Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/44afd170-075e-43df-b4a1-c34f76c18cce/dac33622ba1eef592b4b5d0230038931de37ed3a.roa
File: dac33622ba1eef592b4b5d0230038931de37ed3a.roa (raw, json)
Hash identifier: VpwmvabPP3BpjiBr9p74DA1pHsnIJXv9SzB3Njuj86U=
Subject key identifier: 38:C8:7C:1B:25:77:17:75:B9:3E:5B:B6:52:A9:62:8E:FF:7D:A5:A1
Certificate issuer: /CN=05fbbb173c217aa8030fc6d9379843579229ce31
Certificate serial: 17FDE7
Authority key identifier: 6D:D8:87:CE:7B:A8:45:9B:CA:48:71:1D:F7:C0:A9:E1:8F:D6:72:81
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/05fbbb173c217aa8030fc6d9379843579229ce31.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/44afd170-075e-43df-b4a1-c34f76c18cce/dac33622ba1eef592b4b5d0230038931de37ed3a.roa
Signing time: Tue 17 May 2022 10:23:31 +0000
ROA not before: Mon 07 Feb 2022 03:00:00 +0000
ROA not after: Sun 07 Feb 2027 03:00:00 +0000
asID: 27651
IP address blocks: 152.231.64.0/18 maxlen: 24
186.67.0.0/16 maxlen: 24
190.151.0.0/17 maxlen: 24
200.11.64.0/19 maxlen: 24
200.11.96.0/21 maxlen: 24
200.111.0.0/18 maxlen: 24
200.111.128.0/17 maxlen: 24
200.111.64.0/19 maxlen: 24
200.111.96.0/19 maxlen: 24
200.7.16.0/20 maxlen: 21
200.72.0.0/17 maxlen: 24
200.72.128.0/18 maxlen: 24
200.72.192.0/19 maxlen: 24
200.72.224.0/19 maxlen: 24
200.72.0.0/24 maxlen: 24
200.72.2.0/24 maxlen: 24
200.72.5.0/24 maxlen: 24
200.72.61.0/24 maxlen: 24
200.72.62.0/23 maxlen: 24
200.72.64.0/24 maxlen: 24
200.72.77.0/24 maxlen: 24
200.72.104.0/24 maxlen: 24
200.72.106.0/24 maxlen: 24
200.72.115.0/24 maxlen: 24
200.72.116.0/23 maxlen: 24
200.72.118.0/24 maxlen: 24
200.72.146.0/24 maxlen: 24
200.72.169.0/24 maxlen: 24
200.72.185.0/24 maxlen: 24
200.72.210.0/24 maxlen: 24
200.72.212.0/22 maxlen: 24
200.72.220.0/23 maxlen: 24
200.72.222.0/24 maxlen: 24
200.72.225.0/24 maxlen: 24
200.72.226.0/24 maxlen: 24
200.72.232.0/21 maxlen: 24
2800:300::/32 maxlen: 128
Validation: Failed, certificate revoked on Thu 01 Feb 2024 15:49:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1572327 (0x17fde7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05fbbb173c217aa8030fc6d9379843579229ce31
Validity
Not Before: Feb 7 03:00:00 2022 GMT
Not After : Feb 7 03:00:00 2027 GMT
Subject: CN=dac33622ba1eef592b4b5d0230038931de37ed3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dd:0b:e0:ec:be:3d:9a:c6:5c:ad:1f:b9:d5:
8e:b3:87:0a:c9:6e:97:e7:84:d0:38:12:ce:23:68:
a8:1a:49:a8:e0:7e:28:ff:cb:43:f1:c0:ec:5e:64:
0e:f5:ba:87:07:6a:e7:d2:96:eb:39:94:db:9e:31:
de:75:c5:d3:3b:ce:36:fd:9a:85:fa:65:58:aa:2d:
d4:f6:7b:25:54:99:da:73:9c:7d:22:f2:09:63:a6:
18:b3:32:51:9d:b0:24:96:a7:61:8b:80:5a:b2:ea:
4d:50:55:e4:03:db:ac:f0:d8:4a:77:e5:47:72:1a:
99:f9:87:7f:39:57:8a:dc:d9:e3:84:06:75:89:e6:
8d:e4:27:2f:49:ec:5b:f0:94:71:3e:60:ca:58:70:
29:0e:b7:66:da:3f:ce:9f:70:7b:b2:e7:cc:1c:e9:
c9:4d:5a:3d:da:dc:79:0a:fe:a8:59:45:85:48:1c:
f0:94:2d:2e:88:dc:77:e2:b2:71:bc:b1:68:f8:03:
19:88:12:89:e5:0e:fa:da:f6:7f:a9:b4:69:f4:ed:
43:3a:19:91:d7:29:05:c5:aa:45:06:dd:72:50:15:
d7:90:e0:27:71:6f:1c:eb:93:99:26:ad:da:ad:57:
07:81:e1:7a:68:9c:e4:1c:7f:8b:eb:f5:d2:68:3a:
fe:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C8:7C:1B:25:77:17:75:B9:3E:5B:B6:52:A9:62:8E:FF:7D:A5:A1
X509v3 Authority Key Identifier:
keyid:6D:D8:87:CE:7B:A8:45:9B:CA:48:71:1D:F7:C0:A9:E1:8F:D6:72:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/05fbbb173c217aa8030fc6d9379843579229ce31.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/44afd170-075e-43df-b4a1-c34f76c18cce/dac33622ba1eef592b4b5d0230038931de37ed3a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/44afd170-075e-43df-b4a1-c34f76c18cce/05fbbb173c217aa8030fc6d9379843579229ce31.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.231.64.0/18
186.67.0.0/16
190.151.0.0/17
200.7.16.0/20
200.11.64.0-200.11.103.255
200.72.0.0/16
200.111.0.0/16
IPv6:
2800:300::/32
Signature Algorithm: sha256WithRSAEncryption
42:87:fb:aa:14:69:0f:49:75:66:16:72:32:f0:9e:63:3c:b6:
0b:87:92:ff:89:b1:89:59:82:2a:9e:30:3c:6b:67:b9:34:44:
e7:77:01:e0:51:93:37:be:cf:2c:50:ce:a2:9e:8b:19:f6:d2:
b0:0e:91:38:89:c2:20:8a:c9:ba:cd:df:d3:09:cc:3d:5d:c6:
2e:47:c0:c6:77:d7:97:67:4c:e5:78:8a:ca:c1:bf:1f:6e:42:
55:4a:11:03:71:7b:8d:bb:22:5c:20:ea:0e:f3:c9:92:e7:d7:
ae:b6:ff:5a:19:97:28:ef:45:d6:15:c8:3d:5c:0b:cb:79:42:
69:78:06:45:89:71:5f:03:66:84:45:49:c1:a7:41:74:58:0e:
97:1f:e3:4a:57:b6:61:82:1f:bb:36:df:31:10:5a:37:75:01:
0f:b5:6d:4d:1f:a0:7c:39:38:7b:0e:58:de:6a:fd:ad:a5:04:
6a:cd:50:6d:7b:4b:75:5a:3f:8f:28:0b:61:41:3c:5e:e0:e9:
eb:0e:39:5d:9c:4f:aa:b9:2a:47:2a:47:99:eb:f2:aa:d4:c3:
b5:27:24:7e:3f:dc:7b:26:06:e5:c2:74:c6:73:dc:13:6c:2b:
59:a8:07:87:91:28:29:03:8f:f5:7e:a3:cf:33:b8:bc:3c:e4:
b4:d1:32:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 19:20:58 2024 by rpki-client on console-ams.rpki-client.org