Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4dc2c07a-8c7e-47c7-ae90-ccd71487ce10/9c14fe76915bd4734746a1ffa451ffef39571176.roa
File: 9c14fe76915bd4734746a1ffa451ffef39571176.roa (raw, json)
Hash identifier: 7YJIbmmuV6vkU1ArSXPQsjI9hrRpO1DB1kbkbY0mGHY=
Subject key identifier: A4:6D:51:13:DB:37:CA:3E:5B:AE:7A:84:E2:B5:26:26:44:FD:4B:D1
Certificate issuer: /CN=aae8cbe9904f103232c002483204f9f2ae04d026
Certificate serial: 1151AD
Authority key identifier: 9E:21:FA:B8:72:9D:E9:86:5D:D4:D6:5F:DF:3F:B0:D3:CD:37:19:34
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aae8cbe9904f103232c002483204f9f2ae04d026.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4dc2c07a-8c7e-47c7-ae90-ccd71487ce10/9c14fe76915bd4734746a1ffa451ffef39571176.roa
Signing time: Fri 13 Aug 2021 15:00:38 +0000
ROA not before: Fri 13 Aug 2021 15:00:21 +0000
ROA not after: Thu 13 Aug 2026 15:00:21 +0000
asID: 28006
IP address blocks: 200.125.133.0/24 maxlen: 24
200.125.134.0/24 maxlen: 24
200.125.136.0/23 maxlen: 24
200.125.138.0/23 maxlen: 23
200.125.140.0/24 maxlen: 24
200.125.142.0/24 maxlen: 24
200.125.144.0/24 maxlen: 24
200.125.145.0/24 maxlen: 24
200.125.147.0/24 maxlen: 24
200.125.149.0/24 maxlen: 24
200.125.150.0/24 maxlen: 24
200.125.151.0/24 maxlen: 24
200.125.152.0/24 maxlen: 24
200.125.153.0/24 maxlen: 24
200.125.154.0/24 maxlen: 24
200.125.155.0/24 maxlen: 24
200.125.157.0/24 maxlen: 24
200.125.158.0/24 maxlen: 24
200.125.159.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1135021 (0x1151ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aae8cbe9904f103232c002483204f9f2ae04d026
Validity
Not Before: Aug 13 15:00:21 2021 GMT
Not After : Aug 13 15:00:21 2026 GMT
Subject: CN=9c14fe76915bd4734746a1ffa451ffef39571176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0f:2a:63:ce:73:b2:25:48:aa:9f:40:68:54:
c4:9a:6b:8b:a4:75:2e:07:da:33:c0:8b:9a:5f:c2:
77:8c:7e:5b:37:f0:5e:89:6c:78:e5:ba:b9:57:a7:
e4:63:56:4e:63:30:82:46:c1:0f:80:7f:74:e2:dc:
06:01:f9:0e:c1:b6:12:63:29:04:a1:d1:60:b1:30:
29:58:b9:ba:65:62:dd:63:76:6e:c0:39:f6:6b:10:
66:5f:ce:18:c0:59:a2:ff:6d:ec:71:87:cd:a6:80:
a6:5e:ea:ee:6b:f9:0b:90:a7:8f:f1:0e:28:cb:f2:
13:63:e8:03:d1:d2:0e:98:3e:98:82:43:84:dd:1e:
4b:81:49:bf:0f:ed:4e:48:0a:a0:2b:c0:e1:c4:da:
04:43:a7:5e:7d:8a:73:17:b3:3f:cd:f2:72:a7:54:
6f:d6:a4:15:a0:59:8c:01:ea:f9:6c:0d:43:ec:16:
a2:72:55:bc:df:34:9c:7a:cb:1c:31:22:30:6f:99:
1b:aa:11:19:3a:5f:d9:c7:31:7a:e0:fb:c1:46:d0:
fe:29:c5:14:af:c6:da:bc:ff:56:e8:fa:00:a9:71:
59:ad:81:96:e0:cb:ba:d6:e0:ad:4c:f9:22:ce:ab:
f7:6c:2c:25:1d:1e:0b:96:fd:04:bb:ea:1c:33:11:
7a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:6D:51:13:DB:37:CA:3E:5B:AE:7A:84:E2:B5:26:26:44:FD:4B:D1
X509v3 Authority Key Identifier:
keyid:9E:21:FA:B8:72:9D:E9:86:5D:D4:D6:5F:DF:3F:B0:D3:CD:37:19:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aae8cbe9904f103232c002483204f9f2ae04d026.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4dc2c07a-8c7e-47c7-ae90-ccd71487ce10/9c14fe76915bd4734746a1ffa451ffef39571176.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4dc2c07a-8c7e-47c7-ae90-ccd71487ce10/aae8cbe9904f103232c002483204f9f2ae04d026.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.125.133.0-200.125.134.255
200.125.136.0-200.125.140.255
200.125.142.0/24
200.125.144.0/23
200.125.147.0/24
200.125.149.0-200.125.155.255
200.125.157.0-200.125.159.255
Signature Algorithm: sha256WithRSAEncryption
2a:d7:f2:b5:26:c6:67:7a:89:d9:bb:ea:e9:9a:c4:ed:a7:cb:
0e:c1:66:60:9c:4e:21:cf:d6:f3:ee:3a:f2:7c:de:65:04:14:
dc:3d:8c:44:33:3b:fe:66:6b:94:c6:63:65:77:96:ea:d3:dd:
a3:55:d9:67:5b:2d:36:53:ac:5b:59:06:e0:ca:2f:67:9b:ce:
8a:e7:d1:6b:2b:68:a7:fe:d3:db:fe:d5:32:6e:96:1f:8e:8b:
a2:f6:c7:bd:be:f2:49:b5:bd:65:3b:e7:1e:61:c4:cc:b5:c1:
3f:b2:ac:ad:46:15:da:dc:a4:a8:5a:9a:e3:41:fc:37:d5:a8:
f3:09:f9:a3:d7:3c:f9:0c:c9:d7:d6:ef:2a:bf:1b:b4:e4:e4:
61:95:7f:8d:8f:7d:41:a1:a8:88:72:72:85:a4:dd:63:05:09:
ee:34:a4:26:a3:78:cd:79:a7:ff:be:2c:8c:85:d6:56:8f:cb:
5d:4b:27:b5:46:60:a1:c3:1a:46:b9:05:13:ed:a4:c1:d7:05:
b1:d1:37:ee:e3:f4:3c:e8:ae:a4:84:dd:f6:17:8e:dc:23:49:
2b:cb:8c:b1:d4:be:85:26:dd:fd:07:b5:b3:cb:38:7e:56:5f:
ce:5a:d2:f3:16:80:da:75:a6:42:e1:b0:5c:47:e4:71:2f:11:
25:db:8b:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:33 2023 by rpki-client on console-ams.rpki-client.org