Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8a5ec771-114b-465b-bb92-def8ced631ef/3e886598c4d1137b77d6eff5743c9f1ed0866085.roa
File: 3e886598c4d1137b77d6eff5743c9f1ed0866085.roa (raw, json)
Hash identifier: ojBUv/FQnQqGpG6ezhSGZ8fcnjw6+7QulkW26H6zzbM=
Subject key identifier: D5:79:C5:50:3A:5B:E7:03:CB:5F:5E:0B:CA:39:D8:9C:6B:18:85:77
Certificate issuer: /CN=1c9b973317eb80280ae3912672e94609f196869d
Certificate serial: 0573C7
Authority key identifier: 50:A0:2E:42:62:3B:B0:F4:70:CB:60:81:93:84:E8:22:6E:34:CA:65
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c9b973317eb80280ae3912672e94609f196869d.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8a5ec771-114b-465b-bb92-def8ced631ef/3e886598c4d1137b77d6eff5743c9f1ed0866085.roa
Signing time: Wed 24 Mar 2021 14:29:34 +0000
ROA not before: Wed 24 Mar 2021 14:29:34 +0000
ROA not after: Tue 24 Mar 2026 14:29:34 +0000
asID: 52348
IP address blocks: 190.14.40.0/21 maxlen: 24
190.52.208.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357319 (0x573c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c9b973317eb80280ae3912672e94609f196869d
Validity
Not Before: Mar 24 14:29:34 2021 GMT
Not After : Mar 24 14:29:34 2026 GMT
Subject: CN=3e886598c4d1137b77d6eff5743c9f1ed0866085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:35:2a:d8:d9:4d:13:73:d1:2e:ac:15:8a:d0:
42:1f:00:dd:4a:b6:40:8b:ce:08:bb:a8:97:0e:a6:
8f:1f:e4:44:e1:31:5f:86:8b:8d:6f:83:3f:92:b2:
07:fd:eb:bf:0e:40:77:a9:29:d6:38:b8:89:cb:7b:
0e:24:2c:14:37:e9:5d:42:7b:03:12:cb:f9:e0:d8:
6f:b0:f8:a8:7f:74:de:e2:f7:6f:9c:85:24:e2:83:
40:70:8a:9d:d7:65:4e:50:35:59:ee:c7:13:15:78:
48:62:88:b8:c0:d4:32:b1:9f:41:6a:df:1e:a8:52:
2a:f5:fc:5d:f7:c4:ab:f1:bc:0e:ec:ac:df:7c:1c:
95:65:a6:07:eb:c3:80:f3:5e:5a:9f:b0:64:32:10:
03:3c:6f:9a:16:a2:ec:58:8a:4b:b8:41:d6:a9:c7:
f4:9c:2b:76:bd:93:77:65:21:9e:9c:76:2c:fa:4f:
58:46:4d:b1:d9:d5:7f:91:e5:8f:22:20:f9:45:6d:
ad:1a:28:57:dd:f8:df:56:a3:5a:3b:69:06:f2:da:
d4:7a:c6:dd:f4:fa:59:be:51:b5:2e:97:b6:5b:47:
3c:28:d3:e8:55:0b:f7:bc:12:8f:04:27:b7:51:0e:
19:6c:e5:cd:af:fd:d0:d6:d1:3d:82:fb:6e:20:91:
a4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:79:C5:50:3A:5B:E7:03:CB:5F:5E:0B:CA:39:D8:9C:6B:18:85:77
X509v3 Authority Key Identifier:
keyid:50:A0:2E:42:62:3B:B0:F4:70:CB:60:81:93:84:E8:22:6E:34:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c9b973317eb80280ae3912672e94609f196869d.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8a5ec771-114b-465b-bb92-def8ced631ef/3e886598c4d1137b77d6eff5743c9f1ed0866085.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8a5ec771-114b-465b-bb92-def8ced631ef/1c9b973317eb80280ae3912672e94609f196869d.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.14.40.0/21
190.52.208.0/20
Signature Algorithm: sha256WithRSAEncryption
66:68:d2:3d:0c:f1:d0:7a:cd:fe:2e:0e:f1:ed:96:36:5c:98:
96:3b:82:2a:8a:52:da:99:ee:b8:43:00:0f:b8:54:a8:35:af:
43:d0:f2:6d:d5:88:6a:bd:4e:05:14:d5:8c:41:34:c1:7e:a8:
4d:28:10:76:8f:dd:43:f1:37:1a:a1:c9:8b:4c:3c:e9:94:76:
e6:db:6e:b2:d2:68:c0:40:82:f8:e5:ba:0a:4d:f9:a8:6d:8c:
1a:a7:09:ea:c8:4d:90:4c:20:50:eb:a4:33:12:e6:2e:84:96:
f4:42:d3:f5:88:47:be:0a:31:80:47:c1:8c:3a:96:94:46:05:
cc:fb:84:78:f8:35:03:5d:48:5d:36:37:03:d3:e1:75:35:bc:
d3:c5:5f:1d:f5:ff:03:d8:48:8f:41:85:26:01:29:62:35:db:
78:ca:b3:68:ba:2b:82:04:c6:3c:1d:ce:45:d4:d9:ca:db:0a:
49:7a:80:18:13:66:39:70:9d:6b:ae:6c:52:61:77:04:1d:b8:
9d:73:90:2e:09:9a:e9:fe:06:63:44:d0:80:b9:d2:3c:e4:6c:
8a:79:0d:48:f7:b1:dc:21:cb:83:57:0b:e1:15:88:8f:56:c9:
f6:15:fe:78:5b:1f:95:88:0c:3f:02:c3:65:83:0e:21:c5:ff:
19:f4:7c:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 17 20:29:14 2023 by rpki-client on console-fra.rpki-client.org