Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/08950f715b1bf6d5ee1dd7c3d62eb3633606240f.roa
File: 08950f715b1bf6d5ee1dd7c3d62eb3633606240f.roa (raw, json)
Hash identifier: OBzYqpqU6ejQOP8r8BZF7d0NKOL0HVv3TmZ3rrCsMWU=
Subject key identifier: 0B:20:1C:CA:B9:F3:94:68:FC:5E:AC:4D:B2:55:A8:77:72:CD:5F:A6
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 207E76
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/08950f715b1bf6d5ee1dd7c3d62eb3633606240f.roa
Signing time: Sun 22 Jan 2023 21:55:07 +0000
ROA not before: Sat 24 Apr 2021 03:00:00 +0000
ROA not after: Thu 11 May 2023 03:00:00 +0000
asID: 262589
IP address blocks: 190.90.0.0/21 maxlen: 21
190.90.8.0/21 maxlen: 21
190.90.16.0/21 maxlen: 21
190.90.24.0/24 maxlen: 24
190.90.28.0/22 maxlen: 24
190.90.33.0/24 maxlen: 24
190.90.34.0/24 maxlen: 24
190.90.36.0/22 maxlen: 24
190.90.52.0/22 maxlen: 24
190.90.60.0/22 maxlen: 24
190.90.64.0/20 maxlen: 24
190.90.80.0/20 maxlen: 24
190.90.96.0/20 maxlen: 24
190.90.112.0/21 maxlen: 24
190.90.128.0/20 maxlen: 24
190.90.144.0/21 maxlen: 24
190.90.154.0/24 maxlen: 24
190.90.191.0/24 maxlen: 24
190.90.192.0/24 maxlen: 24
190.90.200.0/23 maxlen: 24
190.90.204.0/24 maxlen: 24
190.90.208.0/21 maxlen: 24
190.90.224.0/21 maxlen: 24
190.90.252.0/24 maxlen: 24
190.90.240.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2129526 (0x207e76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Apr 24 03:00:00 2021 GMT
Not After : May 11 03:00:00 2023 GMT
Subject: CN=08950f715b1bf6d5ee1dd7c3d62eb3633606240f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:16:a7:7e:35:bf:92:a5:a2:ba:48:3c:d0:cf:
7c:3c:d5:b9:0c:6a:74:af:99:af:6c:1e:48:fd:3d:
b6:c5:4e:ad:2a:52:eb:12:04:34:73:4e:d0:77:f7:
95:e7:e4:ee:71:8f:58:76:93:dd:9d:da:a5:e6:cb:
d1:f2:97:e8:af:43:26:7c:7d:2b:53:bd:f7:a2:28:
6c:d8:7e:da:6a:29:1d:18:a4:1d:35:52:29:66:06:
c5:0e:43:dd:55:46:7c:69:01:e8:53:30:09:04:8e:
24:9d:dc:0f:81:db:87:d0:e6:1b:52:5e:36:89:24:
dc:8e:a4:46:30:a5:3d:e0:79:22:59:0a:9b:08:98:
ae:30:46:0d:71:99:3b:c0:32:ad:57:a1:35:d6:03:
69:4b:41:b8:7d:83:7a:ae:15:55:4b:43:54:ee:7f:
da:81:3c:70:3f:30:b6:c5:b9:d7:9f:13:16:07:23:
8a:7c:57:d6:6c:8d:42:16:0a:54:63:8b:1a:cb:58:
7e:21:05:97:79:7f:dd:44:dc:da:81:11:5f:5d:d2:
02:50:62:b0:87:1c:33:7f:61:91:ae:3e:88:41:9f:
7c:71:02:96:c8:6e:7b:14:14:76:6b:82:3a:9b:f5:
22:a1:4f:0f:64:5a:9a:f2:1a:0f:11:73:ae:27:00:
e0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:20:1C:CA:B9:F3:94:68:FC:5E:AC:4D:B2:55:A8:77:72:CD:5F:A6
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/08950f715b1bf6d5ee1dd7c3d62eb3633606240f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.0.0-190.90.24.255
190.90.28.0/22
190.90.33.0-190.90.34.255
190.90.36.0/22
190.90.52.0/22
190.90.60.0-190.90.119.255
190.90.128.0-190.90.151.255
190.90.154.0/24
190.90.191.0-190.90.192.255
190.90.200.0/23
190.90.204.0/24
190.90.208.0/21
190.90.224.0/21
190.90.240.0/24
190.90.252.0/24
Signature Algorithm: sha256WithRSAEncryption
15:48:68:30:41:ba:31:b1:6f:a6:f5:57:dd:9b:a7:6e:c6:3f:
a5:11:56:cc:71:4c:bd:64:10:01:51:89:51:53:4c:5d:b4:b4:
30:3e:40:c7:96:4a:23:86:40:2f:e1:46:91:ab:87:e0:c0:7f:
36:67:65:62:68:4e:c4:d9:26:64:38:1c:83:12:12:61:3e:64:
63:6c:45:32:11:d9:06:16:8d:44:db:05:0c:f0:34:ce:72:cd:
d4:ec:de:90:73:e6:19:77:59:13:30:98:be:07:4b:23:36:ca:
c9:b6:32:91:a0:68:be:d7:3e:fd:e3:25:7c:0f:83:ad:f2:65:
80:fa:4c:3f:cb:9d:9c:44:8f:0c:7a:a3:a1:7f:c5:67:d8:15:
34:46:02:c5:b0:c1:e8:ad:6a:5b:bf:82:7f:a2:dc:8e:5b:a4:
92:44:68:b7:1c:b7:11:c6:dd:ad:30:66:c0:4a:0f:2c:60:65:
bf:19:48:ea:f7:b6:74:29:bc:c5:ae:e5:59:22:94:99:9c:2c:
fa:e8:fd:e1:28:93:6a:55:f0:15:fd:ae:ca:36:c1:bf:c1:cc:
08:75:9a:5d:af:ba:2a:01:bb:8a:ee:40:51:28:58:20:20:bc:
70:2f:9a:16:1e:88:b3:b4:62:aa:62:48:b0:7b:a4:7a:9b:15:
33:54:88:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:20 2023 by rpki-client on console.sobornost.net