Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/5129c8312e0541f7e5bf837e985bac547ba375ea.roa
File: 5129c8312e0541f7e5bf837e985bac547ba375ea.roa (raw, json)
Hash identifier: 7OllcruBOTeX0hoFzUbxLnWj6vIE5r+Ee8XMkjiqtpk=
Subject key identifier: F1:45:7A:48:87:1C:9D:A5:71:D2:F2:69:35:73:AD:6E:B3:01:F3:1A
Certificate issuer: /CN=d85da304334fb36204a370e950487689e811a2c8
Certificate serial: 0F2500
Authority key identifier: 95:A8:9C:41:76:01:10:8E:0E:98:02:3D:07:26:F4:4A:7C:51:0F:4B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d85da304334fb36204a370e950487689e811a2c8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/5129c8312e0541f7e5bf837e985bac547ba375ea.roa
Signing time: Sat 24 Apr 2021 12:28:11 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 18809
IP address blocks: 181.197.0.0/17 maxlen: 24
181.197.128.0/18 maxlen: 24
186.179.112.0/20 maxlen: 24
186.188.128.0/17 maxlen: 24
190.2.224.0/20 maxlen: 24
190.140.0.0/16 maxlen: 24
190.141.0.0/16 maxlen: 24
190.218.0.0/16 maxlen: 24
190.219.0.0/16 maxlen: 24
200.3.200.0/21 maxlen: 24
200.75.192.0/19 maxlen: 24
200.75.224.0/20 maxlen: 24
200.75.240.0/20 maxlen: 24
200.124.0.0/20 maxlen: 24
200.124.16.0/20 maxlen: 24
201.218.64.0/19 maxlen: 24
201.218.96.0/19 maxlen: 24
190.5.238.0/23 maxlen: 23
190.5.252.0/24 maxlen: 24
190.5.253.0/24 maxlen: 24
190.5.254.0/24 maxlen: 24
190.5.255.0/24 maxlen: 24
190.122.162.0/24 maxlen: 24
190.122.167.0/24 maxlen: 24
190.122.168.0/24 maxlen: 24
190.122.172.0/24 maxlen: 24
190.122.173.0/24 maxlen: 24
190.122.175.0/24 maxlen: 24
200.46.1.0/24 maxlen: 24
200.46.3.0/24 maxlen: 24
200.46.4.0/24 maxlen: 24
200.46.5.0/24 maxlen: 24
200.46.6.0/24 maxlen: 24
200.46.7.0/24 maxlen: 24
200.46.15.0/24 maxlen: 24
200.46.16.0/24 maxlen: 24
200.46.55.0/24 maxlen: 24
200.46.62.0/24 maxlen: 24
200.46.66.0/24 maxlen: 24
200.46.67.0/24 maxlen: 24
200.46.68.0/24 maxlen: 24
200.46.69.0/24 maxlen: 24
200.46.70.0/24 maxlen: 24
200.46.82.0/24 maxlen: 24
200.46.104.0/24 maxlen: 24
200.46.106.0/24 maxlen: 24
200.46.111.0/24 maxlen: 24
200.46.117.0/24 maxlen: 24
200.46.133.0/24 maxlen: 24
200.46.136.0/24 maxlen: 24
200.46.143.0/24 maxlen: 24
200.46.148.0/24 maxlen: 24
200.46.171.0/24 maxlen: 24
200.46.173.0/24 maxlen: 24
200.46.202.0/24 maxlen: 24
200.46.205.0/24 maxlen: 24
200.46.215.0/24 maxlen: 24
200.46.232.0/24 maxlen: 24
200.46.234.0/24 maxlen: 24
200.46.235.0/24 maxlen: 24
200.90.138.0/24 maxlen: 24
200.90.141.0/24 maxlen: 24
200.90.143.0/24 maxlen: 24
200.115.159.0/24 maxlen: 24
200.115.143.0/24 maxlen: 24
201.218.208.0/24 maxlen: 24
201.218.226.0/24 maxlen: 24
201.218.230.0/24 maxlen: 24
201.218.234.0/24 maxlen: 24
201.218.238.0/24 maxlen: 24
201.218.246.0/24 maxlen: 24
201.218.248.0/24 maxlen: 24
201.218.253.0/24 maxlen: 24
190.5.224.0/24 maxlen: 24
190.5.249.0/24 maxlen: 24
190.122.165.0/24 maxlen: 24
138.186.88.0/22 maxlen: 24
190.57.32.0/20 maxlen: 24
200.108.32.0/20 maxlen: 24
200.108.48.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 992512 (0xf2500)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85da304334fb36204a370e950487689e811a2c8
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=5129c8312e0541f7e5bf837e985bac547ba375ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c5:06:ea:b0:68:54:a6:f9:f6:7e:15:47:b5:
8c:9d:b5:7a:ab:7f:cf:a8:65:5b:41:a2:08:74:bd:
63:3d:93:dd:1b:69:4b:2e:f9:fb:c5:4d:40:33:b0:
02:6a:37:6d:08:2e:ab:ba:fa:03:c2:51:88:8a:79:
1d:ee:00:47:02:28:01:ba:82:dc:9a:5e:4e:7c:b4:
3c:0f:34:b6:40:40:c5:79:d2:30:2b:a2:f9:2a:5e:
ae:08:97:68:1f:7c:43:ef:39:69:2f:83:94:34:13:
bd:1b:1d:44:95:5b:be:e5:b2:4f:9b:1b:08:9d:a8:
39:25:a1:45:79:39:e5:a2:5e:68:f4:71:bc:49:c8:
91:77:6b:02:c1:39:17:7c:ac:53:ff:48:a9:65:99:
eb:4b:45:c3:73:1d:a3:0f:d2:a4:2a:a5:fe:5e:15:
02:9b:45:00:7b:f3:e5:75:00:10:0a:7f:80:1f:c3:
fe:09:2c:11:4a:25:f9:a4:fb:26:c2:7f:6f:43:48:
34:ce:ff:80:96:f1:44:30:c6:39:7c:13:23:63:a4:
eb:67:5a:ec:b1:4e:d2:e6:80:5a:d0:c1:3a:41:4d:
f7:c6:f1:6d:91:ba:cd:03:ad:77:65:58:9c:c4:ad:
03:4e:35:b1:ae:80:56:b8:dc:08:e0:d3:72:51:5d:
d6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:45:7A:48:87:1C:9D:A5:71:D2:F2:69:35:73:AD:6E:B3:01:F3:1A
X509v3 Authority Key Identifier:
keyid:95:A8:9C:41:76:01:10:8E:0E:98:02:3D:07:26:F4:4A:7C:51:0F:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d85da304334fb36204a370e950487689e811a2c8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/5129c8312e0541f7e5bf837e985bac547ba375ea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/d85da304334fb36204a370e950487689e811a2c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.88.0/22
181.197.0.0-181.197.191.255
186.179.112.0/20
186.188.128.0/17
190.2.224.0/20
190.5.224.0/24
190.5.238.0/23
190.5.249.0/24
190.5.252.0/22
190.57.32.0/20
190.122.162.0/24
190.122.165.0/24
190.122.167.0-190.122.168.255
190.122.172.0/23
190.122.175.0/24
190.140.0.0/15
190.218.0.0/15
200.3.200.0/21
200.46.1.0/24
200.46.3.0-200.46.7.255
200.46.15.0-200.46.16.255
200.46.55.0/24
200.46.62.0/24
200.46.66.0-200.46.70.255
200.46.82.0/24
200.46.104.0/24
200.46.106.0/24
200.46.111.0/24
200.46.117.0/24
200.46.133.0/24
200.46.136.0/24
200.46.143.0/24
200.46.148.0/24
200.46.171.0/24
200.46.173.0/24
200.46.202.0/24
200.46.205.0/24
200.46.215.0/24
200.46.232.0/24
200.46.234.0/23
200.75.192.0/18
200.90.138.0/24
200.90.141.0/24
200.90.143.0/24
200.108.32.0/19
200.115.143.0/24
200.115.159.0/24
200.124.0.0/19
201.218.64.0/18
201.218.208.0/24
201.218.226.0/24
201.218.230.0/24
201.218.234.0/24
201.218.238.0/24
201.218.246.0/24
201.218.248.0/24
201.218.253.0/24
Signature Algorithm: sha256WithRSAEncryption
66:4a:ca:7c:8f:f6:a1:2b:f6:9a:6c:73:48:a2:ba:e8:12:1f:
9c:0e:b6:d7:ec:9c:e0:a4:04:29:90:ca:b7:30:11:fc:6f:8b:
b6:29:7e:3a:7a:38:af:6a:d0:f6:8d:c6:83:6c:00:af:73:a7:
51:e1:21:b1:84:b6:fd:ac:eb:e4:a6:2c:1a:fe:01:54:06:a8:
e5:8b:05:d1:4f:e8:81:31:6b:4f:dd:c6:34:f6:0d:6a:a4:39:
89:c6:fc:9a:39:12:5f:f1:f7:ac:d1:24:81:28:b5:6b:43:5b:
43:5c:53:36:bc:40:11:4c:57:f1:14:f3:f0:25:6f:16:b5:54:
36:93:12:e5:a6:4c:27:01:a4:49:49:e1:55:2a:62:c0:9c:61:
43:4b:66:90:8d:4d:d0:89:26:39:89:ce:62:f0:a0:67:c2:3d:
d8:1c:dc:b4:2e:90:4d:05:fe:9a:df:b5:17:ab:3b:64:8d:03:
06:64:fb:06:65:b1:71:57:f2:5e:99:35:e2:03:c6:58:e5:a6:
57:3f:37:71:24:ea:26:23:64:89:b0:9b:c1:63:3b:7a:e9:11:
8f:33:73:6a:23:3e:61:fc:cb:61:05:57:5e:fa:b2:0a:ef:78:
ea:fd:20:f1:0e:d1:f2:99:35:26:8d:fb:27:02:41:12:16:f5:
9b:7a:8e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:10 2023 by rpki-client on console-fra.rpki-client.org