Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/449ecc19-c291-4fcf-9697-4a9669b30e80/a4c507b9e6028e1df73add47c86f8494541e08cb.roa
File: a4c507b9e6028e1df73add47c86f8494541e08cb.roa (raw, json)
Hash identifier: KLB/NGRyT2nSC8NVeqjIlTsmxKMfkgN7t0GvZSa8IEk=
Subject key identifier: 29:FE:23:A8:E0:DB:E2:CD:D0:24:1D:C7:E0:A0:8A:61:B7:11:E3:44
Certificate issuer: /CN=5b7dbb1482b4705c4115f4698d018750070bcecb
Certificate serial: 0E3F87
Authority key identifier: 2B:3B:AC:72:9D:0E:A7:42:1F:BD:B8:90:D9:23:BD:A4:77:D7:CA:29
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5b7dbb1482b4705c4115f4698d018750070bcecb.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/449ecc19-c291-4fcf-9697-4a9669b30e80/a4c507b9e6028e1df73add47c86f8494541e08cb.roa
Signing time: Wed 19 Apr 2023 17:57:31 +0000
ROA not before: Tue 18 Apr 2023 17:57:31 +0000
ROA not after: Sat 19 Apr 2025 17:57:31 +0000
asID: 271891
IP address blocks: 2801:151:37::/48 maxlen: 48
2801:151:57::/48 maxlen: 48
2801:151:103::/48 maxlen: 48
2801:151:39::/48 maxlen: 48
2801:151:f9::/48 maxlen: 48
2801:151:45::/48 maxlen: 48
2801:151:105::/48 maxlen: 48
2801:151:ea::/48 maxlen: 48
2801:151:10a::/48 maxlen: 48
2801:151:fb::/48 maxlen: 48
2801:151:60::/48 maxlen: 48
2801:151:51::/48 maxlen: 48
2801:151:107::/48 maxlen: 48
2801:151:8c::/48 maxlen: 48
2801:151:109::/48 maxlen: 48
2801:151:a4::/48 maxlen: 48
2801:151:5a::/48 maxlen: 48
2801:151:4b::/48 maxlen: 48
2801:151:8b::/48 maxlen: 48
2801:151:e1::/48 maxlen: 48
2801:151:66::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933767 (0xe3f87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b7dbb1482b4705c4115f4698d018750070bcecb
Validity
Not Before: Apr 18 17:57:31 2023 GMT
Not After : Apr 19 17:57:31 2025 GMT
Subject: CN=a4c507b9e6028e1df73add47c86f8494541e08cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3d:40:1c:2f:30:04:65:51:a9:2c:5c:f5:a9:
cf:2b:07:fd:0c:cb:63:a5:e5:51:a7:21:02:ce:13:
71:8a:7f:9c:00:a7:2d:06:73:93:50:7c:d6:06:f8:
ea:e8:2e:2f:15:43:18:b1:42:04:84:44:2f:58:51:
59:4d:89:fb:b7:9a:f2:48:16:05:68:72:74:79:57:
8f:37:ee:d2:b0:03:5a:c8:8b:9a:4d:87:0e:e3:a4:
46:cd:53:c7:3c:37:2f:12:db:72:56:8a:ed:95:aa:
c8:35:a5:4b:5b:e9:51:79:68:03:cb:f4:d6:98:1e:
15:8d:61:b0:61:e2:47:f8:d9:e9:87:37:33:3b:2e:
71:07:34:be:c7:61:ce:6f:68:2a:1d:40:59:06:37:
54:59:d6:e7:bc:c9:60:90:9b:30:01:2f:a4:77:a3:
b0:1c:e5:90:59:21:af:52:b7:19:96:24:8c:1f:f7:
a8:05:be:ff:b8:f2:9a:2b:eb:97:37:bc:f6:0f:94:
5c:29:93:1c:91:fc:b8:8d:82:45:9d:1d:c5:ec:49:
b8:7c:dd:59:bb:51:4c:3f:dc:52:36:89:20:43:3f:
e5:1a:bc:48:0b:f6:5e:86:79:52:fd:f3:3b:72:25:
36:ad:f5:f8:eb:f5:5f:05:0a:5b:f4:b9:39:a1:37:
54:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:FE:23:A8:E0:DB:E2:CD:D0:24:1D:C7:E0:A0:8A:61:B7:11:E3:44
X509v3 Authority Key Identifier:
keyid:2B:3B:AC:72:9D:0E:A7:42:1F:BD:B8:90:D9:23:BD:A4:77:D7:CA:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5b7dbb1482b4705c4115f4698d018750070bcecb.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/449ecc19-c291-4fcf-9697-4a9669b30e80/a4c507b9e6028e1df73add47c86f8494541e08cb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/449ecc19-c291-4fcf-9697-4a9669b30e80/5b7dbb1482b4705c4115f4698d018750070bcecb.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:151:37::/48
2801:151:39::/48
2801:151:45::/48
2801:151:4b::/48
2801:151:51::/48
2801:151:57::/48
2801:151:5a::/48
2801:151:60::/48
2801:151:66::/48
2801:151:8b::-2801:151:8c:ffff:ffff:ffff:ffff:ffff
2801:151:a4::/48
2801:151:e1::/48
2801:151:ea::/48
2801:151:f9::/48
2801:151:fb::/48
2801:151:103::/48
2801:151:105::/48
2801:151:107::/48
2801:151:109::-2801:151:10a:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
98:bc:4a:51:84:09:a2:f8:3f:68:1f:3b:c7:f1:c0:0d:a3:76:
c3:40:ac:24:d5:85:3d:46:41:bb:93:fe:af:ac:04:24:66:b4:
db:ff:8c:e9:44:86:1e:87:b5:46:68:9f:d9:da:8d:dc:e9:63:
a0:e4:4f:3b:e4:ce:47:fb:83:cf:36:56:21:61:e1:2d:7f:25:
4f:ed:28:04:03:28:24:54:0d:8a:4d:36:75:57:26:c1:b4:df:
20:6c:05:b6:c5:1f:e0:8e:66:d4:5c:e8:8b:8e:83:31:cf:23:
f0:0b:f0:5c:59:ba:f5:fc:2e:82:d9:53:00:13:a0:d3:6c:d2:
a4:04:e5:d0:57:8a:37:00:12:74:6f:43:5b:4a:f6:ef:ab:ed:
b1:41:65:af:ac:41:78:20:a2:8a:a6:88:8f:ee:9e:b5:53:43:
d9:9b:bf:cd:79:9a:2a:8e:98:c4:aa:1a:4f:55:dd:57:7a:4a:
a1:b6:9a:ba:fe:a5:52:b2:53:b5:f7:da:64:f9:b8:7e:ff:fc:
40:1e:bd:9d:ef:77:3f:1b:a2:6e:94:36:fc:28:0c:7c:2f:12:
9d:d2:68:a5:89:50:09:cc:16:b1:07:6e:ba:d6:72:66:22:c3:
f4:ec:a9:b5:66:9c:83:aa:8d:93:64:17:43:e1:d4:6d:91:2a:
4c:cc:b6:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:31 2023 by rpki-client on console-ams.rpki-client.org