Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/9ee596668bbbec7c008035da32c5e26e5ca044b0.roa
File: 9ee596668bbbec7c008035da32c5e26e5ca044b0.roa (raw, json)
Hash identifier: ocM8DNR1NkvXMfYpotQRK/bdQxvM1kwE9vTcZ/TdsXg=
Subject key identifier: 7A:12:00:AB:EA:BB:7E:79:32:75:3D:B8:F7:40:57:2B:90:D6:11:E1
Certificate issuer: /CN=9bd3b63252fafbcd6bae6e1f4cebb02fcc2af8d2
Certificate serial: 21839C
Authority key identifier: 7F:89:7F:CC:EC:11:0B:53:79:5D:8C:9B:91:55:6A:66:7A:E9:5C:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9bd3b63252fafbcd6bae6e1f4cebb02fcc2af8d2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/9ee596668bbbec7c008035da32c5e26e5ca044b0.roa
Signing time: Mon 03 Apr 2023 15:59:17 +0000
ROA not before: Sun 02 Apr 2023 15:59:17 +0000
ROA not after: Thu 03 Apr 2025 15:59:17 +0000
asID: 28000
IP address blocks: 190.112.52.0/22 maxlen: 22
168.121.184.0/22 maxlen: 24
170.247.168.0/22 maxlen: 24
200.10.61.0/24 maxlen: 24
200.10.62.0/23 maxlen: 24
200.7.84.0/23 maxlen: 24
179.0.156.0/22 maxlen: 24
200.7.87.0/24 maxlen: 24
2001:13c7:7010::/46 maxlen: 48
2801:1b8::/44 maxlen: 48
2001:13c7:7001::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2196380 (0x21839c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd3b63252fafbcd6bae6e1f4cebb02fcc2af8d2
Validity
Not Before: Apr 2 15:59:17 2023 GMT
Not After : Apr 3 15:59:17 2025 GMT
Subject: CN=9ee596668bbbec7c008035da32c5e26e5ca044b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8e:b2:8a:21:71:69:24:ba:32:8d:d8:9b:87:
7b:8d:5b:c5:aa:79:38:c1:9d:5b:f5:93:66:2d:2e:
d3:ae:a9:05:8f:ef:85:d9:2f:34:20:c9:a0:b4:ad:
65:ff:56:8b:e2:d3:a6:1b:c9:49:58:a0:07:9a:c0:
f9:27:ca:6c:be:27:00:ff:61:78:e5:fd:c3:d2:71:
02:43:78:51:92:06:8c:a8:a2:f7:f8:da:64:83:7b:
1f:ce:4e:dd:77:af:14:29:5d:b8:f8:6d:8f:6e:27:
2f:c3:37:0c:d4:04:6c:bc:dd:0e:f2:20:7c:97:c2:
97:67:93:2a:0f:40:68:a9:d0:5c:53:42:da:36:fc:
d4:45:d4:a2:b5:e8:4e:7d:0b:ec:fe:8e:85:00:3b:
bd:ac:93:35:2d:fc:3c:23:59:bd:48:cb:6c:d6:31:
ff:61:c9:75:fb:c5:c7:69:e6:f3:e4:5e:ed:f8:e8:
41:37:5c:25:43:cd:86:aa:fb:9b:a2:36:6f:7b:97:
98:1f:4e:21:0c:b8:d8:b6:b6:33:f6:b5:bf:2e:49:
20:41:0c:73:70:5c:c9:a4:04:ab:3c:39:1e:c1:56:
5c:c3:ad:71:59:31:02:c9:21:b4:71:b5:9b:d1:3a:
d2:28:ad:84:c9:43:f2:86:2a:e1:e5:b8:5d:4b:ce:
32:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:12:00:AB:EA:BB:7E:79:32:75:3D:B8:F7:40:57:2B:90:D6:11:E1
X509v3 Authority Key Identifier:
keyid:7F:89:7F:CC:EC:11:0B:53:79:5D:8C:9B:91:55:6A:66:7A:E9:5C:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9bd3b63252fafbcd6bae6e1f4cebb02fcc2af8d2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/9ee596668bbbec7c008035da32c5e26e5ca044b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/9bd3b63252fafbcd6bae6e1f4cebb02fcc2af8d2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.121.184.0/22
170.247.168.0/22
179.0.156.0/22
190.112.52.0/22
200.7.84.0/23
200.7.87.0/24
200.10.61.0-200.10.63.255
IPv6:
2001:13c7:7001::/48
2001:13c7:7010::/46
2801:1b8::/44
Signature Algorithm: sha256WithRSAEncryption
20:0e:09:71:e7:30:80:c0:2d:78:a6:a4:6a:34:9b:90:1a:ca:
47:41:17:40:f6:12:2f:85:d9:2b:f8:d6:1a:0a:3c:ae:79:d6:
ad:c0:19:9d:36:a9:4e:9c:ce:3f:a7:29:7c:1b:63:5b:f3:4d:
83:e3:32:c2:cf:64:13:cf:cc:16:70:4e:4a:df:c0:7a:90:81:
00:87:4c:82:99:24:8c:e0:0f:09:d3:b5:c4:c4:37:3e:bd:60:
a7:52:df:e0:eb:d3:41:25:9e:27:3e:d5:09:71:05:94:7f:57:
6a:00:fb:20:2a:b1:98:7f:6e:7c:ed:65:9a:84:58:84:fd:79:
ba:7c:fd:3e:2a:4a:50:88:b6:69:2d:58:cc:98:ef:39:d7:b5:
e6:87:3e:98:e4:fb:6a:b8:f8:9b:ab:cf:35:35:40:ba:ff:86:
f8:b5:a1:35:d6:3c:b8:ba:98:52:5b:d4:29:d6:15:15:de:02:
fd:b3:85:62:58:12:50:6d:15:51:2b:f2:8b:e3:6f:9d:00:f3:
2c:8c:de:e5:3b:98:9e:dd:0a:da:f8:9b:9a:ed:2d:d5:32:d2:
a7:37:c3:76:15:27:62:ad:57:f4:30:81:f4:01:2c:75:d6:b6:
b9:d7:fd:f2:5a:ae:76:b0:cf:c5:46:25:10:cf:36:f0:03:14:
8d:39:c6:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:37 2023 by rpki-client on console-ams.rpki-client.org