Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3ab8a998bfc6ca76b24bf4d25416d02d896ff549.roa
File: 3ab8a998bfc6ca76b24bf4d25416d02d896ff549.roa (raw, json)
Hash identifier: U03hShUhszs/FFIVnVFE2F6CSlhiho6ra5vALdRvkS8=
Subject key identifier: 05:1F:0F:9E:16:A4:3B:45:46:E9:78:6F:AA:EF:7D:16:6C:10:70:AE
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 1FF942
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3ab8a998bfc6ca76b24bf4d25416d02d896ff549.roa
Signing time: Fri 20 Jan 2023 00:52:34 +0000
ROA not before: Sun 02 May 2021 03:00:00 +0000
ROA not after: Thu 11 May 2023 03:00:00 +0000
asID: 262589
IP address blocks: 190.90.0.0/21 maxlen: 21
190.90.8.0/21 maxlen: 21
190.90.16.0/21 maxlen: 21
190.90.24.0/24 maxlen: 24
190.90.28.0/22 maxlen: 24
190.90.33.0/24 maxlen: 24
190.90.34.0/24 maxlen: 24
190.90.36.0/22 maxlen: 24
190.90.52.0/22 maxlen: 24
190.90.60.0/22 maxlen: 24
190.90.64.0/20 maxlen: 24
190.90.80.0/20 maxlen: 24
190.90.208.0/21 maxlen: 24
190.90.252.0/24 maxlen: 24
190.90.240.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2095426 (0x1ff942)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: May 2 03:00:00 2021 GMT
Not After : May 11 03:00:00 2023 GMT
Subject: CN=3ab8a998bfc6ca76b24bf4d25416d02d896ff549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c2:40:f3:40:4a:95:a7:13:bd:88:54:cd:ba:
0f:ff:66:39:86:c0:2a:cb:a6:04:b4:ce:1a:d6:f8:
06:02:5a:b6:64:89:e7:ba:4f:5a:e3:40:e2:ab:af:
a9:36:dd:71:72:ef:74:0e:c7:0e:39:c0:b0:8c:43:
31:5a:df:65:6b:fa:69:5b:b8:8a:a8:9c:92:94:9a:
51:2f:85:15:6d:4b:1a:63:7c:df:e1:49:e5:eb:74:
e1:e0:84:b5:70:77:de:7d:b0:f6:9d:34:28:33:d2:
4d:b8:00:87:68:4a:f2:3b:57:d0:90:53:52:9d:4a:
92:51:e6:fb:02:ad:46:63:94:c7:e1:d0:21:de:d1:
32:31:d8:19:b9:b8:2b:7e:a5:f1:a5:1d:a5:c0:f7:
c2:0a:fe:4c:b1:6f:ac:c8:5a:a6:92:e3:25:67:26:
79:95:b4:c5:19:c3:94:a2:15:55:19:34:be:af:a2:
28:8e:29:a9:3d:a3:e0:90:a7:67:53:86:e7:6e:17:
8e:40:65:3b:b5:ad:d9:13:ab:f3:d5:73:16:33:35:
80:fb:a2:8b:5e:21:c0:12:a0:c3:0c:43:d7:57:2d:
0d:58:c6:1d:68:9c:1c:8e:50:2d:3d:a5:e2:07:54:
2a:ab:02:9c:a6:dc:bc:d5:69:bb:0a:81:fe:d6:a0:
5c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1F:0F:9E:16:A4:3B:45:46:E9:78:6F:AA:EF:7D:16:6C:10:70:AE
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3ab8a998bfc6ca76b24bf4d25416d02d896ff549.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.0.0-190.90.24.255
190.90.28.0/22
190.90.33.0-190.90.34.255
190.90.36.0/22
190.90.52.0/22
190.90.60.0-190.90.95.255
190.90.208.0/21
190.90.240.0/24
190.90.252.0/24
Signature Algorithm: sha256WithRSAEncryption
77:cc:03:3e:65:e5:34:fb:f4:b3:1c:f2:c7:b6:17:7c:4c:f0:
a2:b6:60:17:e9:16:b3:75:a5:a1:d1:2b:f7:1e:3c:74:d3:eb:
d9:9b:b3:4e:68:c4:05:a3:e1:c1:41:16:17:4c:31:2b:6a:5b:
0c:87:93:2f:76:00:73:bd:b4:c5:38:d0:48:58:0f:80:be:c4:
3a:ca:2e:41:9a:3f:09:1a:b0:87:cd:70:63:7d:04:84:3b:cb:
f2:e3:1b:e7:f5:a9:3c:d7:a7:a5:d0:87:c6:69:cc:99:69:f8:
f2:e9:44:90:75:39:c4:65:66:84:f5:58:41:5f:1e:84:65:9c:
c0:18:cc:8a:7b:95:ba:2b:9d:a6:67:ad:df:f9:d8:c2:17:6b:
c1:16:7b:33:10:b6:2b:04:4f:49:eb:28:0e:64:3f:ec:e1:de:
c5:fa:82:1f:4b:f3:67:d4:54:b8:9f:a2:72:f9:28:08:56:36:
ea:30:01:fb:eb:66:e7:4a:50:45:70:3b:19:94:79:dc:71:58:
6d:01:3a:62:b7:82:ff:2b:fd:a1:21:06:83:e3:54:06:96:79:
24:70:37:ab:cb:e1:b6:f4:f7:5e:2a:e4:5c:84:34:ab:d8:59:
0f:fc:7d:3a:86:20:79:4a:94:79:c5:85:1e:ae:91:df:3a:81:
9a:d0:5e:da
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgIDH/lCMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDMz
MDBhNmVmYjViMzRjNzkxMjVmY2U1ZGM0YWZhNjk3N2E0Njc0NGYwHhcNMjEwNTAy
MDMwMDAwWhcNMjMwNTExMDMwMDAwWjAzMTEwLwYDVQQDEygzYWI4YTk5OGJmYzZj
YTc2YjI0YmY0ZDI1NDE2ZDAyZDg5NmZmNTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAp8JA80BKlacTvYhUzboP/2Y5hsAqy6YEtM4a1vgGAlq2ZInn
uk9a40Diq6+pNt1xcu90DscOOcCwjEMxWt9la/ppW7iKqJySlJpRL4UVbUsaY3zf
4Unl63Th4IS1cHfefbD2nTQoM9JNuACHaEryO1fQkFNSnUqSUeb7Aq1GY5TH4dAh
3tEyMdgZubgrfqXxpR2lwPfCCv5MsW+syFqmkuMlZyZ5lbTFGcOUohVVGTS+r6Io
jimpPaPgkKdnU4bnbheOQGU7ta3ZE6vz1XMWMzWA+6KLXiHAEqDDDEPXVy0NWMYd
aJwcjlAtPaXiB1QqqwKcpty81Wm7CoH+1qBcFQIDAQABo4ICojCCAp4wHQYDVR0O
BBYEFAUfD54WpDtFRul4b6rvfRZsEHCuMB8GA1UdIwQYMBaAFGKqByp0W653gtLZ
RHYgTAylTu3CMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMzMwMGE2
ZWZiNWIzNGM3OTEyNWZjZTVkYzRhZmE2OTc3YTQ2NzQ0Zi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYWE2OWE5NzUtODNhMy00NTMyLWE3NzktNWZmYjg3
NTgwMzA5LzNhYjhhOTk4YmZjNmNhNzZiMjRiZjRkMjU0MTZkMDJkODk2ZmY1NDku
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9hYTY5YTk3NS04M2EzLTQ1MzItYTc3OS01ZmZi
ODc1ODAzMDkvMzMwMGE2ZWZiNWIzNGM3OTEyNWZjZTVkYzRhZmE2OTc3YTQ2NzQ0
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBggrBgEFBQcBBwEB/wRX
MFUwUwQCAAEwTTALAwMBvloDBAC+WhgDBAK+WhwwDAMEAL5aIQMEAL5aIgMEAr5a
JAMEAr5aNDAMAwQCvlo8AwQFvlpAAwQDvlrQAwQAvlrwAwQAvlr8MA0GCSqGSIb3
DQEBCwUAA4IBAQB3zAM+ZeU0+/SzHPLHthd8TPCitmAX6RazdaWh0Sv3Hjx00+vZ
m7NOaMQFo+HBQRYXTDEralsMh5MvdgBzvbTFONBIWA+AvsQ6yi5Bmj8JGrCHzXBj
fQSEO8vy4xvn9ak816el0IfGacyZafjy6USQdTnEZWaE9VhBXx6EZZzAGMyKe5W6
K52mZ63f+djCF2vBFnszELYrBE9J6ygOZD/s4d7F+oIfS/Nn1FS4n6Jy+SgIVjbq
MAH762bnSlBFcDsZlHnccVhtATpit4L/K/2hIQaD41QGlnkkcDery+G29PdeKuRc
hDSr2FkP/H06hiB5SpR5xYUerpHfOoGa0F7a
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:20 2023 by rpki-client on console.sobornost.net