Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/f128c8d9dac1f2328b62522fbf92b461757652ce.roa
File: f128c8d9dac1f2328b62522fbf92b461757652ce.roa (raw, json)
Hash identifier: 7CkZmKipxXPPIYqElSU7FnViPWuUqLs7IwEm0swfKj8=
Subject key identifier: D9:BF:A2:DC:9E:CD:67:D2:79:73:EB:F3:EE:B4:0B:21:C2:35:0A:C9
Certificate issuer: /CN=2ea1715958333398146179fdbf2e485fe6525742
Certificate serial: 1CB749
Authority key identifier: 60:84:61:48:7C:36:64:D8:97:0A:C3:A9:A1:74:66:80:8B:AD:C8:BF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ea1715958333398146179fdbf2e485fe6525742.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/f128c8d9dac1f2328b62522fbf92b461757652ce.roa
Signing time: Mon 11 Dec 2023 17:40:08 +0000
ROA not before: Mon 11 Dec 2023 17:40:08 +0000
ROA not after: Thu 11 Dec 2025 17:40:08 +0000
asID: 264845
IP address blocks: 201.219.252.0/22 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1881929 (0x1cb749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ea1715958333398146179fdbf2e485fe6525742
Validity
Not Before: Dec 11 17:40:08 2023 GMT
Not After : Dec 11 17:40:08 2025 GMT
Subject: CN=f128c8d9dac1f2328b62522fbf92b461757652ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:9b:e0:7e:1d:bd:a4:0e:48:88:3e:f6:7a:
9b:70:a5:6f:6d:76:49:73:60:d8:f8:ce:63:4f:d7:
b3:7d:e8:a4:28:a0:db:ea:9a:86:02:5d:ff:a6:eb:
68:c6:22:80:a8:08:97:fc:04:e3:8a:00:3e:58:74:
9e:ef:c6:d9:fc:d9:57:66:59:e6:ea:7f:fe:ad:d6:
12:cb:24:88:f0:e3:2a:d5:45:9d:4f:de:0e:85:ae:
9e:da:0c:d9:81:7f:6d:9c:fc:80:9b:1a:f2:dd:25:
15:49:cb:59:49:aa:4c:94:4b:93:7a:66:5d:4a:2c:
5c:3f:44:ee:f5:ad:3d:30:3c:cb:5c:fb:95:65:8d:
4f:8b:9a:0f:c8:d2:eb:6e:55:e7:67:e4:ae:a1:d6:
7b:44:c4:18:8e:0d:1f:3d:0b:a5:3e:62:13:17:c5:
1b:11:30:f7:ad:0a:d2:bc:5d:24:e9:0c:25:14:89:
29:1f:4b:d7:fe:85:ec:3e:1f:21:62:89:3d:ae:0d:
bc:3c:92:96:27:f8:c9:b3:ef:2f:b7:8a:aa:7c:51:
f4:14:13:bb:47:60:62:0d:7a:77:18:77:dc:d3:4b:
20:ba:8d:f5:20:9a:1a:fb:f4:fc:a5:3a:a3:44:55:
d6:9e:74:a5:df:72:56:24:6e:06:f2:ef:7e:80:61:
48:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BF:A2:DC:9E:CD:67:D2:79:73:EB:F3:EE:B4:0B:21:C2:35:0A:C9
X509v3 Authority Key Identifier:
keyid:60:84:61:48:7C:36:64:D8:97:0A:C3:A9:A1:74:66:80:8B:AD:C8:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ea1715958333398146179fdbf2e485fe6525742.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/f128c8d9dac1f2328b62522fbf92b461757652ce.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/2ea1715958333398146179fdbf2e485fe6525742.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.219.252.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:88:dc:51:f9:7c:3e:cf:48:87:3e:10:6d:e7:e0:6c:49:d2:
3c:42:41:a9:e6:ae:12:ab:9f:13:b2:7f:25:bd:e2:28:e1:43:
b1:a4:33:07:ce:7b:b9:f1:43:55:cc:56:7a:93:76:ff:40:db:
62:bf:2d:8b:49:3a:aa:a4:d9:75:8c:87:85:9b:55:7b:33:ad:
72:e9:c3:bf:94:88:5d:6f:4e:a8:2d:94:7e:a8:a5:bf:a9:68:
4f:66:6f:c5:6f:f0:9c:37:3d:26:08:77:5c:f4:a9:50:78:7b:
29:b6:d7:a7:79:39:ee:50:68:6c:0e:cd:13:e0:a5:9e:8c:f6:
f1:ac:80:b2:ce:15:b0:8d:ec:58:69:c4:5e:68:44:f9:13:09:
33:d6:a4:95:5b:c9:e4:87:ac:0a:75:a7:e8:9a:75:e9:93:4d:
d8:f3:96:b4:c0:91:4f:7b:2d:4d:6e:65:03:e0:7c:a7:39:20:
4b:2d:5e:a3:15:27:5a:da:f8:e5:40:60:1f:36:13:c2:d6:2d:
c8:97:54:11:b7:79:51:87:1e:e8:ba:71:a7:e9:38:19:21:68:
65:26:f7:6c:2e:cd:84:a7:29:16:5c:b6:8e:9d:33:3e:d6:94:
01:88:5c:4c:79:63:e6:a0:0e:b4:14:87:37:32:d6:dc:d0:89:
d1:a5:07:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 11 20:16:56 2023 by rpki-client on console-ams.rpki-client.org