Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS7303.roa
File: AS7303.roa (raw, json)
Hash identifier: 4+bx9EeFTs/KhZmx6hYOhsynOsGF8llYZ+n/UpGomZk=
Subject key identifier: 26:91:1B:88:91:E0:61:16:52:27:AF:A3:63:4B:B3:FA:12:D3:71:D0
Certificate issuer: /CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Certificate serial: 72E1BE4FC73457E6DF9737B21E97C774F1BCF0F6
Authority key identifier: 27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS7303.roa
Signing time: Mon 09 Dec 2024 18:45:00 +0000
ROA not before: Mon 09 Dec 2024 18:40:00 +0000
ROA not after: Mon 08 Dec 2025 18:45:00 +0000
asID: 7303
IP address blocks: 24.232.0.0/16 maxlen: 24
66.60.0.0/18 maxlen: 24
152.168.0.0/14 maxlen: 24
170.150.196.0/22 maxlen: 24
170.231.136.0/22 maxlen: 24
181.0.0.0/16 maxlen: 24
181.1.0.0/17 maxlen: 24
181.1.128.0/20 maxlen: 24
181.1.144.0/21 maxlen: 24
181.1.156.0/22 maxlen: 24
181.1.160.0/19 maxlen: 24
181.1.192.0/18 maxlen: 24
181.2.0.0/15 maxlen: 15
181.2.0.0/15 maxlen: 24
181.4.0.0/14 maxlen: 15
181.4.0.0/14 maxlen: 24
181.8.0.0/13 maxlen: 24
181.28.0.0/14 maxlen: 24
181.80.0.0/14 maxlen: 15
181.80.0.0/14 maxlen: 24
181.86.0.0/15 maxlen: 15
181.86.0.0/15 maxlen: 24
181.88.0.0/15 maxlen: 15
181.88.0.0/15 maxlen: 24
181.92.0.0/15 maxlen: 15
181.92.0.0/15 maxlen: 24
181.94.100.0/24 maxlen: 24
181.96.0.0/14 maxlen: 24
181.100.0.0/15 maxlen: 24
181.102.0.0/16 maxlen: 24
181.103.16.0/20 maxlen: 24
181.103.32.0/19 maxlen: 24
181.103.80.0/20 maxlen: 24
181.103.96.0/19 maxlen: 24
181.103.128.0/17 maxlen: 24
181.104.0.0/13 maxlen: 24
181.164.0.0/14 maxlen: 24
181.168.0.0/14 maxlen: 24
181.228.0.0/14 maxlen: 24
186.108.0.0/14 maxlen: 24
186.124.0.0/14 maxlen: 24
186.136.0.0/14 maxlen: 24
186.152.0.0/15 maxlen: 24
190.16.0.0/14 maxlen: 24
190.30.0.0/15 maxlen: 24
190.136.0.0/14 maxlen: 24
190.139.109.97/32 maxlen: 32
190.139.109.105/32 maxlen: 32
190.188.0.0/14 maxlen: 24
190.192.0.0/14 maxlen: 24
190.224.0.0/13 maxlen: 24
190.244.0.0/14 maxlen: 24
191.97.128.0/17 maxlen: 24
196.32.64.0/19 maxlen: 24
200.3.32.0/19 maxlen: 24
200.3.64.0/19 maxlen: 24
200.32.0.0/19 maxlen: 24
200.42.0.0/17 maxlen: 24
200.42.128.0/19 maxlen: 24
200.43.0.0/16 maxlen: 24
200.45.0.0/16 maxlen: 24
200.49.96.0/20 maxlen: 24
200.49.128.0/19 maxlen: 24
200.55.64.0/18 maxlen: 24
200.61.192.0/19 maxlen: 24
200.63.0.0/19 maxlen: 24
200.71.224.0/20 maxlen: 24
200.73.128.0/18 maxlen: 24
200.80.64.0/20 maxlen: 24
200.82.0.0/17 maxlen: 24
200.89.128.0/18 maxlen: 24
200.105.0.0/18 maxlen: 24
200.105.64.0/19 maxlen: 24
200.110.224.0/21 maxlen: 24
200.114.128.0/17 maxlen: 24
200.117.0.0/16 maxlen: 24
200.122.0.0/17 maxlen: 24
200.126.128.0/17 maxlen: 24
200.127.0.0/16 maxlen: 24
201.212.0.0/15 maxlen: 24
201.231.0.0/16 maxlen: 24
201.235.0.0/16 maxlen: 24
201.252.0.0/15 maxlen: 24
2001:13d0::/29 maxlen: 48
2800:2000::/20 maxlen: 48
2800:b000::/32 maxlen: 48
2803:da80::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:e1:be:4f:c7:34:57:e6:df:97:37:b2:1e:97:c7:74:f1:bc:f0:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Validity
Not Before: Dec 9 18:40:00 2024 GMT
Not After : Dec 8 18:45:00 2025 GMT
Subject: CN=26911B8891E061165227AFA3634BB3FA12D371D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:95:ed:42:14:ee:0f:c9:77:cd:5a:4d:28:04:
35:ee:10:06:b1:9e:2e:e4:b7:bf:1d:de:73:44:d2:
29:d4:a2:0c:88:cb:e1:84:5e:45:23:1b:c7:bf:8d:
4c:af:5e:3c:98:c7:79:69:d5:aa:3b:26:c8:eb:0c:
d2:1d:88:13:22:27:d7:b1:2a:29:ff:93:92:cc:bd:
70:17:35:64:c9:0b:d4:2b:7c:59:11:da:71:f3:40:
34:d2:86:88:ea:3d:2b:e1:61:34:b3:7e:d7:10:5d:
82:67:09:d0:52:2d:19:aa:88:f9:e2:81:6f:e5:fc:
6e:ea:f8:5f:99:06:d2:4d:eb:b7:76:b4:11:3e:34:
e7:1c:e7:ea:a7:b7:55:1b:9d:c0:b5:1a:81:0d:dd:
1e:6d:05:58:dd:27:43:38:5c:c3:a6:ad:28:30:69:
26:fb:3b:1f:f6:7c:e5:17:f0:43:41:34:5e:89:8f:
11:b0:3e:2b:2f:6a:59:d4:9f:df:c1:30:b1:77:8e:
34:56:b2:9b:d0:27:b6:11:a5:50:aa:95:d5:c5:34:
f5:e2:e4:36:73:2b:41:80:8e:89:24:bc:96:8c:7f:
a8:3f:3c:fb:01:cc:67:14:24:37:f6:33:82:29:1a:
14:be:47:ca:a4:2c:3f:5a:de:d7:b1:ed:ba:07:22:
cf:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:91:1B:88:91:E0:61:16:52:27:AF:A3:63:4B:B3:FA:12:D3:71:D0
X509v3 Authority Key Identifier:
keyid:27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS7303.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
24.232.0.0/16
66.60.0.0/18
152.168.0.0/14
170.150.196.0/22
170.231.136.0/22
181.0.0.0-181.1.151.255
181.1.156.0-181.15.255.255
181.28.0.0/14
181.80.0.0/14
181.86.0.0-181.89.255.255
181.92.0.0/15
181.94.100.0/24
181.96.0.0-181.102.255.255
181.103.16.0-181.103.63.255
181.103.80.0-181.111.255.255
181.164.0.0-181.171.255.255
181.228.0.0/14
186.108.0.0/14
186.124.0.0/14
186.136.0.0/14
186.152.0.0/15
190.16.0.0/14
190.30.0.0/15
190.136.0.0/14
190.188.0.0-190.195.255.255
190.224.0.0/13
190.244.0.0/14
191.97.128.0/17
196.32.64.0/19
200.3.32.0-200.3.95.255
200.32.0.0/19
200.42.0.0-200.42.159.255
200.43.0.0/16
200.45.0.0/16
200.49.96.0/20
200.49.128.0/19
200.55.64.0/18
200.61.192.0/19
200.63.0.0/19
200.71.224.0/20
200.73.128.0/18
200.80.64.0/20
200.82.0.0/17
200.89.128.0/18
200.105.0.0-200.105.95.255
200.110.224.0/21
200.114.128.0/17
200.117.0.0/16
200.122.0.0/17
200.126.128.0-200.127.255.255
201.212.0.0/15
201.231.0.0/16
201.235.0.0/16
201.252.0.0/15
IPv6:
2001:13d0::/29
2800:2000::/20
2800:b000::/32
2803:da80::/32
Signature Algorithm: sha256WithRSAEncryption
16:09:74:06:a3:2e:cd:6e:95:d2:9f:4b:2a:ce:c1:7b:13:62:
54:94:94:eb:7d:de:9a:61:78:0b:0e:80:fc:da:0e:cf:12:84:
49:16:73:c9:21:24:e9:b6:5a:a5:81:6c:30:a0:c7:4c:29:ab:
35:92:59:dd:e0:a7:de:7d:0b:00:0a:72:29:f7:01:65:49:db:
f3:f1:9b:e0:32:c0:71:9f:60:51:ef:0d:fd:90:37:1c:43:35:
63:ff:af:6d:f8:fb:70:bd:a9:3a:57:40:e5:8c:54:88:74:dc:
70:95:fe:88:9c:3d:07:d4:ee:20:67:64:5b:75:e8:38:5d:41:
2d:c5:e4:cb:3e:81:bc:88:33:63:51:2c:58:2a:35:27:38:3b:
32:20:dc:09:e4:91:a9:3a:1f:9e:e0:23:04:73:6c:06:f4:48:
08:08:2f:b9:0a:45:3f:26:7a:7a:22:ef:d9:8b:20:df:bd:ec:
ea:69:99:1b:c8:78:f6:c6:51:d2:89:60:92:05:78:4b:23:92:
89:57:19:8c:93:d2:2c:8d:b8:ae:bc:93:c9:03:b4:45:d4:ad:
f2:86:02:ec:24:6a:cc:1a:07:81:b0:8f:3d:d5:ac:42:59:59:
69:06:b3:d6:a5:63:35:dd:3f:10:c8:31:bd:e4:00:e2:ee:c4:
81:6d:fc:a9
-----BEGIN CERTIFICATE-----
MIIHMzCCBhugAwIBAgIUcuG+T8c0V+bflzeyHpfHdPG88PYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjc0RDY4RjA2QkIxRjJFRDA5NEYwM0I1MkZFRDc1NjVG
NzgyNUQ5OTAeFw0yNDEyMDkxODQwMDBaFw0yNTEyMDgxODQ1MDBaMDMxMTAvBgNV
BAMTKDI2OTExQjg4OTFFMDYxMTY1MjI3QUZBMzYzNEJCM0ZBMTJEMzcxRDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSle1CFO4PyXfNWk0oBDXuEAax
ni7kt78d3nNE0inUogyIy+GEXkUjG8e/jUyvXjyYx3lp1ao7JsjrDNIdiBMiJ9ex
Kin/k5LMvXAXNWTJC9QrfFkR2nHzQDTShojqPSvhYTSzftcQXYJnCdBSLRmqiPni
gW/l/G7q+F+ZBtJN67d2tBE+NOcc5+qnt1UbncC1GoEN3R5tBVjdJ0M4XMOmrSgw
aSb7Ox/2fOUX8ENBNF6JjxGwPisvalnUn9/BMLF3jjRWspvQJ7YRpVCqldXFNPXi
5DZzK0GAjokkvJaMf6g/PPsBzGcUJDf2M4IpGhS+R8qkLD9a3tex7boHIs+9AgMB
AAGjggQ9MIIEOTAdBgNVHQ4EFgQUJpEbiJHgYRZSJ6+jY0uz+hLTcdAwHwYDVR0j
BBgwFoAUJ01o8Gux8u0JTwO1L+11ZfeCXZkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85RUU5QjFFMDgzMTY3N0VEOTM4MDNBRjBCOEVENkI5NUZF
MzY3QkEwQ0M4M0NFRDRCMEFFRjYxN0UxRjAzMTUwLzAvMjc0RDY4RjA2QkIxRjJF
RDA5NEYwM0I1MkZFRDc1NjVGNzgyNUQ5OS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNzRENjhGMDZCQjFGMkVEMDk0
RjAzQjUyRkVENzU2NUY3ODI1RDk5LmNlcjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMG
CCsGAQUFBzALhndyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy85RUU5QjFFMDgzMTY3N0VEOTM4MDNBRjBCOEVENkI5NUZFMzY3QkEwQ0M4
M0NFRDRCMEFFRjYxN0UxRjAzMTUwLzAvQVM3MzAzLnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBwwYIKwYBBQUHAQcBAf8EggGyMIIBrjCCAYcEAgABMIIB
fwMDABjoAwQGQjwAAwMCmKgDBAKqlsQDBAKq54gwCgMCALUDBAO1AZAwCwMEArUB
nAMDBLUAAwMCtRwDAwK1UDAKAwMBtVYDAwG1WAMDAbVcAwQAtV5kMAoDAwW1YAMD
ALVmMAwDBAS1ZxADBAa1ZwAwCwMEBLVnUAMDBLVgMAoDAwK1pAMDArWoAwMCteQD
AwK6bAMDArp8AwMCuogDAwG6mAMDAr4QAwMBvh4DAwK+iDAKAwMCvrwDAwK+wAMD
A77gAwMCvvQDBAe/YYADBAXEIEAwDAMEBcgDIAMEBcgDQAMEBcggADALAwMByCoD
BAXIKoADAwDIKwMDAMgtAwQEyDFgAwQFyDGAAwQGyDdAAwQFyD3AAwQFyD8AAwQE
yEfgAwQGyEmAAwQEyFBAAwQHyFIAAwQGyFmAMAsDAwDIaQMEBchpQAMEA8hu4AME
B8hygAMDAMh1AwQHyHoAMAsDBAfIfoADAwfIAAMDAcnUAwMAyecDAwDJ6wMDAcn8
MCEEAgACMBsDBQMgARPQAwQEKAAgAwUAKACwAAMFACgD2oAwDQYJKoZIhvcNAQEL
BQADggEBABYJdAajLs1uldKfSyrOwXsTYlSUlOt93ppheAsOgPzaDs8ShEkWc8kh
JOm2WqWBbDCgx0wpqzWSWd3gp959CwAKcin3AWVJ2/Pxm+AywHGfYFHvDf2QNxxD
NWP/r234+3C9qTpXQOWMVIh03HCV/oicPQfU7iBnZFt16DhdQS3F5Ms+gbyIM2NR
LFgqNSc4OzIg3Ankkak6H57gIwRzbAb0SAgIL7kKRT8menoi79mLIN+97OppmRvI
ePbGUdKJYJIFeEsjkolXGYyT0iyNuK68k8kDtEXUrfKGAuwkaswaB4Gwjz3VrEJZ
WWkGs9alYzXdPxDIMb3kAOLuxIFt/Kk=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:34 2025 by rpki-client