Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/b9d03e060e79e72a9aa42ef5ca3f481e2f6d87cc.roa
File: b9d03e060e79e72a9aa42ef5ca3f481e2f6d87cc.roa (raw, json)
Hash identifier: o1uawpbs3d9gkh3sI+thtPQJwCiQaS5KNWR2aGNTStw=
Subject key identifier: 41:27:EF:AF:49:81:B0:1F:7D:4B:3F:21:39:F5:1F:C0:E4:39:1D:E9
Certificate issuer: /CN=33b7a43fc33bfc7ff5ea592decadde645288705e
Certificate serial: 1C9EF5
Authority key identifier: C1:A4:F9:06:D7:C5:6B:7D:5E:32:B4:3C:AE:33:6A:BD:11:7D:39:56
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/33b7a43fc33bfc7ff5ea592decadde645288705e.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/b9d03e060e79e72a9aa42ef5ca3f481e2f6d87cc.roa
Signing time: Mon 10 Oct 2022 17:01:02 +0000
ROA not before: Mon 05 Sep 2022 21:09:30 +0000
ROA not after: Thu 05 Sep 2024 21:09:30 +0000
asID: 272885
IP address blocks: 200.123.34.0/23 maxlen: 23
200.123.34.0/24 maxlen: 24
200.123.35.0/24 maxlen: 24
200.123.50.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1875701 (0x1c9ef5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b7a43fc33bfc7ff5ea592decadde645288705e
Validity
Not Before: Sep 5 21:09:30 2022 GMT
Not After : Sep 5 21:09:30 2024 GMT
Subject: CN=b9d03e060e79e72a9aa42ef5ca3f481e2f6d87cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:76:7e:78:55:93:1e:83:c0:b4:00:78:09:a4:
02:e2:3c:06:59:9b:c1:8f:4f:a2:65:25:ea:0f:78:
7a:37:a1:88:07:e6:47:81:21:b7:58:fb:af:55:fd:
bb:41:2f:72:77:b5:14:91:e1:cc:d9:6d:e0:0a:ab:
98:c5:98:c1:e0:15:c2:9c:e2:ee:de:16:f2:d2:1c:
5a:61:60:5a:25:45:e5:5f:39:6a:bc:2b:b7:11:64:
77:24:81:1f:b0:05:8f:d7:15:d4:52:40:9c:59:44:
50:e4:32:c0:92:0b:64:02:76:0d:64:fc:97:d9:80:
a0:0d:dc:46:76:f1:81:69:76:5b:e4:32:90:65:0b:
2b:bd:8f:5d:e2:85:c4:37:c8:c1:9f:62:d3:5d:08:
8e:74:1c:16:85:09:ed:56:a4:40:a1:cd:09:a8:0c:
5d:9e:d2:fd:fa:ce:7c:31:65:b8:c5:de:d0:7d:49:
eb:09:11:f4:9f:bb:87:dc:72:ac:0f:85:d9:d6:7d:
04:86:2f:9b:d0:c0:76:d1:39:be:a0:b4:0e:3b:b7:
a8:b1:8c:8f:96:8d:7e:0b:b8:cf:df:0d:58:28:f6:
e2:6a:72:2c:68:5f:41:53:dd:80:ef:c5:ec:18:7f:
ad:10:01:7c:0e:2e:d8:85:21:a5:1e:2f:88:22:dd:
84:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:27:EF:AF:49:81:B0:1F:7D:4B:3F:21:39:F5:1F:C0:E4:39:1D:E9
X509v3 Authority Key Identifier:
keyid:C1:A4:F9:06:D7:C5:6B:7D:5E:32:B4:3C:AE:33:6A:BD:11:7D:39:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/33b7a43fc33bfc7ff5ea592decadde645288705e.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/b9d03e060e79e72a9aa42ef5ca3f481e2f6d87cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/33b7a43fc33bfc7ff5ea592decadde645288705e.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.123.34.0/23
200.123.50.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:48:e6:49:f6:0c:11:a8:62:2f:4f:ea:24:df:1c:b3:49:ab:
ff:bd:64:d5:e2:ea:54:42:b8:c3:34:60:40:38:23:bb:1a:be:
69:36:b4:7d:60:67:36:b8:44:c7:a1:84:ad:07:8f:90:8c:e9:
e2:15:48:79:d5:13:7e:72:53:25:d8:4c:80:8d:b6:1e:21:51:
76:10:7b:99:8a:14:85:c8:44:69:9e:d2:1b:7b:c0:d3:db:49:
95:8b:f6:0c:d3:dd:92:ca:28:d1:e1:a7:0f:3b:d3:99:23:72:
37:60:d1:93:b4:fd:fe:c9:c8:76:1e:1c:13:3c:9b:72:e3:18:
f6:c4:14:33:c0:b5:77:26:12:b6:d4:da:db:9f:e8:c7:de:c7:
bf:8e:ee:d4:37:9b:72:c3:4e:b7:45:f1:5b:95:00:39:86:ff:
5c:ca:80:43:d0:97:04:a9:cd:22:25:87:5a:17:39:a6:8e:7e:
db:1a:b1:c7:ca:b3:43:e2:b4:fe:70:58:1a:b7:98:04:1d:a4:
0b:35:15:3c:80:11:9a:9d:58:92:a0:e0:b3:09:70:ed:9b:8b:
ee:ae:5b:8a:f9:d4:5e:27:86:0f:68:7d:89:53:05:2e:ff:b5:
b2:45:e1:69:3e:ba:9a:19:1d:bd:0b:49:29:b6:7f:e5:5f:9c:
71:54:1f:59
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIDHJ71MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDMz
YjdhNDNmYzMzYmZjN2ZmNWVhNTkyZGVjYWRkZTY0NTI4ODcwNWUwHhcNMjIwOTA1
MjEwOTMwWhcNMjQwOTA1MjEwOTMwWjAzMTEwLwYDVQQDEyhiOWQwM2UwNjBlNzll
NzJhOWFhNDJlZjVjYTNmNDgxZTJmNmQ4N2NjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAiXZ+eFWTHoPAtAB4CaQC4jwGWZvBj0+iZSXqD3h6N6GIB+ZH
gSG3WPuvVf27QS9yd7UUkeHM2W3gCquYxZjB4BXCnOLu3hby0hxaYWBaJUXlXzlq
vCu3EWR3JIEfsAWP1xXUUkCcWURQ5DLAkgtkAnYNZPyX2YCgDdxGdvGBaXZb5DKQ
ZQsrvY9d4oXEN8jBn2LTXQiOdBwWhQntVqRAoc0JqAxdntL9+s58MWW4xd7QfUnr
CRH0n7uH3HKsD4XZ1n0Ehi+b0MB20Tm+oLQOO7eosYyPlo1+C7jP3w1YKPbianIs
aF9BU92A78XsGH+tEAF8Di7YhSGlHi+IIt2ECQIDAQABo4ICYTCCAl0wHQYDVR0O
BBYEFEEn769JgbAffUs/ITn1H8DkOR3pMB8GA1UdIwQYMBaAFMGk+QbXxWt9XjK0
PK4zar0RfTlWMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMzNiN2E0
M2ZjMzNiZmM3ZmY1ZWE1OTJkZWNhZGRlNjQ1Mjg4NzA1ZS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMzgyODMwNDctODgzNC00M2Q1LTgyZjctNGQ5Mzhl
NjA1NzFlL2I5ZDAzZTA2MGU3OWU3MmE5YWE0MmVmNWNhM2Y0ODFlMmY2ZDg3Y2Mu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8zODI4MzA0Ny04ODM0LTQzZDUtODJmNy00ZDkz
OGU2MDU3MWUvMzNiN2E0M2ZjMzNiZmM3ZmY1ZWE1OTJkZWNhZGRlNjQ1Mjg4NzA1
ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQW
MBQwEgQCAAEwDAMEAch7IgMEAMh7MjANBgkqhkiG9w0BAQsFAAOCAQEAS0jmSfYM
EahiL0/qJN8cs0mr/71k1eLqVEK4wzRgQDgjuxq+aTa0fWBnNrhEx6GErQePkIzp
4hVIedUTfnJTJdhMgI22HiFRdhB7mYoUhchEaZ7SG3vA09tJlYv2DNPdksoo0eGn
DzvTmSNyN2DRk7T9/snIdh4cEzybcuMY9sQUM8C1dyYSttTa25/ox97Hv47u1Deb
csNOt0XxW5UAOYb/XMqAQ9CXBKnNIiWHWhc5po5+2xqxx8qzQ+K0/nBYGreYBB2k
CzUVPIARmp1YkqDgswlw7ZuL7q5bivnUXieGD2h9iVMFLv+1skXhaT66mhkdvQtJ
KbZ/5V+ccVQfWQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:29 2023 by rpki-client on console-ams.rpki-client.org