$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS28540.roa File: AS28540.roa (raw, json) Hash identifier: b8iEL3D/az0n54qYQA3dht289u7C9E+49czGdOwKg40= Subject key identifier: 6E:14:34:B2:F4:F1:51:E6:18:CE:89:25:05:B5:CC:9B:F0:8D:36:99 Certificate issuer: /CN=55E5523033B41B7E990D9D490339137189366F33 Certificate serial: 46C36266554B45E771B6E4D6E2BBAE506A3DE400 Authority key identifier: 55:E5:52:30:33:B4:1B:7E:99:0D:9D:49:03:39:13:71:89:36:6F:33 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS28540.roa Signing time: Wed 29 Jan 2025 17:30:03 +0000 ROA not before: Wed 29 Jan 2025 17:25:03 +0000 ROA not after: Wed 28 Jan 2026 17:30:03 +0000 asID: 28540 IP address blocks: 189.201.244.0/24 maxlen: 24 2801:c4:c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.crl rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 21 Apr 2025 08:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:c3:62:66:55:4b:45:e7:71:b6:e4:d6:e2:bb:ae:50:6a:3d:e4:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55E5523033B41B7E990D9D490339137189366F33 Validity Not Before: Jan 29 17:25:03 2025 GMT Not After : Jan 28 17:30:03 2026 GMT Subject: CN=6E1434B2F4F151E618CE892505B5CC9BF08D3699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:fb:37:30:2a:a0:53:94:32:88:a0:f3:2c:3f: f4:9d:a9:59:94:ad:f2:1d:9b:2f:b9:f1:8e:69:63: 1b:60:34:3c:29:e8:68:a3:96:dd:9d:ee:97:51:f7: ec:9c:fe:0e:42:d3:85:0c:82:dd:e0:f4:0f:05:6a: e0:38:e3:42:e5:c0:0f:d7:78:ee:a8:b6:3f:73:8e: 92:e8:db:6d:42:56:9b:e6:65:c6:96:2c:79:8e:a3: 0d:c6:30:a5:50:74:61:49:48:75:d5:8e:62:cb:8c: 44:26:90:92:22:fd:fc:ea:50:d0:cb:62:19:4a:b4: 6c:c2:f0:b3:8e:3e:7b:71:f9:bc:55:39:5d:49:7f: 68:c9:ca:f7:bf:d8:21:41:37:b6:f3:9d:ff:ed:4d: 9f:21:01:53:5e:76:7b:09:71:ce:f1:cb:77:4c:cd: e7:8f:86:52:bd:7e:b5:97:1a:fd:03:3e:f5:50:7e: 98:ee:80:db:d4:07:b1:21:9a:5e:f5:35:e4:0a:46: 13:af:3b:c6:7a:77:3f:89:bf:c5:1d:d5:95:c2:00: d8:b8:f3:2a:39:9a:68:d3:83:35:3c:61:18:bc:cc: 9d:68:69:c1:49:63:ea:ca:ee:10:a9:57:b1:6c:86: fb:46:4c:fc:26:d2:5d:10:6c:83:55:c1:5f:f2:11: 5a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:14:34:B2:F4:F1:51:E6:18:CE:89:25:05:B5:CC:9B:F0:8D:36:99 X509v3 Authority Key Identifier: keyid:55:E5:52:30:33:B4:1B:7E:99:0D:9D:49:03:39:13:71:89:36:6F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS28540.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 189.201.244.0/24 IPv6: 2801:c4:c0::/48 Signature Algorithm: sha256WithRSAEncryption 42:fc:55:3b:b4:3e:fd:5b:ea:11:dd:1b:64:77:ca:fb:e3:52: e6:3c:28:2a:13:60:55:33:8e:37:26:0c:3c:72:ba:46:f1:3a: 01:e4:7b:45:3a:06:e1:76:f5:8b:88:af:d7:66:42:c1:38:d7: b6:eb:cf:73:b1:da:d5:5f:6f:67:d0:25:7a:3e:cb:10:2e:2b: b8:1a:33:ab:c1:95:42:37:49:e2:26:fa:99:5f:e3:0a:8d:c1: 23:9e:c9:7e:c2:a9:93:2d:f7:c1:ba:6d:16:20:9a:94:34:36: cf:8d:27:31:2a:c4:4c:8c:e1:01:fb:f4:f8:7b:d7:d6:50:b2: 15:a8:78:60:7e:c1:6c:ea:cd:3e:8f:43:d2:cb:35:1f:4e:7d: b6:c3:e0:20:5e:4a:10:8c:4a:ba:f7:dc:d6:46:28:ef:b2:ad: 2b:16:09:7f:9e:70:a6:cb:c0:27:45:1a:9c:7c:63:94:e1:82: a3:d0:76:be:59:74:b7:e1:7c:15:ff:b6:65:af:04:a9:63:ca: e3:15:77:00:e5:0b:7f:30:7d:b2:19:f1:c7:ef:d4:4f:22:bb: 7c:92:b4:2f:b7:f2:a9:34:87:4e:c4:51:89:df:81:9c:67:37: b4:87:dd:e8:d9:2a:53:2f:a6:1a:f6:21:4c:75:0b:3d:70:bf: bc:e5:21:ed -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURsNiZlVLRedxtuTW4ruuUGo95AAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTVFNTUyMzAzM0I0MUI3RTk5MEQ5RDQ5MDMzOTEzNzE4 OTM2NkYzMzAeFw0yNTAxMjkxNzI1MDNaFw0yNjAxMjgxNzMwMDNaMDMxMTAvBgNV BAMTKDZFMTQzNEIyRjRGMTUxRTYxOENFODkyNTA1QjVDQzlCRjA4RDM2OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn+zcwKqBTlDKIoPMsP/SdqVmU rfIdmy+58Y5pYxtgNDwp6Gijlt2d7pdR9+yc/g5C04UMgt3g9A8FauA440LlwA/X eO6otj9zjpLo221CVpvmZcaWLHmOow3GMKVQdGFJSHXVjmLLjEQmkJIi/fzqUNDL YhlKtGzC8LOOPntx+bxVOV1Jf2jJyve/2CFBN7bznf/tTZ8hAVNednsJcc7xy3dM zeePhlK9frWXGv0DPvVQfpjugNvUB7Ehml71NeQKRhOvO8Z6dz+Jv8Ud1ZXCANi4 8yo5mmjTgzU8YRi8zJ1oacFJY+rK7hCpV7FshvtGTPwm0l0QbINVwV/yEVrBAgMB AAGjggKpMIICpTAdBgNVHQ4EFgQUbhQ0svTxUeYYzoklBbXMm/CNNpkwHwYDVR0j BBgwFoAUVeVSMDO0G36ZDZ1JAzkTcYk2bzMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy83QjQ1MzFCQUEzODRFRjREOTEwNzhDMTA1MjkwQzRGMEZC QzA1MjEzOEZDOUIyMUU3RDkxMkZCRTlBQThBN0YwLzAvNTVFNTUyMzAzM0I0MUI3 RTk5MEQ5RDQ5MDMzOTEzNzE4OTM2NkYzMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81NUU1NTIzMDMzQjQxQjdFOTkw RDlENDkwMzM5MTM3MTg5MzY2RjMzLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy83QjQ1MzFCQUEzODRFRjREOTEwNzhDMTA1MjkwQzRGMEZCQzA1MjEzOEZD OUIyMUU3RDkxMkZCRTlBQThBN0YwLzAvQVMyODU0MC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAL3J9DAP BAIAAjAJAwcAKAEAxADAMA0GCSqGSIb3DQEBCwUAA4IBAQBC/FU7tD79W+oR3Rtk d8r741LmPCgqE2BVM443Jgw8crpG8ToB5HtFOgbhdvWLiK/XZkLBONe2689zsdrV X29n0CV6PssQLiu4GjOrwZVCN0niJvqZX+MKjcEjnsl+wqmTLffBum0WIJqUNDbP jScxKsRMjOEB+/T4e9fWULIVqHhgfsFs6s0+j0PSyzUfTn22w+AgXkoQjEq699zW Rijvsq0rFgl/nnCmy8AnRRqcfGOU4YKj0Ha+WXS34XwV/7ZlrwSpY8rjFXcA5Qt/ MH2yGfHH79RPIrt8krQvt/KpNIdOxFGJ34GcZze0h93o2SpTL6Ya9iFMdQs9cL+8 5SHt -----END CERTIFICATE-----Generated at Thu Apr 17 23:10:17 2025 by rpki-client