Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/161fb5316de698df30bb15122ad3647579a97369.roa
File: 161fb5316de698df30bb15122ad3647579a97369.roa (raw, json)
Hash identifier: vl4HbM4zD1uBGgv3Rw09wbMinI1W5YEzKz1muafzIco=
Subject key identifier: 64:41:18:CD:52:4C:76:79:85:3A:4E:09:97:4E:93:FE:ED:71:6B:09
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 1BDD4B
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/161fb5316de698df30bb15122ad3647579a97369.roa
Signing time: Mon 19 Sep 2022 15:05:59 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Fri 24 Mar 2023 03:00:00 +0000
asID: 18678
IP address blocks: 190.90.10.0/24 maxlen: 24
190.90.101.0/24 maxlen: 24
190.90.13.0/24 maxlen: 24
190.90.14.0/24 maxlen: 24
190.90.15.0/24 maxlen: 24
190.90.151.0/24 maxlen: 24
190.90.152.0/24 maxlen: 24
190.90.16.0/24 maxlen: 24
190.90.192.0/24 maxlen: 24
190.90.193.0/24 maxlen: 24
190.90.202.0/24 maxlen: 24
190.90.204.0/24 maxlen: 24
190.90.210.0/24 maxlen: 24
190.90.221.0/24 maxlen: 24
190.90.222.0/24 maxlen: 24
190.90.223.0/24 maxlen: 24
190.90.242.0/24 maxlen: 24
190.90.38.0/24 maxlen: 24
190.90.68.0/24 maxlen: 24
190.90.7.0/24 maxlen: 24
190.90.79.0/24 maxlen: 24
179.1.4.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1826123 (0x1bdd4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2023 GMT
Subject: CN=161fb5316de698df30bb15122ad3647579a97369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:99:ae:c7:5b:80:67:5e:47:30:07:97:ea:a3:
41:e4:63:ae:e1:5d:07:ec:15:89:ce:06:39:b4:84:
44:c5:15:ad:b0:bc:d5:89:00:48:18:58:bf:11:b4:
05:1f:37:ae:84:9d:e0:a5:53:94:21:cc:d6:ea:d8:
c0:03:70:25:dc:53:d5:a4:5e:92:3e:63:a3:e5:2c:
47:47:e7:8c:66:e0:bf:d0:48:be:a3:de:f4:7f:a7:
59:fd:8e:3b:41:31:10:95:a8:fa:64:42:7f:82:11:
63:10:04:46:68:b2:1c:5c:1e:d7:7b:27:4a:47:24:
b2:52:27:ab:00:e3:f1:59:47:f5:c1:ee:ca:26:fc:
81:3c:4a:86:3b:ee:97:51:29:d7:a3:28:e3:4c:a8:
41:17:c4:c4:fc:54:28:07:d5:cc:d1:e0:26:fc:bc:
b8:43:cb:0b:2e:6b:cb:36:01:18:85:79:ef:ea:5c:
d8:82:a9:94:81:16:ba:d1:da:57:4d:13:84:07:77:
2d:bd:79:6d:eb:3b:ee:93:ec:dd:ac:cf:1a:f5:e0:
f3:9f:9c:8f:a3:5f:44:c2:da:8c:53:5b:f6:3a:eb:
d3:03:f1:c7:08:ce:42:99:b7:a6:d1:57:a4:de:5f:
7f:0b:97:4b:8d:b7:18:f0:ef:88:84:ab:d9:73:be:
41:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:41:18:CD:52:4C:76:79:85:3A:4E:09:97:4E:93:FE:ED:71:6B:09
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/161fb5316de698df30bb15122ad3647579a97369.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.1.4.0/23
190.90.7.0/24
190.90.10.0/24
190.90.13.0-190.90.16.255
190.90.38.0/24
190.90.68.0/24
190.90.79.0/24
190.90.101.0/24
190.90.151.0-190.90.152.255
190.90.192.0/23
190.90.202.0/24
190.90.204.0/24
190.90.210.0/24
190.90.221.0-190.90.223.255
190.90.242.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ad:85:2d:0f:1b:62:e5:75:24:6c:41:03:79:17:9f:83:d9:
4a:94:1c:f4:b9:16:08:93:02:af:ee:c1:7e:75:22:34:ca:08:
07:a9:cb:46:31:50:10:d5:52:d7:6a:56:03:57:7b:e2:e1:86:
b1:30:08:d9:17:84:97:c4:03:5f:a9:3e:35:a4:e4:91:2b:4d:
5e:a5:70:d9:0f:fa:55:09:02:3b:ec:9d:8d:db:82:45:14:f0:
93:4e:f4:94:ea:a8:db:47:25:ae:75:64:f7:55:a7:c0:ac:cb:
33:f0:0d:3f:d8:8c:86:e5:40:68:c3:dc:09:37:e2:6d:62:0e:
f7:6c:69:ca:47:96:38:8d:47:2e:72:35:d3:05:50:0c:c2:73:
11:f4:d2:7b:2a:a6:78:d4:af:9f:0b:c1:50:98:e3:1a:90:86:
29:d5:77:1b:72:54:18:a9:74:11:fd:33:9d:09:6c:87:36:e0:
5a:26:eb:dd:d9:2a:a7:51:35:2b:e1:0f:20:d9:4a:4d:a1:d3:
d4:10:96:62:19:59:29:7f:e5:68:2b:2a:29:52:2d:56:c8:75:
83:28:d4:2e:2b:37:c6:62:34:da:47:b0:24:57:33:b3:e7:0e:
ae:69:c9:46:c8:12:29:75:b8:e8:61:bb:1d:4b:00:5a:96:5c:
87:ba:57:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:50 2023 by rpki-client on console-ams.rpki-client.org