Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/73B6868E56B12C35C63B0AB763023F2508123C311CD7EF4F5161EF6D0A55299E/0/AS28011.roa
File: AS28011.roa (raw, json)
Hash identifier: NVETXe7lQZfOPI1gWm9vhgJbQHfvd8Kc1w1y1gdWDjo=
Subject key identifier: 43:AA:6C:E8:8D:78:AF:33:86:19:73:8D:04:E6:B1:87:29:A2:36:56
Certificate issuer: /CN=B6F8E7D0BF951583E0959B2A92A8920330CEBE59
Certificate serial: 473E6245FF4C3DE3783640148D4B73BDD9989D89
Authority key identifier: B6:F8:E7:D0:BF:95:15:83:E0:95:9B:2A:92:A8:92:03:30:CE:BE:59
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B6F8E7D0BF951583E0959B2A92A8920330CEBE59.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/73B6868E56B12C35C63B0AB763023F2508123C311CD7EF4F5161EF6D0A55299E/0/AS28011.roa
Signing time: Tue 05 Mar 2024 17:44:47 +0000
ROA not before: Tue 05 Mar 2024 17:39:47 +0000
ROA not after: Tue 04 Mar 2025 17:44:47 +0000
asID: 28011
IP address blocks: 181.112.0.0/21 maxlen: 24
181.112.16.0/21 maxlen: 24
181.112.24.0/21 maxlen: 24
181.112.96.0/21 maxlen: 24
181.112.112.0/21 maxlen: 21
181.112.128.0/21 maxlen: 24
181.113.72.0/21 maxlen: 24
181.113.80.0/21 maxlen: 24
181.113.88.0/21 maxlen: 24
181.113.160.0/20 maxlen: 24
181.113.176.0/21 maxlen: 24
181.113.184.0/21 maxlen: 24
181.113.208.0/21 maxlen: 24
181.196.32.0/21 maxlen: 24
181.196.64.0/21 maxlen: 24
181.196.168.0/21 maxlen: 24
181.196.208.0/20 maxlen: 24
181.211.16.0/21 maxlen: 24
181.211.24.0/21 maxlen: 24
181.211.64.0/21 maxlen: 24
181.211.72.0/21 maxlen: 24
181.211.88.0/21 maxlen: 24
181.211.116.0/22 maxlen: 24
181.211.120.0/21 maxlen: 24
181.211.136.0/21 maxlen: 24
181.211.152.0/21 maxlen: 24
181.211.168.0/21 maxlen: 24
181.211.192.0/21 maxlen: 24
181.211.224.0/21 maxlen: 24
181.211.232.0/21 maxlen: 24
186.42.116.0/24 maxlen: 24
186.42.236.0/22 maxlen: 24
186.47.168.0/21 maxlen: 24
186.47.216.0/21 maxlen: 24
186.47.248.0/21 maxlen: 24
186.178.13.0/24 maxlen: 24
186.178.14.0/24 maxlen: 24
186.178.24.0/21 maxlen: 24
186.178.56.0/21 maxlen: 24
186.178.72.0/21 maxlen: 24
186.178.104.0/21 maxlen: 24
186.178.172.0/22 maxlen: 24
186.178.176.0/21 maxlen: 24
186.178.184.0/21 maxlen: 24
190.11.10.0/24 maxlen: 24
190.11.20.0/24 maxlen: 24
190.152.40.0/24 maxlen: 24
190.152.41.0/24 maxlen: 24
190.152.44.0/24 maxlen: 24
190.152.45.0/24 maxlen: 24
190.152.46.0/24 maxlen: 24
190.152.47.0/24 maxlen: 24
190.152.48.0/23 maxlen: 24
190.152.50.0/23 maxlen: 24
190.152.52.0/24 maxlen: 24
190.152.56.0/22 maxlen: 24
190.152.132.0/22 maxlen: 24
190.152.136.0/21 maxlen: 24
190.152.152.0/24 maxlen: 24
190.152.192.0/24 maxlen: 24
190.152.240.0/22 maxlen: 24
190.152.252.0/24 maxlen: 24
190.152.254.0/24 maxlen: 24
190.214.64.0/21 maxlen: 24
190.214.88.0/21 maxlen: 24
190.214.112.0/22 maxlen: 24
190.214.116.0/22 maxlen: 24
190.214.152.0/21 maxlen: 24
190.214.168.0/22 maxlen: 24
190.214.172.0/22 maxlen: 24
190.214.192.0/21 maxlen: 24
190.214.200.0/21 maxlen: 24
190.214.224.0/21 maxlen: 24
200.73.204.0/22 maxlen: 24
200.107.11.0/24 maxlen: 24
200.107.26.0/23 maxlen: 24
200.107.32.0/23 maxlen: 24
200.107.40.0/21 maxlen: 24
200.107.53.0/24 maxlen: 24
200.125.203.0/24 maxlen: 24
200.125.208.0/24 maxlen: 24
200.125.240.0/23 maxlen: 24
200.125.242.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/73B6868E56B12C35C63B0AB763023F2508123C311CD7EF4F5161EF6D0A55299E/0/B6F8E7D0BF951583E0959B2A92A8920330CEBE59.crl
rsync://repository.lacnic.net/rpki/lacnic/73B6868E56B12C35C63B0AB763023F2508123C311CD7EF4F5161EF6D0A55299E/0/B6F8E7D0BF951583E0959B2A92A8920330CEBE59.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B6F8E7D0BF951583E0959B2A92A8920330CEBE59.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 29 Nov 2024 03:21:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:3e:62:45:ff:4c:3d:e3:78:36:40:14:8d:4b:73:bd:d9:98:9d:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6F8E7D0BF951583E0959B2A92A8920330CEBE59
Validity
Not Before: Mar 5 17:39:47 2024 GMT
Not After : Mar 4 17:44:47 2025 GMT
Subject: CN=43AA6CE88D78AF338619738D04E6B18729A23656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:07:1f:6c:a7:a0:20:83:62:51:9a:d9:f6:e6:
68:2a:b9:93:d3:09:7c:81:9d:2d:fe:9e:59:33:af:
31:10:2a:da:e0:f9:a8:ca:c6:e1:90:6f:3a:b5:6c:
1c:25:30:f5:40:93:1d:e7:f5:c4:bc:8a:0d:43:36:
5d:b2:54:42:5c:ec:e5:f3:73:16:dc:bf:8d:0c:8c:
8e:2d:49:cc:66:4a:a1:63:ef:1d:af:f9:0e:7e:e9:
c9:87:f8:4d:28:18:b6:e8:02:de:d5:5b:c1:ba:ac:
3e:0c:43:77:48:ee:c5:1c:10:70:bd:1c:f5:1a:79:
29:8b:51:f5:f5:a7:a6:39:f1:98:24:4e:82:81:a5:
bc:15:fa:f1:80:0b:10:22:1d:de:88:87:a7:6c:87:
9f:29:59:aa:fb:15:fa:82:c5:cc:f0:06:d6:32:0d:
40:33:9a:ae:5b:5c:34:c3:7f:cd:f4:41:1a:32:48:
d0:eb:6f:e1:2a:a2:50:d2:c0:06:f3:20:36:48:da:
ea:6c:1b:08:e8:a2:d3:1b:05:44:be:19:af:e5:2d:
54:8b:f9:fd:ad:28:f3:d6:aa:f1:ca:53:d4:5f:6f:
c4:b5:ea:f6:13:ad:22:01:b8:32:46:ba:98:9b:93:
6b:96:e0:17:f3:46:42:62:dc:ef:2d:90:38:a6:1d:
e0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:AA:6C:E8:8D:78:AF:33:86:19:73:8D:04:E6:B1:87:29:A2:36:56
X509v3 Authority Key Identifier:
keyid:B6:F8:E7:D0:BF:95:15:83:E0:95:9B:2A:92:A8:92:03:30:CE:BE:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/73B6868E56B12C35C63B0AB763023F2508123C311CD7EF4F5161EF6D0A55299E/0/B6F8E7D0BF951583E0959B2A92A8920330CEBE59.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B6F8E7D0BF951583E0959B2A92A8920330CEBE59.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/73B6868E56B12C35C63B0AB763023F2508123C311CD7EF4F5161EF6D0A55299E/0/AS28011.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.112.0.0/21
181.112.16.0/20
181.112.96.0/21
181.112.112.0/21
181.112.128.0/21
181.113.72.0-181.113.95.255
181.113.160.0/19
181.113.208.0/21
181.196.32.0/21
181.196.64.0/21
181.196.168.0/21
181.196.208.0/20
181.211.16.0/20
181.211.64.0/20
181.211.88.0/21
181.211.116.0-181.211.127.255
181.211.136.0/21
181.211.152.0/21
181.211.168.0/21
181.211.192.0/21
181.211.224.0/20
186.42.116.0/24
186.42.236.0/22
186.47.168.0/21
186.47.216.0/21
186.47.248.0/21
186.178.13.0-186.178.14.255
186.178.24.0/21
186.178.56.0/21
186.178.72.0/21
186.178.104.0/21
186.178.172.0-186.178.191.255
190.11.10.0/24
190.11.20.0/24
190.152.40.0/23
190.152.44.0-190.152.52.255
190.152.56.0/22
190.152.132.0-190.152.143.255
190.152.152.0/24
190.152.192.0/24
190.152.240.0/22
190.152.252.0/24
190.152.254.0/24
190.214.64.0/21
190.214.88.0/21
190.214.112.0/21
190.214.152.0/21
190.214.168.0/21
190.214.192.0/20
190.214.224.0/21
200.73.204.0/22
200.107.11.0/24
200.107.26.0/23
200.107.32.0/23
200.107.40.0/21
200.107.53.0/24
200.125.203.0/24
200.125.208.0/24
200.125.240.0/22
Signature Algorithm: sha256WithRSAEncryption
81:47:7f:6e:ed:f0:de:06:96:d2:5c:d0:62:eb:93:52:a3:88:
21:52:6f:c3:74:15:47:cd:ee:19:93:ac:d3:bf:be:a7:df:6b:
df:9a:0d:a3:fd:17:17:ad:bc:bf:b4:37:e8:5e:3c:0e:ee:18:
64:5a:f1:bc:a2:ff:5a:7d:c5:e9:9d:c0:c5:e7:00:f9:fd:72:
40:75:c0:3b:af:c0:b6:5c:0e:81:2d:86:2b:2d:f8:6b:83:b5:
0b:a8:c3:7e:8a:35:e0:e6:dc:55:f4:f9:4b:2f:9e:39:ee:c9:
ab:83:7a:05:89:99:85:71:18:7b:65:42:b1:bf:3c:fd:b6:aa:
f8:d0:5c:4b:88:af:c1:24:8f:1a:18:11:24:9d:47:03:0d:9f:
b7:fe:66:fd:ad:84:7d:a1:5d:09:c9:25:97:4c:48:9f:ff:7e:
43:06:ac:d9:cf:68:44:4f:b8:d3:ab:0a:b5:27:94:59:8f:bd:
9e:0f:a4:6f:02:fa:28:c4:20:36:c4:dc:fe:1e:78:52:dc:1f:
0c:91:9c:77:a1:13:9a:82:c2:d1:06:a1:a4:53:94:a6:dd:1b:
12:f8:b8:f9:64:93:75:12:55:c5:c0:9d:cd:94:6d:3f:a8:d4:
73:4a:40:99:d7:ec:fe:5d:f0:17:f3:f8:a9:23:76:8b:27:94:
6e:b3:ca:19
-----BEGIN CERTIFICATE-----
MIIHJDCCBgygAwIBAgIURz5iRf9MPeN4NkAUjUtzvdmYnYkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjZGOEU3RDBCRjk1MTU4M0UwOTU5QjJBOTJBODkyMDMz
MENFQkU1OTAeFw0yNDAzMDUxNzM5NDdaFw0yNTAzMDQxNzQ0NDdaMDMxMTAvBgNV
BAMTKDQzQUE2Q0U4OEQ3OEFGMzM4NjE5NzM4RDA0RTZCMTg3MjlBMjM2NTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyBx9sp6Agg2JRmtn25mgquZPT
CXyBnS3+nlkzrzEQKtrg+ajKxuGQbzq1bBwlMPVAkx3n9cS8ig1DNl2yVEJc7OXz
cxbcv40MjI4tScxmSqFj7x2v+Q5+6cmH+E0oGLboAt7VW8G6rD4MQ3dI7sUcEHC9
HPUaeSmLUfX1p6Y58ZgkToKBpbwV+vGACxAiHd6Ih6dsh58pWar7FfqCxczwBtYy
DUAzmq5bXDTDf830QRoySNDrb+EqolDSwAbzIDZI2upsGwjootMbBUS+Ga/lLVSL
+f2tKPPWqvHKU9Rfb8S16vYTrSIBuDJGupibk2uW4BfzRkJi3O8tkDimHeDDAgMB
AAGjggQuMIIEKjAdBgNVHQ4EFgQUQ6ps6I14rzOGGXONBOaxhymiNlYwHwYDVR0j
BBgwFoAUtvjn0L+VFYPglZsqkqiSAzDOvlkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83M0I2ODY4RTU2QjEyQzM1QzYzQjBBQjc2MzAyM0YyNTA4
MTIzQzMxMUNEN0VGNEY1MTYxRUY2RDBBNTUyOTlFLzAvQjZGOEU3RDBCRjk1MTU4
M0UwOTU5QjJBOTJBODkyMDMzMENFQkU1OS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CNkY4RTdEMEJGOTUxNTgzRTA5
NTlCMkE5MkE4OTIwMzMwQ0VCRTU5LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG
CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy83M0I2ODY4RTU2QjEyQzM1QzYzQjBBQjc2MzAyM0YyNTA4MTIzQzMxMUNE
N0VGNEY1MTYxRUY2RDBBNTUyOTlFLzAvQVMyODAxMS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjCCAbMGCCsGAQUFBwEHAQH/BIIBojCCAZ4wggGaBAIAATCC
AZIDBAO1cAADBAS1cBADBAO1cGADBAO1cHADBAO1cIAwDAMEA7VxSAMEBbVxQAME
BbVxoAMEA7Vx0AMEA7XEIAMEA7XEQAMEA7XEqAMEBLXE0AMEBLXTEAMEBLXTQAME
A7XTWDAMAwQCtdN0AwQHtdMAAwQDtdOIAwQDtdOYAwQDtdOoAwQDtdPAAwQEtdPg
AwQAuip0AwQCuirsAwQDui+oAwQDui/YAwQDui/4MAwDBAC6sg0DBAC6sg4DBAO6
shgDBAO6sjgDBAO6skgDBAO6smgwDAMEArqyrAMEBrqygAMEAL4LCgMEAL4LFAME
Ab6YKDAMAwQCvpgsAwQAvpg0AwQCvpg4MAwDBAK+mIQDBAS+mIADBAC+mJgDBAC+
mMADBAK+mPADBAC+mPwDBAC+mP4DBAO+1kADBAO+1lgDBAO+1nADBAO+1pgDBAO+
1qgDBAS+1sADBAO+1uADBALIScwDBADIawsDBAHIaxoDBAHIayADBAPIaygDBADI
azUDBADIfcsDBADIfdADBALIffAwDQYJKoZIhvcNAQELBQADggEBAIFHf27t8N4G
ltJc0GLrk1KjiCFSb8N0FUfN7hmTrNO/vqffa9+aDaP9FxetvL+0N+hePA7uGGRa
8byi/1p9xemdwMXnAPn9ckB1wDuvwLZcDoEthist+GuDtQuow36KNeDm3FX0+Usv
njnuyauDegWJmYVxGHtlQrG/PP22qvjQXEuIr8EkjxoYESSdRwMNn7f+Zv2thH2h
XQnJJZdMSJ//fkMGrNnPaERPuNOrCrUnlFmPvZ4PpG8C+ijEIDbE3P4eeFLcHwyR
nHehE5qCwtEGoaRTlKbdGxL4uPlkk3USVcXAnc2UbT+o1HNKQJnX7P5d8Bfz+Kkj
dosnlG6zyhk=
-----END CERTIFICATE-----
Generated at Sun Nov 24 09:08:49 2024 by rpki-client on console-fra.rpki-client.org