Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
File: AS3790.roa (raw, json)
Hash identifier: rHE+nzkrmYuujl6L8kvfVmkjg0GUX3LIHbuYeQBSYL8=
Subject key identifier: 79:07:14:85:0F:10:D4:A4:43:7C:B6:99:EE:BC:EF:7F:66:B1:43:9C
Certificate issuer: /CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
Certificate serial: 5CBAF4F0E3ABFC11088FF42E82124DF84078E01A
Authority key identifier: 09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
Signing time: Tue 05 Mar 2024 18:14:58 +0000
ROA not before: Tue 05 Mar 2024 18:09:58 +0000
ROA not after: Tue 04 Mar 2025 18:14:58 +0000
asID: 3790
IP address blocks: 190.10.0.0/20 maxlen: 24
190.10.16.0/23 maxlen: 24
190.10.19.0/24 maxlen: 24
190.10.20.0/22 maxlen: 24
190.10.25.0/24 maxlen: 24
190.10.26.0/23 maxlen: 24
190.10.28.0/22 maxlen: 24
190.10.32.0/24 maxlen: 24
190.10.34.0/24 maxlen: 24
190.10.64.0/23 maxlen: 24
190.10.66.0/24 maxlen: 24
190.10.68.0/22 maxlen: 24
190.10.76.0/22 maxlen: 24
190.10.121.0/24 maxlen: 24
190.10.122.0/23 maxlen: 24
190.171.0.0/24 maxlen: 24
190.171.3.0/24 maxlen: 24
190.171.4.0/22 maxlen: 24
190.171.8.0/23 maxlen: 24
190.171.14.0/24 maxlen: 24
190.171.16.0/22 maxlen: 24
190.171.20.0/24 maxlen: 24
190.171.22.0/23 maxlen: 24
190.171.27.0/24 maxlen: 24
190.171.28.0/24 maxlen: 24
190.171.32.0/19 maxlen: 24
190.241.0.0/22 maxlen: 22
190.241.4.0/23 maxlen: 24
190.241.6.0/24 maxlen: 24
190.241.8.0/23 maxlen: 24
190.241.11.0/24 maxlen: 24
190.241.12.0/22 maxlen: 24
190.241.17.0/24 maxlen: 24
190.241.18.0/23 maxlen: 24
190.241.20.0/22 maxlen: 24
190.241.24.0/22 maxlen: 22
190.241.28.0/23 maxlen: 23
190.241.30.0/24 maxlen: 24
190.241.32.0/19 maxlen: 24
190.241.64.0/21 maxlen: 21
190.241.72.0/24 maxlen: 24
190.241.77.0/24 maxlen: 24
190.241.78.0/23 maxlen: 24
190.241.80.0/20 maxlen: 24
190.241.96.0/20 maxlen: 20
190.241.112.0/22 maxlen: 24
190.241.116.0/24 maxlen: 24
190.241.119.0/24 maxlen: 27
190.241.121.0/24 maxlen: 24
190.241.122.0/23 maxlen: 23
190.241.126.0/23 maxlen: 23
190.241.128.0/24 maxlen: 24
190.241.132.0/24 maxlen: 24
190.241.135.0/24 maxlen: 24
190.241.142.0/23 maxlen: 23
190.241.144.0/20 maxlen: 20
190.241.160.0/19 maxlen: 24
190.241.192.0/22 maxlen: 24
190.241.196.0/23 maxlen: 23
190.241.199.0/24 maxlen: 24
190.241.200.0/24 maxlen: 24
190.241.202.0/23 maxlen: 23
190.241.204.0/23 maxlen: 23
190.241.206.0/24 maxlen: 24
190.241.208.0/20 maxlen: 20
190.241.224.0/19 maxlen: 20
196.40.0.0/19 maxlen: 24
196.40.34.0/23 maxlen: 24
196.40.36.0/22 maxlen: 24
196.40.40.0/21 maxlen: 21
196.40.49.0/24 maxlen: 24
196.40.50.0/23 maxlen: 23
196.40.52.0/22 maxlen: 22
196.40.56.0/21 maxlen: 24
196.40.64.0/21 maxlen: 24
196.40.72.0/24 maxlen: 24
196.40.74.0/23 maxlen: 23
196.40.76.0/22 maxlen: 22
196.40.80.0/20 maxlen: 24
200.122.128.0/18 maxlen: 24
2001:13d8::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl
rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 15 May 2024 06:41:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:ba:f4:f0:e3:ab:fc:11:08:8f:f4:2e:82:12:4d:f8:40:78:e0:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
Validity
Not Before: Mar 5 18:09:58 2024 GMT
Not After : Mar 4 18:14:58 2025 GMT
Subject: CN=790714850F10D4A4437CB699EEBCEF7F66B1439C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:68:a9:2f:5e:33:a2:08:9a:0a:3f:91:c0:b7:
de:a4:30:0b:2a:7e:76:a5:85:5a:14:49:28:9b:5d:
24:0b:7e:ce:3c:cc:e1:6e:18:f9:b4:f5:f4:15:a1:
f5:dc:70:e1:c8:86:7d:77:5b:e8:09:dc:88:4e:67:
a6:8f:00:e4:c1:98:f3:6d:9a:01:dc:1c:79:4b:15:
60:79:c0:e1:52:3e:48:2f:a2:ab:92:3f:4b:b3:90:
66:3f:7c:8a:04:59:58:a7:71:84:47:25:3a:03:81:
9a:b2:53:9b:41:17:8b:12:e2:a4:4b:ed:e9:39:33:
aa:cc:4c:a0:7c:49:cc:a0:54:bb:90:ec:26:91:4b:
3b:eb:38:9b:8e:97:3c:5b:9e:11:ba:72:1c:2e:8c:
22:f7:8e:18:cb:70:e2:22:28:00:a1:b2:97:d5:d5:
69:b9:01:73:90:5d:b7:3b:7e:7e:71:ff:01:03:1d:
0b:b1:a4:56:8a:3a:85:24:f1:40:57:7f:9e:49:13:
57:e7:99:43:a7:f5:cd:9f:c6:2d:01:9a:a8:c2:1f:
ea:88:87:db:f4:e4:7f:29:89:4d:74:cf:32:b4:f1:
ef:a9:59:70:1d:07:eb:a7:b0:76:0b:41:50:5b:53:
34:df:e1:22:58:1f:2a:ca:c7:f1:7c:23:09:ec:74:
39:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:07:14:85:0F:10:D4:A4:43:7C:B6:99:EE:BC:EF:7F:66:B1:43:9C
X509v3 Authority Key Identifier:
keyid:09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.10.0.0-190.10.17.255
190.10.19.0-190.10.23.255
190.10.25.0-190.10.32.255
190.10.34.0/24
190.10.64.0-190.10.66.255
190.10.68.0/22
190.10.76.0/22
190.10.121.0-190.10.123.255
190.171.0.0/24
190.171.3.0-190.171.9.255
190.171.14.0/24
190.171.16.0-190.171.20.255
190.171.22.0/23
190.171.27.0-190.171.28.255
190.171.32.0/19
190.241.0.0-190.241.6.255
190.241.8.0/23
190.241.11.0-190.241.15.255
190.241.17.0-190.241.30.255
190.241.32.0-190.241.72.255
190.241.77.0-190.241.116.255
190.241.119.0/24
190.241.121.0-190.241.123.255
190.241.126.0-190.241.128.255
190.241.132.0/24
190.241.135.0/24
190.241.142.0-190.241.197.255
190.241.199.0-190.241.200.255
190.241.202.0-190.241.206.255
190.241.208.0-190.241.255.255
196.40.0.0/19
196.40.34.0-196.40.47.255
196.40.49.0-196.40.72.255
196.40.74.0-196.40.95.255
200.122.128.0/18
IPv6:
2001:13d8::/32
Signature Algorithm: sha256WithRSAEncryption
41:e1:49:a0:83:dc:74:0c:bc:2b:50:0c:53:a5:94:0b:9c:6a:
4d:12:ef:ac:c1:c7:95:02:7a:4f:e0:37:30:d2:7b:20:8d:57:
e2:24:4f:ff:6a:bb:fb:bc:db:68:e7:00:78:79:d7:44:ad:f0:
ac:dc:56:70:65:3b:be:05:0c:07:24:e8:50:72:7b:ae:33:66:
48:93:96:02:c6:64:20:72:c8:19:30:55:97:83:8b:31:48:26:
3d:f0:c2:b3:f6:b2:f8:9e:56:52:62:41:ee:fe:96:2d:47:3a:
d3:37:5b:d0:db:78:68:d6:33:c1:e4:0d:d6:26:fc:56:b5:da:
3e:dc:d5:a8:b4:c8:1c:1d:ca:89:20:75:fe:48:68:67:3b:8f:
bc:be:91:2e:3f:14:7d:af:1f:e3:30:92:47:7d:9e:f1:d8:1b:
df:37:01:1a:11:18:79:c9:48:b3:5b:18:8f:5f:cc:ae:e9:ad:
d1:5c:00:d5:7f:f9:2e:93:11:7e:ee:c1:35:f7:10:8a:f9:99:
37:24:4f:72:f1:c5:00:03:78:42:a2:87:f8:3c:f7:5e:8b:81:
9b:e5:c9:7a:a5:c9:11:d5:ee:5c:b7:3a:5f:61:77:16:1a:46:
2a:83:5b:1a:ea:67:52:a7:7d:33:ba:c6:9e:9a:ba:bb:3f:3f:
4b:6a:5b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 09:10:40 2024 by rpki-client on console-fra.rpki-client.org