Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/1cea49460283d73235e018f3cae4eb0657a93e82.roa
File: 1cea49460283d73235e018f3cae4eb0657a93e82.roa (raw, json)
Hash identifier: rJK/rxyVhKkULNVuIYC93EQDjB5aBNRQIRMrKVNzzJ0=
Subject key identifier: C8:C2:2B:FE:B3:68:33:2D:97:04:89:16:9A:35:47:36:12:F3:01:CB
Certificate issuer: /CN=7d666fc96c87b713c1f1fc6b289e51fae298a9ff
Certificate serial: 24D4DD
Authority key identifier: 34:46:15:53:3D:37:E7:7E:E5:71:C9:D2:95:48:61:E8:2C:FE:CF:26
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7d666fc96c87b713c1f1fc6b289e51fae298a9ff.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/1cea49460283d73235e018f3cae4eb0657a93e82.roa
Signing time: Wed 11 Oct 2023 20:35:27 +0000
ROA not before: Tue 10 Oct 2023 20:35:26 +0000
ROA not after: Sat 11 Oct 2025 20:35:26 +0000
asID: 52228
IP address blocks: 186.15.0.0/17 maxlen: 24
186.15.128.0/19 maxlen: 24
186.15.160.0/20 maxlen: 24
186.15.176.0/21 maxlen: 24
186.159.220.0/22 maxlen: 24
186.159.224.0/19 maxlen: 24
152.231.128.0/17 maxlen: 24
186.159.128.0/18 maxlen: 24
186.159.192.0/20 maxlen: 24
186.159.208.0/21 maxlen: 24
186.159.216.0/23 maxlen: 24
179.50.128.0/17 maxlen: 24
186.64.128.0/17 maxlen: 24
186.15.192.0/18 maxlen: 24
2803:6000::/32 maxlen: 128
Validation: Failed, certificate revoked on Sat 27 Jan 2024 05:56:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2413789 (0x24d4dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d666fc96c87b713c1f1fc6b289e51fae298a9ff
Validity
Not Before: Oct 10 20:35:26 2023 GMT
Not After : Oct 11 20:35:26 2025 GMT
Subject: CN=1cea49460283d73235e018f3cae4eb0657a93e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7e:d7:d6:1b:2f:a3:95:fe:c3:f6:4a:13:c2:
89:b2:8a:08:60:ea:f6:0d:94:97:2a:cd:4a:3d:64:
20:f9:b2:ad:ad:25:8b:8a:aa:92:2e:67:11:8c:1b:
2a:16:89:86:17:f2:74:fe:5f:e0:94:d6:d5:46:0f:
93:b0:de:67:09:d5:9f:33:a7:44:60:b1:e0:9b:26:
53:e9:ce:4c:3f:9b:76:01:43:ba:23:ab:e7:1f:5f:
5e:32:80:2c:90:c8:85:8c:06:08:1b:48:92:b8:52:
4c:83:c5:59:f9:c6:3d:49:77:29:aa:2e:70:75:3c:
13:1c:33:4d:b1:d4:de:48:31:ae:77:95:11:76:ea:
f9:7c:86:c7:18:45:c3:0e:42:cf:57:b1:47:fe:18:
79:4c:a2:6c:db:6b:41:7c:8e:6e:17:9b:ae:4f:60:
f1:97:c3:91:43:ed:a9:3a:c5:3c:30:2e:ff:ca:c5:
28:5f:76:64:a5:66:14:49:55:37:68:54:85:d1:ce:
4e:8a:bf:c3:c2:89:7d:9e:d4:44:a5:be:80:8f:76:
cf:13:aa:34:69:c9:34:1e:4a:33:e5:f6:92:d9:24:
3b:39:10:e9:47:95:1d:7d:42:d9:54:89:8b:18:f6:
b8:cf:fc:ca:5e:06:52:36:8a:69:ce:f9:25:f3:0f:
d1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C2:2B:FE:B3:68:33:2D:97:04:89:16:9A:35:47:36:12:F3:01:CB
X509v3 Authority Key Identifier:
keyid:34:46:15:53:3D:37:E7:7E:E5:71:C9:D2:95:48:61:E8:2C:FE:CF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7d666fc96c87b713c1f1fc6b289e51fae298a9ff.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/1cea49460283d73235e018f3cae4eb0657a93e82.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/7d666fc96c87b713c1f1fc6b289e51fae298a9ff.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.231.128.0/17
179.50.128.0/17
186.15.0.0-186.15.183.255
186.15.192.0/18
186.64.128.0/17
186.159.128.0-186.159.217.255
186.159.220.0-186.159.255.255
IPv6:
2803:6000::/32
Signature Algorithm: sha256WithRSAEncryption
86:86:0f:4e:4f:fa:50:c9:56:25:54:b1:5c:14:72:15:d2:2d:
15:fb:26:b3:f1:bb:14:2c:ea:4c:40:12:4d:82:7c:17:dc:87:
4b:7f:80:aa:11:f9:b5:cb:a7:40:c3:02:91:1e:52:c3:5b:20:
d1:78:cf:e0:16:ff:1e:15:e4:fd:c3:5b:6b:e0:a6:a7:19:f8:
a9:d8:80:33:88:c7:45:5c:fa:c1:4a:b8:48:90:81:dc:0d:6f:
af:2f:28:51:64:46:d0:dd:ca:6e:14:3c:18:43:d7:2a:57:36:
3f:a0:03:7a:fe:4b:ca:b8:1f:c3:35:72:8c:d9:09:23:11:f7:
25:7d:2e:64:f3:78:d9:6c:02:1b:8a:6a:fe:75:9b:2a:cf:2f:
92:6b:4a:dc:d1:b7:60:a7:d2:84:2d:2b:d3:94:1a:fb:4e:44:
b9:6f:20:a8:25:e4:55:a4:4a:5a:6e:3c:86:8b:5d:d2:dd:38:
6c:70:49:2f:be:13:cd:1a:67:08:5e:8d:fd:25:58:28:95:8d:
cf:e0:dc:e1:c0:ce:b9:ff:5d:44:f2:64:7e:0f:95:57:e2:80:
4c:e8:36:b2:7d:dd:95:ef:37:f8:89:19:0e:29:da:f4:5d:08:
cd:07:31:13:30:e2:10:99:c9:74:d6:76:c1:fc:b3:9d:7c:e7:
75:80:0e:59
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDJNTdMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDdk
NjY2ZmM5NmM4N2I3MTNjMWYxZmM2YjI4OWU1MWZhZTI5OGE5ZmYwHhcNMjMxMDEw
MjAzNTI2WhcNMjUxMDExMjAzNTI2WjAzMTEwLwYDVQQDEygxY2VhNDk0NjAyODNk
NzMyMzVlMDE4ZjNjYWU0ZWIwNjU3YTkzZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAyn7X1hsvo5X+w/ZKE8KJsooIYOr2DZSXKs1KPWQg+bKtrSWL
iqqSLmcRjBsqFomGF/J0/l/glNbVRg+TsN5nCdWfM6dEYLHgmyZT6c5MP5t2AUO6
I6vnH19eMoAskMiFjAYIG0iSuFJMg8VZ+cY9SXcpqi5wdTwTHDNNsdTeSDGud5UR
dur5fIbHGEXDDkLPV7FH/hh5TKJs22tBfI5uF5uuT2Dxl8ORQ+2pOsU8MC7/ysUo
X3ZkpWYUSVU3aFSF0c5Oir/Dwol9ntREpb6Aj3bPE6o0ack0Hkoz5faS2SQ7ORDp
R5UdfULZVImLGPa4z/zKXgZSNoppzvkl8w/RowIDAQABo4ICpDCCAqAwHQYDVR0O
BBYEFMjCK/6zaDMtlwSJFpo1RzYS8wHLMB8GA1UdIwQYMBaAFDRGFVM9N+d+5XHJ
0pVIYegs/s8mMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvN2Q2NjZm
Yzk2Yzg3YjcxM2MxZjFmYzZiMjg5ZTUxZmFlMjk4YTlmZi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMjUwNTRjMGYtMTk4YS00N2M2LWIxMTItMTUyZTM0
NjAyMzhjLzFjZWE0OTQ2MDI4M2Q3MzIzNWUwMThmM2NhZTRlYjA2NTdhOTNlODIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8yNTA1NGMwZi0xOThhLTQ3YzYtYjExMi0xNTJl
MzQ2MDIzOGMvN2Q2NjZmYzk2Yzg3YjcxM2MxZjFmYzZiMjg5ZTUxZmFlMjk4YTlm
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBggrBgEFBQcBBwEB/wRZ
MFcwRgQCAAEwQAMEB5jngAMEB7MygDALAwMAug8DBAO6D7ADBAa6D8ADBAe6QIAw
DAMEB7qfgAMEAbqf2DALAwQCup/cAwMFuoAwDQQCAAIwBwMFACgDYAAwDQYJKoZI
hvcNAQELBQADggEBAIaGD05P+lDJViVUsVwUchXSLRX7JrPxuxQs6kxAEk2CfBfc
h0t/gKoR+bXLp0DDApEeUsNbINF4z+AW/x4V5P3DW2vgpqcZ+KnYgDOIx0Vc+sFK
uEiQgdwNb68vKFFkRtDdym4UPBhD1ypXNj+gA3r+S8q4H8M1cozZCSMR9yV9LmTz
eNlsAhuKav51myrPL5JrStzRt2Cn0oQtK9OUGvtORLlvIKgl5FWkSlpuPIaLXdLd
OGxwSS++E80aZwhejf0lWCiVjc/g3OHAzrn/XUTyZH4PlVfigEzoNrJ93ZXvN/iJ
GQ4p2vRdCM0HMRMw4hCZyXTWdsH8s51853WADlk=
-----END CERTIFICATE-----
Generated at Sat Jan 27 09:59:01 2024 by rpki-client on console-fra.rpki-client.org