Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/25b637c6-cdcf-423d-8c0c-cd615ab98a24/bd3418ce19e6e13e5de281bb92a213f9a442e473.roa
File: bd3418ce19e6e13e5de281bb92a213f9a442e473.roa (raw, json)
Hash identifier: NM2Yzf4mwDAPe/ll7yYlXootPIY/IdZ32h1d2zy3kI8=
Subject key identifier: 4F:F2:FF:9D:61:47:2A:3D:DD:74:D6:38:3F:95:95:21:67:D0:6F:77
Certificate issuer: /CN=ce64e257eae04ee26d8eb339f148791b31cc0875
Certificate serial: 11BA34
Authority key identifier: 67:C6:3B:A4:47:A2:35:D2:28:1C:33:3E:9A:83:87:25:17:A4:B1:BE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce64e257eae04ee26d8eb339f148791b31cc0875.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/25b637c6-cdcf-423d-8c0c-cd615ab98a24/bd3418ce19e6e13e5de281bb92a213f9a442e473.roa
Signing time: Wed 13 Oct 2021 22:53:59 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 23246
IP address blocks: 66.231.68.0/24 maxlen: 24
66.231.64.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1161780 (0x11ba34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce64e257eae04ee26d8eb339f148791b31cc0875
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=bd3418ce19e6e13e5de281bb92a213f9a442e473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:cf:2c:08:97:71:ad:94:1a:f0:b1:40:01:be:
4e:3c:3c:38:cf:6f:55:a5:c4:ee:52:a0:3a:1f:c4:
1c:a2:16:fd:87:47:d2:7b:e1:25:c4:1f:f0:d5:d5:
55:b2:ed:14:d9:58:2d:14:fd:16:52:5b:8d:a6:98:
95:26:6f:41:ad:64:44:8a:f7:dd:82:e7:47:65:e8:
74:ab:59:b7:dd:76:f9:51:24:4e:a3:ca:3e:d1:9d:
0a:2a:fe:34:68:48:a5:f4:3d:06:66:1e:1b:e2:4a:
ea:8a:3f:3d:2e:55:02:b4:d3:02:f4:44:28:f9:cc:
9d:09:6a:08:a7:ac:87:4c:58:44:d5:70:b3:6d:d5:
ab:47:62:27:96:1e:78:56:93:8e:18:bd:b0:a8:62:
1d:5e:a2:d0:c6:a2:95:8e:26:db:81:f7:2c:b4:50:
76:95:c3:be:13:69:40:f8:8e:a9:4f:26:62:45:3a:
23:52:d4:dc:d7:15:e9:fd:0c:df:4f:14:dc:fa:ed:
5f:1d:62:93:82:dc:72:59:a8:8e:4a:3f:72:0e:e1:
5e:2a:aa:57:a5:5b:3e:60:7c:49:b0:cc:7b:98:f6:
c7:0a:c2:79:86:bb:48:0c:e9:45:2f:bd:58:cf:9f:
2f:c0:19:cb:f6:ac:a5:f6:89:e8:fd:97:95:36:93:
e2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F2:FF:9D:61:47:2A:3D:DD:74:D6:38:3F:95:95:21:67:D0:6F:77
X509v3 Authority Key Identifier:
keyid:67:C6:3B:A4:47:A2:35:D2:28:1C:33:3E:9A:83:87:25:17:A4:B1:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce64e257eae04ee26d8eb339f148791b31cc0875.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/25b637c6-cdcf-423d-8c0c-cd615ab98a24/bd3418ce19e6e13e5de281bb92a213f9a442e473.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/25b637c6-cdcf-423d-8c0c-cd615ab98a24/ce64e257eae04ee26d8eb339f148791b31cc0875.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.231.64.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:8d:d4:f0:da:8a:f3:21:11:6a:ef:25:20:9c:8f:bb:c6:cb:
47:8c:1e:3d:3c:c5:9a:0b:67:cf:8d:28:6f:47:99:34:58:a4:
3c:f7:cf:ad:b1:f0:a6:06:ef:c9:e4:8c:4b:8a:7f:24:70:e8:
43:32:f5:e1:52:36:0a:f6:46:e4:de:94:55:28:6b:3c:cd:5a:
3b:d5:a0:0a:c0:c2:29:84:0a:22:92:8e:01:fe:16:a3:d7:06:
1d:96:39:62:a1:28:a2:4d:85:76:df:30:25:6c:a0:ca:54:8e:
84:bb:f4:65:69:c9:d7:5d:7b:3b:c0:dd:88:b3:47:f6:ee:91:
d6:52:5d:7c:05:20:17:7f:e1:b5:99:e9:0f:4e:62:9f:d6:be:
a4:c6:e2:c6:74:12:44:ae:b2:af:b6:56:67:da:a8:e8:64:30:
93:89:87:b2:51:ed:3c:be:65:1f:ed:4d:2b:7e:58:2f:8d:9c:
85:ab:00:1d:4c:87:2e:08:ff:ab:d9:a4:f2:e5:12:60:8e:4f:
80:80:39:37:aa:0a:09:14:aa:7c:3f:57:4f:7f:15:cf:b6:fd:
bf:18:6a:48:db:04:0e:48:a2:2f:20:9e:7a:c5:32:5b:42:df:
4b:54:91:ca:e5:ad:87:17:f4:e7:a9:9a:7e:b1:bd:75:32:6f:
32:08:2a:f8
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDEbo0MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNl
NjRlMjU3ZWFlMDRlZTI2ZDhlYjMzOWYxNDg3OTFiMzFjYzA4NzUwHhcNMjEwMzI0
MDMwMDAwWhcNMjYwMzI0MDMwMDAwWjAzMTEwLwYDVQQDEyhiZDM0MThjZTE5ZTZl
MTNlNWRlMjgxYmI5MmEyMTNmOWE0NDJlNDczMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAhM8sCJdxrZQa8LFAAb5OPDw4z29VpcTuUqA6H8Qcohb9h0fS
e+ElxB/w1dVVsu0U2VgtFP0WUluNppiVJm9BrWREivfdgudHZeh0q1m33Xb5USRO
o8o+0Z0KKv40aEil9D0GZh4b4krqij89LlUCtNMC9EQo+cydCWoIp6yHTFhE1XCz
bdWrR2Inlh54VpOOGL2wqGIdXqLQxqKVjibbgfcstFB2lcO+E2lA+I6pTyZiRToj
UtTc1xXp/QzfTxTc+u1fHWKTgtxyWaiOSj9yDuFeKqpXpVs+YHxJsMx7mPbHCsJ5
hrtIDOlFL71Yz58vwBnL9qyl9ono/ZeVNpPi+QIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFE/y/51hRyo93XTWOD+VlSFn0G93MB8GA1UdIwQYMBaAFGfGO6RHojXSKBwz
PpqDhyUXpLG+MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvY2U2NGUy
NTdlYWUwNGVlMjZkOGViMzM5ZjE0ODc5MWIzMWNjMDg3NS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMjViNjM3YzYtY2RjZi00MjNkLThjMGMtY2Q2MTVh
Yjk4YTI0L2JkMzQxOGNlMTllNmUxM2U1ZGUyODFiYjkyYTIxM2Y5YTQ0MmU0NzMu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8yNWI2MzdjNi1jZGNmLTQyM2QtOGMwYy1jZDYx
NWFiOThhMjQvY2U2NGUyNTdlYWUwNGVlMjZkOGViMzM5ZjE0ODc5MWIzMWNjMDg3
NS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEBELnQDANBgkqhkiG9w0BAQsFAAOCAQEAD43U8NqK8yERau8l
IJyPu8bLR4wePTzFmgtnz40ob0eZNFikPPfPrbHwpgbvyeSMS4p/JHDoQzL14VI2
CvZG5N6UVShrPM1aO9WgCsDCKYQKIpKOAf4Wo9cGHZY5YqEook2Fdt8wJWygylSO
hLv0ZWnJ1117O8DdiLNH9u6R1lJdfAUgF3/htZnpD05in9a+pMbixnQSRK6yr7ZW
Z9qo6GQwk4mHslHtPL5lH+1NK35YL42chasAHUyHLgj/q9mk8uUSYI5PgIA5N6oK
CRSqfD9XT38Vz7b9vxhqSNsEDkiiLyCeesUyW0LfS1SRyuWthxf056mafrG9dTJv
Mggq+A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:28 2023 by rpki-client on console-ams.rpki-client.org