Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
File: AS3790.roa (raw, json)
Hash identifier: SddSzvW3CXV7/w3AfyOYoBH5XVs7oXy46ZvZF96Ko6I=
Subject key identifier: 4F:F2:73:DC:B9:BD:4C:E7:11:AC:03:4E:11:AE:BC:86:C8:62:53:5A
Certificate issuer: /CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
Certificate serial: 3F54B9C438EC2CB5811AB7B92F2EA7A6F216314B
Authority key identifier: 09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
Signing time: Thu 13 Jun 2024 15:40:00 +0000
ROA not before: Thu 13 Jun 2024 15:35:00 +0000
ROA not after: Thu 12 Jun 2025 15:40:00 +0000
asID: 3790
IP address blocks: 190.10.0.0/20 maxlen: 24
190.10.16.0/23 maxlen: 24
190.10.19.0/24 maxlen: 24
190.10.20.0/22 maxlen: 24
190.10.25.0/24 maxlen: 24
190.10.26.0/23 maxlen: 24
190.10.28.0/22 maxlen: 24
190.10.32.0/24 maxlen: 24
190.10.34.0/24 maxlen: 24
190.10.64.0/23 maxlen: 24
190.10.66.0/24 maxlen: 24
190.10.68.0/22 maxlen: 24
190.10.76.0/22 maxlen: 24
190.10.121.0/24 maxlen: 24
190.10.122.0/23 maxlen: 24
190.171.0.0/24 maxlen: 24
190.171.3.0/24 maxlen: 24
190.171.4.0/22 maxlen: 24
190.171.8.0/23 maxlen: 24
190.171.14.0/24 maxlen: 24
190.171.16.0/22 maxlen: 24
190.171.20.0/24 maxlen: 24
190.171.22.0/23 maxlen: 24
190.171.24.0/23 maxlen: 23
190.171.24.0/23 maxlen: 24
190.171.27.0/24 maxlen: 24
190.171.28.0/24 maxlen: 24
190.171.32.0/19 maxlen: 24
190.241.0.0/22 maxlen: 22
190.241.4.0/23 maxlen: 24
190.241.6.0/24 maxlen: 24
190.241.8.0/23 maxlen: 24
190.241.11.0/24 maxlen: 24
190.241.12.0/22 maxlen: 24
190.241.17.0/24 maxlen: 24
190.241.18.0/23 maxlen: 24
190.241.20.0/22 maxlen: 24
190.241.24.0/22 maxlen: 22
190.241.28.0/23 maxlen: 23
190.241.30.0/24 maxlen: 24
190.241.32.0/19 maxlen: 24
190.241.64.0/21 maxlen: 21
190.241.72.0/24 maxlen: 24
190.241.77.0/24 maxlen: 24
190.241.78.0/23 maxlen: 24
190.241.80.0/20 maxlen: 24
190.241.96.0/20 maxlen: 20
190.241.112.0/22 maxlen: 24
190.241.116.0/24 maxlen: 24
190.241.119.0/24 maxlen: 27
190.241.121.0/24 maxlen: 24
190.241.122.0/23 maxlen: 23
190.241.126.0/23 maxlen: 23
190.241.128.0/24 maxlen: 24
190.241.132.0/24 maxlen: 24
190.241.135.0/24 maxlen: 24
190.241.142.0/23 maxlen: 23
190.241.144.0/20 maxlen: 20
190.241.160.0/19 maxlen: 24
190.241.192.0/22 maxlen: 24
190.241.196.0/23 maxlen: 23
190.241.199.0/24 maxlen: 24
190.241.200.0/24 maxlen: 24
190.241.202.0/23 maxlen: 23
190.241.204.0/23 maxlen: 23
190.241.206.0/24 maxlen: 24
190.241.208.0/20 maxlen: 20
190.241.224.0/19 maxlen: 20
196.40.0.0/19 maxlen: 24
196.40.34.0/23 maxlen: 24
196.40.36.0/22 maxlen: 24
196.40.40.0/21 maxlen: 21
196.40.40.0/21 maxlen: 24
196.40.40.0/23 maxlen: 23
196.40.40.0/23 maxlen: 24
196.40.49.0/24 maxlen: 24
196.40.50.0/23 maxlen: 23
196.40.52.0/22 maxlen: 22
196.40.56.0/21 maxlen: 24
196.40.64.0/21 maxlen: 24
196.40.72.0/24 maxlen: 24
196.40.74.0/23 maxlen: 23
196.40.76.0/22 maxlen: 22
196.40.80.0/20 maxlen: 24
200.122.128.0/18 maxlen: 24
2001:13d8::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl
rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 27 Nov 2024 03:32:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:54:b9:c4:38:ec:2c:b5:81:1a:b7:b9:2f:2e:a7:a6:f2:16:31:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097F785B43ED2B7D3FDFAC24B9123C5D18C208EB
Validity
Not Before: Jun 13 15:35:00 2024 GMT
Not After : Jun 12 15:40:00 2025 GMT
Subject: CN=4FF273DCB9BD4CE711AC034E11AEBC86C862535A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a3:c1:b4:e4:5b:bb:aa:2e:e6:18:39:1f:78:
25:28:f9:4a:f0:d2:ad:89:09:e5:f2:07:34:d3:20:
c9:e5:8a:f1:1f:d5:af:fc:9e:df:90:2c:5a:7e:05:
65:dd:a8:9c:d1:c5:48:84:62:9e:7d:62:ad:d8:ac:
80:9e:a5:67:f2:28:3c:53:81:da:6b:32:c3:e1:b0:
25:65:36:b6:9b:f5:48:61:c9:30:5d:d8:2f:7f:cb:
d1:9d:a8:3b:66:19:57:39:57:18:b4:55:f7:53:83:
ce:9a:90:c0:28:5f:3d:ed:bd:4c:6d:dd:40:c2:b3:
6a:22:6e:18:e4:75:42:aa:17:e7:ae:f7:c1:ba:0f:
23:96:a1:ae:2b:90:9a:5f:e5:f4:96:d0:c6:c7:c2:
ed:73:0d:03:77:6d:cb:99:05:6e:6e:7b:c1:84:69:
7b:1d:f2:81:93:4c:54:ee:c9:6c:07:36:22:a6:6a:
b2:b7:be:e4:3b:02:2e:a3:9d:d4:d8:b2:b4:a7:8d:
77:a6:41:df:d7:d2:bd:af:5f:99:cd:3a:db:37:77:
b4:cd:c5:24:d3:34:29:17:ad:17:76:46:0c:ad:23:
3c:fe:a4:05:e3:01:b9:88:b3:5b:76:e5:91:11:8c:
b4:d0:8c:d7:2e:38:ae:f8:3d:33:7a:d4:32:0d:95:
73:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F2:73:DC:B9:BD:4C:E7:11:AC:03:4E:11:AE:BC:86:C8:62:53:5A
X509v3 Authority Key Identifier:
keyid:09:7F:78:5B:43:ED:2B:7D:3F:DF:AC:24:B9:12:3C:5D:18:C2:08:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/097F785B43ED2B7D3FDFAC24B9123C5D18C208EB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5C51AF65A66F5A739893F3BA77F729CFC31576A6A2D503ADFEFA2E4BC2244A0D/0/AS3790.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.10.0.0-190.10.17.255
190.10.19.0-190.10.23.255
190.10.25.0-190.10.32.255
190.10.34.0/24
190.10.64.0-190.10.66.255
190.10.68.0/22
190.10.76.0/22
190.10.121.0-190.10.123.255
190.171.0.0/24
190.171.3.0-190.171.9.255
190.171.14.0/24
190.171.16.0-190.171.20.255
190.171.22.0-190.171.25.255
190.171.27.0-190.171.28.255
190.171.32.0/19
190.241.0.0-190.241.6.255
190.241.8.0/23
190.241.11.0-190.241.15.255
190.241.17.0-190.241.30.255
190.241.32.0-190.241.72.255
190.241.77.0-190.241.116.255
190.241.119.0/24
190.241.121.0-190.241.123.255
190.241.126.0-190.241.128.255
190.241.132.0/24
190.241.135.0/24
190.241.142.0-190.241.197.255
190.241.199.0-190.241.200.255
190.241.202.0-190.241.206.255
190.241.208.0-190.241.255.255
196.40.0.0/19
196.40.34.0-196.40.47.255
196.40.49.0-196.40.72.255
196.40.74.0-196.40.95.255
200.122.128.0/18
IPv6:
2001:13d8::/32
Signature Algorithm: sha256WithRSAEncryption
06:67:9a:27:f1:44:41:22:cc:54:cf:e1:cd:de:3e:c1:72:46:
e5:01:5b:27:80:86:64:b7:80:2d:a9:34:bc:ed:52:1a:ad:21:
9d:85:21:54:3d:cc:d9:b6:20:7b:19:53:58:0c:a0:db:e0:a8:
ac:a2:7e:67:09:e0:0c:c8:c4:aa:39:16:60:cb:f0:b0:92:84:
15:b6:32:a6:64:e3:73:2a:d7:73:15:e6:04:b1:56:a6:1b:04:
33:75:fd:e9:cc:db:62:69:93:10:d9:54:74:fc:5a:3b:32:cd:
22:4e:c5:7c:be:9b:1b:13:70:68:78:c2:25:6e:da:3b:b7:4b:
d4:35:60:8b:2e:22:8c:a0:4a:34:81:57:13:41:52:59:72:1f:
1c:49:53:f4:50:c4:b6:ee:ec:15:80:47:b9:63:55:ca:99:fc:
b0:2d:d5:04:d3:98:3d:3b:5f:fa:0d:cb:5a:32:23:61:a4:90:
48:40:a0:91:ee:fe:5d:8e:29:9e:09:cd:84:88:4c:77:e4:ba:
f1:e0:92:f0:0f:b3:14:81:bf:71:5a:5e:38:46:9f:4c:7a:16:
83:bc:db:6c:cf:ff:41:4f:5d:96:e5:dd:f0:03:72:2b:65:5c:
a3:bc:95:c8:e5:b4:5e:30:6c:c4:88:ad:ea:8d:30:a1:52:bd:
7a:ba:da:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:32:36 2024 by rpki-client on console-ams.rpki-client.org