Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/396ca0cafafb754b9f07378f1a4dea2356dc4362.roa
File: 396ca0cafafb754b9f07378f1a4dea2356dc4362.roa (raw, json)
Hash identifier: XdK1EtQluTTFxaukTmMoqN53jhAqqrpC+hPcIVAzKXI=
Subject key identifier: 43:5E:4D:1F:BA:78:12:BB:EC:6B:3C:5B:89:B9:FC:7A:22:12:2C:16
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 0FEC43
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/396ca0cafafb754b9f07378f1a4dea2356dc4362.roa
Signing time: Mon 21 Jun 2021 19:59:18 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 262589
IP address blocks: 190.90.208.0/23 maxlen: 24
179.1.92.0/22 maxlen: 24
179.1.96.0/24 maxlen: 24
190.90.148.0/24 maxlen: 24
190.90.207.0/24 maxlen: 24
190.90.235.0/24 maxlen: 24
190.90.13.0/24 maxlen: 24
190.90.83.0/24 maxlen: 24
190.90.242.0/24 maxlen: 24
190.90.245.0/24 maxlen: 24
179.1.77.0/24 maxlen: 24
179.1.67.0/24 maxlen: 24
179.1.68.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1043523 (0xfec43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=396ca0cafafb754b9f07378f1a4dea2356dc4362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1a:f3:6b:fc:d6:bb:99:de:a0:87:25:00:65:
66:6a:fc:8c:6b:14:a8:72:d9:c9:fc:b3:e6:f7:9d:
0a:b9:1f:6b:55:fe:1e:5a:a2:86:e9:4d:16:b3:4c:
dd:6e:c5:64:9a:73:95:f5:fd:19:24:55:7d:84:a6:
b3:0d:f6:ec:ce:85:c8:6f:47:26:84:5f:d8:3b:29:
59:ab:fb:d3:73:e8:3f:83:5d:dc:c6:49:d5:e8:c9:
df:ff:4c:7c:2d:2f:57:cd:d1:a6:c3:8c:82:bc:84:
f8:8a:b6:61:51:e9:55:e9:f7:7d:67:47:79:e2:7d:
82:05:3a:1f:1f:e8:23:53:1b:8f:c8:89:eb:3f:4d:
37:c1:82:70:a0:e1:06:a8:b6:f2:29:17:a7:4f:6d:
10:5f:a3:5a:d4:43:a6:7d:27:14:65:6e:df:2c:91:
1c:6b:bc:ef:04:40:af:da:28:66:a3:f0:ba:72:8c:
67:a8:1d:84:d0:45:cf:4e:f7:d3:b7:8c:bb:3b:18:
80:5e:cf:65:77:17:a6:28:3a:33:17:d6:80:a3:6d:
e4:e0:ac:24:62:81:0b:f8:5b:3f:c2:cc:87:93:a0:
79:ec:ad:25:34:86:6c:ff:aa:03:b0:fc:ae:d0:9e:
59:f8:ca:ff:9d:66:4b:47:14:29:f2:5c:89:f5:c1:
96:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:5E:4D:1F:BA:78:12:BB:EC:6B:3C:5B:89:B9:FC:7A:22:12:2C:16
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/396ca0cafafb754b9f07378f1a4dea2356dc4362.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.1.67.0-179.1.68.255
179.1.77.0/24
179.1.92.0-179.1.96.255
190.90.13.0/24
190.90.83.0/24
190.90.148.0/24
190.90.207.0-190.90.209.255
190.90.235.0/24
190.90.242.0/24
190.90.245.0/24
Signature Algorithm: sha256WithRSAEncryption
68:6e:66:47:ea:eb:24:67:f4:ec:08:16:e6:56:f8:1a:7c:b8:
6b:36:06:b9:0b:f9:ec:be:31:7c:f3:7c:e1:f3:b9:a2:60:f9:
8d:0a:65:b6:ae:1d:83:87:89:ee:af:41:5b:50:80:61:8c:d8:
e7:be:70:2f:a5:ae:49:fd:03:6f:e2:5d:59:1a:b7:4f:8e:ac:
2e:de:41:4c:bb:a3:a4:1d:82:27:9e:de:61:ef:ec:1c:f5:59:
97:b8:ca:ec:71:7f:7d:5a:e8:41:9f:10:e0:62:b5:25:52:6a:
84:f5:a6:b3:d9:47:67:cd:03:cd:1b:47:e7:80:a0:84:c6:bc:
5d:f1:05:15:c9:51:7a:fa:44:e7:f4:2b:c2:9e:75:80:c0:98:
95:76:d9:3a:d4:0c:2e:3c:93:19:64:e3:b0:b3:34:30:e0:cb:
e8:85:a9:da:c2:54:0a:c2:8b:d6:36:01:f0:d7:04:18:09:99:
99:bf:27:73:ad:f5:4d:90:43:6d:27:b5:71:de:61:10:6d:32:
d5:f1:18:e0:53:20:c5:34:3b:2a:42:f9:f0:42:d7:1d:9e:e1:
66:c7:0d:49:e6:27:75:78:b4:90:d9:39:7a:a3:75:a4:e4:aa:
0d:39:75:c0:89:b1:32:15:67:a6:07:92:b7:00:26:08:8d:69:
c8:0f:09:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:35 2023 by rpki-client on console-fra.rpki-client.org