Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/394fcefe-81c9-4a07-a0f0-f8010152a20e/156b7b0ff3ad7d3bbe54eb959f58ee23c8f35572.roa
File: 156b7b0ff3ad7d3bbe54eb959f58ee23c8f35572.roa (raw, json)
Hash identifier: PDAzuxYK2gjWccZUaF+Ir0rb99WQ3+Ajo7gtdtVxUIA=
Subject key identifier: CF:BF:47:C7:99:94:87:9D:16:FF:FE:77:BA:24:5B:E5:7A:8A:72:13
Certificate issuer: /CN=73d8c5c151d3d4813127482165f2c6714ba65d28
Certificate serial: 0BC9B2
Authority key identifier: 5B:7F:32:5B:51:42:36:74:70:E0:B4:6A:17:51:09:64:FA:E5:8B:A2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/73d8c5c151d3d4813127482165f2c6714ba65d28.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/394fcefe-81c9-4a07-a0f0-f8010152a20e/156b7b0ff3ad7d3bbe54eb959f58ee23c8f35572.roa
Signing time: Wed 24 Mar 2021 14:47:04 +0000
ROA not before: Wed 24 Mar 2021 14:47:04 +0000
ROA not after: Tue 24 Mar 2026 14:47:04 +0000
asID: 20940
IP address blocks: 201.220.10.0/24 maxlen: 24
2800:280:4001::/48 maxlen: 64
Validation: Failed, certificate revoked on Sun 14 Apr 2024 22:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 772530 (0xbc9b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73d8c5c151d3d4813127482165f2c6714ba65d28
Validity
Not Before: Mar 24 14:47:04 2021 GMT
Not After : Mar 24 14:47:04 2026 GMT
Subject: CN=156b7b0ff3ad7d3bbe54eb959f58ee23c8f35572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5c:f8:b1:67:1d:38:8f:94:8a:32:d1:a6:60:
78:54:36:1d:d0:3e:24:f0:59:62:bc:d2:6d:13:e2:
0e:4f:78:71:f7:81:7b:b5:f6:1d:44:f9:39:65:a5:
72:e5:bf:b5:f4:92:e4:a8:bf:bc:84:5b:ff:51:e0:
61:71:51:74:2e:d8:7b:d1:1b:e1:6a:7e:66:1f:ec:
db:b9:43:cc:c4:c8:32:66:04:27:a2:a4:35:8b:f0:
bc:b6:0f:bf:fd:93:cf:aa:2d:33:6d:60:8a:80:bf:
c5:de:dd:21:cb:ec:be:85:c8:0c:7e:0c:ac:aa:fc:
55:0f:53:d1:ee:8f:de:bd:63:12:33:32:4a:69:3e:
cc:ce:9b:97:c7:64:73:19:fd:09:e3:7a:30:78:a1:
a7:24:25:f2:91:2e:77:d3:3b:66:17:f4:ef:29:1f:
47:e3:3f:0b:00:26:bf:66:77:9c:ae:87:6d:bf:a6:
60:aa:f5:52:92:6f:ff:64:f3:b7:b1:f2:56:7b:4a:
d9:57:d7:43:74:45:75:99:4b:4b:6a:2f:4c:8f:bd:
8b:dc:16:34:61:f0:30:0f:04:da:b9:ba:a4:0e:46:
d7:fe:c3:2d:34:de:4e:67:01:c1:e8:b7:69:97:6d:
29:51:16:85:28:ac:06:85:75:63:a2:72:e6:ca:4a:
cb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:BF:47:C7:99:94:87:9D:16:FF:FE:77:BA:24:5B:E5:7A:8A:72:13
X509v3 Authority Key Identifier:
keyid:5B:7F:32:5B:51:42:36:74:70:E0:B4:6A:17:51:09:64:FA:E5:8B:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/73d8c5c151d3d4813127482165f2c6714ba65d28.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/394fcefe-81c9-4a07-a0f0-f8010152a20e/156b7b0ff3ad7d3bbe54eb959f58ee23c8f35572.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/394fcefe-81c9-4a07-a0f0-f8010152a20e/73d8c5c151d3d4813127482165f2c6714ba65d28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.220.10.0/24
IPv6:
2800:280:4001::/48
Signature Algorithm: sha256WithRSAEncryption
92:a9:a1:2b:d1:2c:68:07:5c:cf:21:11:39:8b:09:c9:54:d0:
bc:48:9b:85:f8:25:e2:7f:ef:fb:6b:bb:c1:35:c3:21:74:3d:
c8:5c:c7:5e:37:62:4d:ad:8b:4f:6b:dd:4c:8e:ea:f4:ab:30:
c3:5e:74:1b:80:c2:7e:6f:c4:84:db:d8:0e:b7:11:9b:24:06:
85:1d:69:f6:af:f3:48:7e:b1:06:da:8e:e7:0d:7e:0e:49:4f:
2b:b3:ed:63:d7:6c:5f:63:2d:96:90:41:73:2f:82:3a:81:31:
36:5b:ba:ce:53:2d:2c:0d:af:20:f3:cb:9b:24:81:6b:5e:b3:
16:eb:b6:fa:4c:b0:63:a3:40:2c:cb:d6:49:58:ec:0f:b4:4d:
3d:93:ba:57:b7:32:57:bb:f7:d5:dc:f9:a9:c7:a4:6c:c5:17:
7a:28:9e:41:0f:1e:31:b5:83:a9:37:65:af:10:75:39:a5:a6:
8d:d1:74:db:96:1f:8a:b1:f9:2b:4b:2c:1e:de:3e:e9:e5:41:
e2:27:da:27:90:b8:04:df:c2:b7:96:8b:0c:21:1b:d1:84:ba:
2d:bf:a1:5d:76:d6:4c:15:b8:0b:c0:22:f7:ee:2e:dd:86:4c:
32:9d:ba:40:5c:db:32:2b:07:00:d8:ff:b0:01:5d:d4:68:1f:
a3:a8:11:2d
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIDC8myMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDcz
ZDhjNWMxNTFkM2Q0ODEzMTI3NDgyMTY1ZjJjNjcxNGJhNjVkMjgwHhcNMjEwMzI0
MTQ0NzA0WhcNMjYwMzI0MTQ0NzA0WjAzMTEwLwYDVQQDEygxNTZiN2IwZmYzYWQ3
ZDNiYmU1NGViOTU5ZjU4ZWUyM2M4ZjM1NTcyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAjFz4sWcdOI+UijLRpmB4VDYd0D4k8FlivNJtE+IOT3hx94F7
tfYdRPk5ZaVy5b+19JLkqL+8hFv/UeBhcVF0Lth70Rvhan5mH+zbuUPMxMgyZgQn
oqQ1i/C8tg+//ZPPqi0zbWCKgL/F3t0hy+y+hcgMfgysqvxVD1PR7o/evWMSMzJK
aT7MzpuXx2RzGf0J43oweKGnJCXykS530ztmF/TvKR9H4z8LACa/Znecrodtv6Zg
qvVSkm//ZPO3sfJWe0rZV9dDdEV1mUtLai9Mj72L3BY0YfAwDwTaubqkDkbX/sMt
NN5OZwHB6Ldpl20pURaFKKwGhXVjonLmykrLTwIDAQABo4ICbDCCAmgwHQYDVR0O
BBYEFM+/R8eZlIedFv/+d7okW+V6inITMB8GA1UdIwQYMBaAFFt/MltRQjZ0cOC0
ahdRCWT65YuiMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNzNkOGM1
YzE1MWQzZDQ4MTMxMjc0ODIxNjVmMmM2NzE0YmE2NWQyOC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMzk0ZmNlZmUtODFjOS00YTA3LWEwZjAtZjgwMTAx
NTJhMjBlLzE1NmI3YjBmZjNhZDdkM2JiZTU0ZWI5NTlmNThlZTIzYzhmMzU1NzIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8zOTRmY2VmZS04MWM5LTRhMDctYTBmMC1mODAx
MDE1MmEyMGUvNzNkOGM1YzE1MWQzZDQ4MTMxMjc0ODIxNjVmMmM2NzE0YmE2NWQy
OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQh
MB8wDAQCAAEwBgMEAMncCjAPBAIAAjAJAwcAKAACgEABMA0GCSqGSIb3DQEBCwUA
A4IBAQCSqaEr0SxoB1zPIRE5iwnJVNC8SJuF+CXif+/7a7vBNcMhdD3IXMdeN2JN
rYtPa91Mjur0qzDDXnQbgMJ+b8SE29gOtxGbJAaFHWn2r/NIfrEG2o7nDX4OSU8r
s+1j12xfYy2WkEFzL4I6gTE2W7rOUy0sDa8g88ubJIFrXrMW67b6TLBjo0Asy9ZJ
WOwPtE09k7pXtzJXu/fV3Pmpx6RsxRd6KJ5BDx4xtYOpN2WvEHU5paaN0XTblh+K
sfkrSywe3j7p5UHiJ9onkLgE38K3losMIRvRhLotv6FddtZMFbgLwCL37i7dhkwy
nbpAXNsyKwcA2P+wAV3UaB+jqBEt
-----END CERTIFICATE-----
Generated at Sun Apr 14 23:03:11 2024 by rpki-client on console-ams.rpki-client.org