0000 ROA not after: Wed 28 Jan 2026 17:30:04 +0000 asID: 28498 IP address blocks: 200.23.1.0/24 maxlen: 24 200.94.176.0/24 maxlen: 24 2001:1201::/44 maxlen: 44 2001:1201::/48 maxlen: 48 2001:13c7:7000::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.crl rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 21 Apr 2025 08:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:7d:31:12:fe:f2:0e:34:b8:57:45:e3:c1:7f:60:71:dc:1f:4f:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55E5523033B41B7E990D9D490339137189366F33 Validity Not Before: Jan 29 17:25:04 2025 GMT Not After : Jan 28 17:30:04 2026 GMT Subject: CN=F6B36B4E30CF639BF9B3AD68FBB8CC0AA2602043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9a:27:a9:71:c2:77:fa:c6:02:7e:dd:e6:4f: a5:c5:f3:72:81:c4:91:dc:0d:86:66:88:0f:f6:68: 48:13:94:40:6c:06:22:ee:d3:c0:2c:5f:b1:da:c3: ea:67:db:cd:6b:37:51:83:f4:29:35:fc:36:ad:e2: 15:e8:df:10:bc:d5:64:3c:f0:17:38:64:01:20:9b: b8:58:a0:27:22:9f:5b:6c:43:49:5d:59:cc:bb:d8: 96:10:89:f0:8f:0c:41:d1:fc:de:4d:4d:98:1e:6a: 1c:a9:b5:a1:02:b2:4f:fa:2b:ed:b8:3c:10:76:b2: fc:10:a8:f7:0d:8c:a7:11:53:33:70:47:cf:99:a8: f7:7e:6f:3a:79:e4:e1:5e:dc:f7:41:99:0b:19:ff: 1d:73:36:8c:8c:ee:ec:3f:df:76:07:f0:77:88:af: 32:f2:3b:5a:b6:a8:1d:37:5f:3b:ba:c1:c7:fc:39: b2:2a:8a:d4:3d:b1:41:a9:b4:37:01:f5:5a:ad:fb: c2:12:2c:4a:33:f8:38:c4:da:0c:8a:82:e9:75:3c: 83:62:14:08:c3:0b:de:9e:26:48:0d:fc:80:47:86: 31:fb:90:e9:11:79:39:9d:98:87:42:99:9a:77:ed: e3:6a:f8:31:83:d4:ea:32:fe:54:3e:7d:28:04:2a: b9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B3:6B:4E:30:CF:63:9B:F9:B3:AD:68:FB:B8:CC:0A:A2:60:20:43 X509v3 Authority Key Identifier: keyid:55:E5:52:30:33:B4:1B:7E:99:0D:9D:49:03:39:13:71:89:36:6F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS28498.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 200.23.1.0/24 200.94.176.0/24 IPv6: 2001:1201::/44 2001:13c7:7000::/48 Signature Algorithm: sha256WithRSAEncryption 14:1b:07:9e:d5:71:de:49:2a:ba:48:56:75:ab:8d:80:f9:4a: 88:59:be:c6:49:f9:0b:03:40:e8:38:e4:66:1a:a1:ef:3c:46: 84:b2:77:ea:c1:c8:26:2c:f4:80:b3:a1:10:5b:3f:1a:b4:2a: 95:07:cd:19:4f:99:4f:0d:a0:7e:2d:2d:95:9c:1e:4b:46:46: b2:81:0b:1b:48:e2:31:25:6a:de:65:01:eb:eb:b5:cb:30:da: ce:b0:b8:4c:4d:a3:b6:96:80:2a:87:da:db:77:72:33:02:71: 74:4e:6d:d6:0f:3c:00:03:6b:dc:1a:c9:d0:b6:b3:5b:c9:23: b3:fb:7f:40:72:8d:ed:9c:5a:da:63:48:f3:a8:7b:67:82:b1: 42:d5:7b:27:84:1a:a5:12:c0:04:f3:25:9f:06:f0:0a:36:24: c1:84:ef:b4:c0:3e:ab:18:37:63:d7:0b:e8:3d:82:bf:23:0f: a4:4a:79:12:88:5f:28:1f:7a:6a:8b:d0:69:1c:47:2c:a9:b0: aa:be:55:ba:3b:be:96:af:85:73:14:73:71:45:cf:3e:90:ff: a2:d7:f5:62:58:af:21:a4:7f:f1:52:17:72:93:65:c9:d4:0a: 3f:0e:91:ba:35:f4:36:2c:ad:b9:65:26:9e:60:e9:87:d5:44: 7c:a6:01:36 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgIUA30xEv7yDjS4V0XjwX9gcdwfT5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTVFNTUyMzAzM0I0MUI3RTk5MEQ5RDQ5MDMzOTEzNzE4 OTM2NkYzMzAeFw0yNTAxMjkxNzI1MDRaFw0yNjAxMjgxNzMwMDRaMDMxMTAvBgNV BAMTKEY2QjM2QjRFMzBDRjYzOUJGOUIzQUQ2OEZCQjhDQzBBQTI2MDIwNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDmiepccJ3+sYCft3mT6XF83KB xJHcDYZmiA/2aEgTlEBsBiLu08AsX7Haw+pn281rN1GD9Ck1/Dat4hXo3xC81WQ8 8Bc4ZAEgm7hYoCcin1tsQ0ldWcy72JYQifCPDEHR/N5NTZgeahyptaECsk/6K+24 PBB2svwQqPcNjKcRUzNwR8+ZqPd+bzp55OFe3PdBmQsZ/x1zNoyM7uw/33YH8HeI rzLyO1q2qB03Xzu6wcf8ObIqitQ9sUGptDcB9Vqt+8ISLEoz+DjE2gyKgul1PINi FAjDC96eJkgN/IBHhjH7kOkReTmdmIdCmZp37eNq+DGD1Ooy/lQ+fSgEKrlhAgMB AAGjggK4MIICtDAdBgNVHQ4EFgQU9rNrTjDPY5v5s61o+7jMCqJgIEMwHwYDVR0j BBgwFoAUVeVSMDO0G36ZDZ1JAzkTcYk2bzMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy83QjQ1MzFCQUEzODRFRjREOTEwNzhDMTA1MjkwQzRGMEZC QzA1MjEzOEZDOUIyMUU3RDkxMkZCRTlBQThBN0YwLzAvNTVFNTUyMzAzM0I0MUI3 RTk5MEQ5RDQ5MDMzOTEzNzE4OTM2NkYzMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81NUU1NTIzMDMzQjQxQjdFOTkw RDlENDkwMzM5MTM3MTg5MzY2RjMzLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy83QjQ1MzFCQUEzODRFRjREOTEwNzhDMTA1MjkwQzRGMEZCQzA1MjEzOEZD OUIyMUU3RDkxMkZCRTlBQThBN0YwLzAvQVMyODQ5OC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA/BggrBgEFBQcBBwEB/wQwMC4wEgQCAAEwDAMEAMgXAQME AMhesDAYBAIAAjASAwcEIAESAQAAAwcAIAETx3AAMA0GCSqGSIb3DQEBCwUAA4IB AQAUGwee1XHeSSq6SFZ1q42A+UqIWb7GSfkLA0DoOORmGqHvPEaEsnfqwcgmLPSA s6EQWz8atCqVB80ZT5lPDaB+LS2VnB5LRkaygQsbSOIxJWreZQHr67XLMNrOsLhM TaO2loAqh9rbd3IzAnF0Tm3WDzwAA2vcGsnQtrNbySOz+39Aco3tnFraY0jzqHtn grFC1XsnhBqlEsAE8yWfBvAKNiTBhO+0wD6rGDdj1wvoPYK/Iw+kSnkSiF8oH3pq i9BpHEcsqbCqvlW6O76Wr4VzFHNxRc8+kP+i1/ViWK8hpH/xUhdyk2XJ1Ao/DpG6 NfQ2LK25ZSaeYOmH1UR8pgE2 -----END CERTIFICATE-----Generated at Thu Apr 17 23:09:06 2025 by rpki-client