Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4dc2c07a-8c7e-47c7-ae90-ccd71487ce10/16221ed4b97a38dbb2175e81c1b7967c48afa3c1.roa
File: 16221ed4b97a38dbb2175e81c1b7967c48afa3c1.roa (raw, json)
Hash identifier: 54whMljEDn8LMgMEdgrSz6AMxN3olmYTiNmFpg6o2sM=
Subject key identifier: 0C:FE:3D:27:89:40:B9:C2:AE:89:FB:4A:E3:92:9C:03:93:89:D4:5A
Certificate issuer: /CN=aae8cbe9904f103232c002483204f9f2ae04d026
Certificate serial: 114E32
Authority key identifier: 9E:21:FA:B8:72:9D:E9:86:5D:D4:D6:5F:DF:3F:B0:D3:CD:37:19:34
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aae8cbe9904f103232c002483204f9f2ae04d026.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4dc2c07a-8c7e-47c7-ae90-ccd71487ce10/16221ed4b97a38dbb2175e81c1b7967c48afa3c1.roa
Signing time: Fri 13 Aug 2021 15:00:37 +0000
ROA not before: Fri 13 Aug 2021 15:00:21 +0000
ROA not after: Thu 13 Aug 2026 15:00:21 +0000
asID: 28006
IP address blocks: 200.125.136.0/23 maxlen: 24
200.125.138.0/23 maxlen: 23
200.125.140.0/24 maxlen: 24
200.125.142.0/24 maxlen: 24
200.125.144.0/24 maxlen: 24
200.125.145.0/24 maxlen: 24
200.125.147.0/24 maxlen: 24
200.125.149.0/24 maxlen: 24
200.125.150.0/24 maxlen: 24
200.125.151.0/24 maxlen: 24
200.125.152.0/24 maxlen: 24
200.125.153.0/24 maxlen: 24
200.125.154.0/24 maxlen: 24
200.125.155.0/24 maxlen: 24
200.125.157.0/24 maxlen: 24
200.125.158.0/24 maxlen: 24
200.125.159.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1134130 (0x114e32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aae8cbe9904f103232c002483204f9f2ae04d026
Validity
Not Before: Aug 13 15:00:21 2021 GMT
Not After : Aug 13 15:00:21 2026 GMT
Subject: CN=16221ed4b97a38dbb2175e81c1b7967c48afa3c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9f:52:93:74:53:62:85:b8:8a:c4:f4:cb:9e:
c1:8e:ac:d7:dc:05:21:77:0b:38:94:2c:f0:a6:22:
4c:38:15:ac:44:af:2e:66:d6:35:2d:00:2c:3a:0e:
f7:a6:3f:2d:b9:0f:da:7a:ec:db:59:07:0c:e7:fe:
a5:29:cb:45:56:6e:20:fa:f9:2c:bb:9b:2a:3e:9b:
15:0b:ab:4b:17:06:86:f5:38:89:db:09:c5:8c:00:
b2:d9:14:f9:47:94:26:2a:ad:f9:97:f2:8c:ac:4c:
57:b3:d6:cf:df:d4:c8:36:ae:e8:f7:32:4c:41:51:
85:3d:be:6a:dd:f3:50:2f:d4:64:45:85:f2:c1:4d:
56:ca:1c:43:e6:22:2c:75:a7:cf:04:77:30:63:b4:
c0:6c:e8:a8:c3:56:05:10:03:fa:57:7e:32:ae:e8:
23:19:d7:23:00:81:ea:d3:44:a5:13:a9:8c:a8:4a:
32:ab:4f:73:cb:0d:94:7e:9d:4d:bf:ec:50:76:87:
3b:8b:aa:2b:14:75:b7:4c:32:68:e8:1e:36:be:6a:
5a:bd:2c:57:4d:8c:ba:45:20:e1:2a:74:df:f5:6c:
2e:d1:1b:90:74:05:bd:23:33:5a:e4:8a:41:79:af:
27:4f:5c:65:49:ba:eb:6a:fa:60:f1:2f:5f:f5:cf:
9d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:FE:3D:27:89:40:B9:C2:AE:89:FB:4A:E3:92:9C:03:93:89:D4:5A
X509v3 Authority Key Identifier:
keyid:9E:21:FA:B8:72:9D:E9:86:5D:D4:D6:5F:DF:3F:B0:D3:CD:37:19:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aae8cbe9904f103232c002483204f9f2ae04d026.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4dc2c07a-8c7e-47c7-ae90-ccd71487ce10/16221ed4b97a38dbb2175e81c1b7967c48afa3c1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4dc2c07a-8c7e-47c7-ae90-ccd71487ce10/aae8cbe9904f103232c002483204f9f2ae04d026.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.125.136.0-200.125.140.255
200.125.142.0/24
200.125.144.0/23
200.125.147.0/24
200.125.149.0-200.125.155.255
200.125.157.0-200.125.159.255
Signature Algorithm: sha256WithRSAEncryption
23:21:8d:6c:8c:76:c1:9c:da:2c:d7:d1:67:96:a2:d2:fd:81:
6f:2d:ee:04:2d:42:4f:92:cf:39:bc:74:70:ea:c5:83:46:25:
39:2a:87:bf:11:4d:fb:91:53:fb:20:2a:e0:bd:ef:ac:cd:54:
4b:a1:23:bc:2c:cd:78:92:f7:4b:8a:bb:c0:b7:07:e0:10:c6:
f8:03:82:56:1f:f5:c7:64:c7:2a:7c:5c:0a:59:f9:c4:b2:ee:
b9:45:bb:51:12:80:3c:a7:42:a6:c2:a9:ef:f1:25:39:67:cd:
2f:ab:82:34:ca:7c:62:c1:a1:dd:4d:fc:fa:20:da:2a:4d:2b:
d7:4d:2b:b4:d8:2f:6a:f6:af:f1:07:f4:21:66:b4:ba:5c:12:
d4:e4:63:5f:a3:82:3c:5c:31:7e:b7:90:d4:25:fd:37:56:eb:
03:45:cb:72:4d:af:26:a1:79:58:c5:74:8c:52:bd:5a:41:91:
92:0d:ae:b0:5f:b7:0e:db:e3:ae:20:b2:58:f5:38:6c:d6:da:
d3:17:62:80:77:f2:56:fd:31:62:37:08:91:82:91:75:22:c1:
3c:06:ac:fb:04:fe:0b:ae:10:57:aa:f2:e2:4b:ae:1d:61:08:
91:ae:d3:91:0b:aa:40:a9:4d:ed:9f:b0:f8:7d:cc:b1:71:f2:
e6:28:7b:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:18 2023 by rpki-client on console-fra.rpki-client.org