Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS18809.roa
File: AS18809.roa (raw, json)
Hash identifier: uh7SoTIrlQlE59viYsHI/xUutVXdDGcU5P//27OTqlE=
Subject key identifier: 0F:5F:63:40:FF:90:0F:37:41:20:60:07:65:AF:0B:97:8C:BC:E3:D2
Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Certificate serial: 1D3BD43D0E4FE288A987926DE24F5CFC7DE076D1
Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS18809.roa
Signing time: Tue 03 Dec 2024 16:25:00 +0000
ROA not before: Tue 03 Dec 2024 16:20:00 +0000
ROA not after: Tue 02 Dec 2025 16:25:00 +0000
asID: 18809
IP address blocks: 138.186.88.0/22 maxlen: 24
181.197.0.0/17 maxlen: 24
181.197.128.0/18 maxlen: 24
186.179.112.0/20 maxlen: 24
186.188.128.0/17 maxlen: 24
190.2.224.0/20 maxlen: 24
190.5.224.0/20 maxlen: 24
190.5.224.0/24 maxlen: 24
190.5.232.0/24 maxlen: 24
190.5.238.0/23 maxlen: 23
190.5.248.0/23 maxlen: 24
190.5.252.0/22 maxlen: 24
190.57.32.0/20 maxlen: 24
190.122.162.0/24 maxlen: 24
190.122.165.0/24 maxlen: 24
190.122.167.0/24 maxlen: 24
190.122.168.0/24 maxlen: 24
190.122.172.0/23 maxlen: 24
190.122.175.0/24 maxlen: 24
190.140.0.0/15 maxlen: 24
190.218.0.0/15 maxlen: 24
200.3.200.0/21 maxlen: 24
200.46.1.0/24 maxlen: 24
200.46.3.0/24 maxlen: 24
200.46.4.0/22 maxlen: 24
200.46.15.0/24 maxlen: 24
200.46.16.0/24 maxlen: 24
200.46.20.0/24 maxlen: 24
200.46.55.0/24 maxlen: 24
200.46.62.0/24 maxlen: 24
200.46.66.0/23 maxlen: 24
200.46.68.0/23 maxlen: 24
200.46.70.0/24 maxlen: 24
200.46.72.0/24 maxlen: 24
200.46.82.0/24 maxlen: 24
200.46.104.0/24 maxlen: 24
200.46.106.0/24 maxlen: 24
200.46.111.0/24 maxlen: 24
200.46.117.0/24 maxlen: 24
200.46.133.0/24 maxlen: 24
200.46.136.0/24 maxlen: 24
200.46.142.0/23 maxlen: 24
200.46.148.0/24 maxlen: 24
200.46.171.0/24 maxlen: 24
200.46.173.0/24 maxlen: 24
200.46.202.0/24 maxlen: 24
200.46.205.0/24 maxlen: 24
200.46.215.0/24 maxlen: 24
200.46.232.0/22 maxlen: 24
200.75.192.0/18 maxlen: 24
200.90.138.0/24 maxlen: 24
200.90.141.0/24 maxlen: 24
200.90.143.0/24 maxlen: 24
200.108.32.0/19 maxlen: 24
200.115.143.0/24 maxlen: 24
200.115.159.0/24 maxlen: 24
200.124.0.0/19 maxlen: 24
201.218.64.0/18 maxlen: 24
201.218.208.0/24 maxlen: 24
201.218.218.0/24 maxlen: 24
201.218.226.0/24 maxlen: 24
201.218.230.0/24 maxlen: 24
201.218.234.0/24 maxlen: 24
201.218.238.0/24 maxlen: 24
201.218.246.0/24 maxlen: 24
201.218.248.0/24 maxlen: 24
201.218.250.0/24 maxlen: 24
201.218.253.0/24 maxlen: 24
2800:ce0::/32 maxlen: 56
2803:600::/32 maxlen: 56
2803:e600::/32 maxlen: 56
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 10 Apr 2025 14:41:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:3b:d4:3d:0e:4f:e2:88:a9:87:92:6d:e2:4f:5c:fc:7d:e0:76:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Validity
Not Before: Dec 3 16:20:00 2024 GMT
Not After : Dec 2 16:25:00 2025 GMT
Subject: CN=0F5F6340FF900F374120600765AF0B978CBCE3D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1c:50:e0:17:88:3a:5d:e2:12:1c:9f:36:b8:
67:f0:e7:a3:f3:e3:8a:c5:44:5d:b5:ce:ec:e1:b9:
0b:60:67:3d:d4:1f:d7:de:f8:21:9c:13:ef:be:d1:
1c:50:bd:27:29:6a:66:18:4d:7c:ec:7d:72:c9:46:
4e:e6:92:56:d6:b3:30:3e:f2:ea:30:31:b0:e1:84:
9a:45:1c:62:7c:42:44:97:3a:28:78:1b:37:ac:dc:
9e:72:4b:b3:ec:43:00:d5:09:54:2e:70:e9:7e:5a:
9d:e7:86:50:2d:70:92:83:41:d1:dc:3f:80:cf:93:
5a:bb:d6:3c:e9:cf:cf:04:48:3d:c0:33:d0:b7:07:
d7:8b:1b:76:39:50:be:2c:38:ab:d7:98:97:28:97:
a3:51:a8:3f:32:f3:98:12:b0:cb:6a:4e:41:db:66:
13:18:15:b0:55:5f:41:a6:75:21:1a:85:a8:d5:2e:
0e:4d:71:7a:e7:f2:56:1d:76:82:9f:e6:05:bf:fa:
d5:58:34:61:d8:08:ef:3a:0c:f3:d2:79:c5:d6:6b:
d0:26:e9:41:f3:ac:e2:b0:83:70:b6:92:24:fc:6c:
d8:4f:a9:ed:58:e0:00:79:49:02:72:45:f7:47:ae:
ff:ad:1c:b5:e3:b2:9b:30:d7:bb:a0:18:51:bf:7c:
62:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5F:63:40:FF:90:0F:37:41:20:60:07:65:AF:0B:97:8C:BC:E3:D2
X509v3 Authority Key Identifier:
keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS18809.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.88.0/22
181.197.0.0-181.197.191.255
186.179.112.0/20
186.188.128.0/17
190.2.224.0/20
190.5.224.0/20
190.5.248.0/23
190.5.252.0/22
190.57.32.0/20
190.122.162.0/24
190.122.165.0/24
190.122.167.0-190.122.168.255
190.122.172.0/23
190.122.175.0/24
190.140.0.0/15
190.218.0.0/15
200.3.200.0/21
200.46.1.0/24
200.46.3.0-200.46.7.255
200.46.15.0-200.46.16.255
200.46.20.0/24
200.46.55.0/24
200.46.62.0/24
200.46.66.0-200.46.70.255
200.46.72.0/24
200.46.82.0/24
200.46.104.0/24
200.46.106.0/24
200.46.111.0/24
200.46.117.0/24
200.46.133.0/24
200.46.136.0/24
200.46.142.0/23
200.46.148.0/24
200.46.171.0/24
200.46.173.0/24
200.46.202.0/24
200.46.205.0/24
200.46.215.0/24
200.46.232.0/22
200.75.192.0/18
200.90.138.0/24
200.90.141.0/24
200.90.143.0/24
200.108.32.0/19
200.115.143.0/24
200.115.159.0/24
200.124.0.0/19
201.218.64.0/18
201.218.208.0/24
201.218.218.0/24
201.218.226.0/24
201.218.230.0/24
201.218.234.0/24
201.218.238.0/24
201.218.246.0/24
201.218.248.0/24
201.218.250.0/24
201.218.253.0/24
IPv6:
2800:ce0::/32
2803:600::/32
2803:e600::/32
Signature Algorithm: sha256WithRSAEncryption
2e:fd:77:31:73:2b:ac:b8:4e:f2:51:22:b9:1f:7f:7a:12:e0:
cb:6d:f2:54:f1:1f:51:3b:97:9c:52:25:5d:3d:56:5d:97:77:
48:f9:85:fe:e4:d2:e4:7d:2d:f8:2e:16:9d:e4:d2:87:c7:9a:
8c:40:6b:96:0e:8a:7c:ca:e1:dd:9a:0a:1e:aa:e0:6e:b8:c6:
44:98:ce:04:7e:85:42:20:f4:41:5c:af:27:0a:2c:b9:31:37:
49:ff:fe:1b:92:8d:5f:c4:7d:3b:89:89:5e:fa:a5:f1:c1:e8:
21:65:5e:46:99:9c:fa:4f:23:25:78:ad:ac:50:97:4e:de:da:
71:1c:22:1a:f1:ee:8c:bc:27:df:8e:42:45:42:a4:f4:5e:ab:
75:4b:03:c2:54:57:c2:a3:a8:af:39:8a:37:9f:91:f1:3d:fd:
9a:69:83:c9:02:d2:ff:12:c8:88:8d:c6:ac:32:b8:31:b9:7d:
7e:4b:5d:32:54:0a:8b:16:03:b7:24:21:74:43:d8:ee:59:9c:
df:83:bc:de:6a:e6:57:20:2b:50:52:84:15:ef:da:5d:4b:e8:
62:0c:8e:84:58:45:12:d9:86:27:0d:b0:fa:be:23:6f:61:20:
8c:81:fd:22:29:86:1d:53:1a:b7:46:dd:03:f9:08:01:7e:83:
92:25:51:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:59:31 2025 by rpki-client