Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2a27f85c-cd28-4ecd-8846-e806d6045ca9/83d734c594a7794566cfc658dbd23a6c99e468ae.roa
File: 83d734c594a7794566cfc658dbd23a6c99e468ae.roa (raw, json)
Hash identifier: 4GROzquAr6RQar14o4X17cjR05fGVuTXyZL6cmkMv8c=
Subject key identifier: 4B:C8:77:1D:BE:68:39:87:6C:7F:CA:62:84:90:34:BB:AC:3D:12:0F
Certificate issuer: /CN=0ab335413c1ba3baeef4f7410d98340c0e6acd4c
Certificate serial: 0BC72C
Authority key identifier: 9E:F2:09:99:59:88:69:41:CF:8E:62:1B:AF:18:6F:BC:93:40:DB:16
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/0ab335413c1ba3baeef4f7410d98340c0e6acd4c.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2a27f85c-cd28-4ecd-8846-e806d6045ca9/83d734c594a7794566cfc658dbd23a6c99e468ae.roa
Signing time: Wed 24 Mar 2021 14:46:30 +0000
ROA not before: Wed 24 Mar 2021 14:46:30 +0000
ROA not after: Tue 24 Mar 2026 14:46:30 +0000
asID: 23201
IP address blocks: 181.120.0.0/14 maxlen: 24
181.124.0.0/14 maxlen: 24
181.40.0.0/16 maxlen: 24
186.0.188.0/22 maxlen: 24
186.16.0.0/17 maxlen: 24
186.16.128.0/17 maxlen: 24
186.17.0.0/16 maxlen: 24
186.2.192.0/19 maxlen: 24
186.2.224.0/20 maxlen: 24
190.128.128.0/18 maxlen: 24
190.128.192.0/18 maxlen: 24
190.2.192.0/20 maxlen: 24
200.26.176.0/21 maxlen: 24
200.85.32.0/20 maxlen: 24
200.85.48.0/20 maxlen: 24
2800:3a0::/32 maxlen: 48
2800:c70::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 771884 (0xbc72c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ab335413c1ba3baeef4f7410d98340c0e6acd4c
Validity
Not Before: Mar 24 14:46:30 2021 GMT
Not After : Mar 24 14:46:30 2026 GMT
Subject: CN=83d734c594a7794566cfc658dbd23a6c99e468ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f3:34:6a:5a:ce:86:ac:b3:91:dd:8c:24:8d:
9f:91:d6:4e:72:f4:20:0b:fe:29:8e:bc:49:d4:22:
48:1e:dc:2d:5b:00:86:b0:c2:74:4e:0b:05:f5:1a:
f5:3f:0f:77:d0:5f:00:2b:6a:bb:0c:1c:96:4b:94:
95:b7:6d:90:3e:7b:65:e2:39:17:83:c2:8d:61:bb:
37:e8:c0:c8:2e:e9:12:df:62:7b:dd:bd:99:1f:af:
a1:6b:ce:14:1d:94:a8:c7:7a:dc:58:1c:7f:c0:37:
c1:42:b2:df:b1:07:ad:03:ae:46:4d:c1:a2:8f:e0:
b5:e3:af:2c:26:30:5f:c3:2c:0e:b9:0e:8d:87:12:
ed:54:0d:61:1d:83:7d:22:92:aa:f5:b2:aa:17:74:
72:f6:c8:70:68:f0:8b:93:9c:0a:d5:47:a5:96:47:
95:bb:c4:25:a2:85:99:0a:98:35:7b:9a:74:bc:f3:
70:30:d0:5f:0e:32:35:b0:05:75:ca:0a:d9:42:4f:
8e:bd:a5:4c:cb:3f:dd:3f:c3:73:be:1d:a7:57:71:
14:38:6b:54:45:46:22:97:f3:7d:1e:2b:6a:4a:d8:
4a:77:92:f6:1b:54:b8:07:bd:91:b3:67:05:0d:2f:
fb:cc:27:51:71:99:e2:6b:70:6e:7e:8d:11:d6:2b:
9a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:C8:77:1D:BE:68:39:87:6C:7F:CA:62:84:90:34:BB:AC:3D:12:0F
X509v3 Authority Key Identifier:
keyid:9E:F2:09:99:59:88:69:41:CF:8E:62:1B:AF:18:6F:BC:93:40:DB:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/0ab335413c1ba3baeef4f7410d98340c0e6acd4c.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2a27f85c-cd28-4ecd-8846-e806d6045ca9/83d734c594a7794566cfc658dbd23a6c99e468ae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2a27f85c-cd28-4ecd-8846-e806d6045ca9/0ab335413c1ba3baeef4f7410d98340c0e6acd4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.40.0.0/16
181.120.0.0/13
186.0.188.0/22
186.2.192.0-186.2.239.255
186.16.0.0/15
190.2.192.0/20
190.128.128.0/17
200.26.176.0/21
200.85.32.0/19
IPv6:
2800:3a0::/32
2800:c70::/32
Signature Algorithm: sha256WithRSAEncryption
8b:e7:9c:46:6f:86:64:0c:54:91:70:21:03:94:e6:cb:25:ed:
f0:23:7a:5a:62:40:b4:f2:ad:60:cd:10:4c:96:80:eb:e3:a1:
79:43:08:3e:6b:68:75:db:ab:7d:5f:24:03:1d:90:7a:a5:26:
bc:2b:24:48:21:a6:88:ec:68:8b:84:a1:26:78:dc:31:5b:a2:
77:44:c2:01:86:c6:97:d0:42:d7:05:11:22:58:1d:93:17:2c:
61:6a:b4:a0:8a:41:ee:52:67:5b:c7:76:46:ac:9f:db:64:50:
43:46:d8:ca:48:db:7d:f0:d4:89:f4:09:77:b1:7e:e3:f0:29:
bb:20:96:93:50:98:b1:a4:bb:78:56:a6:28:36:0b:7f:31:4c:
15:ac:97:ef:68:fd:da:7f:8c:89:15:2f:d0:1d:15:82:e2:de:
98:db:ab:67:d9:8a:1e:41:49:e0:88:29:58:03:45:20:61:f4:
a2:78:af:3a:b7:24:dd:6b:ab:72:7a:ad:af:72:da:70:67:3d:
b8:58:8b:62:7e:53:fe:f6:9f:7e:02:ca:5d:b2:28:3b:d1:5b:
45:3d:1d:fc:57:58:62:be:d0:f2:1a:0d:a8:ce:c4:9b:ff:ed:
57:21:fc:c0:7c:3d:bf:3a:67:2f:1e:a6:c7:7b:eb:34:57:da:
4c:40:06:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 16 22:34:45 2023 by rpki-client on console-ams.rpki-client.org