Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS7303.roa
File: AS7303.roa (raw, json)
Hash identifier: YfUlyhULtkjIx2ebzvbADst2WilXoZ/XHjpHj8d2Xew=
Subject key identifier: 1B:EB:E9:A9:43:6B:F9:12:F3:9F:B8:8A:AA:25:55:21:81:24:48:BC
Certificate issuer: /CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Certificate serial: 0CB27D7A1DF2EEAFBEF6AF5C5F9E1B30DAE58317
Authority key identifier: 27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS7303.roa
Signing time: Thu 24 Jul 2025 18:00:36 +0000
ROA not before: Thu 24 Jul 2025 17:55:36 +0000
ROA not after: Thu 23 Jul 2026 18:00:36 +0000
asID: 7303
IP address blocks: 24.232.0.0/16 maxlen: 24
66.60.0.0/18 maxlen: 24
152.168.0.0/14 maxlen: 24
170.150.196.0/22 maxlen: 24
170.231.136.0/22 maxlen: 24
181.0.0.0/16 maxlen: 24
181.1.0.0/17 maxlen: 24
181.1.128.0/20 maxlen: 24
181.1.144.0/21 maxlen: 24
181.1.156.0/22 maxlen: 24
181.1.160.0/19 maxlen: 24
181.1.192.0/18 maxlen: 24
181.2.0.0/15 maxlen: 24
181.4.0.0/14 maxlen: 24
181.8.0.0/13 maxlen: 24
181.28.0.0/14 maxlen: 24
181.80.0.0/14 maxlen: 24
181.86.0.0/15 maxlen: 24
181.88.0.0/15 maxlen: 24
181.92.0.0/15 maxlen: 24
181.94.4.0/23 maxlen: 24
181.94.100.0/24 maxlen: 24
181.96.0.0/14 maxlen: 24
181.100.0.0/15 maxlen: 24
181.102.0.0/16 maxlen: 24
181.103.16.0/20 maxlen: 24
181.103.32.0/19 maxlen: 24
181.103.96.0/19 maxlen: 24
181.103.128.0/17 maxlen: 24
181.104.0.0/13 maxlen: 24
181.164.0.0/14 maxlen: 24
181.168.0.0/14 maxlen: 24
181.228.0.0/14 maxlen: 24
186.108.0.0/14 maxlen: 24
186.124.0.0/14 maxlen: 24
186.136.0.0/14 maxlen: 24
186.152.0.0/15 maxlen: 24
190.16.0.0/14 maxlen: 24
190.30.0.0/15 maxlen: 24
190.136.0.0/14 maxlen: 24
190.139.109.97/32 maxlen: 32
190.139.109.105/32 maxlen: 32
190.188.0.0/14 maxlen: 24
190.192.0.0/14 maxlen: 24
190.224.0.0/13 maxlen: 24
190.244.0.0/14 maxlen: 24
191.97.128.0/17 maxlen: 24
196.32.64.0/19 maxlen: 24
200.3.32.0/19 maxlen: 24
200.3.64.0/19 maxlen: 24
200.32.0.0/19 maxlen: 24
200.42.0.0/17 maxlen: 24
200.42.128.0/19 maxlen: 24
200.43.0.0/16 maxlen: 24
200.45.0.0/16 maxlen: 24
200.49.96.0/20 maxlen: 24
200.49.128.0/19 maxlen: 24
200.55.64.0/18 maxlen: 24
200.61.192.0/19 maxlen: 24
200.63.0.0/19 maxlen: 24
200.71.224.0/20 maxlen: 24
200.73.128.0/18 maxlen: 24
200.80.64.0/20 maxlen: 24
200.82.0.0/17 maxlen: 24
200.89.128.0/18 maxlen: 24
200.105.0.0/18 maxlen: 24
200.105.64.0/19 maxlen: 24
200.110.224.0/21 maxlen: 24
200.114.128.0/17 maxlen: 24
200.117.0.0/16 maxlen: 24
200.122.0.0/17 maxlen: 24
200.126.128.0/17 maxlen: 24
200.127.0.0/16 maxlen: 24
201.212.0.0/15 maxlen: 24
201.231.0.0/16 maxlen: 24
201.235.0.0/16 maxlen: 24
201.252.0.0/15 maxlen: 24
2001:13d0::/29 maxlen: 48
2800:2000::/20 maxlen: 48
2800:b000::/32 maxlen: 48
2803:da80::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.crl
rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 28 Jul 2025 22:47:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:b2:7d:7a:1d:f2:ee:af:be:f6:af:5c:5f:9e:1b:30:da:e5:83:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Validity
Not Before: Jul 24 17:55:36 2025 GMT
Not After : Jul 23 18:00:36 2026 GMT
Subject: CN=1BEBE9A9436BF912F39FB88AAA255521812448BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:56:39:98:b6:26:f4:6c:65:c0:6b:cf:88:6a:
56:5b:34:3a:1f:9e:d5:4e:79:1e:e9:12:05:b5:b9:
c0:5d:17:6b:8f:b3:b7:3b:07:94:3b:c6:d3:f1:d7:
96:3e:eb:2a:7e:f5:ad:f2:9a:50:db:14:2e:26:a0:
96:bc:a6:5f:6f:83:e2:66:11:3d:eb:4f:89:d0:6f:
fe:01:1b:f9:07:f3:1e:c8:26:cf:bc:fc:81:6a:ef:
14:c1:54:00:1b:15:67:5b:73:1b:c9:28:eb:ec:72:
65:75:18:25:26:9f:54:42:1c:dd:7b:d8:3e:80:1f:
f8:e6:a2:c1:e0:90:2c:47:ac:26:eb:46:dc:a2:7a:
de:63:b4:5a:48:c5:5c:e2:68:b2:97:21:39:0f:0e:
df:da:b5:01:8c:df:82:4c:05:26:72:fb:10:26:09:
5d:9d:a8:2b:81:b6:70:21:f2:55:ff:32:f3:7b:66:
0f:5d:30:a9:45:6c:72:39:29:fe:76:de:a8:43:70:
cd:e7:4a:ca:74:4b:dd:6a:34:78:a9:9b:93:14:1c:
0b:27:06:cf:30:00:ec:7f:b1:87:1a:1d:c8:46:48:
48:e8:fc:5d:6d:7b:0d:a6:d3:db:5f:bf:17:10:c0:
0f:c2:8c:09:be:dd:f0:54:be:48:0f:11:96:fa:a9:
44:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:EB:E9:A9:43:6B:F9:12:F3:9F:B8:8A:AA:25:55:21:81:24:48:BC
X509v3 Authority Key Identifier:
keyid:27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS7303.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
24.232.0.0/16
66.60.0.0/18
152.168.0.0/14
170.150.196.0/22
170.231.136.0/22
181.0.0.0-181.1.151.255
181.1.156.0-181.15.255.255
181.28.0.0/14
181.80.0.0/14
181.86.0.0-181.89.255.255
181.92.0.0/15
181.94.4.0/23
181.94.100.0/24
181.96.0.0-181.102.255.255
181.103.16.0-181.103.63.255
181.103.96.0-181.111.255.255
181.164.0.0-181.171.255.255
181.228.0.0/14
186.108.0.0/14
186.124.0.0/14
186.136.0.0/14
186.152.0.0/15
190.16.0.0/14
190.30.0.0/15
190.136.0.0/14
190.188.0.0-190.195.255.255
190.224.0.0/13
190.244.0.0/14
191.97.128.0/17
196.32.64.0/19
200.3.32.0-200.3.95.255
200.32.0.0/19
200.42.0.0-200.42.159.255
200.43.0.0/16
200.45.0.0/16
200.49.96.0/20
200.49.128.0/19
200.55.64.0/18
200.61.192.0/19
200.63.0.0/19
200.71.224.0/20
200.73.128.0/18
200.80.64.0/20
200.82.0.0/17
200.89.128.0/18
200.105.0.0-200.105.95.255
200.110.224.0/21
200.114.128.0/17
200.117.0.0/16
200.122.0.0/17
200.126.128.0-200.127.255.255
201.212.0.0/15
201.231.0.0/16
201.235.0.0/16
201.252.0.0/15
IPv6:
2001:13d0::/29
2800:2000::/20
2800:b000::/32
2803:da80::/32
Signature Algorithm: sha256WithRSAEncryption
54:02:90:50:fd:fe:16:ab:13:a9:e3:7c:6b:a4:40:2d:60:4b:
3b:a8:17:aa:59:a8:39:ca:1f:e9:6b:aa:c1:bb:ad:83:73:ab:
f1:58:01:4f:44:f9:d3:6c:2e:e0:6b:f1:e4:23:92:09:43:8b:
30:7c:ac:12:f3:dd:00:ca:de:09:b1:b2:55:bf:8d:ff:f6:09:
d0:90:22:f5:fe:c6:13:79:46:c0:9b:54:04:04:20:b5:1b:3b:
31:e7:7a:c1:03:b7:cc:10:b4:51:83:d9:6a:c5:bd:d8:b6:e8:
1b:d1:66:2a:b5:69:cf:0c:a2:53:0f:ff:da:e0:33:68:92:dd:
cc:1b:66:90:8e:e8:2b:64:bb:ef:af:cd:e9:8d:93:8d:80:b7:
86:69:67:4b:d7:65:aa:b9:f9:30:9d:44:00:17:0a:8c:c5:cc:
34:99:34:7a:f7:8f:fb:24:44:6b:3c:9e:be:ee:84:fc:9e:35:
17:7a:50:77:7c:24:af:e3:a3:b6:09:17:06:af:cb:ce:52:d2:
cf:84:87:a7:6e:c2:b2:95:51:6e:d7:d7:0b:f1:ff:0c:17:66:
e2:bf:0c:dc:02:8f:b0:79:ab:2c:61:62:63:a7:0e:40:bb:47:
13:cd:55:ff:df:75:af:a0:dc:60:27:23:82:bf:af:84:11:81:
3e:40:59:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 05:35:12 2025 by rpki-client