Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/44afd170-075e-43df-b4a1-c34f76c18cce/ecd449c58884104a119f0b4286876f38cfde4bb0.roa
File: ecd449c58884104a119f0b4286876f38cfde4bb0.roa (raw, json)
Hash identifier: nQ70Kb0fpMEQLLLqk5Lk6jW1in62gyVoQftq39lHaKg=
Subject key identifier: 33:7C:68:47:EB:BF:0E:75:34:E8:EA:52:CA:86:79:2A:49:BE:56:E4
Certificate issuer: /CN=05fbbb173c217aa8030fc6d9379843579229ce31
Certificate serial: 156629
Authority key identifier: 6D:D8:87:CE:7B:A8:45:9B:CA:48:71:1D:F7:C0:A9:E1:8F:D6:72:81
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/05fbbb173c217aa8030fc6d9379843579229ce31.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/44afd170-075e-43df-b4a1-c34f76c18cce/ecd449c58884104a119f0b4286876f38cfde4bb0.roa
Signing time: Mon 07 Feb 2022 19:43:04 +0000
ROA not before: Mon 07 Feb 2022 03:00:00 +0000
ROA not after: Sun 07 Feb 2027 03:00:00 +0000
asID: 27651
IP address blocks: 152.231.64.0/18 maxlen: 24
186.67.0.0/16 maxlen: 24
190.151.0.0/17 maxlen: 24
200.11.64.0/19 maxlen: 24
200.11.96.0/21 maxlen: 24
200.111.0.0/18 maxlen: 24
200.111.128.0/17 maxlen: 24
200.111.64.0/19 maxlen: 24
200.111.96.0/19 maxlen: 24
200.7.16.0/20 maxlen: 21
200.72.0.0/17 maxlen: 24
200.72.128.0/18 maxlen: 24
200.72.192.0/19 maxlen: 24
200.72.224.0/19 maxlen: 24
200.72.0.0/24 maxlen: 24
200.72.2.0/24 maxlen: 24
200.72.5.0/24 maxlen: 24
200.72.61.0/24 maxlen: 24
200.72.62.0/23 maxlen: 24
200.72.64.0/24 maxlen: 24
200.72.77.0/24 maxlen: 24
200.72.104.0/24 maxlen: 24
200.72.106.0/24 maxlen: 24
200.72.115.0/24 maxlen: 24
200.72.116.0/23 maxlen: 24
200.72.118.0/24 maxlen: 24
200.72.146.0/24 maxlen: 24
200.72.169.0/24 maxlen: 24
200.72.185.0/24 maxlen: 24
200.72.210.0/24 maxlen: 24
200.72.212.0/22 maxlen: 24
200.72.220.0/23 maxlen: 24
200.72.222.0/24 maxlen: 24
200.72.225.0/24 maxlen: 24
200.72.226.0/24 maxlen: 24
200.72.232.0/21 maxlen: 24
2800:300::/32 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1402409 (0x156629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05fbbb173c217aa8030fc6d9379843579229ce31
Validity
Not Before: Feb 7 03:00:00 2022 GMT
Not After : Feb 7 03:00:00 2027 GMT
Subject: CN=ecd449c58884104a119f0b4286876f38cfde4bb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5e:68:ee:9a:6a:db:8a:88:b9:29:cd:35:c6:
4d:99:c1:b9:4b:5c:ab:84:d4:d7:0f:f8:fa:32:eb:
80:d9:60:e3:57:fc:56:c1:88:cd:f1:df:55:85:ef:
25:12:f6:29:21:2c:b0:c1:a5:8a:be:d9:a5:45:4b:
f8:e9:5e:08:a6:41:17:8b:5f:c1:2f:44:61:7e:0b:
66:93:14:96:17:66:f6:3a:09:00:f2:02:f1:23:d4:
de:e4:a3:8d:a3:35:4a:6d:14:28:35:8e:c0:bc:0f:
64:a1:b3:84:95:ab:9d:e8:76:47:b2:35:73:76:92:
5b:ee:a4:86:90:66:e4:ef:c7:e5:2a:53:5a:c8:f9:
3a:a8:44:87:23:43:5a:e0:80:7d:d3:03:bd:c7:e6:
a3:75:64:67:6a:b9:c4:03:dd:55:33:4c:39:d8:42:
f2:71:b0:d7:45:1e:92:5c:f4:f7:35:5a:a3:ae:da:
b2:fd:bc:93:45:79:a3:6d:77:f3:f9:38:d3:48:86:
56:a4:32:8c:cb:0f:84:94:54:39:f0:8c:ab:cb:4a:
79:c4:5a:06:4f:a4:35:97:bc:c0:64:e5:ce:f6:31:
d6:ec:2b:3b:f5:cd:4e:e8:c3:cf:d4:e5:66:1f:4b:
19:0f:3e:82:1d:73:e5:af:2a:4c:f1:a8:5b:bf:9c:
6d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7C:68:47:EB:BF:0E:75:34:E8:EA:52:CA:86:79:2A:49:BE:56:E4
X509v3 Authority Key Identifier:
keyid:6D:D8:87:CE:7B:A8:45:9B:CA:48:71:1D:F7:C0:A9:E1:8F:D6:72:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/05fbbb173c217aa8030fc6d9379843579229ce31.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/44afd170-075e-43df-b4a1-c34f76c18cce/ecd449c58884104a119f0b4286876f38cfde4bb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/44afd170-075e-43df-b4a1-c34f76c18cce/05fbbb173c217aa8030fc6d9379843579229ce31.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.231.64.0/18
186.67.0.0/16
190.151.0.0/17
200.7.16.0/20
200.11.64.0-200.11.103.255
200.72.0.0/16
200.111.0.0/16
IPv6:
2800:300::/32
Signature Algorithm: sha256WithRSAEncryption
08:ac:e3:a8:2d:48:c7:98:42:98:54:b6:90:45:1f:35:0b:7a:
34:c5:83:71:70:64:d1:6c:52:e8:20:dd:45:c0:7f:4c:28:bf:
4f:26:c2:aa:5d:59:7f:db:ef:2b:c8:a2:4e:c8:12:6b:66:38:
e8:ad:27:15:ef:b6:c9:76:a8:fc:43:4f:fc:fe:4c:e7:cf:36:
93:f8:ba:8f:d7:64:72:00:3f:a7:eb:d7:88:d0:d0:92:8e:2f:
18:9d:0b:bb:47:59:96:fd:85:f9:70:a8:fd:3a:a9:e9:23:2c:
fa:b5:4f:57:ea:5e:98:22:a6:89:4f:66:e7:fa:f9:37:1c:d2:
fd:3e:b0:a6:f2:82:61:88:10:66:d2:dc:76:56:cc:49:12:b2:
98:27:de:e7:89:f6:a1:fe:8e:a1:07:5c:ae:2c:1b:7c:d6:5f:
cd:7f:c4:db:19:19:57:b5:ba:0e:a4:22:3a:8f:bb:93:6e:db:
3d:f0:9e:2a:85:bd:3d:a5:9f:15:76:dd:89:90:f2:25:ad:54:
12:06:11:8e:5e:cc:a3:ed:99:e0:1e:d3:53:78:f1:93:9f:2b:
be:41:85:11:7c:98:99:e8:41:ad:dd:ae:cd:f8:79:ed:96:88:
53:47:f9:2a:ca:73:2a:d4:be:15:bc:97:3b:22:4c:19:f4:27:
19:ed:a7:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:15 2023 by rpki-client on console-fra.rpki-client.org