Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b343a245-7eaf-4955-90fa-8e6d6fd43ab8/7b1fe042bcd5116e1b6b5b4e58d7b61dfdd12752.roa
File: 7b1fe042bcd5116e1b6b5b4e58d7b61dfdd12752.roa (raw, json)
Hash identifier: fpXVw+slnxumH/qXvNAs6O9r+MDqCoIIQ4jqMiVg0b0=
Subject key identifier: CE:DA:60:67:97:61:6E:70:39:E2:DF:43:93:9C:56:67:B4:3E:B4:BB
Certificate issuer: /CN=a5db578ddaaedcf4375740e85f5f51db4e193706
Certificate serial: 2878B4
Authority key identifier: 77:12:68:55:B2:AC:ED:4F:18:E8:4D:88:E8:D2:AF:63:B0:18:27:82
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a5db578ddaaedcf4375740e85f5f51db4e193706.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/b343a245-7eaf-4955-90fa-8e6d6fd43ab8/7b1fe042bcd5116e1b6b5b4e58d7b61dfdd12752.roa
Signing time: Mon 25 Mar 2024 14:40:49 +0000
ROA not before: Mon 25 Mar 2024 14:40:49 +0000
ROA not after: Wed 25 Mar 2026 14:40:49 +0000
asID: 52468
IP address blocks: 138.117.140.0/23 maxlen: 24
190.99.117.0/24 maxlen: 24
190.99.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 00:23:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2652340 (0x2878b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5db578ddaaedcf4375740e85f5f51db4e193706
Validity
Not Before: Mar 25 14:40:49 2024 GMT
Not After : Mar 25 14:40:49 2026 GMT
Subject: CN=7b1fe042bcd5116e1b6b5b4e58d7b61dfdd12752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:98:6c:00:62:c7:84:a2:7b:5d:b1:b9:78:32:
76:77:fa:46:75:47:2b:53:96:31:36:d1:08:08:18:
ac:c2:f4:16:36:77:85:45:eb:5c:ef:87:bb:1c:f7:
fa:14:a9:bb:82:b2:94:22:cd:5c:29:1c:7b:c9:fc:
77:b8:b0:8a:27:89:a7:71:e9:99:6d:11:d8:91:d3:
1d:ef:df:0b:2a:bd:ef:14:01:41:8a:79:19:b2:e2:
36:26:43:53:e4:b1:dc:99:10:6b:b8:e6:54:ee:23:
c1:8d:a7:8d:66:44:9b:f8:ef:cc:36:6b:48:8c:cf:
3d:59:b9:ae:77:23:d9:0d:3d:95:b9:d7:f4:4e:2a:
17:d9:a9:a8:b0:53:af:3f:7a:bc:75:08:45:89:50:
2a:68:a0:fa:32:17:0f:fc:16:bf:0a:7c:cc:86:bc:
e2:1f:2d:59:7d:b6:59:37:f3:bc:e9:61:24:58:f2:
da:dc:6a:09:8e:31:47:eb:6e:d7:a2:ff:85:11:91:
7d:df:35:21:e6:16:4c:0e:cb:ce:22:c4:29:97:5c:
0e:ab:cf:82:55:77:0d:74:21:8a:d2:9a:91:9c:6d:
32:18:e4:ff:8f:b0:51:94:dc:b4:9b:b1:f9:58:ab:
a1:7a:cf:11:77:8c:38:5b:e5:f5:93:f8:ec:a8:69:
a9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:DA:60:67:97:61:6E:70:39:E2:DF:43:93:9C:56:67:B4:3E:B4:BB
X509v3 Authority Key Identifier:
keyid:77:12:68:55:B2:AC:ED:4F:18:E8:4D:88:E8:D2:AF:63:B0:18:27:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a5db578ddaaedcf4375740e85f5f51db4e193706.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b343a245-7eaf-4955-90fa-8e6d6fd43ab8/7b1fe042bcd5116e1b6b5b4e58d7b61dfdd12752.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/b343a245-7eaf-4955-90fa-8e6d6fd43ab8/a5db578ddaaedcf4375740e85f5f51db4e193706.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.140.0/23
190.99.117.0-190.99.118.255
Signature Algorithm: sha256WithRSAEncryption
a3:2c:12:37:5a:19:2c:fb:f2:30:04:60:0d:52:b5:d0:33:b1:
a1:da:cb:3c:cf:3f:52:53:85:59:1d:65:4b:fc:9d:97:c0:c9:
d0:75:aa:1d:34:fe:ac:bc:3e:2b:3d:7d:ad:d6:1c:03:e9:4a:
6c:69:92:0a:8f:02:58:72:19:7e:9b:40:a5:17:ef:8c:a6:f6:
90:fc:cb:b7:da:f2:35:56:88:e6:7c:e1:1e:df:8a:17:79:40:
60:91:c0:61:6b:40:ad:c3:26:b2:b5:58:13:6e:7b:47:00:81:
4b:02:51:1b:91:d0:6a:62:2b:76:1b:3c:e8:91:99:e4:f9:32:
39:d0:ec:09:bb:ed:02:14:9e:e4:e9:02:3d:82:5c:87:35:c2:
0c:cc:9e:83:48:74:f8:5b:af:42:b7:a0:a8:a1:0c:de:5a:98:
d6:84:7f:a9:db:ed:7c:3e:81:ca:74:96:7b:40:5e:20:a4:a2:
c9:64:c6:07:4e:d0:83:66:f7:6b:cf:39:98:bc:b8:fd:c4:f5:
bb:ac:cb:1e:63:46:4b:3b:61:85:ee:aa:21:2d:80:98:e7:da:
5a:64:33:60:95:22:fd:b6:e3:89:e3:75:e0:6a:5c:7b:82:05:
db:d8:d5:21:3c:a9:a9:a0:83:87:42:09:b2:f8:31:2e:07:c5:
aa:63:59:08
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIDKHi0MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE1
ZGI1NzhkZGFhZWRjZjQzNzU3NDBlODVmNWY1MWRiNGUxOTM3MDYwHhcNMjQwMzI1
MTQ0MDQ5WhcNMjYwMzI1MTQ0MDQ5WjAzMTEwLwYDVQQDEyg3YjFmZTA0MmJjZDUx
MTZlMWI2YjViNGU1OGQ3YjYxZGZkZDEyNzUyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAp5hsAGLHhKJ7XbG5eDJ2d/pGdUcrU5YxNtEICBiswvQWNneF
Retc74e7HPf6FKm7grKUIs1cKRx7yfx3uLCKJ4mncemZbRHYkdMd798LKr3vFAFB
inkZsuI2JkNT5LHcmRBruOZU7iPBjaeNZkSb+O/MNmtIjM89WbmudyPZDT2Vudf0
TioX2amosFOvP3q8dQhFiVAqaKD6MhcP/Ba/CnzMhrziHy1ZfbZZN/O86WEkWPLa
3GoJjjFH627Xov+FEZF93zUh5hZMDsvOIsQpl1wOq8+CVXcNdCGK0pqRnG0yGOT/
j7BRlNy0m7H5WKuhes8Rd4w4W+X1k/jsqGmpGQIDAQABo4ICaTCCAmUwHQYDVR0O
BBYEFM7aYGeXYW5wOeLfQ5OcVme0PrS7MB8GA1UdIwQYMBaAFHcSaFWyrO1PGOhN
iOjSr2OwGCeCMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYTVkYjU3
OGRkYWFlZGNmNDM3NTc0MGU4NWY1ZjUxZGI0ZTE5MzcwNi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYjM0M2EyNDUtN2VhZi00OTU1LTkwZmEtOGU2ZDZm
ZDQzYWI4LzdiMWZlMDQyYmNkNTExNmUxYjZiNWI0ZTU4ZDdiNjFkZmRkMTI3NTIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9iMzQzYTI0NS03ZWFmLTQ5NTUtOTBmYS04ZTZk
NmZkNDNhYjgvYTVkYjU3OGRkYWFlZGNmNDM3NTc0MGU4NWY1ZjUxZGI0ZTE5Mzcw
Ni5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAtBggrBgEFBQcBBwEB/wQe
MBwwGgQCAAEwFAMEAYp1jDAMAwQAvmN1AwQAvmN2MA0GCSqGSIb3DQEBCwUAA4IB
AQCjLBI3Whks+/IwBGANUrXQM7Gh2ss8zz9SU4VZHWVL/J2XwMnQdaodNP6svD4r
PX2t1hwD6UpsaZIKjwJYchl+m0ClF++MpvaQ/Mu32vI1VojmfOEe34oXeUBgkcBh
a0CtwyaytVgTbntHAIFLAlEbkdBqYit2GzzokZnk+TI50OwJu+0CFJ7k6QI9glyH
NcIMzJ6DSHT4W69Ct6CooQzeWpjWhH+p2+18PoHKdJZ7QF4gpKLJZMYHTtCDZvdr
zzmYvLj9xPW7rMseY0ZLO2GF7qohLYCY59paZDNglSL9tuOJ43Xgalx7ggXb2NUh
PKmpoIOHQgmy+DEuB8WqY1kI
-----END CERTIFICATE-----
Generated at Tue Mar 26 03:46:50 2024 by rpki-client on console-fra.rpki-client.org