Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/5f49e16480df989c3cc8effe0647b9dbd1b93e64.roa
File: 5f49e16480df989c3cc8effe0647b9dbd1b93e64.roa (raw, json)
Hash identifier: JOKOX8mOrydfEPh+yHfuWQ6M6VWKsajAg4ZJWvoWQ9A=
Subject key identifier: D7:83:B3:3F:84:C2:F9:72:C6:6E:EA:D3:BC:4D:32:02:E7:60:18:71
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 21A7DD
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/5f49e16480df989c3cc8effe0647b9dbd1b93e64.roa
Signing time: Tue 14 Feb 2023 13:16:46 +0000
ROA not before: Sun 11 Apr 2021 03:00:00 +0000
ROA not after: Thu 11 May 2023 03:00:00 +0000
asID: 262589
IP address blocks: 190.90.0.0/17 maxlen: 17
190.90.0.0/21 maxlen: 24
190.90.8.0/21 maxlen: 24
190.90.16.0/21 maxlen: 24
190.90.24.0/21 maxlen: 24
190.90.32.0/21 maxlen: 24
190.90.52.0/22 maxlen: 24
190.90.60.0/22 maxlen: 24
190.90.64.0/20 maxlen: 24
190.90.80.0/20 maxlen: 24
190.90.96.0/20 maxlen: 24
190.90.112.0/21 maxlen: 24
190.90.120.0/21 maxlen: 24
190.90.128.0/20 maxlen: 24
190.90.144.0/21 maxlen: 24
190.90.152.0/22 maxlen: 24
190.90.172.0/22 maxlen: 24
190.90.176.0/23 maxlen: 24
190.90.188.0/22 maxlen: 24
190.90.191.0/24 maxlen: 24
190.90.192.0/20 maxlen: 24
190.90.208.0/21 maxlen: 24
190.90.224.0/21 maxlen: 24
190.90.232.0/21 maxlen: 24
190.90.240.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2205661 (0x21a7dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Apr 11 03:00:00 2021 GMT
Not After : May 11 03:00:00 2023 GMT
Subject: CN=5f49e16480df989c3cc8effe0647b9dbd1b93e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:bc:24:77:eb:b8:95:37:9d:83:3d:b1:a2:bc:
20:cd:d8:0f:9c:99:71:43:10:25:0a:e7:68:01:9d:
ac:2d:d2:77:9d:c0:dd:0f:35:af:64:8d:e0:55:e8:
62:24:ef:b7:87:ca:0c:c6:40:af:b4:46:7d:ff:7a:
19:71:25:e0:fa:67:52:29:4e:bb:9e:81:a2:55:50:
69:2a:6c:2a:9e:27:a4:03:0d:9f:1f:52:ef:f1:b5:
75:16:05:94:e6:eb:15:07:7b:79:14:f6:fa:ae:f8:
5c:1b:2f:31:ba:1b:bb:42:6a:12:42:bd:bd:8f:de:
17:01:e8:80:44:26:5d:4e:2f:d3:6d:a7:23:34:25:
ab:ef:e4:2b:c8:44:d7:e2:bb:04:b6:4b:9a:a9:df:
37:ca:63:89:cb:16:51:53:23:68:ab:ae:d3:e3:fd:
e1:b7:7c:dc:fd:0b:3f:53:1d:69:1d:05:28:25:9b:
1c:91:a9:47:b0:01:c8:e7:be:a6:56:6a:a9:9b:c6:
e1:1f:cd:a1:bf:91:1a:31:87:2d:2b:04:7f:f9:7d:
32:69:6f:8f:9b:f4:12:70:8c:7a:d4:4d:72:37:ea:
77:d4:5f:97:49:53:2d:49:36:d2:0d:6b:81:0e:39:
5f:10:68:a3:38:07:fe:da:b4:29:ee:2f:80:1a:35:
e4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:83:B3:3F:84:C2:F9:72:C6:6E:EA:D3:BC:4D:32:02:E7:60:18:71
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/5f49e16480df989c3cc8effe0647b9dbd1b93e64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.0.0-190.90.155.255
190.90.172.0-190.90.177.255
190.90.188.0-190.90.215.255
190.90.224.0/19
Signature Algorithm: sha256WithRSAEncryption
3e:90:e4:4b:3a:9a:78:cf:25:3b:16:90:9a:cb:6b:9b:b0:18:
97:bc:66:b4:cd:a1:a5:19:55:16:f9:cd:bc:b2:89:4c:87:79:
51:16:a3:81:53:e2:0a:ff:bf:fa:a9:33:32:c4:f3:30:40:26:
cc:53:e9:bf:3f:c9:29:b1:e8:c3:70:f3:2d:cb:54:3b:95:a0:
d0:97:e6:82:ce:82:fc:bd:bf:d3:64:5e:61:75:38:0a:6b:60:
c5:d6:0d:56:87:b6:f8:a5:d0:9d:f3:61:b0:40:59:c9:b1:2f:
35:bb:0a:36:4f:e3:e9:dc:ad:20:76:89:f9:2f:32:e6:7d:1f:
9e:d9:3d:cf:12:f8:fe:cd:6e:d5:c0:0c:6f:a8:6c:70:21:91:
65:b7:e6:31:68:05:87:55:13:55:1c:34:52:f1:6d:ee:0c:80:
2d:a3:80:1b:8b:11:e3:1b:72:f9:1b:17:ba:ab:c4:5b:ce:c7:
e4:70:a7:ce:98:b3:aa:b9:ef:a3:f9:b9:a6:f0:60:23:1d:6d:
8a:31:34:84:ea:73:49:14:9a:14:ed:5d:a3:73:0b:92:84:60:
a6:64:dd:e2:e8:57:9e:54:6c:8b:4b:4e:0f:02:3f:4a:33:0d:
7b:c0:f2:1e:3e:77:f9:36:07:6b:74:7e:20:15:42:38:0e:00:
cb:9f:bd:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:50 2023 by rpki-client on console-ams.rpki-client.org