Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/597997b21b5d0b65f564856c3ce83df4f8b27a59.roa
File: 597997b21b5d0b65f564856c3ce83df4f8b27a59.roa (raw, json)
Hash identifier: YZbhjV4buFDpj03dsP3XXvmeiYBtrq7zM1KyofLQzO8=
Subject key identifier: 48:A9:54:ED:EB:CA:F8:8B:55:6C:4D:0C:14:23:DA:D5:8D:C4:5A:21
Certificate issuer: /CN=7d666fc96c87b713c1f1fc6b289e51fae298a9ff
Certificate serial: 27B424
Authority key identifier: 34:46:15:53:3D:37:E7:7E:E5:71:C9:D2:95:48:61:E8:2C:FE:CF:26
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7d666fc96c87b713c1f1fc6b289e51fae298a9ff.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/597997b21b5d0b65f564856c3ce83df4f8b27a59.roa
Signing time: Tue 30 Jan 2024 16:47:45 +0000
ROA not before: Tue 30 Jan 2024 16:47:44 +0000
ROA not after: Fri 30 Jan 2026 16:47:44 +0000
asID: 52228
IP address blocks: 152.231.137.0/24 maxlen: 30
152.231.138.0/24 maxlen: 30
152.231.139.0/24 maxlen: 30
152.231.140.0/24 maxlen: 30
152.231.141.0/24 maxlen: 30
152.231.142.0/24 maxlen: 30
152.231.144.0/24 maxlen: 30
152.231.145.0/24 maxlen: 30
152.231.146.0/24 maxlen: 30
152.231.147.0/24 maxlen: 30
152.231.148.0/24 maxlen: 30
152.231.149.0/24 maxlen: 30
152.231.160.0/24 maxlen: 30
152.231.163.0/24 maxlen: 30
152.231.164.0/24 maxlen: 30
Validation: Failed, certificate revoked on Wed 31 Jan 2024 21:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2602020 (0x27b424)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d666fc96c87b713c1f1fc6b289e51fae298a9ff
Validity
Not Before: Jan 30 16:47:44 2024 GMT
Not After : Jan 30 16:47:44 2026 GMT
Subject: CN=597997b21b5d0b65f564856c3ce83df4f8b27a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:17:e9:3a:04:61:cf:5a:07:2e:4a:1a:f3:d3:
d3:d8:a5:e9:72:cf:fb:bd:54:70:fb:36:d7:e4:a3:
14:99:d8:ad:c8:39:00:f6:06:37:73:65:00:78:4c:
3f:ba:61:4a:01:35:f7:18:9e:8f:de:41:08:1a:5d:
f0:0c:5c:59:a6:01:9b:2e:4b:61:93:2b:91:3a:19:
43:ce:9b:f5:85:5d:1c:cc:21:83:40:3b:6c:b4:f7:
8d:66:fb:d6:a4:f2:4a:00:6d:f2:e2:2b:1f:08:25:
0e:41:46:9b:d3:da:d6:27:1c:86:51:2b:ab:c3:10:
ec:11:ce:0b:d2:d8:c0:2b:8a:84:d1:f9:2c:54:a9:
63:ca:39:8e:f2:bf:7f:f6:2a:b2:a9:8d:ab:e3:6c:
c0:73:5a:f5:2d:a6:99:08:ed:8f:11:f0:38:87:61:
2c:50:da:af:c1:f4:e6:b9:66:f2:4c:06:7d:a6:01:
3a:cd:45:1c:c0:68:f2:b2:b4:17:33:1c:01:fd:f2:
e5:1c:b8:26:84:78:71:7c:db:d4:04:e9:d7:b0:3b:
02:de:5e:20:de:46:d3:ff:9f:57:81:18:01:d9:70:
1d:fa:6d:53:71:2c:2b:f3:85:65:39:41:6f:9b:02:
4b:6f:dd:1b:50:70:3e:6b:86:0c:9f:4a:74:5b:2e:
a7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A9:54:ED:EB:CA:F8:8B:55:6C:4D:0C:14:23:DA:D5:8D:C4:5A:21
X509v3 Authority Key Identifier:
keyid:34:46:15:53:3D:37:E7:7E:E5:71:C9:D2:95:48:61:E8:2C:FE:CF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7d666fc96c87b713c1f1fc6b289e51fae298a9ff.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/597997b21b5d0b65f564856c3ce83df4f8b27a59.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/7d666fc96c87b713c1f1fc6b289e51fae298a9ff.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.231.137.0-152.231.142.255
152.231.144.0-152.231.149.255
152.231.160.0/24
152.231.163.0-152.231.164.255
Signature Algorithm: sha256WithRSAEncryption
70:82:79:ae:dc:80:53:0c:7c:97:88:d1:be:ea:be:11:55:c9:
02:10:ac:fd:03:34:7e:6e:ef:52:20:24:09:df:dd:be:24:47:
45:c5:5e:51:c5:ec:45:64:6f:39:73:4c:b2:70:cf:fd:bd:22:
d2:77:cf:dd:27:14:19:c0:a4:19:ab:e5:23:db:1d:f4:0e:c7:
df:5e:19:cd:1e:17:30:a9:4b:09:51:e8:7e:36:5b:65:93:ec:
04:d7:77:f6:cf:5e:2f:75:96:84:83:fe:39:33:b6:c6:2d:ba:
d7:ef:86:5c:8e:ed:dd:16:47:47:fb:26:a7:a6:ac:00:96:68:
7e:dc:03:a7:61:8c:e4:a7:7e:fc:89:db:7f:de:a3:07:41:68:
70:85:d7:3d:a4:4e:4b:2a:53:de:3e:8e:8e:ee:0c:24:e2:ce:
e2:e0:c9:03:77:b9:e8:cf:56:ae:f0:20:a5:db:91:b3:15:73:
97:55:7c:78:f0:cd:4d:6a:57:b6:ca:52:63:22:d1:a9:4a:51:
e8:92:30:51:42:32:5e:79:a2:2f:e0:3d:02:16:98:b5:a7:30:
60:8e:9e:d2:d8:66:ff:2a:fe:36:6c:dc:9c:3f:68:3a:44:e6:
8e:e9:5d:31:4b:4e:0d:52:e4:8f:bc:1e:69:51:e7:ab:4f:37:
06:58:71:0c
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgIDJ7QkMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDdk
NjY2ZmM5NmM4N2I3MTNjMWYxZmM2YjI4OWU1MWZhZTI5OGE5ZmYwHhcNMjQwMTMw
MTY0NzQ0WhcNMjYwMTMwMTY0NzQ0WjAzMTEwLwYDVQQDEyg1OTc5OTdiMjFiNWQw
YjY1ZjU2NDg1NmMzY2U4M2RmNGY4YjI3YTU5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwRfpOgRhz1oHLkoa89PT2KXpcs/7vVRw+zbX5KMUmdityDkA
9gY3c2UAeEw/umFKATX3GJ6P3kEIGl3wDFxZpgGbLkthkyuROhlDzpv1hV0czCGD
QDtstPeNZvvWpPJKAG3y4isfCCUOQUab09rWJxyGUSurwxDsEc4L0tjAK4qE0fks
VKljyjmO8r9/9iqyqY2r42zAc1r1LaaZCO2PEfA4h2EsUNqvwfTmuWbyTAZ9pgE6
zUUcwGjysrQXMxwB/fLlHLgmhHhxfNvUBOnXsDsC3l4g3kbT/59XgRgB2XAd+m1T
cSwr84VlOUFvmwJLb90bUHA+a4YMn0p0Wy6nKQIDAQABo4IChTCCAoEwHQYDVR0O
BBYEFEipVO3ryviLVWxNDBQj2tWNxFohMB8GA1UdIwQYMBaAFDRGFVM9N+d+5XHJ
0pVIYegs/s8mMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvN2Q2NjZm
Yzk2Yzg3YjcxM2MxZjFmYzZiMjg5ZTUxZmFlMjk4YTlmZi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMjUwNTRjMGYtMTk4YS00N2M2LWIxMTItMTUyZTM0
NjAyMzhjLzU5Nzk5N2IyMWI1ZDBiNjVmNTY0ODU2YzNjZTgzZGY0ZjhiMjdhNTku
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8yNTA1NGMwZi0xOThhLTQ3YzYtYjExMi0xNTJl
MzQ2MDIzOGMvN2Q2NjZmYzk2Yzg3YjcxM2MxZjFmYzZiMjg5ZTUxZmFlMjk4YTlm
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBJBggrBgEFBQcBBwEB/wQ6
MDgwNgQCAAEwMDAMAwQAmOeJAwQAmOeOMAwDBASY55ADBAGY55QDBACY56AwDAME
AJjnowMEAJjnpDANBgkqhkiG9w0BAQsFAAOCAQEAcIJ5rtyAUwx8l4jRvuq+EVXJ
AhCs/QM0fm7vUiAkCd/dviRHRcVeUcXsRWRvOXNMsnDP/b0i0nfP3ScUGcCkGavl
I9sd9A7H314ZzR4XMKlLCVHofjZbZZPsBNd39s9eL3WWhIP+OTO2xi261++GXI7t
3RZHR/smp6asAJZoftwDp2GM5Kd+/Inbf96jB0FocIXXPaROSypT3j6Oju4MJOLO
4uDJA3e56M9WrvAgpduRsxVzl1V8ePDNTWpXtspSYyLRqUpR6JIwUUIyXnmiL+A9
AhaYtacwYI6e0thm/yr+NmzcnD9oOkTmjuldMUtODVLkj7weaVHnq083BlhxDA==
-----END CERTIFICATE-----
Generated at Thu Feb 1 00:36:23 2024 by rpki-client on console-ams.rpki-client.org