Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6deb39b2-ee49-4619-998f-736886169694/ba700cf383c1f3be3ef4db420a2b1e480839aa4f.roa
File: ba700cf383c1f3be3ef4db420a2b1e480839aa4f.roa (raw, json)
Hash identifier: HQtF85DMmwOodv6oLvkc9dENVATcZmOFtqVjgarWrZA=
Subject key identifier: 39:6D:4B:70:5F:F2:C9:C5:57:0F:FC:EB:CF:BA:CE:CE:B4:46:B0:1E
Certificate issuer: /CN=3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1
Certificate serial: 0D3255
Authority key identifier: AC:7D:7D:7E:A0:9E:88:51:25:89:0B:4F:D1:63:23:CE:9F:36:81:E7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6deb39b2-ee49-4619-998f-736886169694/ba700cf383c1f3be3ef4db420a2b1e480839aa4f.roa
Signing time: Wed 24 Mar 2021 14:43:09 +0000
ROA not before: Wed 24 Mar 2021 14:43:08 +0000
ROA not after: Tue 24 Mar 2026 14:43:08 +0000
asID: 32098
IP address blocks: 201.174.1.0/24 maxlen: 24
201.174.105.0/24 maxlen: 24
201.174.107.0/24 maxlen: 24
201.174.108.0/23 maxlen: 24
201.174.111.0/24 maxlen: 24
201.174.113.0/24 maxlen: 24
201.174.116.0/24 maxlen: 24
201.174.119.0/24 maxlen: 24
201.174.121.0/24 maxlen: 24
201.174.122.0/24 maxlen: 24
201.174.128.0/18 maxlen: 24
201.174.13.0/24 maxlen: 24
201.174.14.0/23 maxlen: 24
201.174.2.0/24 maxlen: 24
201.174.219.0/24 maxlen: 24
201.174.224.0/23 maxlen: 24
201.174.226.0/23 maxlen: 23
201.174.228.0/22 maxlen: 24
201.174.232.0/21 maxlen: 21
201.174.240.0/21 maxlen: 24
201.174.248.0/23 maxlen: 24
201.174.250.0/24 maxlen: 24
201.174.252.0/23 maxlen: 24
201.174.254.0/24 maxlen: 24
201.174.220.0/24 maxlen: 24
201.174.27.0/24 maxlen: 24
201.174.34.0/24 maxlen: 24
201.174.36.0/24 maxlen: 24
201.174.42.0/24 maxlen: 24
201.174.50.0/24 maxlen: 24
201.174.53.0/24 maxlen: 24
201.174.54.0/23 maxlen: 24
201.174.56.0/24 maxlen: 24
201.174.59.0/24 maxlen: 24
201.174.6.0/24 maxlen: 24
201.174.62.0/24 maxlen: 24
201.174.69.0/24 maxlen: 24
201.174.60.0/24 maxlen: 24
201.174.70.0/23 maxlen: 24
201.174.72.0/24 maxlen: 24
201.174.75.0/24 maxlen: 24
201.174.76.0/22 maxlen: 24
201.174.8.0/24 maxlen: 24
201.174.82.0/24 maxlen: 24
201.174.84.0/23 maxlen: 24
201.174.86.0/24 maxlen: 24
201.174.88.0/22 maxlen: 24
201.174.92.0/22 maxlen: 24
201.174.99.0/24 maxlen: 24
201.174.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 864853 (0xd3255)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1
Validity
Not Before: Mar 24 14:43:08 2021 GMT
Not After : Mar 24 14:43:08 2026 GMT
Subject: CN=ba700cf383c1f3be3ef4db420a2b1e480839aa4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0a:23:91:91:79:ab:29:9a:28:73:c8:d8:86:
9e:7c:3d:47:42:d9:bb:a9:d1:18:15:b5:04:34:2d:
de:29:69:18:5b:0c:d9:15:0c:18:a2:6b:fb:82:43:
9a:af:fa:14:8f:95:a9:77:e4:5a:47:22:45:e6:59:
62:e1:54:3e:1d:98:1b:d2:bf:17:ee:b2:dd:b5:33:
86:0d:ce:57:08:fb:c5:72:39:4f:bd:c5:d9:32:37:
66:bb:f0:bc:56:4e:71:d3:cc:52:7d:59:41:24:27:
cd:80:df:b4:08:38:05:36:54:8a:82:44:43:c7:44:
60:11:b6:9e:19:52:91:fe:36:f0:bf:de:32:8f:67:
49:a9:26:df:c2:9e:42:96:82:c2:7b:82:b3:a4:9d:
b1:77:40:1c:e7:48:83:55:c3:e9:1e:86:5a:01:41:
bc:dd:ee:97:12:a5:09:b8:51:e1:c0:6a:fc:99:65:
93:48:44:4b:0c:e2:55:11:c5:a9:8e:89:4a:17:7f:
2e:57:59:bf:a5:dd:f5:c3:d9:2e:0c:a7:60:53:b4:
54:c1:7f:fe:2d:da:c6:4d:72:5a:4c:7c:e1:68:ed:
3e:a8:a7:c1:98:41:e4:9d:e7:17:7e:ab:ea:50:b6:
a0:86:83:62:87:eb:e5:1b:4d:c6:1d:8b:9f:d8:90:
3c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6D:4B:70:5F:F2:C9:C5:57:0F:FC:EB:CF:BA:CE:CE:B4:46:B0:1E
X509v3 Authority Key Identifier:
keyid:AC:7D:7D:7E:A0:9E:88:51:25:89:0B:4F:D1:63:23:CE:9F:36:81:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6deb39b2-ee49-4619-998f-736886169694/ba700cf383c1f3be3ef4db420a2b1e480839aa4f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6deb39b2-ee49-4619-998f-736886169694/3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.174.0.0/16
Signature Algorithm: sha256WithRSAEncryption
63:37:e2:e4:56:94:41:80:a3:5c:71:15:6e:0a:fc:6c:2f:80:
39:3d:2a:01:c1:0d:c5:ef:85:a0:85:f2:4d:19:33:22:8d:d5:
52:67:11:1c:16:52:6c:e6:87:5b:f7:23:5b:f8:2b:0e:33:3c:
17:f3:03:14:cd:ea:5a:f9:ce:3a:89:a8:34:cb:ad:8e:a8:d0:
9a:1c:b4:c1:72:a4:fc:01:f2:19:c6:bf:2c:98:69:fe:68:a2:
d2:2c:4b:e9:af:81:b9:12:c3:fe:86:73:54:8b:c1:18:09:03:
46:68:59:c6:99:c6:07:25:77:ae:fd:e8:ae:75:6e:06:07:d7:
84:40:9a:27:36:be:a3:e6:e6:a0:cf:c9:93:b5:0f:61:5c:d3:
6d:54:cd:5e:db:9c:01:62:18:10:8a:bb:38:3c:f4:0e:09:21:
a9:7c:e9:4b:a8:48:ed:ae:a0:b6:77:bb:83:be:ad:ab:e9:68:
bf:bb:1e:c0:d7:3a:6f:2f:cc:4f:d3:26:54:fd:6c:72:2c:62:
35:04:33:32:6a:37:8a:d8:63:08:fe:f4:a6:da:82:4d:c9:d8:
a5:c5:fc:c4:27:81:12:76:06:74:a7:d4:4b:ab:88:c0:97:e2:
98:ed:76:28:ec:62:45:39:3a:91:88:94:e3:6d:8b:01:77:68:
86:f4:82:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:24 2023 by rpki-client on console-fra.rpki-client.org