Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/1534e229c2be106baecb7cc3ee4c15e595baa9bd.roa
File: 1534e229c2be106baecb7cc3ee4c15e595baa9bd.roa (raw, json)
Hash identifier: D7E1u3Jibrx0LwfbNi3cIkDN6PexzjDR4fLVFKTP4m8=
Subject key identifier: D4:B7:B8:EB:A6:A4:51:D2:36:1A:90:DF:BA:65:27:F0:1C:93:BC:F1
Certificate issuer: /CN=29bfc63c4d2e222df3a099e222567deb9e88bb27
Certificate serial: 1EB2AD
Authority key identifier: A6:C1:FF:61:8D:96:22:B7:89:0F:A0:98:36:A6:5C:D2:3C:EF:C4:62
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/29bfc63c4d2e222df3a099e222567deb9e88bb27.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/1534e229c2be106baecb7cc3ee4c15e595baa9bd.roa
Signing time: Thu 02 Feb 2023 16:16:19 +0000
ROA not before: Wed 01 Feb 2023 16:16:19 +0000
ROA not after: Wed 02 Feb 2028 16:16:19 +0000
asID: 16814
IP address blocks: 186.189.224.0/21 maxlen: 24
186.189.232.0/21 maxlen: 24
186.189.224.0/22 maxlen: 24
186.189.228.0/22 maxlen: 24
186.189.232.0/22 maxlen: 24
186.189.236.0/22 maxlen: 24
186.189.224.0/23 maxlen: 24
186.189.226.0/23 maxlen: 24
186.189.228.0/23 maxlen: 24
186.189.230.0/23 maxlen: 24
186.189.232.0/23 maxlen: 24
186.189.234.0/23 maxlen: 24
186.189.236.0/23 maxlen: 24
186.189.238.0/23 maxlen: 24
186.189.224.0/24 maxlen: 24
186.189.225.0/24 maxlen: 24
186.189.226.0/24 maxlen: 24
186.189.227.0/24 maxlen: 24
186.189.228.0/24 maxlen: 24
186.189.229.0/24 maxlen: 24
186.189.230.0/24 maxlen: 24
186.189.231.0/24 maxlen: 24
186.189.232.0/24 maxlen: 24
186.189.233.0/24 maxlen: 24
186.189.234.0/24 maxlen: 24
186.189.235.0/24 maxlen: 24
186.189.236.0/24 maxlen: 24
186.189.237.0/24 maxlen: 24
186.189.238.0/24 maxlen: 24
186.189.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2011821 (0x1eb2ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29bfc63c4d2e222df3a099e222567deb9e88bb27
Validity
Not Before: Feb 1 16:16:19 2023 GMT
Not After : Feb 2 16:16:19 2028 GMT
Subject: CN=1534e229c2be106baecb7cc3ee4c15e595baa9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:7c:8a:83:57:e3:95:27:d2:6c:5e:3f:f8:f9:
6f:99:08:68:51:74:08:6e:cd:42:19:b0:6a:02:29:
07:c8:d3:e2:16:c0:5d:dd:43:f7:56:b2:73:ad:8b:
b9:1d:82:54:6a:22:13:4f:7a:20:a1:7b:d5:61:77:
38:18:8a:47:60:65:b3:ad:f4:14:47:66:9a:63:7f:
c1:04:f7:10:a4:e4:2d:57:3c:5b:9f:cb:5b:cc:7d:
c8:48:05:83:6b:b7:59:be:cd:9d:73:6a:44:e1:02:
85:02:10:6e:e7:c4:e0:a8:62:1b:42:b2:67:d6:3b:
cc:7f:ce:d6:f6:df:41:d4:3c:79:36:f1:79:8e:cc:
5b:87:67:5c:27:29:5f:f3:c9:73:b4:49:91:8e:95:
36:c8:55:0f:d4:97:1d:81:c4:15:e5:03:70:4a:87:
0b:07:db:22:bb:3c:af:84:75:10:54:13:49:11:4a:
a1:43:ec:e5:58:dd:03:fa:55:a9:11:b6:09:71:76:
fd:48:45:0f:b4:c1:c1:7d:09:7a:43:74:a4:7f:85:
3f:07:56:98:57:84:5a:1b:a1:07:4b:0e:fc:8d:68:
b5:10:da:4d:96:84:65:ea:53:82:10:8e:1a:95:6a:
9e:23:4a:a0:65:2f:6d:41:de:1b:e6:98:d3:2e:42:
90:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B7:B8:EB:A6:A4:51:D2:36:1A:90:DF:BA:65:27:F0:1C:93:BC:F1
X509v3 Authority Key Identifier:
keyid:A6:C1:FF:61:8D:96:22:B7:89:0F:A0:98:36:A6:5C:D2:3C:EF:C4:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/29bfc63c4d2e222df3a099e222567deb9e88bb27.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/1534e229c2be106baecb7cc3ee4c15e595baa9bd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/29bfc63c4d2e222df3a099e222567deb9e88bb27.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.189.224.0/20
Signature Algorithm: sha256WithRSAEncryption
02:14:d4:91:a9:2a:72:0a:fa:c8:12:e4:ec:10:d0:db:2d:c8:
b8:10:42:19:1b:db:a5:7c:1a:52:68:60:25:19:1b:15:16:e1:
a4:21:b3:d1:14:24:35:5e:20:e1:f0:59:06:96:93:90:76:e0:
cb:9a:01:70:a1:96:80:35:27:f5:ee:a2:74:f0:50:27:f3:18:
9b:08:c9:4b:b7:0a:3c:6d:dd:25:a5:0a:c9:c8:c6:c9:f6:10:
8a:a4:66:35:9a:35:3a:9d:f3:ca:ef:82:04:b7:ac:d7:a2:69:
2c:56:fe:33:2d:e5:ec:54:00:c9:d4:b9:53:17:43:de:cb:08:
6c:db:55:07:6b:c4:90:8b:82:a5:22:cb:20:8d:0f:4f:fb:83:
b2:ef:dc:50:f4:36:2e:e5:9b:12:3b:2d:67:52:3b:f8:a2:df:
2e:ef:87:75:e9:06:c3:14:c3:a9:4e:e4:40:ec:cf:71:83:8d:
d7:2e:a8:1e:21:c0:b7:59:d8:b7:0a:1a:52:aa:1d:7b:cc:1c:
20:7c:44:96:00:5c:bf:ac:30:30:47:38:70:4f:76:e6:43:07:
fe:2c:21:ed:c5:17:26:3e:a0:64:07:f0:fd:87:52:d5:84:c1:
16:00:34:a5:5e:0f:2a:98:37:eb:c2:43:56:a3:cd:1f:f1:9f:
3e:89:cf:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:37 2023 by rpki-client on console-ams.rpki-client.org