Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/b8cd76bd7521e7648c4e6d65c41610b6906cd1ae.roa
File: b8cd76bd7521e7648c4e6d65c41610b6906cd1ae.roa (raw, json)
Hash identifier: 5yCRtH5E1X28caxWE4h4fkq5ONb1Zqqy8wglkd1VREo=
Subject key identifier: 7E:2A:3E:AC:D2:01:63:33:7D:3A:F4:0C:29:D5:C4:1B:8F:4B:BE:B3
Certificate issuer: /CN=d85da304334fb36204a370e950487689e811a2c8
Certificate serial: 0E0F62
Authority key identifier: 95:A8:9C:41:76:01:10:8E:0E:98:02:3D:07:26:F4:4A:7C:51:0F:4B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d85da304334fb36204a370e950487689e811a2c8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/b8cd76bd7521e7648c4e6d65c41610b6906cd1ae.roa
Signing time: Wed 24 Mar 2021 14:45:10 +0000
ROA not before: Wed 24 Mar 2021 14:45:09 +0000
ROA not after: Tue 24 Mar 2026 14:45:09 +0000
asID: 18809
IP address blocks: 181.197.0.0/17 maxlen: 24
181.197.128.0/18 maxlen: 24
186.179.112.0/20 maxlen: 24
186.188.128.0/17 maxlen: 24
190.2.224.0/20 maxlen: 24
190.140.0.0/16 maxlen: 24
190.141.0.0/16 maxlen: 24
190.218.0.0/16 maxlen: 24
190.219.0.0/16 maxlen: 24
200.3.200.0/21 maxlen: 24
200.75.192.0/19 maxlen: 24
200.75.224.0/20 maxlen: 24
200.75.240.0/20 maxlen: 24
200.124.0.0/20 maxlen: 24
200.124.16.0/20 maxlen: 24
201.218.64.0/19 maxlen: 24
201.218.96.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 921442 (0xe0f62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85da304334fb36204a370e950487689e811a2c8
Validity
Not Before: Mar 24 14:45:09 2021 GMT
Not After : Mar 24 14:45:09 2026 GMT
Subject: CN=b8cd76bd7521e7648c4e6d65c41610b6906cd1ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:06:cc:e5:df:dc:ef:29:27:c1:bd:89:76:e6:
e4:2d:8b:f8:94:48:48:ec:3c:a3:14:d2:28:7f:ee:
71:d9:ed:5e:52:2e:27:80:f0:85:a6:51:85:97:74:
07:cf:71:2f:5d:22:dd:88:30:37:e9:81:2d:3d:02:
01:ec:90:57:74:7d:0a:64:f7:27:57:56:c9:b1:8a:
bc:4e:b1:23:0a:8d:6b:e4:55:40:13:82:60:e2:c9:
0f:c7:df:d5:3f:bc:3d:3d:65:90:11:c4:37:bc:8a:
07:05:02:18:9d:10:da:5d:5a:c9:79:ea:82:14:a4:
3e:4b:0a:85:aa:d0:4a:9e:1b:8a:70:11:d1:10:75:
84:f4:b8:28:8a:f4:bb:11:d2:42:46:a7:2c:f4:2a:
fe:43:8f:45:7c:07:02:68:8b:32:c7:1f:d9:cc:85:
10:73:10:4f:cd:1a:74:5f:97:d6:c7:f2:d0:c5:91:
de:e9:a3:f4:6c:95:29:f7:ea:5c:bc:a2:3d:50:76:
de:6c:2c:38:19:3e:93:16:bd:a8:53:82:a8:3e:f0:
e2:b8:cf:c7:d8:66:8a:52:24:c5:3d:c9:73:be:3d:
85:aa:93:55:84:6e:c5:e9:9c:e2:0f:08:f6:e6:81:
16:16:bb:d3:3f:13:b5:91:fe:81:8a:cb:20:f4:46:
d1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:2A:3E:AC:D2:01:63:33:7D:3A:F4:0C:29:D5:C4:1B:8F:4B:BE:B3
X509v3 Authority Key Identifier:
keyid:95:A8:9C:41:76:01:10:8E:0E:98:02:3D:07:26:F4:4A:7C:51:0F:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d85da304334fb36204a370e950487689e811a2c8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/b8cd76bd7521e7648c4e6d65c41610b6906cd1ae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/d85da304334fb36204a370e950487689e811a2c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.197.0.0-181.197.191.255
186.179.112.0/20
186.188.128.0/17
190.2.224.0/20
190.140.0.0/15
190.218.0.0/15
200.3.200.0/21
200.75.192.0/18
200.124.0.0/19
201.218.64.0/18
Signature Algorithm: sha256WithRSAEncryption
28:aa:cf:2f:55:d2:0d:71:3a:ab:b0:94:20:7c:4f:6b:81:ea:
a8:90:40:7e:0d:14:ad:f7:5e:80:cb:74:8d:93:fd:33:38:49:
46:a2:9f:51:5b:06:c5:85:c2:63:54:a1:5d:30:df:46:01:06:
47:2d:05:49:c8:2b:4e:62:c6:0d:63:58:60:f2:00:32:05:73:
4f:82:fe:41:74:c0:3f:35:5c:b0:42:78:65:67:4e:7e:e1:a4:
89:15:02:d4:d4:28:56:7e:ac:97:cb:6a:04:1a:2d:08:71:03:
f3:94:40:0b:b3:94:2a:fc:4e:b8:0c:ee:91:57:70:12:21:68:
74:5c:37:28:f3:10:18:ff:b3:36:ed:4f:02:a0:73:0d:32:c6:
5f:b7:18:af:00:59:f4:36:99:c3:ed:5d:b3:79:47:59:89:a6:
55:1e:23:a5:60:7c:55:77:b1:92:0d:cd:ab:ee:31:80:9a:c8:
71:bb:cd:fb:7e:52:ae:cb:b5:55:3d:50:6b:5a:d0:ba:39:47:
d3:ad:2e:72:b9:de:68:40:f8:30:bb:2b:5c:dd:4b:75:ba:e6:
72:84:87:74:24:a4:56:81:3c:5f:5c:9d:8f:e1:bc:73:82:3e:
74:57:ed:4d:ca:e5:14:88:35:e0:80:1e:26:7b:59:4f:fa:3a:
8d:cf:2d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:25 2023 by rpki-client on console-ams.rpki-client.org