Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/f241657a0559013c02e9cd7113eafb07481263a7.roa
File: f241657a0559013c02e9cd7113eafb07481263a7.roa (raw, json)
Hash identifier: nC47vQ2J/iXk3tKpkPDPmTXusOLnDMWGrqzpNU8Oaq0=
Subject key identifier: A0:D5:C3:E9:A0:E2:97:32:73:E0:E6:72:66:35:37:F3:4F:EC:1F:A4
Certificate issuer: /CN=29bfc63c4d2e222df3a099e222567deb9e88bb27
Certificate serial: 0DF9BD
Authority key identifier: A6:C1:FF:61:8D:96:22:B7:89:0F:A0:98:36:A6:5C:D2:3C:EF:C4:62
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/29bfc63c4d2e222df3a099e222567deb9e88bb27.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/f241657a0559013c02e9cd7113eafb07481263a7.roa
Signing time: Wed 24 Mar 2021 14:31:35 +0000
ROA not before: Wed 24 Mar 2021 14:31:34 +0000
ROA not after: Tue 24 Mar 2026 14:31:34 +0000
asID: 16814
IP address blocks: 186.189.224.0/20 maxlen: 24
186.189.248.0/22 maxlen: 24
190.2.0.0/19 maxlen: 24
190.2.32.0/19 maxlen: 24
190.210.0.0/18 maxlen: 24
190.210.64.0/18 maxlen: 24
190.210.128.0/18 maxlen: 24
190.210.192.0/18 maxlen: 24
200.61.160.0/19 maxlen: 24
200.68.64.0/20 maxlen: 24
200.68.80.0/20 maxlen: 24
200.68.96.0/20 maxlen: 24
200.68.112.0/20 maxlen: 24
200.69.192.0/18 maxlen: 24
200.123.128.0/20 maxlen: 24
200.123.144.0/20 maxlen: 24
200.123.160.0/20 maxlen: 24
200.123.176.0/20 maxlen: 24
201.216.192.0/19 maxlen: 24
201.216.224.0/19 maxlen: 24
2800:40::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915901 (0xdf9bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29bfc63c4d2e222df3a099e222567deb9e88bb27
Validity
Not Before: Mar 24 14:31:34 2021 GMT
Not After : Mar 24 14:31:34 2026 GMT
Subject: CN=f241657a0559013c02e9cd7113eafb07481263a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2a:1f:fc:28:05:c8:53:84:e2:d6:ec:5a:e8:
79:cb:9b:9f:9c:86:8d:f7:85:75:f0:fd:1f:d0:21:
a0:e9:22:88:1f:71:32:7c:5e:ea:4f:e9:19:20:c3:
13:dc:68:23:46:87:05:b2:40:f9:33:34:13:ab:e2:
16:0c:0c:05:d5:f7:fa:b8:67:86:1b:f6:4d:65:72:
95:9e:0a:b1:b6:e9:03:e5:91:c2:11:eb:ba:18:2e:
0c:96:1f:9d:c7:b9:01:2b:6c:39:59:79:c5:82:36:
b3:b6:a0:e8:fa:70:24:94:9d:e9:24:cb:aa:34:eb:
cd:f4:38:83:d1:cf:b3:cf:99:58:86:9c:c7:f1:f9:
8b:c1:be:d9:10:04:31:79:ed:59:8f:4d:10:55:d8:
e2:56:54:a8:4e:c6:5c:76:94:03:08:df:01:c8:67:
9f:5b:2b:da:7e:67:cc:15:d2:e5:70:9b:38:0c:01:
c2:c0:3a:33:81:3c:81:b5:b8:38:67:b4:1f:03:a9:
d9:24:90:0c:99:99:48:7c:be:60:24:9f:31:55:dc:
33:89:cd:e3:21:ca:3d:13:f6:b6:92:91:ea:49:db:
a4:6b:ac:83:1a:c1:30:0e:5c:b4:f7:3e:82:7e:45:
e9:65:40:a1:64:10:f0:5f:12:c0:87:34:ad:70:6c:
7a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D5:C3:E9:A0:E2:97:32:73:E0:E6:72:66:35:37:F3:4F:EC:1F:A4
X509v3 Authority Key Identifier:
keyid:A6:C1:FF:61:8D:96:22:B7:89:0F:A0:98:36:A6:5C:D2:3C:EF:C4:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/29bfc63c4d2e222df3a099e222567deb9e88bb27.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/f241657a0559013c02e9cd7113eafb07481263a7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/29bfc63c4d2e222df3a099e222567deb9e88bb27.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.189.224.0/20
186.189.248.0/22
190.2.0.0/18
190.210.0.0/16
200.61.160.0/19
200.68.64.0/18
200.69.192.0/18
200.123.128.0/18
201.216.192.0/18
IPv6:
2800:40::/32
Signature Algorithm: sha256WithRSAEncryption
85:1c:ef:40:f4:bd:b3:23:99:d3:dc:ff:6d:09:8a:a2:d3:38:
f7:cc:c8:99:bf:d4:db:cd:25:0f:cd:d6:8b:6f:8b:90:b3:43:
14:3b:20:ba:00:64:b3:62:31:25:03:65:2e:64:59:0c:11:50:
ca:0a:43:25:d7:6c:ce:83:20:9e:7b:ee:e7:8f:12:e4:99:84:
71:41:30:1f:6c:57:82:d5:03:0f:5b:7a:02:c1:fc:de:c3:f3:
94:e1:70:b4:ba:f3:95:cc:f2:f8:85:a3:3d:6a:d6:3d:d8:fc:
01:0e:36:14:af:9b:d9:d4:3b:cd:59:81:a2:b7:a1:b8:5c:1e:
e3:e4:b6:b3:d6:fd:67:85:0a:22:48:a4:b6:59:ff:6b:37:ff:
d0:88:67:c0:dc:a8:cb:b9:fe:6d:9c:f0:0f:7f:96:5b:07:e0:
43:00:f2:cc:fb:8b:a4:1b:49:41:16:11:09:20:3c:8e:0f:70:
67:f2:dc:18:9b:36:ba:bd:e7:1d:a9:e7:3f:1e:03:27:7d:f1:
b6:1d:b8:80:c3:d5:4d:c5:d7:c2:f3:95:b9:63:5b:0d:c9:b8:
ec:e5:13:a3:ed:cc:0a:32:21:44:b3:74:77:8f:82:7b:db:b4:
4e:a6:b2:3d:a8:d1:ed:f3:13:3b:18:bd:83:49:73:7a:43:e8:
b7:30:85:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:22 2023 by rpki-client on console-fra.rpki-client.org