Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/39cb92999b19239f76a7f62f13a2f8d5d3885497.roa
File: 39cb92999b19239f76a7f62f13a2f8d5d3885497.roa (raw, json)
Hash identifier: VgYQsuGJkfVw2u10n9Nh/YEb2KWJG0Vm9QIuu4EpEoI=
Subject key identifier: D4:85:68:CE:26:D7:B5:1F:F4:7E:E9:C1:1E:25:C6:32:84:FC:87:13
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 1BE62E
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/39cb92999b19239f76a7f62f13a2f8d5d3885497.roa
Signing time: Mon 19 Sep 2022 15:09:18 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Fri 24 Mar 2023 03:00:00 +0000
asID: 262589
IP address blocks: 190.90.1.0/24 maxlen: 24
190.90.209.0/24 maxlen: 24
190.90.19.0/24 maxlen: 24
190.90.140.0/24 maxlen: 24
190.90.141.0/24 maxlen: 24
190.90.224.0/24 maxlen: 24
190.90.242.0/24 maxlen: 24
190.90.225.0/24 maxlen: 24
190.90.37.0/24 maxlen: 24
190.90.233.0/24 maxlen: 24
190.90.250.0/24 maxlen: 24
190.90.251.0/24 maxlen: 24
190.90.20.0/24 maxlen: 24
190.90.28.0/24 maxlen: 24
190.90.60.0/24 maxlen: 24
190.90.81.0/24 maxlen: 24
190.90.95.0/24 maxlen: 24
190.90.142.0/24 maxlen: 24
190.90.147.0/24 maxlen: 24
190.90.154.0/24 maxlen: 24
190.90.136.0/24 maxlen: 24
190.90.62.0/24 maxlen: 24
190.90.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1828398 (0x1be62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2023 GMT
Subject: CN=39cb92999b19239f76a7f62f13a2f8d5d3885497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:46:8c:0b:77:1a:e4:a8:bc:62:47:e4:ba:91:
d5:95:4e:d6:59:54:3a:57:0a:2d:06:38:1b:f7:a7:
bc:31:bf:aa:05:c8:13:a6:88:71:8b:96:b8:ae:0b:
03:11:a8:b3:db:08:89:6c:f1:93:81:1f:38:08:57:
85:45:45:5d:ef:9e:3d:7d:82:2c:6e:2c:be:a7:cb:
3b:fd:4b:b8:02:a6:b0:26:b8:3e:c2:ca:55:ef:c9:
8b:15:7e:ad:cd:2e:97:02:89:3a:f3:a7:72:b2:03:
e7:04:2b:89:28:71:10:20:34:80:5b:2e:e7:4e:06:
6b:9f:69:91:0a:67:f0:c4:5a:78:dd:ce:fa:fe:ae:
4b:1d:45:eb:5f:7e:93:88:82:f8:f5:2c:fc:05:f0:
31:24:6a:89:d0:9d:9b:11:16:95:de:e9:5c:50:d4:
dd:c7:3c:ee:53:d6:fe:15:c3:31:b7:54:28:95:6b:
87:16:6b:02:1d:da:17:74:3e:c4:a1:e4:d9:19:0b:
1a:63:a0:4f:cc:22:8f:35:d7:5b:1e:f2:0e:81:b1:
8b:b3:71:48:7a:59:42:6b:91:d4:0a:d1:9e:54:8c:
b5:6c:23:a8:93:3a:d5:10:39:06:f0:80:ca:92:ce:
cb:31:24:f2:50:dc:77:e9:aa:af:9d:a7:31:64:2d:
0f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:85:68:CE:26:D7:B5:1F:F4:7E:E9:C1:1E:25:C6:32:84:FC:87:13
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/39cb92999b19239f76a7f62f13a2f8d5d3885497.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.1.0/24
190.90.19.0-190.90.20.255
190.90.28.0/24
190.90.37.0/24
190.90.60.0/24
190.90.62.0/24
190.90.81.0/24
190.90.95.0/24
190.90.102.0/24
190.90.136.0/24
190.90.140.0-190.90.142.255
190.90.147.0/24
190.90.154.0/24
190.90.209.0/24
190.90.224.0/23
190.90.233.0/24
190.90.242.0/24
190.90.250.0/23
Signature Algorithm: sha256WithRSAEncryption
11:fb:ea:28:bf:08:cf:9d:a1:e8:22:ab:76:3c:b7:03:b4:31:
69:1f:5f:6e:4f:39:4e:f7:1f:ab:b5:1d:f2:58:94:f7:2e:26:
49:8c:8f:3b:5e:17:2f:17:d0:0a:d7:59:5b:57:d1:5d:39:59:
77:b1:6a:50:64:b4:78:fe:7c:9e:7f:de:95:ab:3b:d6:ae:b1:
d4:f6:ac:ed:e3:e2:69:e4:db:a3:31:7c:fa:a7:fa:c8:88:6a:
f4:75:aa:ac:2b:77:35:2f:c9:9b:29:be:06:cd:a7:07:f6:cd:
3c:f2:03:f9:ee:95:50:18:5b:3b:40:1b:71:d4:25:40:db:04:
32:64:33:e7:67:8d:50:19:0b:ae:2b:a0:88:8d:91:cd:48:2c:
23:02:c2:f8:19:07:c3:18:04:70:76:e6:5b:cc:0a:82:6d:f1:
84:e4:44:a3:cd:00:82:e6:7d:6d:95:09:c3:ba:47:3a:98:ba:
35:0b:f2:18:97:62:95:75:d2:a8:86:07:d5:99:8d:ec:0d:e1:
f1:39:54:54:b6:5c:46:99:82:1c:66:bc:28:e5:c7:df:53:33:
1e:0f:94:f6:38:3b:50:13:e4:23:34:d8:5e:73:20:a9:6d:33:
9b:7c:0f:e8:91:82:42:15:f3:c7:c6:b9:cd:9c:1c:53:00:69:
02:09:c5:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:35 2023 by rpki-client on console-fra.rpki-client.org