Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/25b637c6-cdcf-423d-8c0c-cd615ab98a24/08addd337a2809c883e03d4def71e63ec3512bae.roa
File: 08addd337a2809c883e03d4def71e63ec3512bae.roa (raw, json)
Hash identifier: AHRpFIBO0CMaUZLIAmcaTWhuzOI8jV4H/Fqb8Ci+HwM=
Subject key identifier: 9B:AF:CF:84:0C:13:66:E2:0E:62:26:AD:E4:1D:32:D9:9F:AE:56:FC
Certificate issuer: /CN=ce64e257eae04ee26d8eb339f148791b31cc0875
Certificate serial: 178421
Authority key identifier: 67:C6:3B:A4:47:A2:35:D2:28:1C:33:3E:9A:83:87:25:17:A4:B1:BE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce64e257eae04ee26d8eb339f148791b31cc0875.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/25b637c6-cdcf-423d-8c0c-cd615ab98a24/08addd337a2809c883e03d4def71e63ec3512bae.roa
Signing time: Sat 21 May 2022 18:31:46 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 23031
IP address blocks: 66.231.65.0/24 maxlen: 24
66.231.66.0/24 maxlen: 24
66.231.67.0/24 maxlen: 24
66.231.69.0/24 maxlen: 24
66.231.71.0/24 maxlen: 24
66.231.73.0/24 maxlen: 24
66.231.77.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1541153 (0x178421)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce64e257eae04ee26d8eb339f148791b31cc0875
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=08addd337a2809c883e03d4def71e63ec3512bae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6c:37:a1:79:7c:f0:e3:a3:2b:96:db:dd:26:
73:b6:a4:c9:6d:69:17:f3:f7:c9:99:be:a0:3d:39:
a5:85:6f:54:24:36:24:41:36:00:5f:6a:4d:b5:7a:
9d:53:18:9b:69:87:5c:4d:e2:17:a4:7f:ef:e6:f0:
18:c1:35:dc:3b:ac:06:04:98:5a:fa:8c:df:2a:07:
38:79:ff:2e:d6:84:ed:2b:40:14:5e:aa:22:fd:cc:
80:36:20:70:ad:0d:a8:39:db:83:e7:3b:6a:36:0d:
dc:ab:1a:96:b9:39:6d:84:63:b6:f4:5b:3c:35:3d:
cd:23:9c:ff:a5:82:f3:a4:ee:53:2f:ad:a8:0f:c1:
71:f7:72:b4:e3:f6:bf:39:74:54:d1:13:12:bf:68:
8a:31:a8:52:c1:37:3e:3f:17:a8:1f:c0:a3:52:21:
e7:8c:b4:7a:9e:95:79:9a:29:db:5a:e1:14:ba:c4:
9a:f3:72:47:d6:ef:21:94:c6:ef:bc:89:00:ed:01:
3a:68:32:88:5a:41:e1:c0:29:d9:5c:b1:44:42:4d:
a5:fe:e9:c4:82:08:0f:7f:8b:a8:8b:ea:b2:70:1c:
c5:26:d3:5f:c2:cc:4f:ae:74:5d:ba:d1:32:ab:ab:
30:25:fc:2a:51:bc:15:f7:72:bc:1a:7b:8e:4d:f6:
eb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:AF:CF:84:0C:13:66:E2:0E:62:26:AD:E4:1D:32:D9:9F:AE:56:FC
X509v3 Authority Key Identifier:
keyid:67:C6:3B:A4:47:A2:35:D2:28:1C:33:3E:9A:83:87:25:17:A4:B1:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce64e257eae04ee26d8eb339f148791b31cc0875.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/25b637c6-cdcf-423d-8c0c-cd615ab98a24/08addd337a2809c883e03d4def71e63ec3512bae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/25b637c6-cdcf-423d-8c0c-cd615ab98a24/ce64e257eae04ee26d8eb339f148791b31cc0875.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.231.65.0-66.231.67.255
66.231.69.0/24
66.231.71.0/24
66.231.73.0/24
66.231.77.0/24
Signature Algorithm: sha256WithRSAEncryption
35:bd:74:b9:16:89:8a:73:b4:cf:3b:e6:9d:42:3d:67:27:85:
12:82:69:1d:01:ff:17:48:6b:b2:98:00:af:2d:0a:d1:50:f7:
df:fb:af:5d:34:e6:0d:27:d4:f6:5d:58:a2:5d:e9:f0:0a:75:
bb:41:cb:7b:f4:9b:c1:a4:46:1b:d6:3c:69:45:a1:5e:f5:8a:
5f:86:b2:43:6b:33:fc:e6:fc:06:74:e7:fe:29:66:cf:25:2d:
d3:03:40:2e:4d:3d:51:b0:5c:64:73:d2:98:96:6e:33:a4:3b:
8d:9c:7e:46:fe:6a:73:94:46:84:d8:8f:fd:1c:0c:ff:c4:4d:
c4:dc:a8:7a:eb:68:37:ca:72:aa:bc:b2:53:10:e4:03:35:8a:
37:b3:15:e3:51:7c:5e:59:d0:e5:20:76:99:97:4b:cf:ec:7f:
c1:0f:fa:21:ff:74:0b:a1:77:f5:1f:ff:19:e2:23:3d:7f:e2:
a2:07:5e:56:be:12:df:8c:ee:d2:ac:58:4f:ac:3a:cf:d7:6f:
bf:e8:86:59:b0:ef:4f:2f:1d:da:b8:f5:c5:85:61:81:f6:a9:
63:92:53:e5:60:02:53:97:e1:5b:09:7a:18:d1:a4:fc:79:98:
be:57:be:fc:7b:d6:d1:30:31:d6:be:4e:f5:a9:26:7e:9d:92:
d8:56:14:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:12 2023 by rpki-client on console-fra.rpki-client.org