Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/7e62ca7868dd717c3c328673c48ae408d0a93888.roa
File: 7e62ca7868dd717c3c328673c48ae408d0a93888.roa (raw, json)
Hash identifier: bKhVf9rvpzBUoZgIHNlS7LzrSsg3zA5EGMAmKyBm8aU=
Subject key identifier: 41:28:BD:49:68:7B:93:D8:C1:9A:F0:35:00:B7:1C:1E:E2:9B:E1:2D
Certificate issuer: /CN=7d666fc96c87b713c1f1fc6b289e51fae298a9ff
Certificate serial: 14825A
Authority key identifier: 34:46:15:53:3D:37:E7:7E:E5:71:C9:D2:95:48:61:E8:2C:FE:CF:26
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7d666fc96c87b713c1f1fc6b289e51fae298a9ff.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/7e62ca7868dd717c3c328673c48ae408d0a93888.roa
Signing time: Fri 24 Dec 2021 20:40:42 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 52228
IP address blocks: 152.231.128.0/17 maxlen: 24
179.50.128.0/17 maxlen: 24
186.15.0.0/18 maxlen: 24
186.15.64.0/18 maxlen: 24
186.15.128.0/19 maxlen: 24
186.15.160.0/20 maxlen: 24
186.15.176.0/21 maxlen: 24
186.15.192.0/18 maxlen: 24
186.64.128.0/17 maxlen: 24
186.159.128.0/18 maxlen: 24
186.159.192.0/20 maxlen: 24
186.159.208.0/21 maxlen: 24
186.159.216.0/23 maxlen: 24
186.159.220.0/22 maxlen: 24
186.159.224.0/19 maxlen: 24
2803:6000::/32 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1344090 (0x14825a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d666fc96c87b713c1f1fc6b289e51fae298a9ff
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=7e62ca7868dd717c3c328673c48ae408d0a93888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bd:37:96:3b:09:4d:e3:17:20:da:07:ac:e1:
c3:f8:c4:ce:79:0b:b1:c9:75:56:dd:3d:14:bc:6b:
07:c5:db:b5:d8:78:9b:10:35:de:5f:b2:f6:51:5f:
99:ee:f1:14:c8:52:59:f3:29:32:18:b5:f7:de:3e:
57:b9:e6:aa:52:a4:ab:b5:3b:f4:f0:6c:4b:9a:21:
c5:e5:26:76:f5:84:b1:d4:0c:e9:32:9e:61:cd:14:
c3:dc:6f:43:0b:b4:ea:d6:8f:a8:e7:ae:1c:f8:63:
3e:db:92:32:32:da:20:f4:17:96:df:80:12:06:ee:
a8:3d:c2:5b:b9:01:33:94:17:a1:30:16:fe:b6:8f:
72:7b:4a:8d:f6:5b:d4:94:7e:2a:06:5f:22:25:9d:
1b:c2:c5:c0:75:9f:76:ca:dd:2c:95:bb:cf:66:59:
a8:8a:c9:ac:47:ce:48:f7:5d:91:5d:47:63:28:4e:
71:28:70:1e:85:43:e5:b7:bc:f2:4c:db:a2:36:69:
09:f4:a9:34:fc:72:b5:7d:82:b2:e6:ee:27:ee:9e:
ca:d8:3e:8c:4b:42:43:c0:71:16:8f:32:52:11:73:
bb:d2:b1:02:29:84:e5:dd:f4:ad:dd:01:43:6d:c7:
5e:41:da:aa:c3:06:53:9e:67:29:3b:c0:73:5b:81:
0c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:28:BD:49:68:7B:93:D8:C1:9A:F0:35:00:B7:1C:1E:E2:9B:E1:2D
X509v3 Authority Key Identifier:
keyid:34:46:15:53:3D:37:E7:7E:E5:71:C9:D2:95:48:61:E8:2C:FE:CF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7d666fc96c87b713c1f1fc6b289e51fae298a9ff.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/7e62ca7868dd717c3c328673c48ae408d0a93888.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/25054c0f-198a-47c6-b112-152e3460238c/7d666fc96c87b713c1f1fc6b289e51fae298a9ff.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.231.128.0/17
179.50.128.0/17
186.15.0.0-186.15.183.255
186.15.192.0/18
186.64.128.0/17
186.159.128.0-186.159.217.255
186.159.220.0-186.159.255.255
IPv6:
2803:6000::/32
Signature Algorithm: sha256WithRSAEncryption
84:8b:52:07:02:b0:40:74:0f:2e:b9:07:4e:a5:86:60:59:19:
74:18:1c:47:82:b1:41:98:9d:6b:2f:75:06:b0:9b:5d:f5:47:
b8:88:27:50:49:63:1e:fc:25:c2:b9:13:ae:23:54:8a:c3:e8:
9f:44:89:f9:81:c9:82:cc:5a:3e:64:0f:56:3b:3f:76:8a:3b:
57:db:2d:fc:96:23:0e:c9:b2:e7:9a:3a:c5:44:b0:3e:f0:4d:
05:4d:54:45:cb:20:d3:62:3c:24:8f:52:89:0a:37:ac:e9:07:
03:85:9a:1c:8e:da:1b:39:12:38:0a:fa:9a:ba:37:7a:17:e7:
d7:b8:80:a8:9e:2c:cc:14:d6:5a:67:da:fe:df:38:05:06:db:
33:d2:1a:5c:60:70:a3:19:86:8d:0c:5a:e4:02:45:52:42:79:
f2:cd:63:65:49:9d:c6:5c:7f:aa:59:34:79:6c:f4:7c:0a:02:
15:8c:94:28:5a:1e:dc:95:dd:3d:1e:c9:98:50:e8:87:3c:64:
21:96:9a:bc:46:0e:b8:0a:ae:ef:99:c5:8d:82:42:a1:f3:e9:
56:53:1d:47:bf:86:5d:de:7d:7c:37:ee:04:41:00:f3:df:9f:
f2:00:0a:76:ed:d5:3d:42:f1:91:3a:57:d3:b8:2a:f6:af:d7:
8c:69:49:3c
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDFIJaMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDdk
NjY2ZmM5NmM4N2I3MTNjMWYxZmM2YjI4OWU1MWZhZTI5OGE5ZmYwHhcNMjEwMzI0
MDMwMDAwWhcNMjYwMzI0MDMwMDAwWjAzMTEwLwYDVQQDEyg3ZTYyY2E3ODY4ZGQ3
MTdjM2MzMjg2NzNjNDhhZTQwOGQwYTkzODg4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAjL03ljsJTeMXINoHrOHD+MTOeQuxyXVW3T0UvGsHxdu12Hib
EDXeX7L2UV+Z7vEUyFJZ8ykyGLX33j5XueaqUqSrtTv08GxLmiHF5SZ29YSx1Azp
Mp5hzRTD3G9DC7Tq1o+o564c+GM+25IyMtog9BeW34ASBu6oPcJbuQEzlBehMBb+
to9ye0qN9lvUlH4qBl8iJZ0bwsXAdZ92yt0slbvPZlmoismsR85I912RXUdjKE5x
KHAehUPlt7zyTNuiNmkJ9Kk0/HK1fYKy5u4n7p7K2D6MS0JDwHEWjzJSEXO70rEC
KYTl3fSt3QFDbcdeQdqqwwZTnmcpO8BzW4EM4wIDAQABo4ICpDCCAqAwHQYDVR0O
BBYEFEEovUloe5PYwZrwNQC3HB7im+EtMB8GA1UdIwQYMBaAFDRGFVM9N+d+5XHJ
0pVIYegs/s8mMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvN2Q2NjZm
Yzk2Yzg3YjcxM2MxZjFmYzZiMjg5ZTUxZmFlMjk4YTlmZi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMjUwNTRjMGYtMTk4YS00N2M2LWIxMTItMTUyZTM0
NjAyMzhjLzdlNjJjYTc4NjhkZDcxN2MzYzMyODY3M2M0OGFlNDA4ZDBhOTM4ODgu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8yNTA1NGMwZi0xOThhLTQ3YzYtYjExMi0xNTJl
MzQ2MDIzOGMvN2Q2NjZmYzk2Yzg3YjcxM2MxZjFmYzZiMjg5ZTUxZmFlMjk4YTlm
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBggrBgEFBQcBBwEB/wRZ
MFcwRgQCAAEwQAMEB5jngAMEB7MygDALAwMAug8DBAO6D7ADBAa6D8ADBAe6QIAw
DAMEB7qfgAMEAbqf2DALAwQCup/cAwMFuoAwDQQCAAIwBwMFACgDYAAwDQYJKoZI
hvcNAQELBQADggEBAISLUgcCsEB0Dy65B06lhmBZGXQYHEeCsUGYnWsvdQawm131
R7iIJ1BJYx78JcK5E64jVIrD6J9EifmByYLMWj5kD1Y7P3aKO1fbLfyWIw7Jsuea
OsVEsD7wTQVNVEXLINNiPCSPUokKN6zpBwOFmhyO2hs5EjgK+pq6N3oX59e4gKie
LMwU1lpn2v7fOAUG2zPSGlxgcKMZho0MWuQCRVJCefLNY2VJncZcf6pZNHls9HwK
AhWMlChaHtyV3T0eyZhQ6Ic8ZCGWmrxGDrgKru+ZxY2CQqHz6VZTHUe/hl3efXw3
7gRBAPPfn/IACnbt1T1C8ZE6V9O4Kvav14xpSTw=
-----END CERTIFICATE-----
Generated at Wed Oct 11 21:03:45 2023 by rpki-client on console-ams.rpki-client.org