$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/AS20940.roa File: AS20940.roa (raw, json) Hash identifier: MD/pWyg8XvcrNhxbrUC9AEOFZPsJ6gM49MIq+m8PXv0= Subject key identifier: F8:98:9D:3F:69:D2:59:28:68:5F:97:A4:55:14:49:F5:B6:4F:82:B2 Certificate issuer: /CN=C868DC422443FA70E7761C0304061EB998BF7378 Certificate serial: 20DE7E5FB563F45A9E21D2166A282C848EFE9305 Authority key identifier: C8:68:DC:42:24:43:FA:70:E7:76:1C:03:04:06:1E:B9:98:BF:73:78 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C868DC422443FA70E7761C0304061EB998BF7378.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/AS20940.roa Signing time: Fri 11 Apr 2025 00:14:30 +0000 ROA not before: Fri 11 Apr 2025 00:09:30 +0000 ROA not after: Fri 10 Apr 2026 00:14:30 +0000 asID: 20940 IP address blocks: 189.247.204.0/22 maxlen: 24 189.247.216.0/24 maxlen: 24 2806:1040:fc::/48 maxlen: 48 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/C868DC422443FA70E7761C0304061EB998BF7378.crl rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/C868DC422443FA70E7761C0304061EB998BF7378.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C868DC422443FA70E7761C0304061EB998BF7378.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 09 Nov 2025 01:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:de:7e:5f:b5:63:f4:5a:9e:21:d2:16:6a:28:2c:84:8e:fe:93:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C868DC422443FA70E7761C0304061EB998BF7378 Validity Not Before: Apr 11 00:09:30 2025 GMT Not After : Apr 10 00:14:30 2026 GMT Subject: CN=F8989D3F69D25928685F97A4551449F5B64F82B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e1:c0:ae:f2:63:9c:43:2d:16:53:ca:8d:e9: 93:c9:61:4c:56:b0:d2:85:1d:42:c8:31:9e:a2:ee: c4:6c:67:64:24:7f:98:71:a9:e3:4f:22:8c:50:ef: f4:6c:df:2b:4f:cb:1c:7e:ea:a1:a2:72:84:44:3a: 2b:92:15:1d:15:1a:47:11:ef:ad:be:fb:e1:2a:ce: 79:6b:74:2c:fe:67:89:0f:0d:d5:87:1d:e8:b5:7b: 85:f4:40:9a:57:d7:26:41:a3:ae:f3:ca:3f:0e:92: 82:51:1a:3a:17:a2:b6:24:8a:25:47:6c:e2:c2:e6: 60:33:59:32:19:3d:c4:46:be:15:ab:04:2b:dd:c7: 6f:55:71:15:78:0b:c5:14:56:4a:f4:17:2e:65:8d: 48:67:23:79:73:05:9f:d3:3f:15:a7:ce:b0:99:c1: ac:f7:bd:53:e7:0f:34:21:12:2f:86:14:7a:5f:3f: 83:45:79:90:68:73:a1:28:3f:7d:a7:12:6d:cf:eb: 36:7e:87:cd:43:f7:8a:93:f5:34:25:08:43:3d:db: 66:0c:d6:e6:3a:b7:77:2d:da:dd:4f:60:f5:75:ec: 5d:8b:79:5a:d4:32:7f:6d:0e:69:eb:87:cc:82:1c: ea:9d:06:ee:89:e6:ee:52:ab:ec:9b:51:72:26:07: 12:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:98:9D:3F:69:D2:59:28:68:5F:97:A4:55:14:49:F5:B6:4F:82:B2 X509v3 Authority Key Identifier: keyid:C8:68:DC:42:24:43:FA:70:E7:76:1C:03:04:06:1E:B9:98:BF:73:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/C868DC422443FA70E7761C0304061EB998BF7378.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C868DC422443FA70E7761C0304061EB998BF7378.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/AS20940.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 189.247.204.0/22 189.247.216.0/24 IPv6: 2806:1040:fc::/48 Signature Algorithm: sha256WithRSAEncryption 76:b5:bb:f6:6c:06:69:be:11:41:f0:9a:5b:3d:52:ab:24:7a: 23:8d:c9:6e:9a:99:60:e3:6d:66:67:1a:93:fb:10:ee:92:9d: ad:96:1b:af:b4:9e:8a:9f:c2:1f:51:02:f6:9e:c4:e6:d2:71: cc:e3:5e:d8:98:1a:d5:7a:71:93:c5:b2:8e:f8:cf:f7:a4:bb: 2b:a4:91:d7:b3:4a:e4:b2:a3:cf:ac:fd:ae:9a:5e:54:bd:94: ed:a2:af:73:99:5e:04:ec:ec:b8:7a:b6:00:11:89:a6:68:88: 30:5d:80:4c:15:4a:45:a5:f9:f5:46:80:fe:95:eb:1d:6f:cb: 5a:7e:8f:1f:93:9c:6f:c3:ca:2b:3b:48:b9:bc:56:d7:b1:d1: b3:31:ed:b8:8b:6e:b1:f9:61:f8:83:3b:da:65:62:5e:0f:03: 23:b4:26:ef:55:69:3d:6e:12:ad:97:41:2f:35:cf:8c:cf:ad: 31:68:42:97:de:10:1a:e9:7c:bb:0f:cb:bf:70:34:eb:3e:5b: 71:10:aa:f7:48:f9:34:e4:a1:50:e4:3e:15:6e:02:ae:11:88: e6:de:43:5a:d9:96:8c:ea:da:a5:4f:53:45:e7:6f:eb:20:fa: 20:50:1c:36:83:72:8a:df:eb:97:16:e3:5b:58:cb:07:92:1a: 61:69:23:12 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgIUIN5+X7Vj9FqeIdIWaigshI7+kwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg2OERDNDIyNDQzRkE3MEU3NzYxQzAzMDQwNjFFQjk5 OEJGNzM3ODAeFw0yNTA0MTEwMDA5MzBaFw0yNjA0MTAwMDE0MzBaMDMxMTAvBgNV BAMTKEY4OTg5RDNGNjlEMjU5Mjg2ODVGOTdBNDU1MTQ0OUY1QjY0RjgyQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv4cCu8mOcQy0WU8qN6ZPJYUxW sNKFHULIMZ6i7sRsZ2Qkf5hxqeNPIoxQ7/Rs3ytPyxx+6qGicoREOiuSFR0VGkcR 762+++EqznlrdCz+Z4kPDdWHHei1e4X0QJpX1yZBo67zyj8OkoJRGjoXorYkiiVH bOLC5mAzWTIZPcRGvhWrBCvdx29VcRV4C8UUVkr0Fy5ljUhnI3lzBZ/TPxWnzrCZ waz3vVPnDzQhEi+GFHpfP4NFeZBoc6EoP32nEm3P6zZ+h81D94qT9TQlCEM922YM 1uY6t3ct2t1PYPV17F2LeVrUMn9tDmnrh8yCHOqdBu6J5u5Sq+ybUXImBxK5AgMB AAGjggKvMIICqzAdBgNVHQ4EFgQU+JidP2nSWShoX5ekVRRJ9bZPgrIwHwYDVR0j BBgwFoAUyGjcQiRD+nDndhwDBAYeuZi/c3gwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy8zQjg3QzkzOTI5RUExQkU5NTE1NDlCOEI3NEEzODAwQzY0 ODMzRTg1QkU5RDUyM0JCQThFQzI0RTk0MzM5QUVELzAvQzg2OERDNDIyNDQzRkE3 MEU3NzYxQzAzMDQwNjFFQjk5OEJGNzM3OC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DODY4REM0MjI0NDNGQTcwRTc3 NjFDMDMwNDA2MUVCOTk4QkY3Mzc4LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy8zQjg3QzkzOTI5RUExQkU5NTE1NDlCOEI3NEEzODAwQzY0ODMzRTg1QkU5 RDUyM0JCQThFQzI0RTk0MzM5QUVELzAvQVMyMDk0MC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEAr33zAME AL332DAPBAIAAjAJAwcAKAYQQAD8MA0GCSqGSIb3DQEBCwUAA4IBAQB2tbv2bAZp vhFB8JpbPVKrJHojjclumplg421mZxqT+xDukp2tlhuvtJ6Kn8IfUQL2nsTm0nHM 417YmBrVenGTxbKO+M/3pLsrpJHXs0rksqPPrP2uml5UvZTtoq9zmV4E7Oy4erYA EYmmaIgwXYBMFUpFpfn1RoD+lesdb8tafo8fk5xvw8orO0i5vFbXsdGzMe24i26x +WH4gzvaZWJeDwMjtCbvVWk9bhKtl0EvNc+Mz60xaEKX3hAa6Xy7D8u/cDTrPltx EKr3SPk05KFQ5D4VbgKuEYjm3kNa2ZaM6tqlT1NF52/rIPogUBw2g3KK3+uXFuNb WMsHkhphaSMS -----END CERTIFICATE-----Generated at Wed Nov 5 12:25:24 2025 by rpki-client