Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b343a245-7eaf-4955-90fa-8e6d6fd43ab8/556475a755d257c9c09ad48f08a9e12a6e620661.roa
File: 556475a755d257c9c09ad48f08a9e12a6e620661.roa (raw, json)
Hash identifier: pC8B58ts6ng/DJXlZogQU6kMhDjeJjwiylZ79hZQJIg=
Subject key identifier: CA:60:D4:34:AF:68:79:A2:18:07:33:F6:80:E5:A4:79:87:4E:C5:F4
Certificate issuer: /CN=a5db578ddaaedcf4375740e85f5f51db4e193706
Certificate serial: 1F5F8B
Authority key identifier: 77:12:68:55:B2:AC:ED:4F:18:E8:4D:88:E8:D2:AF:63:B0:18:27:82
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a5db578ddaaedcf4375740e85f5f51db4e193706.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/b343a245-7eaf-4955-90fa-8e6d6fd43ab8/556475a755d257c9c09ad48f08a9e12a6e620661.roa
Signing time: Fri 24 Mar 2023 15:02:34 +0000
ROA not before: Fri 19 Mar 2021 14:41:42 +0000
ROA not after: Tue 24 Mar 2026 14:41:42 +0000
asID: 52468
IP address blocks: 190.99.118.0/24 maxlen: 24
190.99.119.0/24 maxlen: 24
138.117.140.0/24 maxlen: 24
138.117.141.0/24 maxlen: 24
2803:5100::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2056075 (0x1f5f8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5db578ddaaedcf4375740e85f5f51db4e193706
Validity
Not Before: Mar 19 14:41:42 2021 GMT
Not After : Mar 24 14:41:42 2026 GMT
Subject: CN=556475a755d257c9c09ad48f08a9e12a6e620661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:3c:94:82:6f:08:7f:56:98:bc:45:87:19:1f:
df:74:0d:65:a9:57:10:48:02:27:b3:63:42:dc:bd:
7c:01:a7:6d:bc:73:69:4b:c8:82:4b:ec:b9:c9:b9:
46:e2:be:b6:ec:52:8b:23:ca:62:ec:ca:0e:cd:40:
ec:03:51:ff:7c:c1:79:8e:db:a8:74:1f:12:38:d4:
51:97:24:97:f1:a1:8c:04:15:82:5a:80:d0:b3:be:
35:cd:08:b2:c6:01:9d:0f:88:f3:8e:18:a8:84:1f:
b7:45:be:59:71:25:60:a4:85:62:a0:ea:6e:72:55:
4f:31:63:03:33:45:b9:8e:4a:5a:61:92:0a:eb:30:
b1:c9:9a:30:a8:05:e3:85:6a:b3:d4:04:e2:22:c6:
96:82:57:ab:5a:6a:a5:3d:ee:dd:77:80:d3:48:f4:
ce:f6:fd:e9:60:7d:98:dd:c7:f2:e0:8c:1d:47:2f:
61:ab:89:3c:1e:20:75:ef:f8:26:56:6e:6b:f2:d9:
e3:ce:7e:5e:6d:bf:ad:f7:ec:9c:f3:ea:6b:19:ac:
7c:ab:fe:f5:13:1d:24:cb:a4:dc:15:7d:23:25:8e:
19:fb:60:54:91:bf:cc:65:4f:4f:f4:b5:d3:e0:4e:
16:55:df:9c:91:f4:50:b2:4d:e2:e1:01:75:1a:88:
13:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:60:D4:34:AF:68:79:A2:18:07:33:F6:80:E5:A4:79:87:4E:C5:F4
X509v3 Authority Key Identifier:
keyid:77:12:68:55:B2:AC:ED:4F:18:E8:4D:88:E8:D2:AF:63:B0:18:27:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a5db578ddaaedcf4375740e85f5f51db4e193706.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b343a245-7eaf-4955-90fa-8e6d6fd43ab8/556475a755d257c9c09ad48f08a9e12a6e620661.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/b343a245-7eaf-4955-90fa-8e6d6fd43ab8/a5db578ddaaedcf4375740e85f5f51db4e193706.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.140.0/23
190.99.118.0/23
IPv6:
2803:5100::/32
Signature Algorithm: sha256WithRSAEncryption
20:82:e9:cd:00:e6:88:c3:bb:9c:04:99:d6:3c:ee:01:c0:4a:
84:8d:be:99:21:da:7f:67:ad:f1:00:de:f5:3d:74:b2:96:ff:
f6:55:04:6a:bc:7a:98:cb:c3:83:22:7b:0e:cb:a0:56:7a:5a:
62:cf:34:aa:8e:ca:80:01:0e:ec:1f:e9:29:32:74:f6:58:f0:
5f:af:53:dc:83:5a:e0:d5:3b:95:1e:3f:9b:2e:b1:0b:68:49:
2b:d5:ab:55:2e:7a:eb:ed:5d:22:7a:a2:fc:f5:0e:d3:bf:77:
22:c5:88:8c:29:0a:f5:c1:b2:1d:82:86:b2:ca:c8:2c:86:bd:
d4:ea:6c:e7:32:28:1d:06:13:e3:8f:69:c9:a0:a3:45:fb:69:
e4:bf:59:c3:56:d8:55:e8:99:d6:f4:98:c1:b8:18:3e:da:89:
58:26:d9:dd:71:32:4a:8f:3c:75:3f:44:71:39:b5:6c:81:ab:
80:6b:a7:f5:64:b6:e0:8d:be:10:6c:15:e0:19:57:fc:0c:60:
aa:f9:a9:4b:32:68:4a:55:b8:d9:a3:34:25:81:e3:78:e8:9f:
38:e4:49:2e:a7:4e:f0:2b:b5:a2:78:67:fe:73:2d:2b:b2:60:
52:ee:c1:88:b6:65:80:f7:1a:f6:cc:3a:8e:d0:d2:83:67:4a:
15:dd:8b:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:51 2023 by rpki-client on console-ams.rpki-client.org