Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
File: AS3790.roa (raw, json)
Hash identifier: 99fBM4XIMkGkWT9KHy83Au8ULd0V8+aZqfkeQXEZCv8=
Subject key identifier: 20:A2:6F:48:63:8B:12:E9:67:4C:79:A6:0E:A4:5A:38:90:0E:F3:EC
Certificate issuer: /CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
Certificate serial: 4DCA1E879A750840AF8180030D4B5FE0AF4C3F1D
Authority key identifier: 09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
Signing time: Mon 27 Apr 2026 22:00:00 +0000
ROA not before: Mon 27 Apr 2026 21:55:00 +0000
ROA not after: Mon 26 Apr 2027 22:00:00 +0000
asID: 3790
IP address blocks: 190.10.0.0/20 maxlen: 24
190.10.16.0/23 maxlen: 24
190.10.19.0/24 maxlen: 24
190.10.20.0/22 maxlen: 24
190.10.25.0/24 maxlen: 24
190.10.26.0/23 maxlen: 24
190.10.28.0/22 maxlen: 24
190.10.32.0/24 maxlen: 24
190.10.34.0/24 maxlen: 24
190.10.64.0/23 maxlen: 24
190.10.66.0/24 maxlen: 24
190.10.68.0/22 maxlen: 24
190.10.76.0/22 maxlen: 24
190.10.121.0/24 maxlen: 24
190.10.122.0/23 maxlen: 24
190.171.0.0/24 maxlen: 24
190.171.3.0/24 maxlen: 24
190.171.4.0/22 maxlen: 24
190.171.8.0/23 maxlen: 24
190.171.14.0/24 maxlen: 24
190.171.16.0/22 maxlen: 24
190.171.20.0/24 maxlen: 24
190.171.22.0/23 maxlen: 24
190.171.24.0/23 maxlen: 24
190.171.27.0/24 maxlen: 24
190.171.28.0/24 maxlen: 24
190.171.32.0/19 maxlen: 24
190.241.0.0/22 maxlen: 22
190.241.4.0/23 maxlen: 24
190.241.6.0/24 maxlen: 24
190.241.8.0/23 maxlen: 24
190.241.11.0/24 maxlen: 24
190.241.12.0/22 maxlen: 24
190.241.17.0/24 maxlen: 24
190.241.18.0/23 maxlen: 24
190.241.20.0/22 maxlen: 24
190.241.24.0/22 maxlen: 22
190.241.28.0/23 maxlen: 23
190.241.30.0/24 maxlen: 24
190.241.32.0/19 maxlen: 24
190.241.64.0/21 maxlen: 21
190.241.72.0/24 maxlen: 24
190.241.77.0/24 maxlen: 24
190.241.78.0/23 maxlen: 24
190.241.80.0/20 maxlen: 24
190.241.96.0/20 maxlen: 20
190.241.112.0/22 maxlen: 24
190.241.116.0/24 maxlen: 24
190.241.119.0/24 maxlen: 27
190.241.121.0/24 maxlen: 24
190.241.122.0/23 maxlen: 24
190.241.126.0/23 maxlen: 24
190.241.128.0/24 maxlen: 24
190.241.132.0/24 maxlen: 24
190.241.135.0/24 maxlen: 24
190.241.142.0/23 maxlen: 23
190.241.144.0/20 maxlen: 20
190.241.160.0/19 maxlen: 24
190.241.192.0/22 maxlen: 24
190.241.196.0/23 maxlen: 24
190.241.199.0/24 maxlen: 24
190.241.200.0/24 maxlen: 24
190.241.202.0/23 maxlen: 24
190.241.204.0/23 maxlen: 24
190.241.206.0/24 maxlen: 24
190.241.208.0/20 maxlen: 20
190.241.224.0/19 maxlen: 20
196.40.0.0/19 maxlen: 24
196.40.34.0/23 maxlen: 24
196.40.36.0/22 maxlen: 24
196.40.40.0/21 maxlen: 24
196.40.49.0/24 maxlen: 24
196.40.50.0/23 maxlen: 23
196.40.52.0/22 maxlen: 24
196.40.52.0/24 maxlen: 24
196.40.56.0/21 maxlen: 24
196.40.64.0/21 maxlen: 24
196.40.72.0/24 maxlen: 24
196.40.74.0/23 maxlen: 23
196.40.76.0/22 maxlen: 22
196.40.80.0/20 maxlen: 24
200.122.128.0/18 maxlen: 24
2001:13d8::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl
rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sat 16 May 2026 11:23:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:ca:1e:87:9a:75:08:40:af:81:80:03:0d:4b:5f:e0:af:4c:3f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
Validity
Not Before: Apr 27 21:55:00 2026 GMT
Not After : Apr 26 22:00:00 2027 GMT
Subject: CN=20A26F48638B12E9674C79A60EA45A38900EF3EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3c:bc:65:f1:50:e5:ff:68:f5:cb:0a:d2:35:
61:fd:bc:e5:8a:fb:5d:10:8c:58:72:4f:e4:06:ef:
4f:4a:b0:d6:2f:6b:67:55:4b:97:9f:b3:e5:b7:c0:
60:28:d3:a4:68:e6:9f:8c:90:fa:a6:4b:b2:19:04:
a3:85:6e:b6:e4:cb:a8:9d:7d:88:de:8d:eb:71:b3:
fc:fe:a5:3b:85:4d:9c:37:63:12:8c:6f:ce:1a:ab:
d5:73:86:1d:3d:76:31:48:58:14:3c:56:ca:a6:1a:
d8:05:b4:d0:fa:92:b9:3b:13:a1:14:63:c2:e4:6a:
0c:c1:c0:c2:47:16:26:0d:dd:0e:19:11:1b:0f:89:
b3:d1:c5:55:e2:48:e5:18:92:84:cc:e7:47:44:cd:
02:45:b1:3a:5c:c7:14:a0:f1:e5:98:26:fd:af:1e:
54:0a:75:32:a5:7d:70:b4:f1:d7:22:9e:6f:6d:47:
cd:e7:c3:22:65:d3:7c:4a:bb:3b:c5:1d:6d:eb:88:
a1:e6:4e:71:aa:93:91:30:62:8f:ee:05:96:45:c5:
36:4b:c4:f1:89:00:1b:49:0e:1d:f8:58:52:f1:7e:
3f:da:a9:65:ba:7a:7c:e7:7d:e1:d2:dc:66:9b:72:
b1:f5:36:7b:2b:bb:f7:5d:0a:a8:ee:7f:0c:4f:ee:
2a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A2:6F:48:63:8B:12:E9:67:4C:79:A6:0E:A4:5A:38:90:0E:F3:EC
X509v3 Authority Key Identifier:
keyid:09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.10.0.0-190.10.17.255
190.10.19.0-190.10.23.255
190.10.25.0-190.10.32.255
190.10.34.0/24
190.10.64.0-190.10.66.255
190.10.68.0/22
190.10.76.0/22
190.10.121.0-190.10.123.255
190.171.0.0/24
190.171.3.0-190.171.9.255
190.171.14.0/24
190.171.16.0-190.171.20.255
190.171.22.0-190.171.25.255
190.171.27.0-190.171.28.255
190.171.32.0/19
190.241.0.0-190.241.6.255
190.241.8.0/23
190.241.11.0-190.241.15.255
190.241.17.0-190.241.30.255
190.241.32.0-190.241.72.255
190.241.77.0-190.241.116.255
190.241.119.0/24
190.241.121.0-190.241.123.255
190.241.126.0-190.241.128.255
190.241.132.0/24
190.241.135.0/24
190.241.142.0-190.241.197.255
190.241.199.0-190.241.200.255
190.241.202.0-190.241.206.255
190.241.208.0-190.241.255.255
196.40.0.0/19
196.40.34.0-196.40.47.255
196.40.49.0-196.40.72.255
196.40.74.0-196.40.95.255
200.122.128.0/18
IPv6:
2001:13d8::/32
Signature Algorithm: sha256WithRSAEncryption
9a:6d:b4:d1:79:59:06:07:17:7f:60:96:e9:28:69:f2:00:4e:
84:0e:7c:92:ae:73:5e:db:f3:04:b2:5c:74:ac:57:d1:b5:8f:
08:eb:c7:0a:25:23:fd:cf:f5:cb:0b:a1:05:5b:c7:5f:03:29:
b7:ea:34:bc:09:b1:9b:b0:73:3e:bf:cd:5f:1b:76:2b:e3:cc:
d2:34:f4:3c:d6:35:cf:25:44:10:df:a2:6e:be:70:1a:63:48:
a5:b6:53:92:67:d0:7f:4f:1a:85:84:44:ef:df:1d:f0:52:31:
46:31:dc:17:7f:58:2d:f8:ee:73:51:52:9c:6b:f3:9f:7e:75:
68:be:03:2c:1d:c2:19:91:7f:7b:bc:53:43:ae:66:6b:0e:fb:
19:73:94:a6:20:f6:84:f9:46:96:44:82:2b:3f:dc:5f:d8:40:
b4:49:45:ee:70:9c:37:62:a5:88:fe:41:df:1f:f2:f2:cb:de:
7d:b3:83:f0:51:3b:e8:61:7e:66:10:33:4e:93:95:5c:05:27:
57:40:ef:7e:3b:65:30:ad:13:e6:4e:80:8a:bb:15:91:b9:6a:
76:80:70:43:8f:fa:33:9b:7f:e2:4e:d4:ef:5a:f4:25:2a:d6:
fb:0d:34:49:6a:78:f8:60:ea:d1:e5:78:1e:1d:ed:b7:57:72:
a9:94:fe:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:31:21 2026 by rpki-client