Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS18809.roa
File: AS18809.roa (raw, json)
Hash identifier: Y1TjEte3I57aBzWKolsT4S8BLpT/wXa27pLiRrfseNw=
Subject key identifier: E2:11:3D:8D:EA:CF:EC:B8:37:DC:4E:1C:1E:43:F2:CF:ED:63:B7:2D
Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Certificate serial: 76182B2F2314DE676044E8B20153AF39B1ACB92D
Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS18809.roa
Signing time: Tue 05 Mar 2024 17:55:02 +0000
ROA not before: Tue 05 Mar 2024 17:50:02 +0000
ROA not after: Tue 04 Mar 2025 17:55:02 +0000
asID: 18809
IP address blocks: 138.186.88.0/22 maxlen: 24
181.197.0.0/17 maxlen: 24
181.197.128.0/18 maxlen: 24
186.179.112.0/20 maxlen: 24
186.188.128.0/17 maxlen: 24
190.2.224.0/20 maxlen: 24
190.5.224.0/24 maxlen: 24
190.5.232.0/24 maxlen: 24
190.5.238.0/23 maxlen: 23
190.5.248.0/23 maxlen: 24
190.5.252.0/22 maxlen: 24
190.57.32.0/20 maxlen: 24
190.122.162.0/24 maxlen: 24
190.122.165.0/24 maxlen: 24
190.122.167.0/24 maxlen: 24
190.122.168.0/24 maxlen: 24
190.122.172.0/23 maxlen: 24
190.122.175.0/24 maxlen: 24
190.140.0.0/15 maxlen: 24
190.218.0.0/15 maxlen: 24
200.3.200.0/21 maxlen: 24
200.46.1.0/24 maxlen: 24
200.46.3.0/24 maxlen: 24
200.46.4.0/22 maxlen: 24
200.46.15.0/24 maxlen: 24
200.46.16.0/24 maxlen: 24
200.46.20.0/24 maxlen: 24
200.46.55.0/24 maxlen: 24
200.46.62.0/24 maxlen: 24
200.46.66.0/23 maxlen: 24
200.46.68.0/23 maxlen: 24
200.46.70.0/24 maxlen: 24
200.46.72.0/24 maxlen: 24
200.46.82.0/24 maxlen: 24
200.46.104.0/24 maxlen: 24
200.46.106.0/24 maxlen: 24
200.46.111.0/24 maxlen: 24
200.46.117.0/24 maxlen: 24
200.46.133.0/24 maxlen: 24
200.46.136.0/24 maxlen: 24
200.46.142.0/23 maxlen: 24
200.46.148.0/24 maxlen: 24
200.46.171.0/24 maxlen: 24
200.46.173.0/24 maxlen: 24
200.46.202.0/24 maxlen: 24
200.46.205.0/24 maxlen: 24
200.46.215.0/24 maxlen: 24
200.46.232.0/22 maxlen: 24
200.75.192.0/18 maxlen: 24
200.90.138.0/24 maxlen: 24
200.90.141.0/24 maxlen: 24
200.90.143.0/24 maxlen: 24
200.108.32.0/19 maxlen: 24
200.115.143.0/24 maxlen: 24
200.115.159.0/24 maxlen: 24
200.124.0.0/19 maxlen: 24
201.218.64.0/18 maxlen: 24
201.218.208.0/24 maxlen: 24
201.218.218.0/24 maxlen: 24
201.218.226.0/24 maxlen: 24
201.218.230.0/24 maxlen: 24
201.218.234.0/24 maxlen: 24
201.218.238.0/24 maxlen: 24
201.218.246.0/24 maxlen: 24
201.218.248.0/24 maxlen: 24
201.218.250.0/24 maxlen: 24
201.218.253.0/24 maxlen: 24
2800:ce0::/32 maxlen: 56
2803:600::/32 maxlen: 56
2803:e600::/32 maxlen: 56
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 13 May 2024 14:21:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:18:2b:2f:23:14:de:67:60:44:e8:b2:01:53:af:39:b1:ac:b9:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Validity
Not Before: Mar 5 17:50:02 2024 GMT
Not After : Mar 4 17:55:02 2025 GMT
Subject: CN=E2113D8DEACFECB837DC4E1C1E43F2CFED63B72D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a6:91:56:92:93:c8:69:b5:36:4c:b6:eb:e3:
df:b0:c2:ee:11:28:cb:f8:05:a8:8c:89:f9:f3:57:
28:9f:d0:52:bc:24:0c:16:05:06:73:0f:33:bb:06:
83:db:8b:fe:49:f0:9a:ea:1b:53:e4:ee:5f:e4:c2:
23:3c:28:84:49:35:cc:b7:0f:79:99:9f:cc:70:85:
0f:e6:c3:01:94:eb:fa:a8:6e:31:c8:35:48:eb:9f:
2b:cf:9f:eb:a7:ff:65:59:01:a9:8c:62:a6:68:67:
4c:40:90:51:32:40:de:b9:7c:50:20:46:68:7d:b2:
99:d2:df:92:2b:8e:68:66:0a:b9:c7:d3:53:1e:94:
d3:f1:d6:b2:5d:3b:7c:7d:e5:a5:4a:50:02:e5:66:
87:7f:89:0b:27:c6:61:2a:ca:bf:14:27:df:14:60:
d0:a4:b3:b6:cf:61:1b:8b:36:d4:b2:d4:83:53:87:
57:6a:b9:78:7b:04:69:80:f2:3f:cc:b7:a2:c6:6b:
3c:29:a4:44:66:e2:28:1e:d7:13:a3:bd:fb:61:a8:
b6:89:1d:6c:c3:7d:97:d6:b5:eb:fe:1e:f4:8b:e5:
02:48:a2:5b:71:0e:bf:8c:76:44:b9:de:e4:74:92:
21:56:9c:a0:36:37:98:6b:e4:25:05:18:14:0c:82:
7d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:11:3D:8D:EA:CF:EC:B8:37:DC:4E:1C:1E:43:F2:CF:ED:63:B7:2D
X509v3 Authority Key Identifier:
keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS18809.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.88.0/22
181.197.0.0-181.197.191.255
186.179.112.0/20
186.188.128.0/17
190.2.224.0/20
190.5.224.0/24
190.5.232.0/24
190.5.238.0/23
190.5.248.0/23
190.5.252.0/22
190.57.32.0/20
190.122.162.0/24
190.122.165.0/24
190.122.167.0-190.122.168.255
190.122.172.0/23
190.122.175.0/24
190.140.0.0/15
190.218.0.0/15
200.3.200.0/21
200.46.1.0/24
200.46.3.0-200.46.7.255
200.46.15.0-200.46.16.255
200.46.20.0/24
200.46.55.0/24
200.46.62.0/24
200.46.66.0-200.46.70.255
200.46.72.0/24
200.46.82.0/24
200.46.104.0/24
200.46.106.0/24
200.46.111.0/24
200.46.117.0/24
200.46.133.0/24
200.46.136.0/24
200.46.142.0/23
200.46.148.0/24
200.46.171.0/24
200.46.173.0/24
200.46.202.0/24
200.46.205.0/24
200.46.215.0/24
200.46.232.0/22
200.75.192.0/18
200.90.138.0/24
200.90.141.0/24
200.90.143.0/24
200.108.32.0/19
200.115.143.0/24
200.115.159.0/24
200.124.0.0/19
201.218.64.0/18
201.218.208.0/24
201.218.218.0/24
201.218.226.0/24
201.218.230.0/24
201.218.234.0/24
201.218.238.0/24
201.218.246.0/24
201.218.248.0/24
201.218.250.0/24
201.218.253.0/24
IPv6:
2800:ce0::/32
2803:600::/32
2803:e600::/32
Signature Algorithm: sha256WithRSAEncryption
6f:ad:48:49:88:b5:d9:de:f6:aa:4f:7e:6a:b2:9e:e9:8f:e1:
88:83:90:43:f4:f1:d3:e5:d2:46:77:b3:a2:e5:0c:bf:a0:47:
4b:a4:96:a5:b4:98:cc:3a:7a:57:76:ed:89:51:fc:d3:04:7a:
70:da:04:50:eb:43:12:7c:26:b6:34:43:35:cf:15:a8:d1:59:
3c:23:92:ca:0b:29:88:f2:54:24:eb:63:73:c3:62:62:bb:90:
87:38:bd:79:e6:b0:64:78:4e:50:c9:88:79:a5:6c:d1:08:4d:
bb:11:59:bf:76:47:cc:e6:aa:c6:98:25:ea:40:36:76:a5:e2:
1a:f4:52:99:9c:ca:c2:a5:3c:e8:12:9e:ea:50:2a:80:aa:dc:
52:54:4c:2e:da:23:6d:1f:b1:17:3a:89:34:11:ab:cd:e5:2e:
17:1b:27:d1:ff:f0:ee:54:c1:5e:64:eb:df:13:b0:55:5d:51:
d5:90:1d:24:36:f3:b2:dc:22:21:8e:cd:75:0c:36:69:35:d4:
23:83:96:3f:36:22:19:fb:23:cf:41:82:75:de:59:d6:25:e2:
d8:c8:fd:2d:00:ca:cc:a3:73:c8:4e:1c:88:78:5a:04:92:25:
27:c9:9e:3f:20:ac:19:5d:14:79:09:81:08:ba:a0:ed:ce:ed:
45:d7:21:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 14:03:05 2024 by rpki-client on console-ams.rpki-client.org