Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/a983e1b1c690a23f1eaaf290d2700e5b5bbb7f3b.roa
File: a983e1b1c690a23f1eaaf290d2700e5b5bbb7f3b.roa (raw, json)
Hash identifier: SaP5UkKUc+5dqtlaD0leooenU2I9eO7ealzDA/iHCOI=
Subject key identifier: 98:46:00:6B:BA:76:6C:76:01:89:F6:34:9E:B3:16:E4:05:8E:14:01
Certificate issuer: /CN=20cfd36a556e1a46c18de53d3fa81b0e1e970f23
Certificate serial: 03FF
Authority key identifier: D6:76:54:78:51:E9:6F:3D:87:FA:EF:A4:05:EA:D4:A4:B7:0D:89:00
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/20cfd36a556e1a46c18de53d3fa81b0e1e970f23.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/a983e1b1c690a23f1eaaf290d2700e5b5bbb7f3b.roa
Signing time: Tue 20 Sep 2022 21:20:42 +0000
ROA not before: Tue 20 Sep 2022 21:15:45 +0000
ROA not after: Fri 20 Sep 2024 21:15:45 +0000
asID: 8163
IP address blocks: 190.1.128.0/24 maxlen: 24
190.1.129.0/24 maxlen: 24
190.1.130.0/24 maxlen: 24
190.1.131.0/24 maxlen: 24
190.1.132.0/24 maxlen: 24
190.1.133.0/24 maxlen: 24
190.1.134.0/24 maxlen: 24
190.1.135.0/24 maxlen: 24
190.1.136.0/24 maxlen: 24
190.1.137.0/24 maxlen: 24
190.1.138.0/24 maxlen: 24
190.1.139.0/24 maxlen: 24
190.1.140.0/24 maxlen: 24
190.1.141.0/24 maxlen: 24
190.1.142.0/24 maxlen: 24
190.1.143.0/24 maxlen: 24
190.1.144.0/24 maxlen: 24
190.1.145.0/24 maxlen: 24
190.1.146.0/24 maxlen: 24
190.1.147.0/24 maxlen: 24
190.1.148.0/24 maxlen: 24
190.1.149.0/24 maxlen: 24
190.1.150.0/24 maxlen: 24
190.1.151.0/24 maxlen: 24
190.1.152.0/24 maxlen: 24
190.1.153.0/24 maxlen: 24
190.1.154.0/24 maxlen: 24
190.1.155.0/24 maxlen: 24
190.1.156.0/24 maxlen: 24
190.1.157.0/24 maxlen: 24
190.1.158.0/24 maxlen: 24
190.1.159.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1023 (0x3ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cfd36a556e1a46c18de53d3fa81b0e1e970f23
Validity
Not Before: Sep 20 21:15:45 2022 GMT
Not After : Sep 20 21:15:45 2024 GMT
Subject: CN=a983e1b1c690a23f1eaaf290d2700e5b5bbb7f3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:06:06:a0:35:87:6f:50:31:5d:27:c3:7a:df:
2d:8d:38:c0:94:68:73:21:b9:a8:9b:c4:7c:b3:13:
31:76:5c:6f:b1:8f:25:29:4a:e4:b9:88:d9:26:d5:
53:76:8a:35:c9:65:1c:7c:02:45:d4:a0:c5:dc:2f:
f2:50:17:24:8a:f0:d7:d3:d9:c1:e1:2b:ea:75:ae:
db:4b:56:16:01:bf:15:25:e2:3b:51:3e:86:fb:e7:
66:70:de:e2:26:ad:0c:cf:5d:1a:bf:dd:e9:72:47:
3b:e8:a0:11:e3:48:74:25:48:e8:ba:ea:b6:5c:8e:
ce:3b:ab:71:b3:20:25:be:11:41:a0:ee:2a:e4:78:
15:dc:11:03:b5:ad:12:39:c4:8d:dd:69:c9:22:61:
2a:41:e0:d5:2c:1a:e6:50:63:83:df:b4:26:5a:f2:
3e:e9:23:41:7f:25:81:f5:64:aa:44:55:65:e3:03:
12:ff:24:86:27:1a:46:fa:1d:7b:7e:7c:7e:6e:6b:
69:75:c4:87:33:52:46:09:31:a3:31:34:75:5a:b7:
77:5d:82:68:50:d1:db:d3:39:a1:d1:66:1c:28:6e:
98:f6:4c:dd:5d:bd:9e:4b:5f:ed:63:fa:ce:01:56:
aa:fa:6c:10:8a:7d:9b:31:7e:ac:ce:97:a7:9a:3f:
4f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:46:00:6B:BA:76:6C:76:01:89:F6:34:9E:B3:16:E4:05:8E:14:01
X509v3 Authority Key Identifier:
keyid:D6:76:54:78:51:E9:6F:3D:87:FA:EF:A4:05:EA:D4:A4:B7:0D:89:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/20cfd36a556e1a46c18de53d3fa81b0e1e970f23.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/a983e1b1c690a23f1eaaf290d2700e5b5bbb7f3b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/20cfd36a556e1a46c18de53d3fa81b0e1e970f23.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.1.128.0/19
Signature Algorithm: sha256WithRSAEncryption
04:f4:33:d3:99:ed:42:98:bd:60:0b:f8:34:49:85:85:71:a2:
7b:65:e4:e9:0d:db:3d:86:23:c8:50:48:43:a6:dd:5c:76:af:
29:33:4f:e1:3a:9b:2c:e4:34:94:b8:94:d8:4e:ee:3d:a9:98:
92:91:34:60:c0:ff:09:73:1c:41:59:e8:ff:08:00:7a:46:69:
86:df:58:35:0e:82:25:68:1c:74:90:15:49:26:53:42:aa:0b:
9f:99:28:5d:92:93:98:cb:43:b7:fd:1c:bc:fb:d5:28:60:18:
cf:7d:ad:a6:b3:ac:4f:3d:c4:f9:3c:ce:be:00:93:38:ff:ce:
85:36:7b:99:d6:01:a3:68:dc:7b:96:f3:88:17:ff:43:87:22:
16:c7:14:71:f7:f6:a2:7a:78:23:82:76:32:b0:27:88:bd:5c:
a1:da:53:c8:ee:7c:24:0e:90:49:14:c4:15:53:f3:32:2f:02:
b1:d8:f2:27:0a:96:93:94:d1:f7:3e:ef:bc:68:07:bf:d9:3a:
3a:db:87:32:f2:70:74:67:77:09:01:90:f0:0b:2a:b9:c0:60:
21:87:fb:fe:34:9f:f2:b7:c0:4b:4b:c6:3d:65:df:1b:1b:71:
44:2b:f7:9f:1b:16:0a:b9:58:54:9f:4a:77:56:f2:0d:64:6c:
23:db:1c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:46 2023 by rpki-client on console-ams.rpki-client.org