Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/b5bd00ec22901383aa841bc2df7130051f77861b.roa
File: b5bd00ec22901383aa841bc2df7130051f77861b.roa (raw, json)
Hash identifier: jb3a65giYaj5kMDJxYv77GYIj6bwBu8zfTW+m6XVSoQ=
Subject key identifier: 05:0A:87:66:54:47:73:F2:B8:67:FA:46:54:AB:1C:E3:81:28:B8:F9
Certificate issuer: /CN=5494bd71484d106b75c5bedf4263f48281a4e409
Certificate serial: 1BCA8E
Authority key identifier: 4C:B6:BE:C7:78:41:99:EC:CA:F0:31:13:8A:C9:9A:2E:66:AB:83:DD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5494bd71484d106b75c5bedf4263f48281a4e409.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/b5bd00ec22901383aa841bc2df7130051f77861b.roa
Signing time: Wed 26 Oct 2022 22:46:05 +0000
ROA not before: Thu 18 Mar 2021 14:46:11 +0000
ROA not after: Tue 24 Mar 2026 14:46:11 +0000
asID: 6147
IP address blocks: 181.64.0.0/15 maxlen: 24
181.66.0.0/15 maxlen: 24
190.40.0.0/14 maxlen: 24
190.232.0.0/13 maxlen: 24
200.4.192.0/18 maxlen: 18
200.4.192.0/19 maxlen: 24
200.4.224.0/19 maxlen: 24
200.10.64.0/19 maxlen: 24
200.37.0.0/16 maxlen: 16
200.37.0.0/19 maxlen: 24
200.37.32.0/19 maxlen: 24
200.37.64.0/19 maxlen: 24
200.37.96.0/19 maxlen: 24
200.37.128.0/19 maxlen: 24
200.37.160.0/19 maxlen: 24
200.37.192.0/19 maxlen: 24
200.37.224.0/19 maxlen: 24
200.48.0.0/16 maxlen: 24
200.60.0.0/16 maxlen: 16
200.60.0.0/19 maxlen: 24
200.60.32.0/19 maxlen: 24
200.60.64.0/19 maxlen: 24
200.60.96.0/19 maxlen: 24
200.60.128.0/19 maxlen: 24
200.60.160.0/19 maxlen: 24
200.60.192.0/19 maxlen: 24
200.60.224.0/19 maxlen: 24
200.106.0.0/18 maxlen: 24
200.106.64.0/18 maxlen: 24
200.107.128.0/18 maxlen: 24
200.121.0.0/17 maxlen: 24
200.121.128.0/17 maxlen: 24
201.230.0.0/17 maxlen: 24
201.230.128.0/17 maxlen: 24
201.240.0.0/17 maxlen: 24
201.240.128.0/17 maxlen: 24
170.79.36.0/22 maxlen: 24
201.131.220.0/22 maxlen: 24
2001:1388::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1821326 (0x1bca8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5494bd71484d106b75c5bedf4263f48281a4e409
Validity
Not Before: Mar 18 14:46:11 2021 GMT
Not After : Mar 24 14:46:11 2026 GMT
Subject: CN=b5bd00ec22901383aa841bc2df7130051f77861b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2b:e7:1e:80:44:1b:2e:cd:1d:4c:d2:ef:f7:
ee:d9:38:35:34:d2:f7:8d:d2:af:94:26:36:9c:e7:
2e:ce:0f:a6:da:e4:5e:85:24:8f:3d:4f:be:e4:28:
1b:98:ee:a6:74:81:8e:d6:3b:47:c7:19:a5:c3:89:
bc:8b:fa:f7:fd:a6:6f:43:74:d9:e6:d7:28:ce:51:
59:65:bb:67:5c:50:c9:8d:28:2f:32:82:c4:1f:35:
c1:18:d4:f2:0d:b5:2f:95:2a:a6:90:4e:ab:b3:1f:
57:73:e3:6a:0b:1b:2f:a9:7e:0c:a7:aa:ab:69:20:
d3:9e:24:05:d7:c2:98:37:45:2b:39:9d:06:ea:17:
a9:cc:32:5c:81:72:0e:53:d5:c5:3a:00:a7:34:d4:
eb:c4:52:0c:e7:17:6d:8a:72:fa:d9:9d:7f:58:c5:
2c:04:ae:68:43:c7:3e:ef:e1:ad:85:77:21:cc:45:
f5:0f:71:e9:b2:84:d2:fd:7a:fd:6e:3e:6f:b5:de:
d6:16:81:f7:d1:a3:b6:66:b3:48:43:b3:22:f5:44:
35:13:78:33:d6:16:99:93:a1:55:2e:8e:0a:fa:d1:
d3:42:23:a4:dd:cb:96:d2:48:5f:a0:88:3f:6d:c8:
69:03:8c:1f:ed:d1:19:90:93:ad:c3:24:1c:ff:50:
2d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:0A:87:66:54:47:73:F2:B8:67:FA:46:54:AB:1C:E3:81:28:B8:F9
X509v3 Authority Key Identifier:
keyid:4C:B6:BE:C7:78:41:99:EC:CA:F0:31:13:8A:C9:9A:2E:66:AB:83:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5494bd71484d106b75c5bedf4263f48281a4e409.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/b5bd00ec22901383aa841bc2df7130051f77861b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/5494bd71484d106b75c5bedf4263f48281a4e409.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.79.36.0/22
181.64.0.0/14
190.40.0.0/14
190.232.0.0/13
200.4.192.0/18
200.10.64.0/19
200.37.0.0/16
200.48.0.0/16
200.60.0.0/16
200.106.0.0/17
200.107.128.0/18
200.121.0.0/16
201.131.220.0/22
201.230.0.0/16
201.240.0.0/16
IPv6:
2001:1388::/32
Signature Algorithm: sha256WithRSAEncryption
29:ae:90:cb:a7:2e:5e:d8:7f:e8:4a:cd:4a:8a:1f:5e:83:32:
5f:83:b1:73:69:12:31:da:cb:1e:10:3a:2e:2d:10:62:37:4f:
a6:5c:ee:cf:9a:5b:d4:79:51:60:3c:9b:61:a5:40:7a:0c:fd:
71:0d:e3:40:b6:5d:f3:c4:76:1b:61:04:7b:62:30:da:b4:1d:
da:4c:f9:5e:08:ba:28:6c:25:b5:37:c7:7b:59:91:2c:41:2c:
87:67:98:5c:b7:71:4f:8e:43:35:93:eb:3e:69:c0:15:d7:e6:
c5:37:95:f9:8d:4a:8b:0e:b0:7c:df:d8:67:0a:68:81:29:76:
1d:df:33:9f:fc:48:d0:62:53:26:69:47:41:5c:09:a8:76:a1:
08:70:97:02:0e:62:81:94:5f:a1:28:d3:ba:2e:52:13:17:07:
8c:63:5b:eb:94:86:18:71:fe:5b:74:f0:0e:12:07:49:fe:9a:
c8:d5:91:f6:a8:25:fc:e7:d1:8b:09:5f:72:c9:3d:4e:9f:37:
13:aa:21:1d:06:c2:6f:bb:d7:81:34:d5:61:18:15:e5:27:c1:
3b:c7:d2:31:d4:f4:a6:cc:78:83:76:b5:64:a2:02:30:41:5f:
56:40:0b:b1:55:2b:84:3e:7a:fa:63:be:55:59:7c:a2:2b:f2:
f9:09:3c:7e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Sep 21 17:44:48 2023 by rpki-client on console-fra.rpki-client.org