Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0a16e5c0-7679-45b3-b31a-abd79f05c08a/325ed99400855fb9802a43cf19d9a35db8f31b19.roa
File: 325ed99400855fb9802a43cf19d9a35db8f31b19.roa (raw, json)
Hash identifier: YShY8x6wSuwAXzUXuTKnNkpPpyUuZxFFM8DWNRwRiRc=
Subject key identifier: 95:7C:AD:AD:62:92:11:E8:08:6B:46:B0:2F:C2:B0:0B:9C:A7:24:BD
Certificate issuer: /CN=91b1e48227e2bbda9d2cb732746aa69540bc1c54
Certificate serial: 17353B
Authority key identifier: 90:4A:D1:DB:DF:7A:3D:25:8B:0C:7C:B1:B4:73:F4:2B:4A:3D:38:3A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/91b1e48227e2bbda9d2cb732746aa69540bc1c54.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0a16e5c0-7679-45b3-b31a-abd79f05c08a/325ed99400855fb9802a43cf19d9a35db8f31b19.roa
Signing time: Mon 20 Jun 2022 14:30:53 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 52320
IP address blocks: 138.0.40.0/22 maxlen: 24
138.204.236.0/22 maxlen: 24
200.16.68.0/22 maxlen: 24
2800:6e0::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1520955 (0x17353b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91b1e48227e2bbda9d2cb732746aa69540bc1c54
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=325ed99400855fb9802a43cf19d9a35db8f31b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c5:68:53:dd:86:26:bd:53:cd:56:63:22:78:
59:76:1e:73:96:00:e0:e4:9b:9f:0d:aa:61:05:e0:
d9:8b:1a:64:51:36:90:71:b9:ef:6e:e3:8c:71:ba:
32:56:cf:ff:51:f3:61:8f:1c:a2:22:0a:10:24:04:
76:5f:df:e4:3d:79:c8:6f:70:49:f5:9f:e8:4f:db:
ce:65:b8:b0:83:08:43:f3:ac:0a:23:22:9f:7a:71:
68:81:c3:8f:7a:7e:2c:af:2a:53:13:cf:ab:7a:27:
82:83:a0:db:37:14:ef:2c:73:c4:93:50:dc:78:43:
da:a3:59:e4:20:10:e8:32:29:66:ef:0f:ef:12:d2:
fa:55:a9:2c:8a:db:7d:72:16:56:44:72:64:57:c8:
44:a2:b2:a9:ba:6e:26:21:29:01:c6:48:d9:5b:91:
e8:3b:91:cf:20:9a:53:5f:2b:f2:24:2e:df:35:67:
62:6b:c7:d2:d3:d0:b2:59:0b:38:b6:4e:db:44:d2:
ea:9b:6c:be:9d:f5:19:90:46:75:65:65:73:4a:df:
83:2f:15:cd:63:26:99:70:36:b1:4b:d2:f5:c2:08:
78:c8:33:af:a8:fb:a4:0d:8a:5c:c5:93:79:ec:98:
37:34:34:35:a7:fd:33:e9:24:2c:81:66:59:10:c4:
3f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7C:AD:AD:62:92:11:E8:08:6B:46:B0:2F:C2:B0:0B:9C:A7:24:BD
X509v3 Authority Key Identifier:
keyid:90:4A:D1:DB:DF:7A:3D:25:8B:0C:7C:B1:B4:73:F4:2B:4A:3D:38:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/91b1e48227e2bbda9d2cb732746aa69540bc1c54.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0a16e5c0-7679-45b3-b31a-abd79f05c08a/325ed99400855fb9802a43cf19d9a35db8f31b19.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0a16e5c0-7679-45b3-b31a-abd79f05c08a/91b1e48227e2bbda9d2cb732746aa69540bc1c54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.0.40.0/22
138.204.236.0/22
200.16.68.0/22
IPv6:
2800:6e0::/32
Signature Algorithm: sha256WithRSAEncryption
61:ed:51:0d:ea:29:21:3d:61:69:22:a0:d7:4b:f1:c8:83:cb:
d5:6c:18:d5:72:65:33:54:bb:5a:bd:c3:3f:e0:9b:35:34:05:
7e:2b:bd:1c:1a:fe:34:d2:26:f1:b7:88:80:22:de:91:5a:17:
ae:a2:c2:65:8f:a7:21:d7:27:79:5e:ed:48:93:dd:b1:3d:91:
27:01:14:4a:fb:a2:db:db:fd:53:6b:9a:97:06:f1:5f:f0:1b:
9f:dd:b0:2b:d9:7b:71:f7:1a:2a:7c:9e:33:5d:51:60:60:99:
3c:0d:27:6d:b0:d9:be:c0:79:54:d1:67:5d:27:f7:1a:c2:45:
2d:5e:3b:28:54:c0:5f:bc:c3:0a:82:f4:bb:cc:75:50:91:09:
06:12:aa:cc:f8:5e:49:73:20:18:0a:9a:62:d0:f4:4b:7e:02:
e2:ef:3f:41:0c:d4:98:f6:d6:fe:76:5e:fc:1a:32:3b:73:96:
67:5d:dd:18:d1:50:09:40:a7:43:47:77:3b:cf:6b:eb:14:6e:
8a:7a:1e:fa:72:1a:b2:ae:32:e4:19:7e:84:8b:0b:c0:a5:54:
bb:5b:e8:12:c4:0a:e0:93:92:0f:b2:d1:cb:91:fb:0e:d6:03:
b0:f9:b1:6a:4a:c3:ec:75:7d:dc:ae:97:3b:36:59:58:56:ee:
8a:82:cb:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:08 2023 by rpki-client on console-fra.rpki-client.org