Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
File: AS3790.roa (raw, json)
Hash identifier: kTZffxkizA7wvnifv+0vHVcbpesOaWwOFYF0rn6IC2Y=
Subject key identifier: 56:FA:DB:60:0F:84:C5:2B:14:5E:CE:C8:69:31:71:AE:84:3B:A3:70
Certificate issuer: /CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
Certificate serial: 34DB6BC6EAB5D14AC7231765C76C093DA9938BFD
Authority key identifier: 09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
Signing time: Thu 15 May 2025 16:19:04 +0000
ROA not before: Thu 15 May 2025 16:14:04 +0000
ROA not after: Thu 14 May 2026 16:19:04 +0000
asID: 3790
IP address blocks: 190.10.0.0/20 maxlen: 24
190.10.16.0/23 maxlen: 24
190.10.19.0/24 maxlen: 24
190.10.20.0/22 maxlen: 24
190.10.25.0/24 maxlen: 24
190.10.26.0/23 maxlen: 24
190.10.28.0/22 maxlen: 24
190.10.32.0/24 maxlen: 24
190.10.34.0/24 maxlen: 24
190.10.64.0/23 maxlen: 24
190.10.66.0/24 maxlen: 24
190.10.68.0/22 maxlen: 24
190.10.76.0/22 maxlen: 24
190.10.121.0/24 maxlen: 24
190.10.122.0/23 maxlen: 24
190.171.0.0/24 maxlen: 24
190.171.3.0/24 maxlen: 24
190.171.4.0/22 maxlen: 24
190.171.8.0/23 maxlen: 24
190.171.14.0/24 maxlen: 24
190.171.16.0/22 maxlen: 24
190.171.20.0/24 maxlen: 24
190.171.22.0/23 maxlen: 24
190.171.24.0/23 maxlen: 23
190.171.24.0/23 maxlen: 24
190.171.27.0/24 maxlen: 24
190.171.28.0/24 maxlen: 24
190.171.32.0/19 maxlen: 24
190.241.0.0/22 maxlen: 22
190.241.4.0/23 maxlen: 24
190.241.6.0/24 maxlen: 24
190.241.8.0/23 maxlen: 24
190.241.11.0/24 maxlen: 24
190.241.12.0/22 maxlen: 24
190.241.17.0/24 maxlen: 24
190.241.18.0/23 maxlen: 24
190.241.20.0/22 maxlen: 24
190.241.24.0/22 maxlen: 22
190.241.28.0/23 maxlen: 23
190.241.30.0/24 maxlen: 24
190.241.32.0/19 maxlen: 24
190.241.64.0/21 maxlen: 21
190.241.72.0/24 maxlen: 24
190.241.77.0/24 maxlen: 24
190.241.78.0/23 maxlen: 24
190.241.80.0/20 maxlen: 24
190.241.96.0/20 maxlen: 20
190.241.112.0/22 maxlen: 24
190.241.116.0/24 maxlen: 24
190.241.119.0/24 maxlen: 27
190.241.121.0/24 maxlen: 24
190.241.122.0/23 maxlen: 23
190.241.126.0/23 maxlen: 23
190.241.128.0/24 maxlen: 24
190.241.132.0/24 maxlen: 24
190.241.135.0/24 maxlen: 24
190.241.142.0/23 maxlen: 23
190.241.144.0/20 maxlen: 20
190.241.160.0/19 maxlen: 24
190.241.192.0/22 maxlen: 24
190.241.196.0/23 maxlen: 23
190.241.199.0/24 maxlen: 24
190.241.200.0/24 maxlen: 24
190.241.202.0/23 maxlen: 23
190.241.204.0/23 maxlen: 23
190.241.206.0/24 maxlen: 24
190.241.208.0/20 maxlen: 20
190.241.224.0/19 maxlen: 20
196.40.0.0/19 maxlen: 24
196.40.34.0/23 maxlen: 24
196.40.36.0/22 maxlen: 24
196.40.40.0/21 maxlen: 21
196.40.40.0/21 maxlen: 24
196.40.40.0/23 maxlen: 23
196.40.40.0/23 maxlen: 24
196.40.49.0/24 maxlen: 24
196.40.50.0/23 maxlen: 23
196.40.52.0/22 maxlen: 22
196.40.56.0/21 maxlen: 24
196.40.64.0/21 maxlen: 24
196.40.72.0/24 maxlen: 24
196.40.74.0/23 maxlen: 23
196.40.76.0/22 maxlen: 22
196.40.80.0/20 maxlen: 24
200.122.128.0/18 maxlen: 24
2001:13d8::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl
rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 21 May 2025 01:23:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:db:6b:c6:ea:b5:d1:4a:c7:23:17:65:c7:6c:09:3d:a9:93:8b:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
Validity
Not Before: May 15 16:14:04 2025 GMT
Not After : May 14 16:19:04 2026 GMT
Subject: CN=56FADB600F84C52B145ECEC8693171AE843BA370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:12:75:0a:d0:3b:5d:98:53:2c:79:ac:f7:e7:
1d:f3:8d:ab:6d:f1:f5:92:83:8b:30:7b:9a:9c:bb:
d4:79:ce:fb:8d:05:79:bf:a8:94:ea:20:21:d2:0f:
ca:c8:5f:6a:8e:09:9f:da:b7:a2:c7:30:0d:c0:a8:
ce:98:ca:b7:37:88:e1:af:70:48:b9:cb:dd:3b:62:
5e:8f:98:da:6a:26:36:a5:5e:58:d6:2b:50:25:5c:
48:1b:8a:c6:97:4e:b0:8c:58:a3:e5:6c:91:29:1d:
a6:a3:e8:86:85:b3:ab:bf:da:75:8e:be:0d:14:7f:
0c:98:ad:a1:3f:2d:de:84:16:fc:d1:0c:d0:f5:af:
9c:db:81:6c:8d:0c:eb:a1:c1:94:8c:90:f2:2b:89:
10:38:bd:9d:c8:c2:38:74:05:c5:44:9a:81:9f:10:
11:e9:77:6f:d4:49:4b:99:c4:75:76:a1:6d:4e:33:
8b:62:a7:cb:a8:4a:26:e3:de:8d:fd:f4:39:f1:49:
97:a8:64:39:43:0d:5c:e4:d1:0c:c5:2b:f4:f5:7c:
a3:a3:f1:26:2a:40:af:8e:f7:fe:04:52:7b:c7:db:
9e:25:d4:fd:1f:f7:16:c4:cc:77:d4:c6:3d:70:ce:
5a:48:a3:a5:10:c3:bb:46:9d:88:1c:65:4a:83:2b:
cb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:FA:DB:60:0F:84:C5:2B:14:5E:CE:C8:69:31:71:AE:84:3B:A3:70
X509v3 Authority Key Identifier:
keyid:09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.10.0.0-190.10.17.255
190.10.19.0-190.10.23.255
190.10.25.0-190.10.32.255
190.10.34.0/24
190.10.64.0-190.10.66.255
190.10.68.0/22
190.10.76.0/22
190.10.121.0-190.10.123.255
190.171.0.0/24
190.171.3.0-190.171.9.255
190.171.14.0/24
190.171.16.0-190.171.20.255
190.171.22.0-190.171.25.255
190.171.27.0-190.171.28.255
190.171.32.0/19
190.241.0.0-190.241.6.255
190.241.8.0/23
190.241.11.0-190.241.15.255
190.241.17.0-190.241.30.255
190.241.32.0-190.241.72.255
190.241.77.0-190.241.116.255
190.241.119.0/24
190.241.121.0-190.241.123.255
190.241.126.0-190.241.128.255
190.241.132.0/24
190.241.135.0/24
190.241.142.0-190.241.197.255
190.241.199.0-190.241.200.255
190.241.202.0-190.241.206.255
190.241.208.0-190.241.255.255
196.40.0.0/19
196.40.34.0-196.40.47.255
196.40.49.0-196.40.72.255
196.40.74.0-196.40.95.255
200.122.128.0/18
IPv6:
2001:13d8::/32
Signature Algorithm: sha256WithRSAEncryption
27:e4:b2:87:8d:3e:43:ca:fd:d0:40:8c:84:8a:0b:a1:13:3f:
6f:2f:a7:77:8f:2a:79:94:e5:d2:52:ff:c8:17:da:10:79:68:
be:03:f7:e1:a8:c2:28:36:f3:21:82:6c:9f:e7:f8:65:e7:48:
39:c6:a5:4f:2f:32:f9:ed:92:df:89:aa:bc:aa:91:5f:43:52:
78:5e:d4:d7:e1:de:48:75:86:f5:6c:e9:25:20:ae:8c:01:46:
72:0b:5d:1d:fb:5f:db:b8:eb:2e:87:26:3e:4a:af:ef:77:7b:
51:29:ed:c5:e5:17:17:89:ae:33:ca:27:4b:98:84:9f:9b:ac:
5d:64:a6:e0:66:06:11:05:de:f0:3e:77:8f:ad:b4:f8:56:1f:
ab:a4:91:d9:40:b3:f0:ce:44:c4:2b:d3:4f:fd:e3:d6:bf:1a:
7a:ea:68:05:11:63:a4:2d:5d:5a:70:0d:d2:40:e3:38:36:be:
9a:4d:08:9f:47:fd:79:79:29:be:81:d1:0f:89:19:9e:84:77:
94:fd:0a:f3:e4:2a:2e:03:f0:82:66:11:87:35:9f:9f:da:04:
9a:62:ac:be:9c:e6:28:7a:2e:22:78:2b:0c:c9:64:3a:af:de:
61:9a:2c:eb:d1:ff:5c:09:cb:82:16:5d:a1:26:43:12:74:50:
95:a6:2d:b8
-----BEGIN CERTIFICATE-----
MIIHJzCCBg+gAwIBAgIUNNtrxuq10UrHIxdlx2wJPamTi/0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk3Rjc4NUI0M0VEMkI3RDNGREZBQzI0QjkxMjNDNUQx
OEMyMDhFQjAeFw0yNTA1MTUxNjE0MDRaFw0yNjA1MTQxNjE5MDRaMDMxMTAvBgNV
BAMTKDU2RkFEQjYwMEY4NEM1MkIxNDVFQ0VDODY5MzE3MUFFODQzQkEzNzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8EnUK0DtdmFMseaz35x3zjatt
8fWSg4swe5qcu9R5zvuNBXm/qJTqICHSD8rIX2qOCZ/at6LHMA3AqM6Yyrc3iOGv
cEi5y907Yl6PmNpqJjalXljWK1AlXEgbisaXTrCMWKPlbJEpHaaj6IaFs6u/2nWO
vg0UfwyYraE/Ld6EFvzRDND1r5zbgWyNDOuhwZSMkPIriRA4vZ3Iwjh0BcVEmoGf
EBHpd2/USUuZxHV2oW1OM4tip8uoSibj3o399DnxSZeoZDlDDVzk0QzFK/T1fKOj
8SYqQK+O9/4EUnvH254l1P0f9xbEzHfUxj1wzlpIo6UQw7tGnYgcZUqDK8vnAgMB
AAGjggQxMIIELTAdBgNVHQ4EFgQUVvrbYA+ExSsUXs7IaTFxroQ7o3AwHwYDVR0j
BBgwFoAUCX94W0PtK30/36wkuRI8XRjCCOswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81QzUxQUY2NUE2NkY1QTczOTg5M0YzQkE3N0Y3MjlDRkMz
MTU3NkE2QTJENTAzQURGRUZBMkU0QkMyMjQ0QTBELzAvMDk3Rjc4NUI0M0VEMkI3
RDNGREZBQzI0QjkxMjNDNUQxOEMyMDhFQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wOTdGNzg1QjQzRUQyQjdEM0ZE
RkFDMjRCOTEyM0M1RDE4QzIwOEVCLmNlcjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMG
CCsGAQUFBzALhndyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy81QzUxQUY2NUE2NkY1QTczOTg5M0YzQkE3N0Y3MjlDRkMzMTU3NkE2QTJE
NTAzQURGRUZBMkU0QkMyMjQ0QTBELzAvQVMzNzkwLnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBtwYIKwYBBQUHAQcBAf8EggGmMIIBojCCAY8EAgABMIIB
hzALAwMBvgoDBAG+ChAwDAMEAL4KEwMEA74KEDAMAwQAvgoZAwQAvgogAwQAvgoi
MAwDBAa+CkADBAC+CkIDBAK+CkQDBAK+CkwwDAMEAL4KeQMEAr4KeAMEAL6rADAM
AwQAvqsDAwQBvqsIAwQAvqsOMAwDBAS+qxADBAC+qxQwDAMEAb6rFgMEAb6rGDAM
AwQAvqsbAwQAvqscAwQFvqsgMAsDAwC+8QMEAL7xBgMEAb7xCDAMAwQAvvELAwQE
vvEAMAwDBAC+8REDBAC+8R4wDAMEBb7xIAMEAL7xSDAMAwQAvvFNAwQAvvF0AwQA
vvF3MAwDBAC+8XkDBAK+8XgwDAMEAb7xfgMEAL7xgAMEAL7xhAMEAL7xhzAMAwQB
vvGOAwQBvvHEMAwDBAC+8ccDBAC+8cgwDAMEAb7xygMEAL7xzjALAwQEvvHQAwMB
vvADBAXEKAAwDAMEAcQoIgMEBMQoIDAMAwQAxCgxAwQAxChIMAwDBAHEKEoDBAXE
KEADBAbIeoAwDQQCAAIwBwMFACABE9gwDQYJKoZIhvcNAQELBQADggEBACfksoeN
PkPK/dBAjISKC6ETP28vp3ePKnmU5dJS/8gX2hB5aL4D9+Gowig28yGCbJ/n+GXn
SDnGpU8vMvntkt+JqryqkV9DUnhe1Nfh3kh1hvVs6SUgrowBRnILXR37X9u46y6H
Jj5Kr+93e1Ep7cXlFxeJrjPKJ0uYhJ+brF1kpuBmBhEF3vA+d4+ttPhWH6ukkdlA
s/DORMQr00/949a/GnrqaAURY6QtXVpwDdJA4zg2vppNCJ9H/Xl5Kb6B0Q+JGZ6E
d5T9CvPkKi4D8IJmEYc1n5/aBJpirL6c5ih6LiJ4KwzJZDqv3mGaLOvR/1wJy4IW
XaEmQxJ0UJWmLbg=
-----END CERTIFICATE-----
Generated at Sat May 17 06:55:09 2025 by rpki-client