Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/127e4095-2f45-4ec9-8f75-e799385fbad0/13c7ffb13eb2149b84da8bf7e620e6395d2d3c7d.roa
File: 13c7ffb13eb2149b84da8bf7e620e6395d2d3c7d.roa (raw, json)
Hash identifier: rFMTO8S+XkbIKYqkNhVfLd6WE8SVzd7cBgoygS/nBrk=
Subject key identifier: BB:CC:2A:AF:18:69:35:84:62:29:D3:A6:81:03:4D:EF:6A:B5:EF:60
Certificate issuer: /CN=797fbc6cdda2f3661b2a335060cb84d808706659
Certificate serial: 0E566B
Authority key identifier: 2B:62:77:3F:02:D2:1B:26:DA:9D:06:63:62:D0:AC:29:75:5F:69:49
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/797fbc6cdda2f3661b2a335060cb84d808706659.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/127e4095-2f45-4ec9-8f75-e799385fbad0/13c7ffb13eb2149b84da8bf7e620e6395d2d3c7d.roa
Signing time: Wed 24 Mar 2021 14:30:56 +0000
ROA not before: Wed 24 Mar 2021 14:30:53 +0000
ROA not after: Tue 24 Mar 2026 14:30:53 +0000
asID: 263223
IP address blocks: 190.216.240.0/24 maxlen: 24
190.216.245.0/24 maxlen: 24
190.216.249.0/24 maxlen: 24
190.216.252.0/24 maxlen: 24
201.234.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939627 (0xe566b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=797fbc6cdda2f3661b2a335060cb84d808706659
Validity
Not Before: Mar 24 14:30:53 2021 GMT
Not After : Mar 24 14:30:53 2026 GMT
Subject: CN=13c7ffb13eb2149b84da8bf7e620e6395d2d3c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2b:7f:3c:81:94:0b:63:2a:b8:3b:5e:a7:03:
cb:7b:74:5f:26:4b:ff:04:11:9a:a9:a7:0a:6f:43:
08:21:bc:27:52:08:da:8a:85:32:32:98:29:b5:94:
42:ce:d7:6e:c7:2d:0c:e2:2f:77:92:83:b7:bd:23:
42:86:73:1d:83:f9:93:cb:39:94:2d:21:ce:3f:b2:
41:9b:6d:ec:60:d1:be:08:bc:41:6a:a6:bd:78:13:
7f:01:37:e2:b4:1e:c1:7c:64:ab:78:4d:a3:84:81:
23:7f:3b:1d:82:bd:22:b2:05:0c:d7:a6:f2:cb:a4:
37:15:a8:16:b4:d3:da:a6:37:1d:e3:5c:ca:36:41:
1c:17:37:79:f4:20:ce:82:ef:dd:51:07:65:f0:54:
ad:b3:86:14:3a:52:3d:8e:91:c0:9d:e1:0c:77:f5:
77:bc:6f:ab:fc:aa:f9:d8:be:e1:5d:7e:b4:45:74:
70:02:fc:81:c8:4e:26:89:d1:2f:13:36:25:0b:63:
eb:70:32:09:3c:df:02:f5:9a:56:36:a5:62:4e:12:
8d:ae:bb:6a:40:72:bb:f0:93:98:bd:4a:60:83:f8:
0a:66:10:79:0a:ca:bb:bb:af:33:91:b7:f5:35:ae:
ba:73:bb:ce:af:b4:d2:b8:70:61:bb:7a:5d:04:63:
99:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:CC:2A:AF:18:69:35:84:62:29:D3:A6:81:03:4D:EF:6A:B5:EF:60
X509v3 Authority Key Identifier:
keyid:2B:62:77:3F:02:D2:1B:26:DA:9D:06:63:62:D0:AC:29:75:5F:69:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/797fbc6cdda2f3661b2a335060cb84d808706659.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/127e4095-2f45-4ec9-8f75-e799385fbad0/13c7ffb13eb2149b84da8bf7e620e6395d2d3c7d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/127e4095-2f45-4ec9-8f75-e799385fbad0/797fbc6cdda2f3661b2a335060cb84d808706659.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.216.240.0/24
190.216.245.0/24
190.216.249.0/24
190.216.252.0/24
201.234.239.0/24
Signature Algorithm: sha256WithRSAEncryption
85:73:ea:59:d8:b7:5a:5a:a3:8c:b0:ac:14:e9:c1:c8:78:16:
97:49:8e:35:91:35:6e:71:d9:e9:df:fc:f2:4a:3a:c0:f7:fc:
aa:89:0d:02:f5:1f:c3:a4:ed:2a:02:a7:d6:14:4c:b9:62:d7:
48:47:2f:a3:cd:38:da:ec:00:a3:4c:56:21:b4:53:21:d3:56:
2b:20:e8:ce:0d:78:c1:4b:62:8e:41:89:4e:83:2f:50:1f:f5:
2c:34:dc:f2:51:45:15:22:1b:68:82:34:71:b4:8b:17:e7:88:
96:a7:6e:0a:1d:48:78:63:5c:7e:0c:86:c4:60:5b:c7:09:db:
a5:53:d3:ab:1e:16:5d:c8:fa:a7:08:75:da:24:87:b9:30:d9:
68:d8:25:e5:9e:a4:4f:35:94:87:74:6b:de:c3:52:6d:30:8f:
92:93:6a:a7:bc:6d:d1:2d:4c:17:b8:dc:7d:60:a5:2a:c3:71:
25:81:7d:ac:4c:a5:ae:08:4a:34:cc:3d:0c:99:38:58:d6:31:
75:6e:fa:77:0f:da:b3:71:25:ce:5b:22:7c:a2:b4:d2:8a:cc:
73:86:e0:8c:aa:ed:66:32:d8:c0:d0:10:29:6a:57:5b:f8:49:
ec:d0:48:9c:c1:40:5f:f5:8c:56:42:63:55:12:fb:2a:d7:08:
ec:b8:23:c3
-----BEGIN CERTIFICATE-----
MIIFWDCCBECgAwIBAgIDDlZrMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDc5
N2ZiYzZjZGRhMmYzNjYxYjJhMzM1MDYwY2I4NGQ4MDg3MDY2NTkwHhcNMjEwMzI0
MTQzMDUzWhcNMjYwMzI0MTQzMDUzWjAzMTEwLwYDVQQDEygxM2M3ZmZiMTNlYjIx
NDliODRkYThiZjdlNjIwZTYzOTVkMmQzYzdkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAqyt/PIGUC2MquDtepwPLe3RfJkv/BBGaqacKb0MIIbwnUgja
ioUyMpgptZRCztduxy0M4i93koO3vSNChnMdg/mTyzmULSHOP7JBm23sYNG+CLxB
aqa9eBN/ATfitB7BfGSreE2jhIEjfzsdgr0isgUM16byy6Q3FagWtNPapjcd41zK
NkEcFzd59CDOgu/dUQdl8FSts4YUOlI9jpHAneEMd/V3vG+r/Kr52L7hXX60RXRw
AvyByE4midEvEzYlC2PrcDIJPN8C9ZpWNqViThKNrrtqQHK78JOYvUpgg/gKZhB5
Csq7u68zkbf1Na66c7vOr7TSuHBhu3pdBGOZCwIDAQABo4ICczCCAm8wHQYDVR0O
BBYEFLvMKq8YaTWEYinTpoEDTe9qte9gMB8GA1UdIwQYMBaAFCtidz8C0hsm2p0G
Y2LQrCl1X2lJMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNzk3ZmJj
NmNkZGEyZjM2NjFiMmEzMzUwNjBjYjg0ZDgwODcwNjY1OS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMTI3ZTQwOTUtMmY0NS00ZWM5LThmNzUtZTc5OTM4
NWZiYWQwLzEzYzdmZmIxM2ViMjE0OWI4NGRhOGJmN2U2MjBlNjM5NWQyZDNjN2Qu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8xMjdlNDA5NS0yZjQ1LTRlYzktOGY3NS1lNzk5
Mzg1ZmJhZDAvNzk3ZmJjNmNkZGEyZjM2NjFiMmEzMzUwNjBjYjg0ZDgwODcwNjY1
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3BggrBgEFBQcBBwEB/wQo
MCYwJAQCAAEwHgMEAL7Y8AMEAL7Y9QMEAL7Y+QMEAL7Y/AMEAMnq7zANBgkqhkiG
9w0BAQsFAAOCAQEAhXPqWdi3WlqjjLCsFOnByHgWl0mONZE1bnHZ6d/88ko6wPf8
qokNAvUfw6TtKgKn1hRMuWLXSEcvo8042uwAo0xWIbRTIdNWKyDozg14wUtijkGJ
ToMvUB/1LDTc8lFFFSIbaII0cbSLF+eIlqduCh1IeGNcfgyGxGBbxwnbpVPTqx4W
Xcj6pwh12iSHuTDZaNgl5Z6kTzWUh3Rr3sNSbTCPkpNqp7xt0S1MF7jcfWClKsNx
JYF9rEylrghKNMw9DJk4WNYxdW76dw/as3ElzlsifKK00orMc4bgjKrtZjLYwNAQ
KWpXW/hJ7NBInMFAX/WMVkJjVRL7KtcI7Lgjww==
-----END CERTIFICATE-----
Generated at Fri Jul 21 21:31:50 2023 by rpki-client on console-fra.rpki-client.org