Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2682f7ca-66e7-47e4-abb9-511fc1c134c8/30e94783d5a5b76a3aaed5fcee128defe5c3b88b.roa
File: 30e94783d5a5b76a3aaed5fcee128defe5c3b88b.roa (raw, json)
Hash identifier: ltkTZnZC+KZrhQgc2mvnvWWods7i8iAuaZAQV28vY+0=
Subject key identifier: 43:1E:B4:3C:B2:22:2A:A3:32:0F:11:4B:B7:3C:E4:C4:02:CF:A1:5D
Certificate issuer: /CN=f2cbbb792ff42fa718619507a50663798055643b
Certificate serial: 0D6573
Authority key identifier: AB:74:D3:0E:36:78:C5:A6:07:68:46:AE:AB:D0:1A:A3:0D:AB:81:EE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f2cbbb792ff42fa718619507a50663798055643b.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2682f7ca-66e7-47e4-abb9-511fc1c134c8/30e94783d5a5b76a3aaed5fcee128defe5c3b88b.roa
Signing time: Wed 24 Mar 2021 14:28:40 +0000
ROA not before: Wed 24 Mar 2021 14:28:39 +0000
ROA not after: Tue 24 Mar 2026 14:28:39 +0000
asID: 52308
IP address blocks: 138.118.36.0/22 maxlen: 24
170.84.168.0/22 maxlen: 24
181.114.193.0/24 maxlen: 24
181.114.194.0/23 maxlen: 24
181.114.196.0/24 maxlen: 24
181.114.198.0/23 maxlen: 24
181.114.200.0/21 maxlen: 24
181.114.208.0/20 maxlen: 24
181.174.128.0/22 maxlen: 24
181.174.132.0/24 maxlen: 24
181.174.134.0/23 maxlen: 24
181.174.136.0/21 maxlen: 24
181.174.144.0/24 maxlen: 24
181.174.146.0/23 maxlen: 24
181.174.148.0/22 maxlen: 24
181.174.152.0/22 maxlen: 24
181.174.157.0/24 maxlen: 24
190.105.176.0/20 maxlen: 24
190.108.32.0/22 maxlen: 24
190.108.36.0/24 maxlen: 24
190.108.38.0/23 maxlen: 24
190.108.40.0/21 maxlen: 24
190.108.48.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 877939 (0xd6573)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2cbbb792ff42fa718619507a50663798055643b
Validity
Not Before: Mar 24 14:28:39 2021 GMT
Not After : Mar 24 14:28:39 2026 GMT
Subject: CN=30e94783d5a5b76a3aaed5fcee128defe5c3b88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4c:c5:c9:16:5e:01:51:1d:c5:2c:bb:10:15:
2a:88:97:8b:a3:b3:e4:e5:c1:35:c5:8b:11:35:49:
12:f5:cf:0d:06:cc:fd:52:61:29:56:bb:b3:4e:8c:
db:75:3c:6e:9c:75:3b:5f:3d:e9:cd:01:a8:d9:f4:
45:7b:a3:de:1f:06:8a:99:5f:9b:db:d7:6b:09:0f:
85:9b:e4:89:9b:8b:de:da:8f:cd:6e:b5:94:28:97:
bd:92:d0:e9:c6:ec:96:00:5b:ed:1c:7e:4d:50:0b:
ac:14:93:c4:9d:88:67:8e:85:40:f5:7f:fa:9e:ea:
53:8b:b6:82:86:44:2d:bd:89:a7:da:16:80:66:ab:
5f:bd:c8:95:67:5f:8d:26:36:68:9a:21:32:65:b7:
b4:58:36:86:0b:05:0a:3e:cc:d2:c8:ed:ab:d5:c5:
cc:26:b3:57:97:01:4c:94:19:00:5d:ee:d7:42:68:
ca:9f:0f:1f:e9:83:08:c7:7d:0c:ab:8f:8f:6c:e2:
64:db:81:57:04:7f:46:47:66:ab:fa:55:d6:31:2f:
d7:02:ac:47:52:15:e4:ee:da:5f:9d:99:52:79:17:
d2:41:f9:b6:06:bb:81:87:f8:c8:0f:2d:e6:72:4c:
c0:95:61:e9:8e:40:0a:89:a2:9a:96:31:3f:48:25:
de:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:1E:B4:3C:B2:22:2A:A3:32:0F:11:4B:B7:3C:E4:C4:02:CF:A1:5D
X509v3 Authority Key Identifier:
keyid:AB:74:D3:0E:36:78:C5:A6:07:68:46:AE:AB:D0:1A:A3:0D:AB:81:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f2cbbb792ff42fa718619507a50663798055643b.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2682f7ca-66e7-47e4-abb9-511fc1c134c8/30e94783d5a5b76a3aaed5fcee128defe5c3b88b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2682f7ca-66e7-47e4-abb9-511fc1c134c8/f2cbbb792ff42fa718619507a50663798055643b.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.118.36.0/22
170.84.168.0/22
181.114.193.0-181.114.196.255
181.114.198.0-181.114.223.255
181.174.128.0-181.174.132.255
181.174.134.0-181.174.144.255
181.174.146.0-181.174.155.255
181.174.157.0/24
190.105.176.0/20
190.108.32.0-190.108.36.255
190.108.38.0-190.108.63.255
Signature Algorithm: sha256WithRSAEncryption
71:b1:5c:7e:71:d6:5b:4b:45:7d:fb:de:6e:5a:74:d9:fe:ec:
bd:8a:27:ef:e0:a6:83:cd:43:a4:7d:aa:f2:a4:9c:e5:df:c7:
ed:e3:0a:bc:7a:7d:0b:80:be:3a:ea:f3:bc:c7:64:d6:ab:2e:
aa:8b:2c:f9:42:4c:32:66:86:38:ac:a0:e8:17:82:0d:a1:1c:
f6:6e:d9:e9:ec:d7:57:88:24:7b:cd:38:f9:52:3d:b0:a7:ae:
16:bb:6a:4f:3d:91:ea:6a:98:8d:47:92:b5:49:38:c1:c3:8f:
24:e3:d5:26:62:38:41:5b:18:da:f0:86:20:db:a0:2d:ce:33:
c9:1e:0e:db:e1:47:f6:72:0e:83:73:b9:15:30:f3:24:61:3d:
64:26:8d:47:53:61:66:43:40:a3:4d:b9:4a:57:d4:42:e8:e2:
bd:45:89:f1:fa:c0:01:11:e0:03:3f:62:2a:8f:88:32:7e:33:
41:32:09:0c:d1:3a:b5:84:63:bd:4e:36:58:29:ee:9a:94:54:
6a:9a:86:4b:65:bb:a0:56:24:5a:ac:2c:0a:41:f0:db:04:b7:
08:14:e5:3f:ae:f7:69:dd:93:ab:f9:85:b4:db:45:7f:0b:03:
90:c5:9b:11:e8:a1:3a:a3:4c:28:26:7a:a2:a3:0d:d6:b5:25:
9d:e5:7b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 7 16:04:51 2023 by rpki-client on console-ams.rpki-client.org