Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/075f5d49080711dbce7f0b55e79654c4d8f82fdb.roa
File: 075f5d49080711dbce7f0b55e79654c4d8f82fdb.roa (raw, json)
Hash identifier: 8xT3JChmHPI4Hm054omFM1lUXWSDD1Ih9/hzZpIHTD8=
Subject key identifier: EB:2A:06:37:3A:37:D8:86:EF:20:27:4B:B6:67:1B:93:FB:0F:D7:84
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 20D0F3
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/075f5d49080711dbce7f0b55e79654c4d8f82fdb.roa
Signing time: Tue 24 Jan 2023 18:52:23 +0000
ROA not before: Sat 17 Apr 2021 03:00:00 +0000
ROA not after: Thu 11 May 2023 03:00:00 +0000
asID: 262589
IP address blocks: 190.90.0.0/21 maxlen: 24
190.90.8.0/21 maxlen: 24
190.90.16.0/21 maxlen: 24
190.90.24.0/21 maxlen: 24
190.90.32.0/21 maxlen: 24
190.90.52.0/22 maxlen: 24
190.90.60.0/22 maxlen: 24
190.90.64.0/20 maxlen: 24
190.90.80.0/20 maxlen: 24
190.90.96.0/20 maxlen: 24
190.90.112.0/21 maxlen: 24
190.90.120.0/21 maxlen: 24
190.90.128.0/20 maxlen: 24
190.90.144.0/21 maxlen: 24
190.90.152.0/22 maxlen: 24
190.90.191.0/24 maxlen: 24
190.90.192.0/20 maxlen: 24
190.90.208.0/21 maxlen: 24
190.90.224.0/21 maxlen: 24
190.90.232.0/21 maxlen: 24
190.90.240.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2150643 (0x20d0f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Apr 17 03:00:00 2021 GMT
Not After : May 11 03:00:00 2023 GMT
Subject: CN=075f5d49080711dbce7f0b55e79654c4d8f82fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:10:9f:fe:55:ad:80:76:c8:65:96:5b:45:d8:
bf:4a:8a:62:57:ca:2d:dc:23:47:a9:a7:1f:82:1f:
38:e2:a6:52:16:30:d0:21:90:f9:88:8a:77:1a:70:
8f:30:b8:a9:ad:d4:52:09:86:8f:d0:d9:ea:44:f8:
81:c7:97:76:a1:34:33:f9:be:f3:32:cb:1a:4d:5e:
8b:39:fd:e1:fe:fd:7b:b6:ea:e4:fb:cd:43:ea:b7:
77:f5:f7:5b:e2:8f:82:64:3f:a4:dd:74:dc:10:e2:
23:62:86:94:a7:d5:af:f9:cc:9a:79:e2:81:cb:87:
cc:c9:30:34:85:94:d2:25:21:02:95:ca:3c:b6:06:
77:0c:60:ca:91:8f:b8:4c:b4:64:25:18:8a:20:a2:
76:93:cd:77:17:3a:2c:c7:07:b8:6b:21:5e:eb:c6:
b4:10:46:e8:44:85:64:8a:e0:b9:5f:2a:bd:e5:99:
38:9b:ec:ba:ac:d2:47:be:a2:ff:e6:a2:e7:e6:52:
85:79:c3:04:d8:d7:c4:71:6f:7f:90:6c:1f:56:46:
3b:a5:1c:ab:f2:ee:c0:cc:f9:f2:82:25:42:35:57:
65:46:70:27:83:92:12:de:30:5d:90:89:4f:7a:70:
00:a5:e8:3d:5c:c6:b1:da:82:fb:4a:53:28:f8:bf:
c2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:2A:06:37:3A:37:D8:86:EF:20:27:4B:B6:67:1B:93:FB:0F:D7:84
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/075f5d49080711dbce7f0b55e79654c4d8f82fdb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.0.0-190.90.39.255
190.90.52.0/22
190.90.60.0-190.90.155.255
190.90.191.0-190.90.215.255
190.90.224.0/19
Signature Algorithm: sha256WithRSAEncryption
5b:28:9d:d1:09:40:16:78:03:0f:9c:3f:a2:b2:1e:20:8d:1c:
fa:25:ab:59:06:67:2a:18:99:85:bf:a9:1a:44:92:91:14:53:
2e:d5:f0:f8:b0:c8:b7:ab:d5:b0:57:9e:95:7b:be:5b:d3:9a:
b1:eb:fa:78:84:62:10:ba:ea:b5:34:5c:a7:d5:b3:a9:1f:8c:
6a:1e:43:c1:85:31:4c:3d:0f:2a:f3:94:85:a4:1f:9d:25:ce:
38:71:03:dc:28:bf:d2:e7:f1:fe:f3:97:64:3a:01:e3:58:11:
82:e9:7f:c2:e2:ea:f4:6c:80:25:bf:9d:39:42:38:a7:74:84:
b8:41:07:0b:b1:fd:ea:59:f6:38:7e:b5:32:23:f3:2c:48:1a:
3a:b8:03:e3:b8:a8:ae:7e:0e:14:2d:e5:7d:5d:7c:a0:06:4a:
4a:e2:74:1e:e1:74:2e:28:85:e3:62:74:d4:4a:d5:83:53:bf:
e1:9d:24:18:02:21:b7:70:8e:ad:05:51:bb:1c:c9:c7:db:48:
ed:f9:f2:e5:45:44:8e:6e:cf:52:a0:12:28:1d:15:69:35:a3:
8a:b1:a9:1f:ea:75:0d:72:d7:22:d5:5a:af:1f:b2:cd:0a:4c:
62:29:6a:a4:3a:de:0a:32:39:da:36:0e:d3:c6:32:69:82:26:
33:2a:f2:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:50 2023 by rpki-client on console-ams.rpki-client.org