Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS11830.roa
File:                     AS11830.roa (raw, json)
Hash identifier:          Gh4IXnEKedDgSCnH85LDdkiJdIhLa8NPZITlyQzBhRc=
Subject key identifier:   08:75:E9:E1:AD:0F:10:D5:C3:C0:BC:B3:B4:91:18:C0:44:80:1B:D7
Certificate issuer:       /CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
Certificate serial:       573A5E055910F1D1624877E712836BB590B23997
Authority key identifier: 09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS11830.roa
Signing time:             Thu 18 Jun 2026 16:35:00 +0000
ROA not before:           Thu 18 Jun 2026 16:30:00 +0000
ROA not after:            Thu 17 Jun 2027 16:35:00 +0000
asID:                     11830
IP address blocks:        190.10.18.0/24 maxlen: 24
                          190.10.24.0/24 maxlen: 24
                          190.10.36.0/22 maxlen: 24
                          190.10.40.0/21 maxlen: 24
                          190.10.48.0/20 maxlen: 24
                          190.10.72.0/22 maxlen: 24
                          190.10.80.0/20 maxlen: 24
                          190.10.96.0/20 maxlen: 24
                          190.10.112.0/21 maxlen: 24
                          190.10.120.0/24 maxlen: 24
                          190.10.124.0/22 maxlen: 24
                          190.171.1.0/24 maxlen: 24
                          190.171.2.0/24 maxlen: 24
                          190.171.10.0/23 maxlen: 24
                          190.171.12.0/22 maxlen: 24
                          190.171.20.0/23 maxlen: 24
                          190.171.29.0/24 maxlen: 24
                          190.171.30.0/23 maxlen: 24
                          190.241.7.0/24 maxlen: 24
                          190.241.10.0/24 maxlen: 24
                          190.241.16.0/24 maxlen: 24
                          190.241.31.0/24 maxlen: 24
                          190.241.73.0/24 maxlen: 24
                          190.241.74.0/23 maxlen: 24
                          190.241.76.0/24 maxlen: 24
                          190.241.117.0/24 maxlen: 24
                          190.241.118.0/24 maxlen: 24
                          190.241.120.0/24 maxlen: 24
                          190.241.124.0/23 maxlen: 24
                          190.241.129.0/24 maxlen: 24
                          190.241.130.0/24 maxlen: 24
                          190.241.133.0/24 maxlen: 24
                          190.241.134.0/24 maxlen: 24
                          190.241.136.0/22 maxlen: 24
                          190.241.140.0/23 maxlen: 24
                          190.241.198.0/24 maxlen: 24
                          190.241.201.0/24 maxlen: 24
                          190.241.207.0/24 maxlen: 24
                          196.40.32.0/23 maxlen: 24
                          196.40.48.0/24 maxlen: 24
                          196.40.73.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 06 Jul 2026 21:06:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            57:3a:5e:05:59:10:f1:d1:62:48:77:e7:12:83:6b:b5:90:b2:39:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
        Validity
            Not Before: Jun 18 16:30:00 2026 GMT
            Not After : Jun 17 16:35:00 2027 GMT
        Subject: CN=0875E9E1AD0F10D5C3C0BCB3B49118C044801BD7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:02:22:4a:7e:d9:a7:53:9b:2e:ad:81:1b:71:
                    43:4d:3f:07:f8:a8:78:e0:01:c8:1b:89:a4:69:34:
                    45:5f:95:66:b8:21:f2:2b:fa:d7:61:ce:24:65:22:
                    25:68:81:f9:ae:c2:36:e0:40:03:0b:87:95:4c:a4:
                    cc:74:53:05:94:fa:c3:a3:0a:fc:42:22:5c:e5:a2:
                    ed:60:7d:1e:85:22:ec:3c:be:04:cb:2c:a5:3b:f1:
                    64:fd:9d:e1:5f:ad:47:0b:ba:05:dc:08:4a:22:cf:
                    d9:63:ab:0d:26:19:1c:a1:f7:67:52:f8:06:23:67:
                    af:6d:11:81:97:b3:4b:cf:6d:da:bf:8b:25:4a:e6:
                    e7:cf:9e:63:c4:87:1b:fc:96:2a:09:57:36:72:b1:
                    80:1e:9d:9d:d6:64:2e:07:17:f4:9c:a2:77:0d:88:
                    c5:3e:3c:52:c9:74:87:74:ef:13:89:03:28:dc:ca:
                    1a:6d:2f:90:f1:4b:28:48:0e:88:6d:d4:4e:df:ea:
                    e6:6e:66:f2:7f:a9:e8:d4:82:46:86:3a:0d:5d:7f:
                    6e:1b:ea:78:6c:73:b1:a4:c7:80:82:e2:32:0f:a9:
                    52:f2:1e:cb:ad:9a:90:ed:6e:d0:34:77:de:eb:7d:
                    69:cb:d2:36:56:8c:f5:97:0e:e6:4a:4d:77:ae:5d:
                    08:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:75:E9:E1:AD:0F:10:D5:C3:C0:BC:B3:B4:91:18:C0:44:80:1B:D7
            X509v3 Authority Key Identifier:
                keyid:09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS11830.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.10.18.0/24
                  190.10.24.0/24
                  190.10.36.0-190.10.63.255
                  190.10.72.0/22
                  190.10.80.0-190.10.120.255
                  190.10.124.0/22
                  190.171.1.0-190.171.2.255
                  190.171.10.0-190.171.15.255
                  190.171.20.0/23
                  190.171.29.0-190.171.31.255
                  190.241.7.0/24
                  190.241.10.0/24
                  190.241.16.0/24
                  190.241.31.0/24
                  190.241.73.0-190.241.76.255
                  190.241.117.0-190.241.118.255
                  190.241.120.0/24
                  190.241.124.0/23
                  190.241.129.0-190.241.130.255
                  190.241.133.0-190.241.134.255
                  190.241.136.0-190.241.141.255
                  190.241.198.0/24
                  190.241.201.0/24
                  190.241.207.0/24
                  196.40.32.0/23
                  196.40.48.0/24
                  196.40.73.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4f:02:62:03:9e:61:cd:bd:00:16:47:0e:41:4e:77:0c:55:c7:
         c6:65:82:e3:fd:69:ad:06:e2:d2:fa:cc:b6:8a:01:d0:ec:68:
         42:01:6d:c5:6c:4f:9b:5e:91:95:3c:0b:8c:53:29:19:02:04:
         c1:9d:43:db:6b:59:72:6d:d0:38:3f:f1:06:5a:1c:94:e6:4e:
         b4:2a:6b:dc:55:d4:6c:41:73:cb:4e:37:ed:77:8c:a6:88:cc:
         93:e4:1c:86:21:f3:22:04:83:fb:11:cd:dd:21:c7:9b:22:0f:
         dc:26:27:f8:09:6a:2b:d7:ac:e1:94:11:db:67:94:43:1c:ba:
         ef:8b:d3:c5:1e:9f:9e:67:f8:2d:1e:7a:da:ed:74:c3:cc:10:
         1c:b1:9f:5c:69:95:07:e3:df:74:7e:6b:5f:3e:8c:10:f2:26:
         d2:92:69:ab:c4:6e:a5:15:69:07:98:eb:52:d2:0f:09:1d:2c:
         b1:9c:ec:38:18:12:38:dc:fd:bb:56:5a:f2:de:2a:4c:a1:7b:
         6c:f4:88:1e:2b:5f:86:a4:72:77:a5:b1:fc:2c:b9:64:a7:00:
         03:47:c7:44:90:85:59:a2:b9:a3:7d:aa:df:83:47:31:5d:7b:
         35:2a:26:fb:3e:51:b0:1a:8d:30:5a:fb:94:b2:52:d1:b1:bd:
         48:49:57:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 00:29:56 2026 by rpki-client