Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS7303.roa
File: AS7303.roa (raw, json)
Hash identifier: wlEMu691waAtzmfO/lEF6O9OoIVCZwU2eZ9bdNQwjDs=
Subject key identifier: D0:83:E4:55:F5:7B:F8:90:6C:92:52:27:7E:4A:FD:84:F5:AE:57:F7
Certificate issuer: /CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Certificate serial: 2C2866B2E4CEBFFF006BBADE2E8F316777328F79
Authority key identifier: 27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS7303.roa
Signing time: Mon 02 Jun 2025 14:30:00 +0000
ROA not before: Mon 02 Jun 2025 14:25:00 +0000
ROA not after: Mon 01 Jun 2026 14:30:00 +0000
asID: 7303
IP address blocks: 24.232.0.0/16 maxlen: 24
66.60.0.0/18 maxlen: 24
152.168.0.0/14 maxlen: 24
170.150.196.0/22 maxlen: 24
170.231.136.0/22 maxlen: 24
181.0.0.0/16 maxlen: 24
181.1.0.0/17 maxlen: 24
181.1.128.0/20 maxlen: 24
181.1.144.0/21 maxlen: 24
181.1.156.0/22 maxlen: 24
181.1.160.0/19 maxlen: 24
181.1.192.0/18 maxlen: 24
181.2.0.0/15 maxlen: 24
181.4.0.0/14 maxlen: 24
181.8.0.0/13 maxlen: 24
181.28.0.0/14 maxlen: 24
181.80.0.0/14 maxlen: 24
181.86.0.0/15 maxlen: 24
181.88.0.0/15 maxlen: 24
181.92.0.0/15 maxlen: 24
181.94.4.0/23 maxlen: 24
181.94.100.0/24 maxlen: 24
181.96.0.0/14 maxlen: 24
181.100.0.0/15 maxlen: 24
181.102.0.0/16 maxlen: 24
181.103.16.0/20 maxlen: 24
181.103.32.0/19 maxlen: 24
181.103.80.0/20 maxlen: 24
181.103.96.0/19 maxlen: 24
181.103.128.0/17 maxlen: 24
181.104.0.0/13 maxlen: 24
181.164.0.0/14 maxlen: 24
181.168.0.0/14 maxlen: 24
181.228.0.0/14 maxlen: 24
186.108.0.0/14 maxlen: 24
186.124.0.0/14 maxlen: 24
186.136.0.0/14 maxlen: 24
186.152.0.0/15 maxlen: 24
190.16.0.0/14 maxlen: 24
190.30.0.0/15 maxlen: 24
190.136.0.0/14 maxlen: 24
190.139.109.97/32 maxlen: 32
190.139.109.105/32 maxlen: 32
190.188.0.0/14 maxlen: 24
190.192.0.0/14 maxlen: 24
190.224.0.0/13 maxlen: 24
190.244.0.0/14 maxlen: 24
191.97.128.0/17 maxlen: 24
196.32.64.0/19 maxlen: 24
200.3.32.0/19 maxlen: 24
200.3.64.0/19 maxlen: 24
200.32.0.0/19 maxlen: 24
200.42.0.0/17 maxlen: 24
200.42.128.0/19 maxlen: 24
200.43.0.0/16 maxlen: 24
200.45.0.0/16 maxlen: 24
200.49.96.0/20 maxlen: 24
200.49.128.0/19 maxlen: 24
200.55.64.0/18 maxlen: 24
200.61.192.0/19 maxlen: 24
200.63.0.0/19 maxlen: 24
200.71.224.0/20 maxlen: 24
200.73.128.0/18 maxlen: 24
200.80.64.0/20 maxlen: 24
200.82.0.0/17 maxlen: 24
200.89.128.0/18 maxlen: 24
200.105.0.0/18 maxlen: 24
200.105.64.0/19 maxlen: 24
200.110.224.0/21 maxlen: 24
200.114.128.0/17 maxlen: 24
200.117.0.0/16 maxlen: 24
200.122.0.0/17 maxlen: 24
200.126.128.0/17 maxlen: 24
200.127.0.0/16 maxlen: 24
201.212.0.0/15 maxlen: 24
201.231.0.0/16 maxlen: 24
201.235.0.0/16 maxlen: 24
201.252.0.0/15 maxlen: 24
2001:13d0::/29 maxlen: 48
2800:2000::/20 maxlen: 48
2800:b000::/32 maxlen: 48
2803:da80::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.crl
rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sat 26 Jul 2025 15:59:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:28:66:b2:e4:ce:bf:ff:00:6b:ba:de:2e:8f:31:67:77:32:8f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Validity
Not Before: Jun 2 14:25:00 2025 GMT
Not After : Jun 1 14:30:00 2026 GMT
Subject: CN=D083E455F57BF8906C9252277E4AFD84F5AE57F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c3:61:cf:dd:fd:c0:54:17:77:14:84:28:7e:
85:b7:a7:94:0a:84:0e:b5:00:4e:73:80:00:48:8e:
92:2c:99:16:41:40:ee:f5:a8:34:a2:c3:64:53:80:
6d:d4:27:0e:e3:f7:fc:a6:d6:0c:39:d4:ba:ee:5d:
07:ae:2c:10:f7:57:3b:5d:b3:8e:04:17:26:ca:43:
e3:bb:5c:18:ae:65:84:f5:57:4a:a4:e4:da:11:0e:
09:57:61:ee:3d:0b:a8:69:5c:46:69:5c:29:04:d6:
4e:21:f7:1f:46:09:07:db:88:0b:7a:31:a3:fc:59:
f6:93:aa:e2:a9:8a:17:97:11:8f:cf:5c:4f:07:59:
86:3d:40:cd:02:3d:ed:a1:dc:3c:f2:20:bb:41:32:
3b:9b:a2:cf:c9:5b:00:bb:e5:2d:e2:ca:b1:73:fb:
5a:38:03:f0:8f:d1:38:ae:75:5e:09:22:df:80:15:
17:4c:0b:33:55:02:27:1f:48:04:8c:6d:54:ea:aa:
fa:bb:6a:a2:08:24:61:34:b9:12:1d:18:5d:9a:9b:
eb:da:d1:55:cf:f1:9d:15:12:53:0d:dc:2c:38:b7:
3d:fb:e1:67:64:81:84:9a:ab:cb:c0:89:30:0d:8a:
89:da:c4:8f:9e:06:43:18:ea:1d:6f:be:55:6a:71:
f7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:83:E4:55:F5:7B:F8:90:6C:92:52:27:7E:4A:FD:84:F5:AE:57:F7
X509v3 Authority Key Identifier:
keyid:27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS7303.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
24.232.0.0/16
66.60.0.0/18
152.168.0.0/14
170.150.196.0/22
170.231.136.0/22
181.0.0.0-181.1.151.255
181.1.156.0-181.15.255.255
181.28.0.0/14
181.80.0.0/14
181.86.0.0-181.89.255.255
181.92.0.0/15
181.94.4.0/23
181.94.100.0/24
181.96.0.0-181.102.255.255
181.103.16.0-181.103.63.255
181.103.80.0-181.111.255.255
181.164.0.0-181.171.255.255
181.228.0.0/14
186.108.0.0/14
186.124.0.0/14
186.136.0.0/14
186.152.0.0/15
190.16.0.0/14
190.30.0.0/15
190.136.0.0/14
190.188.0.0-190.195.255.255
190.224.0.0/13
190.244.0.0/14
191.97.128.0/17
196.32.64.0/19
200.3.32.0-200.3.95.255
200.32.0.0/19
200.42.0.0-200.42.159.255
200.43.0.0/16
200.45.0.0/16
200.49.96.0/20
200.49.128.0/19
200.55.64.0/18
200.61.192.0/19
200.63.0.0/19
200.71.224.0/20
200.73.128.0/18
200.80.64.0/20
200.82.0.0/17
200.89.128.0/18
200.105.0.0-200.105.95.255
200.110.224.0/21
200.114.128.0/17
200.117.0.0/16
200.122.0.0/17
200.126.128.0-200.127.255.255
201.212.0.0/15
201.231.0.0/16
201.235.0.0/16
201.252.0.0/15
IPv6:
2001:13d0::/29
2800:2000::/20
2800:b000::/32
2803:da80::/32
Signature Algorithm: sha256WithRSAEncryption
6a:09:21:20:2f:d5:bc:0f:7b:49:19:02:41:43:04:22:c7:1d:
22:03:76:4a:07:c4:95:0d:db:a9:f0:b3:d8:36:a2:65:6e:ea:
f6:f0:46:75:8d:f3:c1:56:e7:bc:73:7b:82:4f:cf:db:92:63:
ff:36:dd:bb:fe:03:61:a1:6c:6f:bc:0a:7a:9f:60:30:f8:33:
91:d2:9b:20:92:0a:9d:f8:f6:5b:07:02:71:a4:cd:9e:85:fa:
73:7b:df:ed:38:c2:22:50:2e:b4:cd:8f:bb:4a:1e:1d:ac:6b:
a9:75:14:ca:dd:57:4e:ad:b2:8d:17:fa:8a:0c:c2:0c:de:89:
85:dc:3f:81:38:00:c3:06:75:a8:a5:98:87:40:4d:ba:db:57:
41:4a:91:f5:97:bb:c3:17:69:2d:fa:ca:69:1b:cb:98:7f:1e:
f9:c8:39:a2:59:80:11:5a:9c:d1:ee:1f:6e:94:9b:07:98:33:
08:8a:c0:86:fa:11:e2:22:fd:c8:cb:d1:81:0b:8f:6a:e2:8f:
48:48:38:0a:43:e5:6b:d5:d0:61:e4:66:46:9c:a5:c7:eb:b7:
4c:fc:22:e2:82:d5:48:ba:61:95:98:76:52:82:5c:4a:90:0d:
b4:cb:24:73:ec:0d:f9:dd:51:5f:c0:28:cd:25:73:ba:b9:ae:
4d:6a:eb:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:38:31 2025 by rpki-client