Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/21f4885e31a7136a43f457cb8fdca4c3f4b4b545.roa
File: 21f4885e31a7136a43f457cb8fdca4c3f4b4b545.roa (raw, json)
Hash identifier: kFKXQuuciuPunjyBfb9omrka/ojrB2pBftd8ZIMMflY=
Subject key identifier: 2B:04:24:78:FB:0E:C1:CB:2D:84:01:29:0C:8A:C7:E1:4B:FA:56:ED
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 20EDF9
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/21f4885e31a7136a43f457cb8fdca4c3f4b4b545.roa
Signing time: Tue 24 Jan 2023 19:22:27 +0000
ROA not before: Wed 14 Apr 2021 03:00:00 +0000
ROA not after: Thu 11 May 2023 03:00:00 +0000
asID: 262589
IP address blocks: 190.90.0.0/21 maxlen: 24
190.90.8.0/21 maxlen: 24
190.90.16.0/21 maxlen: 24
190.90.24.0/21 maxlen: 24
190.90.32.0/21 maxlen: 24
190.90.52.0/22 maxlen: 24
190.90.60.0/22 maxlen: 24
190.90.64.0/20 maxlen: 24
190.90.80.0/20 maxlen: 24
190.90.96.0/20 maxlen: 24
190.90.112.0/21 maxlen: 24
190.90.120.0/21 maxlen: 24
190.90.128.0/20 maxlen: 24
190.90.144.0/21 maxlen: 24
190.90.152.0/22 maxlen: 24
190.90.172.0/22 maxlen: 24
190.90.176.0/23 maxlen: 24
190.90.188.0/22 maxlen: 24
190.90.191.0/24 maxlen: 24
190.90.192.0/20 maxlen: 24
190.90.208.0/21 maxlen: 24
190.90.224.0/21 maxlen: 24
190.90.232.0/21 maxlen: 24
190.90.240.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2158073 (0x20edf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Apr 14 03:00:00 2021 GMT
Not After : May 11 03:00:00 2023 GMT
Subject: CN=21f4885e31a7136a43f457cb8fdca4c3f4b4b545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:2e:1f:7b:7c:68:19:06:0c:83:09:a5:0a:7d:
e8:72:a7:15:c3:7f:ba:a9:aa:8e:57:95:e9:39:bd:
4c:c6:e5:53:d7:2d:3a:7e:0c:e8:a1:de:aa:70:6b:
a4:91:b0:0f:bc:de:25:f8:83:d2:0d:f7:78:40:f8:
31:ce:33:6d:7a:15:8e:5b:6b:c8:45:1c:f3:ca:a0:
7d:08:86:a1:32:2b:3c:7a:bd:c9:da:23:1a:22:3c:
9e:c3:37:79:84:f7:7a:55:44:11:bb:5f:18:f9:de:
ed:90:d6:3b:f5:be:a4:ed:35:12:87:1c:c4:0c:c5:
0b:9a:e9:4c:fc:82:0c:0b:36:31:be:3a:32:73:8f:
45:6c:21:26:06:ad:80:ed:6a:3c:77:b8:8d:81:3d:
a5:80:5e:bc:43:a8:47:52:b0:cf:45:6f:e9:a2:6f:
89:c4:08:1b:a9:3d:97:2a:5f:da:b9:93:9c:3b:28:
6a:56:8f:4f:b5:eb:51:fe:15:30:8b:bd:92:14:16:
0b:0c:c7:59:f3:32:a8:f6:f3:d9:65:ff:b1:3e:04:
6f:30:95:f8:88:d7:b6:25:2c:b5:76:b9:f2:e7:ea:
3e:47:21:db:13:3b:8a:95:af:be:c8:a4:ae:3f:35:
6d:00:aa:ec:41:05:49:77:77:8b:fc:32:9f:0a:a0:
ed:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:04:24:78:FB:0E:C1:CB:2D:84:01:29:0C:8A:C7:E1:4B:FA:56:ED
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/21f4885e31a7136a43f457cb8fdca4c3f4b4b545.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.0.0-190.90.39.255
190.90.52.0/22
190.90.60.0-190.90.155.255
190.90.172.0-190.90.177.255
190.90.188.0-190.90.215.255
190.90.224.0/19
Signature Algorithm: sha256WithRSAEncryption
25:5e:89:1b:17:51:24:ba:9f:6a:69:5d:62:41:6a:69:cd:78:
58:2b:df:50:bb:48:f4:63:13:be:9d:fe:02:e6:b6:97:8e:ed:
49:e8:9b:42:5c:15:38:02:aa:b5:fb:c9:1b:f2:cc:bc:38:d2:
a8:45:6e:c2:ab:d3:41:5a:ff:24:bc:90:28:30:7b:b4:08:69:
da:0d:e8:96:39:aa:d1:db:60:12:8a:90:1d:f5:84:4f:bc:f0:
b9:f8:0c:a2:db:cd:a3:1c:36:40:a0:d5:9c:95:f4:b3:eb:51:
7d:ad:78:6d:81:28:fb:e1:3e:1f:26:91:97:0d:72:b8:65:a0:
49:3f:de:29:46:84:a0:da:27:9c:bb:9e:bc:64:7e:42:7c:2c:
8c:d2:b6:24:ed:e9:d6:26:ae:46:b8:e3:ee:b2:2b:d9:0e:4e:
7d:a7:87:be:95:5f:2a:59:dd:54:62:33:74:70:c4:8b:2f:68:
33:d3:5c:54:97:48:b0:98:62:d8:e0:f4:6c:07:a0:f9:e9:b1:
0b:ee:b8:09:92:45:3a:55:ed:06:06:86:9a:2b:45:40:23:59:
88:ea:f1:e5:50:01:b5:82:0e:78:cd:b5:f8:e6:ad:1b:86:29:
53:a7:f8:17:12:46:bc:15:ab:44:c8:dc:c6:67:a4:72:3d:08:
eb:5c:93:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:35 2023 by rpki-client on console-fra.rpki-client.org