Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/541ff6d19ae6a43ed1eacdb8d4fde5a0cc78deae.roa
File: 541ff6d19ae6a43ed1eacdb8d4fde5a0cc78deae.roa (raw, json)
Hash identifier: jjhtz+DLTpUtu9xYM5kE7hN/sKmmvCC2odKDhOO4yZM=
Subject key identifier: B4:32:6F:CB:8D:75:73:55:1F:C2:63:1D:47:F5:04:5C:3F:89:B4:4A
Certificate issuer: /CN=29bfc63c4d2e222df3a099e222567deb9e88bb27
Certificate serial: 1EAE5A
Authority key identifier: A6:C1:FF:61:8D:96:22:B7:89:0F:A0:98:36:A6:5C:D2:3C:EF:C4:62
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/29bfc63c4d2e222df3a099e222567deb9e88bb27.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/541ff6d19ae6a43ed1eacdb8d4fde5a0cc78deae.roa
Signing time: Thu 02 Feb 2023 16:10:43 +0000
ROA not before: Wed 22 Jun 2022 03:00:00 +0000
ROA not after: Sun 23 Jun 2024 03:00:00 +0000
asID: 16814
IP address blocks: 186.189.224.0/21 maxlen: 24
186.189.232.0/21 maxlen: 24
186.189.224.0/22 maxlen: 24
186.189.228.0/22 maxlen: 24
186.189.232.0/22 maxlen: 24
186.189.236.0/22 maxlen: 24
186.189.224.0/23 maxlen: 24
186.189.226.0/23 maxlen: 24
186.189.228.0/23 maxlen: 24
186.189.230.0/23 maxlen: 24
186.189.232.0/23 maxlen: 24
186.189.234.0/23 maxlen: 24
186.189.236.0/23 maxlen: 24
186.189.238.0/23 maxlen: 24
186.189.224.0/24 maxlen: 24
186.189.225.0/24 maxlen: 24
186.189.226.0/24 maxlen: 24
186.189.227.0/24 maxlen: 24
186.189.228.0/24 maxlen: 24
186.189.229.0/24 maxlen: 24
186.189.230.0/24 maxlen: 24
186.189.231.0/24 maxlen: 24
186.189.232.0/24 maxlen: 24
186.189.233.0/24 maxlen: 24
186.189.234.0/24 maxlen: 24
186.189.235.0/24 maxlen: 24
186.189.236.0/24 maxlen: 24
186.189.237.0/24 maxlen: 24
186.189.238.0/24 maxlen: 24
186.189.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2010714 (0x1eae5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29bfc63c4d2e222df3a099e222567deb9e88bb27
Validity
Not Before: Jun 22 03:00:00 2022 GMT
Not After : Jun 23 03:00:00 2024 GMT
Subject: CN=541ff6d19ae6a43ed1eacdb8d4fde5a0cc78deae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:71:4a:9c:78:6d:72:b0:ad:e3:4b:e1:38:ea:
84:44:a5:88:20:3c:ae:4d:e0:ce:ff:3a:54:f9:40:
32:b2:76:aa:cd:fe:c5:a0:f4:a7:8f:bb:52:e1:43:
55:12:b2:0f:b9:68:50:7b:30:7f:70:37:0f:79:03:
9d:b5:4b:0c:2f:a5:13:8a:e7:97:6a:e0:14:0c:c6:
b1:3a:12:a7:7f:b2:7b:c6:19:03:ee:28:12:1b:0f:
31:69:44:b2:cf:7e:d1:85:de:0c:75:3b:86:0b:e1:
31:99:b4:3a:bc:59:91:74:f4:75:9a:82:21:0a:83:
df:5f:b3:38:7f:1e:a3:2f:d0:06:c0:f0:f2:5f:25:
cd:d6:26:33:da:82:ce:24:e7:2d:ea:be:1b:a0:a1:
8c:c5:29:c2:56:e2:5a:a2:18:56:f5:72:78:88:ef:
e4:3e:72:d5:97:89:62:51:7e:ff:d2:85:96:f8:9c:
d5:c5:0c:3f:e4:91:83:1d:39:91:00:5b:23:00:b8:
88:72:4d:0f:1e:a5:63:8b:20:32:d2:62:20:bc:a4:
5f:22:00:fb:4a:5c:00:df:2a:f8:f0:e5:2e:13:e0:
27:f4:75:e5:cc:70:fc:c1:95:c2:7b:64:c6:03:17:
13:40:59:02:0d:46:ef:84:1a:9d:84:1f:3c:12:bb:
7b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:32:6F:CB:8D:75:73:55:1F:C2:63:1D:47:F5:04:5C:3F:89:B4:4A
X509v3 Authority Key Identifier:
keyid:A6:C1:FF:61:8D:96:22:B7:89:0F:A0:98:36:A6:5C:D2:3C:EF:C4:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/29bfc63c4d2e222df3a099e222567deb9e88bb27.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/541ff6d19ae6a43ed1eacdb8d4fde5a0cc78deae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/29bfc63c4d2e222df3a099e222567deb9e88bb27.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.189.224.0/20
Signature Algorithm: sha256WithRSAEncryption
70:18:90:23:57:e2:ce:a7:99:5a:aa:9f:ed:29:ce:ae:11:20:
75:d0:cc:74:aa:a9:44:e0:59:6e:53:17:d9:75:53:93:8e:22:
d8:60:8e:c7:c9:39:2a:1e:ad:01:2a:e2:af:58:5c:68:b6:87:
3f:d8:09:56:b2:dc:82:9f:54:20:d2:6a:93:17:4f:2c:b9:1a:
7b:49:f6:3d:42:01:d8:2f:69:95:b7:00:54:8f:d6:25:1a:96:
0f:f4:eb:3a:9b:b7:4e:0e:f0:e9:fb:52:ea:c2:28:1d:78:44:
69:c5:18:d2:c3:12:16:3f:c3:f6:8d:ed:08:ed:98:4d:3f:61:
08:2b:f7:2e:d9:a1:13:57:37:59:27:e9:a8:5b:ae:e9:e4:d3:
b8:9b:10:dd:06:d5:79:25:ac:6f:7a:2a:f3:1c:5b:1d:78:c1:
fe:28:d5:e8:c3:9d:82:8e:56:47:79:f2:95:d2:e6:66:56:ba:
76:bb:75:b2:d3:58:ca:bf:3c:5b:d2:62:bc:1c:8a:4e:c8:81:
35:e5:25:96:67:c1:01:e1:4f:97:95:d6:d8:c9:7e:ea:54:0e:
e5:62:a0:24:88:76:a1:4a:1d:d2:5b:b8:22:25:80:ab:42:05:
2d:f4:d8:c0:2c:7f:7c:de:d2:ed:ab:af:1c:a5:0c:95:cd:67:
2d:54:5d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:22 2023 by rpki-client on console-fra.rpki-client.org