Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2003b5a1-5b60-466b-8d55-76b25f4bf711/70717f85faebddf9d3022a45dc286b04b65d44b6.roa
File: 70717f85faebddf9d3022a45dc286b04b65d44b6.roa (raw, json)
Hash identifier: XzuChi0NuR8rp0tThqbSiUwH3ntzR5InBlKxEXAPQJ4=
Subject key identifier: 9D:D4:09:A3:E7:97:72:E3:EE:F3:44:9A:5C:14:3F:86:86:14:0A:96
Certificate issuer: /CN=c53dc2ceb664276c79ecc2b92834e6e89c5c4b1f
Certificate serial: 049CA1
Authority key identifier: 78:C8:8F:7F:6E:E8:D6:93:1C:0D:C6:18:92:23:9B:F8:65:9B:B2:A4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c53dc2ceb664276c79ecc2b92834e6e89c5c4b1f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2003b5a1-5b60-466b-8d55-76b25f4bf711/70717f85faebddf9d3022a45dc286b04b65d44b6.roa
Signing time: Sat 11 Sep 2021 19:31:16 +0000
ROA not before: Fri 10 Sep 2021 03:00:00 +0000
ROA not after: Sun 10 Sep 2023 03:00:00 +0000
asID: 271866
IP address blocks: 200.36.157.0/24 maxlen: 24
200.36.156.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302241 (0x49ca1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53dc2ceb664276c79ecc2b92834e6e89c5c4b1f
Validity
Not Before: Sep 10 03:00:00 2021 GMT
Not After : Sep 10 03:00:00 2023 GMT
Subject: CN=70717f85faebddf9d3022a45dc286b04b65d44b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d5:8a:65:2b:3f:a8:de:b6:b1:19:65:7e:f5:
a7:41:29:95:99:59:1e:b6:1d:2c:64:b0:72:49:20:
cd:7f:c7:44:a8:63:2a:aa:b9:34:03:eb:4d:49:07:
ea:8e:9d:02:77:a6:a5:03:13:e6:0d:d9:dc:bf:32:
39:47:d7:77:37:eb:04:01:15:ef:ec:ce:5a:b2:27:
f0:8d:fe:14:11:aa:5d:fd:12:f6:df:59:b8:4f:c8:
d7:59:5d:d4:75:8f:ac:de:7f:89:43:d4:e7:67:3e:
21:b3:60:b1:fc:cc:a6:bb:01:c2:ff:a3:d7:b2:3b:
4c:b1:c4:be:bf:57:60:98:5d:bd:7d:e6:94:84:25:
ef:6f:d7:fa:a1:34:cb:b9:eb:dc:17:5a:00:dd:86:
16:d7:45:57:f8:2d:4a:28:4b:db:09:88:3d:33:19:
13:63:41:7e:6d:09:1c:a5:61:21:5b:2d:bf:3b:91:
29:18:44:72:ab:a0:42:94:8c:c2:df:be:c9:81:55:
ab:f3:7a:06:1c:a9:96:31:47:77:37:f3:d4:e2:a9:
87:1b:63:cc:7a:24:4a:e4:12:53:ac:ea:a0:96:0b:
18:41:2a:34:98:63:62:db:86:c8:6b:76:b8:7a:38:
6c:67:16:36:80:a1:03:7d:df:3c:4d:ad:cd:6e:11:
f4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D4:09:A3:E7:97:72:E3:EE:F3:44:9A:5C:14:3F:86:86:14:0A:96
X509v3 Authority Key Identifier:
keyid:78:C8:8F:7F:6E:E8:D6:93:1C:0D:C6:18:92:23:9B:F8:65:9B:B2:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c53dc2ceb664276c79ecc2b92834e6e89c5c4b1f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2003b5a1-5b60-466b-8d55-76b25f4bf711/70717f85faebddf9d3022a45dc286b04b65d44b6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2003b5a1-5b60-466b-8d55-76b25f4bf711/c53dc2ceb664276c79ecc2b92834e6e89c5c4b1f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.36.156.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:e4:87:11:53:f2:64:44:6a:ba:9a:4e:78:a5:55:0d:34:ca:
46:7e:db:62:a3:34:4e:9f:38:1a:10:ff:af:75:c4:22:3e:68:
07:a1:56:48:9f:ce:57:51:34:3e:fc:04:63:12:ec:ed:b1:e0:
bd:2e:08:91:40:21:d3:33:8e:5a:44:15:d3:1f:41:73:ba:d5:
ab:71:17:e2:35:70:9c:d1:97:57:c2:3b:02:18:b6:ee:49:7c:
30:ed:b8:4f:9b:51:eb:3b:cc:78:26:bb:05:d3:45:21:8d:28:
15:0d:28:4b:48:41:1b:cc:4a:57:1d:4c:f5:4b:72:51:0f:43:
db:72:f1:6d:25:81:24:ef:47:03:47:71:ab:74:ab:28:41:b1:
63:e5:2b:45:54:c0:59:4d:f1:42:78:7f:47:56:12:4a:cb:6b:
86:fe:24:f3:d1:5a:83:67:df:91:1b:e7:74:2e:26:6e:51:2b:
4c:94:75:e0:55:e4:b8:d8:58:82:b1:fe:06:41:c7:44:83:fa:
94:02:0a:18:41:16:d3:33:d3:f2:49:93:0c:a6:a0:47:c6:1f:
df:d6:86:36:40:00:35:19:fb:fa:a3:36:8e:3a:ee:f2:8f:30:
d4:e7:49:d3:27:62:e5:8c:ba:c2:ae:ca:34:9b:2d:1a:20:19:
90:b7:d0:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 9 09:03:40 2023 by rpki-client on console-ams.rpki-client.org