Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0cac3b82-f488-4df7-bc67-ad856a12aa43/4ae0d32a2fed389cb0b691c8990cc93de37c9300.roa
File: 4ae0d32a2fed389cb0b691c8990cc93de37c9300.roa (raw, json)
Hash identifier: q2zNav6CVCDBuqSMvPUx7kWBrgjTUMyVSQLAVIeQlik=
Subject key identifier: 95:7D:71:FD:8F:77:BA:00:8A:82:CB:9D:E7:71:36:FA:0E:0A:D8:BE
Certificate issuer: /CN=07a3e63d1966870c34f83b79e6705d8dc3f9b809
Certificate serial: 24EA42
Authority key identifier: E7:4F:4B:4C:08:78:4E:1A:4E:22:4C:95:7A:B5:B7:5F:81:D9:24:95
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/07a3e63d1966870c34f83b79e6705d8dc3f9b809.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0cac3b82-f488-4df7-bc67-ad856a12aa43/4ae0d32a2fed389cb0b691c8990cc93de37c9300.roa
Signing time: Fri 25 Aug 2023 08:30:02 +0000
ROA not before: Thu 24 Aug 2023 08:30:02 +0000
ROA not after: Sat 23 Aug 2025 08:30:02 +0000
asID: 7049
IP address blocks: 200.59.42.0/24 maxlen: 24
200.59.48.0/23 maxlen: 23
200.59.51.0/24 maxlen: 24
200.59.52.0/23 maxlen: 23
200.59.53.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2419266 (0x24ea42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a3e63d1966870c34f83b79e6705d8dc3f9b809
Validity
Not Before: Aug 24 08:30:02 2023 GMT
Not After : Aug 23 08:30:02 2025 GMT
Subject: CN=4ae0d32a2fed389cb0b691c8990cc93de37c9300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e2:c5:3f:3a:66:74:28:33:ed:50:12:af:95:
78:03:e5:ed:55:6a:40:e8:d5:1e:d4:4b:0d:ee:4e:
27:4f:b8:ed:89:cd:30:95:cf:f9:ca:42:cc:f0:23:
44:17:95:02:61:d6:9f:4d:51:e7:71:f5:0c:af:cd:
92:5f:40:13:c4:92:89:81:54:16:54:33:6f:6a:dd:
cd:4c:4c:e1:a5:01:8b:75:08:9f:e4:04:87:63:36:
cc:b0:1f:84:57:a6:80:c8:11:e8:91:30:4c:ca:22:
52:ac:0d:da:b5:48:aa:52:7f:f0:09:5c:83:c2:6c:
a2:51:42:bd:b3:82:0d:83:58:ce:e0:57:bf:e4:02:
5c:fa:7d:21:c6:7c:83:e0:40:09:70:39:23:82:d6:
1a:05:76:db:fe:52:d5:d6:05:d5:14:9b:37:69:65:
71:5e:93:94:d3:64:82:2c:d7:0e:65:ca:14:64:41:
fe:2a:6b:06:52:64:62:42:2c:93:0e:d2:9d:0b:2d:
04:f6:79:ed:a8:17:b3:a5:4f:78:2f:11:35:a9:f8:
89:c3:ba:d0:ed:25:5c:c1:24:57:18:79:3f:dc:d1:
98:f8:65:4e:dc:e5:15:2f:3c:94:09:56:5f:70:13:
cc:0c:79:89:35:b0:cb:24:7f:67:7e:c3:a2:4b:9b:
07:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7D:71:FD:8F:77:BA:00:8A:82:CB:9D:E7:71:36:FA:0E:0A:D8:BE
X509v3 Authority Key Identifier:
keyid:E7:4F:4B:4C:08:78:4E:1A:4E:22:4C:95:7A:B5:B7:5F:81:D9:24:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/07a3e63d1966870c34f83b79e6705d8dc3f9b809.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0cac3b82-f488-4df7-bc67-ad856a12aa43/4ae0d32a2fed389cb0b691c8990cc93de37c9300.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0cac3b82-f488-4df7-bc67-ad856a12aa43/07a3e63d1966870c34f83b79e6705d8dc3f9b809.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.59.42.0/24
200.59.48.0/23
200.59.51.0-200.59.53.255
Signature Algorithm: sha256WithRSAEncryption
43:71:56:f5:e6:bc:64:16:8e:a3:63:61:61:2d:89:aa:bd:89:
aa:8b:6c:6d:b9:97:6c:f2:cb:47:10:75:46:25:bb:03:9a:ce:
e8:87:38:2b:e0:bc:bb:cd:0b:b3:43:dd:da:7c:8f:22:e5:cd:
a2:a0:34:f8:dc:29:d0:b7:69:63:c8:85:fe:2b:98:9d:11:99:
42:c8:2d:d2:0d:7f:be:fa:88:ab:ef:23:f1:fc:25:b4:45:d5:
fb:64:34:dc:95:6b:ca:c9:2b:c7:2d:0e:de:59:73:fb:4e:df:
24:0e:a2:58:60:16:53:94:40:7c:69:3c:2b:cc:d5:9b:62:bd:
a1:2f:4e:1d:06:ad:50:2c:93:de:86:4d:62:17:f0:0a:17:15:
7a:47:09:cd:1a:b9:5e:f9:b3:4d:5e:fa:ec:47:51:15:dd:45:
b7:bc:4f:0f:4f:21:4f:10:13:01:15:60:74:a3:a2:c6:73:d7:
e4:f6:17:a0:e3:d1:62:00:7e:08:96:11:08:77:e8:d3:e9:87:
7c:fa:24:51:00:27:79:8a:96:71:10:9d:e6:5e:60:f2:d7:8c:
95:fa:4b:c9:dd:ed:98:e6:e6:cc:10:0c:32:8e:e7:5c:61:5e:
80:66:28:28:35:b9:0d:5b:99:ef:9c:6b:7f:69:20:ea:8c:77:
e9:6c:5a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 9 19:10:51 2023 by rpki-client on console-ams.rpki-client.org