Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/7a6426de3f0ce1baa706fcc83a507425818d3a8b.roa
File: 7a6426de3f0ce1baa706fcc83a507425818d3a8b.roa (raw, json)
Hash identifier: cU5DZdkZaBOADPZ2yy9IOZrVPPYn4z6rQjqEgb/azwk=
Subject key identifier: 12:90:5D:CE:27:42:4C:7E:AF:13:D1:DB:D1:37:37:0F:6C:B5:1B:DB
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 21B440
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/7a6426de3f0ce1baa706fcc83a507425818d3a8b.roa
Signing time: Tue 14 Feb 2023 15:00:53 +0000
ROA not before: Sun 07 Mar 2021 03:00:00 +0000
ROA not after: Fri 24 Mar 2023 03:00:00 +0000
asID: 18678
IP address blocks: 190.90.63.0/24 maxlen: 24
190.90.82.0/24 maxlen: 24
190.90.93.0/24 maxlen: 24
190.90.94.0/24 maxlen: 24
190.90.115.0/24 maxlen: 24
190.90.116.0/24 maxlen: 24
190.90.121.0/24 maxlen: 24
190.90.130.0/24 maxlen: 24
190.90.151.0/24 maxlen: 24
190.90.152.0/24 maxlen: 24
190.90.190.0/24 maxlen: 24
190.90.193.0/24 maxlen: 24
190.90.212.0/24 maxlen: 24
190.90.213.0/24 maxlen: 24
190.90.215.0/24 maxlen: 24
190.90.216.0/21 maxlen: 24
190.90.234.0/24 maxlen: 24
190.90.243.0/24 maxlen: 24
190.90.249.0/24 maxlen: 24
179.1.72.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2208832 (0x21b440)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Mar 7 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2023 GMT
Subject: CN=7a6426de3f0ce1baa706fcc83a507425818d3a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:3b:17:18:f6:e4:a4:fa:31:36:b9:28:cb:54:
1b:01:b4:15:b5:4a:8b:13:34:fb:2b:6e:24:d9:86:
74:e2:5f:61:2e:91:95:b7:2d:7c:c9:96:64:66:05:
13:f3:4c:0f:42:70:46:98:d5:1e:37:57:aa:ee:bf:
94:79:0a:e8:cb:90:29:a1:ad:d7:1a:3f:4c:fd:19:
a1:08:89:69:68:ea:75:4a:1b:9b:ea:67:cd:09:f9:
84:b8:9d:fa:84:0e:3e:41:20:af:4d:5b:4b:f0:cf:
41:5c:99:6a:93:61:42:f3:9b:6b:c2:cc:31:f7:2a:
0c:79:7b:96:96:b1:2f:bf:33:c6:76:35:6e:f0:76:
08:dc:f4:d0:98:0c:6c:09:74:25:8b:8a:70:95:fa:
d7:fa:50:1e:49:67:36:4c:26:6d:74:dd:71:4d:64:
d5:b6:96:64:6f:24:b7:de:82:54:09:ac:96:00:53:
01:60:af:94:64:91:60:1d:0b:a2:8f:c4:3b:de:25:
40:bd:a0:7e:c6:4b:ce:cf:97:76:30:18:65:67:9e:
b2:ca:c0:b6:99:9e:65:1e:bd:a7:cb:c0:da:c3:3f:
66:6e:90:83:c6:b8:99:ca:67:c1:db:8a:1c:6a:3b:
cc:22:a0:f2:e4:bf:81:51:c7:1c:55:b1:65:bf:46:
2f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:90:5D:CE:27:42:4C:7E:AF:13:D1:DB:D1:37:37:0F:6C:B5:1B:DB
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/7a6426de3f0ce1baa706fcc83a507425818d3a8b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.1.72.0/24
190.90.63.0/24
190.90.82.0/24
190.90.93.0-190.90.94.255
190.90.115.0-190.90.116.255
190.90.121.0/24
190.90.130.0/24
190.90.151.0-190.90.152.255
190.90.190.0/24
190.90.193.0/24
190.90.212.0/23
190.90.215.0-190.90.223.255
190.90.234.0/24
190.90.243.0/24
190.90.249.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:1a:dd:24:ef:4f:1e:f8:eb:58:18:d0:cc:57:2e:c9:8f:c7:
ca:90:8f:c6:89:65:07:29:ab:06:69:b6:04:26:d3:6f:d0:ab:
cd:ee:52:70:ee:0c:5c:c2:a0:80:96:da:2c:a2:d2:f0:cf:fe:
4d:7f:62:49:94:aa:57:0d:d6:20:6d:27:04:fc:ce:09:07:7b:
54:77:1a:61:d6:21:3d:a1:90:dc:1d:90:e1:00:8b:0d:29:3c:
86:76:45:b6:cd:89:d9:33:7e:f1:f8:5b:72:5d:35:68:6f:f3:
49:5f:30:2b:cb:2a:46:54:0e:83:bd:59:33:c8:37:a9:2f:3a:
60:cf:f1:5d:b0:db:43:8c:c6:fd:fe:e4:4b:83:fc:f4:dd:e4:
28:50:e1:12:c3:34:03:30:02:36:e4:44:66:62:89:f4:fa:e8:
e8:ad:55:fa:72:c2:6f:cb:99:bf:aa:5d:2f:bd:f4:a5:d9:34:
bf:58:c6:ee:ed:c1:ac:c7:32:b4:dc:40:2b:5c:e9:85:07:03:
1f:dd:88:dd:cd:be:db:50:c7:3f:09:36:3d:92:3d:35:13:3e:
55:c4:ae:29:14:23:8f:b5:34:1d:ae:48:3a:8a:47:a9:87:42:
9a:10:63:9f:4b:0e:bb:f8:f9:74:b1:0d:22:d5:ea:c1:6f:79:
c7:66:50:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:36 2023 by rpki-client on console-fra.rpki-client.org