Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/524fbc511b5f2a49930d87c10a4e648d3be18896.roa
File: 524fbc511b5f2a49930d87c10a4e648d3be18896.roa (raw, json)
Hash identifier: B825Z59V2VFZUYOCMQ3V05DOjAOTrQ33mFjeINTMmwY=
Subject key identifier: F0:79:3D:47:9D:BA:B8:F4:74:01:90:D8:5B:E7:5B:28:17:D7:8E:35
Certificate issuer: /CN=337d330947d264c81b4503df3b1ef67d45cc2dc4
Certificate serial: 1C4471
Authority key identifier: 61:B6:8D:FD:87:EB:CE:D6:CA:2B:24:E2:AA:8F:F7:07:DA:63:5E:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/337d330947d264c81b4503df3b1ef67d45cc2dc4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/524fbc511b5f2a49930d87c10a4e648d3be18896.roa
Signing time: Thu 22 Sep 2022 20:56:53 +0000
ROA not before: Thu 22 Sep 2022 20:53:23 +0000
ROA not after: Sun 22 Sep 2024 20:53:23 +0000
asID: 22368
IP address blocks: 190.124.96.0/21 maxlen: 21
190.124.96.0/23 maxlen: 23
190.124.98.0/24 maxlen: 24
190.124.99.0/24 maxlen: 24
190.124.100.0/24 maxlen: 24
190.124.101.0/24 maxlen: 24
190.124.102.0/24 maxlen: 24
190.124.104.0/23 maxlen: 23
190.124.106.0/23 maxlen: 23
190.124.108.0/22 maxlen: 22
190.124.112.0/22 maxlen: 22
190.124.116.0/23 maxlen: 23
190.124.118.0/23 maxlen: 23
190.124.120.0/23 maxlen: 23
190.124.122.0/23 maxlen: 23
190.124.124.0/23 maxlen: 23
190.124.126.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1852529 (0x1c4471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=337d330947d264c81b4503df3b1ef67d45cc2dc4
Validity
Not Before: Sep 22 20:53:23 2022 GMT
Not After : Sep 22 20:53:23 2024 GMT
Subject: CN=524fbc511b5f2a49930d87c10a4e648d3be18896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:74:3d:58:d2:c2:1e:3a:7a:78:65:ea:ac:48:
2d:5d:e7:4a:7f:b3:5c:90:f2:ee:c0:10:87:d4:9c:
bf:f0:6f:f2:01:1a:c8:5c:43:56:25:b4:14:2a:78:
a9:d2:12:c9:0c:b2:e2:a0:e2:ae:7c:88:56:e3:c3:
e7:65:9e:0b:48:77:2f:56:aa:a6:18:bc:b4:c2:4e:
b0:4f:8b:47:88:17:2d:ee:10:fd:23:80:cd:34:74:
f1:a7:35:d3:5b:9d:5e:7d:93:e5:62:d2:a9:00:03:
85:e1:fb:5c:a7:30:b8:11:ae:0d:f2:67:2c:bc:d3:
6d:2b:15:4d:3e:48:93:98:6d:85:21:67:de:d9:e8:
1c:00:36:45:67:0e:4a:34:79:d1:00:df:45:3e:2b:
11:20:3b:a3:a4:14:a2:6e:4f:44:16:8f:1d:67:55:
ca:29:d7:9d:db:e5:8d:cd:b3:13:72:12:c1:f4:86:
3e:e5:09:6c:d2:0e:1d:d0:40:f5:58:b7:f0:3f:8c:
84:eb:0e:37:86:ef:15:9c:e1:3f:76:fe:69:4f:a7:
ab:a9:d8:4a:80:5a:e1:58:67:ec:5e:3d:cd:1d:a7:
fa:3c:7a:08:9e:b4:9d:91:c7:a6:1b:e5:c6:9d:fb:
b9:13:8f:ba:14:16:35:17:d5:17:2f:30:d2:02:2c:
ac:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:79:3D:47:9D:BA:B8:F4:74:01:90:D8:5B:E7:5B:28:17:D7:8E:35
X509v3 Authority Key Identifier:
keyid:61:B6:8D:FD:87:EB:CE:D6:CA:2B:24:E2:AA:8F:F7:07:DA:63:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/337d330947d264c81b4503df3b1ef67d45cc2dc4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/524fbc511b5f2a49930d87c10a4e648d3be18896.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/337d330947d264c81b4503df3b1ef67d45cc2dc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.124.96.0/19
Signature Algorithm: sha256WithRSAEncryption
c2:35:45:14:7f:9c:97:94:f3:f7:e5:7f:99:58:4b:81:5f:10:
7f:cd:d4:3c:55:9b:39:61:08:3c:5b:1a:2a:60:c3:d1:60:5d:
95:64:f8:98:7d:6a:bf:33:43:4e:d4:a9:7b:14:b4:5c:66:7f:
52:c1:75:1f:da:9f:30:be:18:b6:08:00:31:fe:f4:6b:8e:f1:
25:8d:67:84:16:8b:61:26:93:5f:15:16:f8:ba:d9:f8:04:81:
9a:74:8c:3d:f8:0a:8f:03:db:b0:a9:de:aa:97:43:ae:9b:95:
74:09:3c:8b:7a:d9:1d:77:00:8c:0d:3b:c8:7b:83:23:42:c1:
84:b6:c8:71:bf:98:b9:50:de:06:5e:71:ed:63:da:62:8a:44:
63:76:b2:de:9f:56:64:73:23:88:47:8e:1f:7a:64:a2:cb:90:
e2:f4:d6:95:0f:ae:cf:e4:ad:14:59:72:1e:21:cc:9f:89:c7:
b8:7d:a7:f9:59:4d:14:62:17:71:24:25:57:aa:18:0e:11:b0:
91:3e:a0:ad:ff:b8:ed:a5:89:38:1d:20:f0:7c:8e:d7:7a:6b:
20:d6:fb:4d:26:0c:cf:79:87:a8:d8:7c:d5:4b:45:10:0a:53:
d6:ac:39:25:e0:dc:ba:d8:eb:0a:47:81:7a:fa:ca:b8:b4:9b:
72:6d:5f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 17:58:47 2023 by rpki-client on console-ams.rpki-client.org