Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4281a14e-b6a5-4c89-b4ba-0575008dac13/2ca64139c938715f0fa774918acb43f46c70941c.roa
File: 2ca64139c938715f0fa774918acb43f46c70941c.roa (raw, json)
Hash identifier: HEWjMG1ZBr+lI4ZNwCQdnK8r61k8Dh9t+eTOo8WhLzY=
Subject key identifier: 5D:3B:38:2B:A5:98:4C:86:21:FE:8D:40:85:3B:11:47:9C:D1:E6:C2
Certificate issuer: /CN=4ba834aeb520331d21c768e13e7564e705630d2c
Certificate serial: 24AC04
Authority key identifier: 4C:ED:9B:B7:64:90:46:BE:80:01:36:9C:9A:98:4E:BD:F7:E1:78:D0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4ba834aeb520331d21c768e13e7564e705630d2c.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4281a14e-b6a5-4c89-b4ba-0575008dac13/2ca64139c938715f0fa774918acb43f46c70941c.roa
Signing time: Mon 04 Sep 2023 17:44:06 +0000
ROA not before: Sun 03 Sep 2023 17:44:06 +0000
ROA not after: Thu 04 Sep 2025 17:44:06 +0000
asID: 52347
IP address blocks: 186.177.232.0/21 maxlen: 21
186.177.228.0/22 maxlen: 22
186.177.240.0/23 maxlen: 24
186.177.242.0/24 maxlen: 24
190.111.32.0/20 maxlen: 21
190.111.56.0/21 maxlen: 24
190.93.40.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2403332 (0x24ac04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ba834aeb520331d21c768e13e7564e705630d2c
Validity
Not Before: Sep 3 17:44:06 2023 GMT
Not After : Sep 4 17:44:06 2025 GMT
Subject: CN=2ca64139c938715f0fa774918acb43f46c70941c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e1:9e:fd:c7:cf:20:fd:3e:84:0d:1a:fb:bd:
9e:46:7a:7d:5d:72:91:15:14:3e:5d:cb:31:5f:f1:
6d:c5:3c:2f:42:19:5b:88:71:8a:36:e4:a0:84:c3:
8d:e9:19:92:c4:1f:22:ea:8c:56:8f:60:ed:73:00:
04:a5:e4:a0:36:29:55:10:c3:3f:52:7a:4d:db:a9:
39:cc:69:7e:7d:40:d9:54:e6:69:cc:91:06:9e:d9:
da:70:32:dc:45:17:43:0f:9b:17:ec:8c:15:79:23:
be:21:5b:72:01:0a:2c:fe:af:98:5f:f2:a6:74:4b:
1f:6f:f7:da:40:b2:b9:2e:b7:5f:09:d0:6a:ad:d1:
b5:ef:43:e9:0d:ed:66:52:1e:8d:0b:4b:48:33:e0:
77:bd:c4:7c:8f:ff:b5:15:3b:7e:33:97:54:3f:7a:
00:74:17:d4:53:a0:18:53:a7:07:96:10:26:07:c7:
cf:7b:6f:22:16:e0:9e:3f:c7:d5:60:ac:10:8b:69:
50:d0:14:1e:8c:01:f2:4a:73:76:ea:44:b2:89:d4:
7b:a4:1d:47:a9:ab:95:fc:31:26:9e:3f:c9:fb:6d:
01:08:e2:66:88:f1:f7:86:93:26:9b:02:f3:82:30:
2c:e3:ba:63:0c:ac:65:61:69:ca:3c:9f:e1:ec:d7:
0a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:3B:38:2B:A5:98:4C:86:21:FE:8D:40:85:3B:11:47:9C:D1:E6:C2
X509v3 Authority Key Identifier:
keyid:4C:ED:9B:B7:64:90:46:BE:80:01:36:9C:9A:98:4E:BD:F7:E1:78:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4ba834aeb520331d21c768e13e7564e705630d2c.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4281a14e-b6a5-4c89-b4ba-0575008dac13/2ca64139c938715f0fa774918acb43f46c70941c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4281a14e-b6a5-4c89-b4ba-0575008dac13/4ba834aeb520331d21c768e13e7564e705630d2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.177.228.0-186.177.242.255
190.93.40.0/22
190.111.32.0/20
190.111.56.0/21
Signature Algorithm: sha256WithRSAEncryption
73:66:b9:34:eb:fd:d8:11:23:3e:38:ea:2b:23:1f:86:aa:5f:
06:50:40:ad:8f:8e:2a:af:88:55:35:38:e9:f2:3e:ff:3c:d7:
6f:e1:8e:f2:3e:7a:b3:ca:13:5e:cc:74:31:89:0a:d9:1a:99:
08:75:87:35:62:37:3b:39:61:61:1d:44:99:7b:a9:26:bb:28:
ba:aa:10:3c:07:25:7a:26:98:dc:a6:11:65:cb:61:06:c5:05:
47:61:c9:e7:b5:ed:22:a2:e1:41:ab:21:3f:23:2e:a2:37:33:
fd:87:0b:30:2d:69:2c:27:54:fe:e6:f5:2a:8d:43:25:9d:b9:
b2:07:60:51:d5:f5:fe:14:57:9e:54:db:d1:d3:7c:7b:84:35:
34:2f:6d:58:95:59:62:92:f0:10:38:96:44:86:e4:79:85:b7:
47:b5:11:b1:3f:ce:29:31:b9:76:cb:9d:87:e5:d5:1e:70:bc:
f8:a5:52:44:4c:44:4a:9e:70:cd:a5:2e:3b:34:53:36:12:5e:
ed:09:2e:2d:52:24:c0:d2:9e:7c:37:d7:93:16:d6:fa:4c:ac:
32:6d:93:7a:bb:f9:81:1b:80:12:ea:49:8c:6c:aa:4c:5f:a7:
84:67:ee:3a:17:8d:c7:d7:bf:73:d6:57:5f:d3:40:cf:0f:d2:
05:5d:63:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 4 23:53:35 2023 by rpki-client on console-fra.rpki-client.org