Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS18809.roa
File: AS18809.roa (raw, json)
Hash identifier: KoeKZrfi1vXcwHEwb7AfuxKtPTnnF2sHYICqICY4zuE=
Subject key identifier: 88:F9:78:C4:C9:48:C4:D5:49:A2:76:98:98:E0:67:2E:92:40:F1:47
Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Certificate serial: 4D9CB5E64A90F4D465F2E917013A782FC4A03D47
Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS18809.roa
Signing time: Thu 11 Sep 2025 14:50:00 +0000
ROA not before: Thu 11 Sep 2025 14:45:00 +0000
ROA not after: Thu 10 Sep 2026 14:50:00 +0000
asID: 18809
IP address blocks: 138.186.88.0/22 maxlen: 24
181.197.0.0/17 maxlen: 24
181.197.128.0/18 maxlen: 24
186.179.112.0/20 maxlen: 24
186.188.128.0/17 maxlen: 24
190.2.224.0/20 maxlen: 24
190.5.224.0/20 maxlen: 24
190.5.224.0/24 maxlen: 24
190.5.232.0/24 maxlen: 24
190.5.238.0/23 maxlen: 23
190.5.240.0/20 maxlen: 24
190.5.248.0/23 maxlen: 24
190.5.252.0/22 maxlen: 24
190.57.32.0/20 maxlen: 24
190.122.162.0/24 maxlen: 24
190.122.165.0/24 maxlen: 24
190.122.167.0/24 maxlen: 24
190.122.168.0/24 maxlen: 24
190.122.172.0/23 maxlen: 24
190.122.175.0/24 maxlen: 24
190.140.0.0/15 maxlen: 24
190.218.0.0/15 maxlen: 24
200.3.200.0/21 maxlen: 24
200.46.1.0/24 maxlen: 24
200.46.3.0/24 maxlen: 24
200.46.4.0/22 maxlen: 24
200.46.15.0/24 maxlen: 24
200.46.16.0/24 maxlen: 24
200.46.20.0/24 maxlen: 24
200.46.55.0/24 maxlen: 24
200.46.62.0/24 maxlen: 24
200.46.66.0/23 maxlen: 24
200.46.68.0/23 maxlen: 24
200.46.70.0/24 maxlen: 24
200.46.72.0/24 maxlen: 24
200.46.82.0/24 maxlen: 24
200.46.104.0/24 maxlen: 24
200.46.106.0/24 maxlen: 24
200.46.111.0/24 maxlen: 24
200.46.117.0/24 maxlen: 24
200.46.133.0/24 maxlen: 24
200.46.136.0/24 maxlen: 24
200.46.142.0/23 maxlen: 24
200.46.148.0/24 maxlen: 24
200.46.171.0/24 maxlen: 24
200.46.173.0/24 maxlen: 24
200.46.202.0/24 maxlen: 24
200.46.205.0/24 maxlen: 24
200.46.215.0/24 maxlen: 24
200.46.232.0/22 maxlen: 24
200.75.192.0/18 maxlen: 24
200.90.138.0/24 maxlen: 24
200.90.141.0/24 maxlen: 24
200.90.143.0/24 maxlen: 24
200.108.32.0/19 maxlen: 24
200.115.143.0/24 maxlen: 24
200.115.159.0/24 maxlen: 24
200.124.0.0/19 maxlen: 24
201.218.64.0/18 maxlen: 24
201.218.208.0/24 maxlen: 24
201.218.218.0/24 maxlen: 24
201.218.226.0/24 maxlen: 24
201.218.230.0/24 maxlen: 24
201.218.234.0/24 maxlen: 24
201.218.238.0/24 maxlen: 24
201.218.246.0/24 maxlen: 24
201.218.248.0/24 maxlen: 24
201.218.250.0/24 maxlen: 24
201.218.253.0/24 maxlen: 24
2800:ce0::/32 maxlen: 56
2803:600::/32 maxlen: 56
2803:e600::/32 maxlen: 56
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 23 Oct 2025 23:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:9c:b5:e6:4a:90:f4:d4:65:f2:e9:17:01:3a:78:2f:c4:a0:3d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Validity
Not Before: Sep 11 14:45:00 2025 GMT
Not After : Sep 10 14:50:00 2026 GMT
Subject: CN=88F978C4C948C4D549A2769898E0672E9240F147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:71:33:03:8f:54:c5:e4:4b:27:6e:f9:29:58:
23:91:1e:8c:29:cf:6a:3f:99:bc:9a:6f:d2:f9:93:
64:c2:df:55:a1:0f:e3:bb:ac:8b:40:77:87:0e:ba:
f9:81:08:b6:3c:ae:84:2f:17:ae:aa:43:d1:85:4e:
71:35:53:83:a7:88:01:12:9a:65:a0:c0:48:3f:10:
a8:21:84:a7:ea:d6:07:66:ac:d0:d6:8f:2a:b8:aa:
da:6c:64:4a:0f:aa:24:25:d6:fa:f6:4c:11:dc:ee:
02:62:de:c0:95:56:4a:e1:8a:af:3e:57:00:4a:bd:
56:1c:e6:9a:a6:ba:72:00:6c:8f:85:08:d9:d2:32:
2b:28:08:e6:ee:9f:cb:f6:46:3b:59:f1:9e:2a:1a:
e2:11:a4:67:33:6b:23:d3:b8:e1:1f:02:24:97:fc:
47:ef:de:7e:38:b1:88:b2:97:39:7d:d3:8d:67:64:
90:17:4f:ee:d8:6a:76:cb:46:33:8c:b0:2b:44:d3:
2d:1d:bc:48:2a:a5:0f:45:e3:91:8a:8e:3d:4e:36:
2f:f4:16:23:42:9a:51:8a:5f:4d:30:6f:eb:26:4b:
c4:5f:d6:08:d3:86:3a:05:51:d3:28:73:19:11:62:
90:37:ec:ea:b7:52:45:f0:c9:6f:4f:d3:4f:60:b9:
cb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F9:78:C4:C9:48:C4:D5:49:A2:76:98:98:E0:67:2E:92:40:F1:47
X509v3 Authority Key Identifier:
keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS18809.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.88.0/22
181.197.0.0-181.197.191.255
186.179.112.0/20
186.188.128.0/17
190.2.224.0/20
190.5.224.0/19
190.57.32.0/20
190.122.162.0/24
190.122.165.0/24
190.122.167.0-190.122.168.255
190.122.172.0/23
190.122.175.0/24
190.140.0.0/15
190.218.0.0/15
200.3.200.0/21
200.46.1.0/24
200.46.3.0-200.46.7.255
200.46.15.0-200.46.16.255
200.46.20.0/24
200.46.55.0/24
200.46.62.0/24
200.46.66.0-200.46.70.255
200.46.72.0/24
200.46.82.0/24
200.46.104.0/24
200.46.106.0/24
200.46.111.0/24
200.46.117.0/24
200.46.133.0/24
200.46.136.0/24
200.46.142.0/23
200.46.148.0/24
200.46.171.0/24
200.46.173.0/24
200.46.202.0/24
200.46.205.0/24
200.46.215.0/24
200.46.232.0/22
200.75.192.0/18
200.90.138.0/24
200.90.141.0/24
200.90.143.0/24
200.108.32.0/19
200.115.143.0/24
200.115.159.0/24
200.124.0.0/19
201.218.64.0/18
201.218.208.0/24
201.218.218.0/24
201.218.226.0/24
201.218.230.0/24
201.218.234.0/24
201.218.238.0/24
201.218.246.0/24
201.218.248.0/24
201.218.250.0/24
201.218.253.0/24
IPv6:
2800:ce0::/32
2803:600::/32
2803:e600::/32
Signature Algorithm: sha256WithRSAEncryption
80:fe:90:94:c5:bc:c0:11:be:e2:f4:4d:a4:20:0f:87:a9:76:
59:52:fb:28:f4:ab:1b:7b:5d:7e:42:34:93:ce:d4:65:1b:de:
c2:fa:44:3d:b9:d3:52:93:d1:29:1b:0d:8d:06:65:1e:24:8e:
48:f6:56:90:38:3b:c4:c0:25:79:1c:93:b2:d8:7f:55:5c:8b:
0b:1f:78:05:ce:e0:cb:7b:82:03:73:35:1c:64:af:6b:46:35:
77:2d:ce:1f:f7:b1:cc:d9:35:b2:dd:40:b8:97:e5:31:cd:24:
c8:6f:c7:4a:ce:7a:ae:e7:2b:13:11:4e:f5:0e:b1:5f:1e:ca:
84:c2:68:50:a2:56:12:ba:9c:f5:7d:6e:04:35:fb:4f:19:48:
bf:da:62:46:45:19:0a:33:b0:e2:90:78:be:66:4a:5b:74:4a:
73:53:1d:53:2f:d4:66:0b:e7:01:da:fc:fb:f5:c0:bd:6d:0f:
da:b1:5c:05:c6:32:2b:51:55:4f:b0:d3:de:dc:5d:b4:6e:15:
58:ef:fb:66:43:c3:6b:a2:d2:47:26:9c:49:bb:09:54:4f:1a:
ee:50:19:be:fb:32:c1:2f:ec:d3:4b:f4:62:9e:8d:34:1f:4d:
39:39:87:3a:a1:ee:ae:5e:90:f7:8d:78:2b:5d:4b:8b:6e:9a:
25:9b:05:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 10:56:31 2025 by rpki-client