$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/AS20207.roa File: AS20207.roa (raw, json) Hash identifier: ujMO3MrOJ7QXCgdhJ/prW0bUsswPllj2cIRgMOO+8rM= Subject key identifier: E2:C7:6A:51:E8:54:89:4B:DC:3D:F5:C4:44:29:3A:4F:5F:F2:93:E3 Certificate issuer: /CN=C87C55A4481F19C9B6184944B187B3813B7CEC56 Certificate serial: 61410C6548F7F538F0689F76FEE48DA1DB0AFD9B Authority key identifier: C8:7C:55:A4:48:1F:19:C9:B6:18:49:44:B1:87:B3:81:3B:7C:EC:56 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/AS20207.roa Signing time: Fri 27 Mar 2026 21:05:01 +0000 ROA not before: Fri 27 Mar 2026 21:00:01 +0000 ROA not after: Fri 26 Mar 2027 21:05:01 +0000 asID: 20207 IP address blocks: 190.216.18.0/24 maxlen: 24 190.216.24.0/24 maxlen: 24 190.216.60.0/24 maxlen: 24 190.216.62.0/24 maxlen: 24 200.41.17.0/24 maxlen: 24 200.41.20.0/24 maxlen: 24 200.55.26.0/24 maxlen: 24 200.55.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.crl rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 22 Apr 2026 04:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:41:0c:65:48:f7:f5:38:f0:68:9f:76:fe:e4:8d:a1:db:0a:fd:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C87C55A4481F19C9B6184944B187B3813B7CEC56 Validity Not Before: Mar 27 21:00:01 2026 GMT Not After : Mar 26 21:05:01 2027 GMT Subject: CN=E2C76A51E854894BDC3DF5C444293A4F5FF293E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:19:70:14:7c:90:91:17:80:f4:de:89:7b:e8: 75:8d:cc:ed:90:d2:94:6b:8d:23:8e:aa:30:1a:cb: 50:23:6b:82:ae:d8:b3:0f:56:89:97:55:23:21:1f: 55:91:e2:11:09:6b:bc:7a:ca:15:86:54:5c:b8:d9: f5:f7:f1:20:1f:fa:37:37:4b:00:18:c8:3d:b0:07: ab:d6:c4:f7:1d:d9:36:7f:ea:98:f6:21:78:40:bb: bc:34:40:eb:2b:cc:48:b5:ad:5a:3d:32:a6:5e:ee: f0:e5:81:ca:66:01:99:f5:f6:ad:cf:57:aa:e0:05: 90:8c:77:8e:b1:ce:f6:d4:1e:7b:b7:8a:0d:e7:15: 68:29:c0:84:43:fb:ed:a5:7c:5a:b8:34:8d:ee:c7: 86:e3:52:da:74:f4:bb:82:81:3c:21:b2:8a:df:a6: 2f:65:11:e9:41:f0:0b:b5:81:44:47:38:35:08:a5: 61:77:31:af:3c:2a:8c:7e:b8:7d:7c:2a:a7:a5:ad: 47:f0:10:9e:b7:a4:ee:8b:d1:f7:a9:30:c4:ac:d8: b5:83:6f:24:d8:dc:3d:e5:52:01:ca:06:23:65:4f: 54:dc:4d:41:6d:e1:22:8e:85:37:46:a3:60:ab:63: 87:62:f9:99:0a:47:d9:b5:2c:c8:1e:fd:51:ef:ff: ce:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C7:6A:51:E8:54:89:4B:DC:3D:F5:C4:44:29:3A:4F:5F:F2:93:E3 X509v3 Authority Key Identifier: keyid:C8:7C:55:A4:48:1F:19:C9:B6:18:49:44:B1:87:B3:81:3B:7C:EC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/AS20207.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 190.216.18.0/24 190.216.24.0/24 190.216.60.0/24 190.216.62.0/24 200.41.17.0/24 200.41.20.0/24 200.55.26.0/24 200.55.28.0/24 Signature Algorithm: sha256WithRSAEncryption 85:40:52:25:25:6b:8b:9d:95:d8:e7:66:18:33:91:9b:c3:cb: 55:af:54:68:41:8a:32:7c:ab:d4:92:ba:d3:d8:b0:fa:ca:b4: db:1d:e9:34:b3:d0:1b:d0:16:7b:a1:34:23:f3:28:3c:85:b3: cc:b6:42:ff:55:28:ca:83:4e:14:17:f1:89:3d:ad:47:a2:02: 7a:fb:78:b1:d7:f1:05:a7:c7:ce:07:0b:42:4b:6c:be:e2:0d: 7e:03:d2:ff:4a:64:4c:17:d4:25:89:02:5e:3d:7c:0d:df:af: 2a:fa:f0:98:62:39:44:14:bd:df:0d:3d:cf:a8:f6:33:59:dc: cf:cb:88:aa:c1:96:2f:eb:07:79:05:a7:2f:63:15:0c:86:a5: eb:43:bf:09:3b:64:57:dd:e3:9d:b6:5c:cd:be:0d:d8:b4:59: 4f:0e:f6:e2:0c:31:a1:07:d5:b5:e5:f0:42:58:5c:15:74:d4: 4f:21:3a:d0:18:0d:08:a1:f2:98:99:54:e9:86:85:23:9b:51: 77:45:1e:dc:54:2f:ac:fc:46:cc:ca:0f:18:11:d4:99:28:51: 08:91:e6:43:4c:d4:9f:ba:13:52:c6:cf:d1:07:9f:c5:cb:b4: e9:dd:d7:42:18:40:32:e2:44:d3:a3:2b:2f:5b:60:9f:d7:b7: 36:45:38:5a -----BEGIN CERTIFICATE----- MIIFuDCCBKCgAwIBAgIUYUEMZUj39TjwaJ92/uSNodsK/ZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg3QzU1QTQ0ODFGMTlDOUI2MTg0OTQ0QjE4N0IzODEz QjdDRUM1NjAeFw0yNjAzMjcyMTAwMDFaFw0yNzAzMjYyMTA1MDFaMDMxMTAvBgNV BAMTKEUyQzc2QTUxRTg1NDg5NEJEQzNERjVDNDQ0MjkzQTRGNUZGMjkzRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5GXAUfJCRF4D03ol76HWNzO2Q 0pRrjSOOqjAay1Aja4Ku2LMPVomXVSMhH1WR4hEJa7x6yhWGVFy42fX38SAf+jc3 SwAYyD2wB6vWxPcd2TZ/6pj2IXhAu7w0QOsrzEi1rVo9MqZe7vDlgcpmAZn19q3P V6rgBZCMd46xzvbUHnu3ig3nFWgpwIRD++2lfFq4NI3ux4bjUtp09LuCgTwhsorf pi9lEelB8Au1gURHODUIpWF3Ma88Kox+uH18KqelrUfwEJ63pO6L0fepMMSs2LWD byTY3D3lUgHKBiNlT1TcTUFt4SKOhTdGo2CrY4di+ZkKR9m1LMge/VHv/87VAgMB AAGjggLCMIICvjAdBgNVHQ4EFgQU4sdqUehUiUvcPfXERCk6T1/yk+MwHwYDVR0j BBgwFoAUyHxVpEgfGcm2GElEsYezgTt87FYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8wMEE2NkE2QTJBNkNGRTkzQzBGNkUzREZDMjBERDMzMUI1 ODBGQjIwMzgzQjYyRkU0QjI2QzAyOTRCNDY4N0M3LzAvQzg3QzU1QTQ0ODFGMTlD OUI2MTg0OTQ0QjE4N0IzODEzQjdDRUM1Ni5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DODdDNTVBNDQ4MUYxOUM5QjYx ODQ5NDRCMTg3QjM4MTNCN0NFQzU2LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy8wMEE2NkE2QTJBNkNGRTkzQzBGNkUzREZDMjBERDMzMUI1ODBGQjIwMzgz QjYyRkU0QjI2QzAyOTRCNDY4N0M3LzAvQVMyMDIwNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBJBggrBgEFBQcBBwEB/wQ6MDgwNgQCAAEwMAMEAL7YEgME AL7YGAMEAL7YPAMEAL7YPgMEAMgpEQMEAMgpFAMEAMg3GgMEAMg3HDANBgkqhkiG 9w0BAQsFAAOCAQEAhUBSJSVri52V2OdmGDORm8PLVa9UaEGKMnyr1JK609iw+sq0 2x3pNLPQG9AWe6E0I/MoPIWzzLZC/1UoyoNOFBfxiT2tR6ICevt4sdfxBafHzgcL QktsvuINfgPS/0pkTBfUJYkCXj18Dd+vKvrwmGI5RBS93w09z6j2M1ncz8uIqsGW L+sHeQWnL2MVDIal60O/CTtkV93jnbZczb4N2LRZTw724gwxoQfVteXwQlhcFXTU TyE60BgNCKHymJlU6YaFI5tRd0Ue3FQvrPxGzMoPGBHUmShRCJHmQ0zUn7oTUsbP 0Qefxcu06d3XQhhAMuJE06MrL1tgn9e3NkU4Wg== -----END CERTIFICATE-----Generated at Fri Apr 17 23:54:55 2026 by rpki-client