Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/40aa3141870cb4d17290fe6324cf2090d35802a6.roa
File: 40aa3141870cb4d17290fe6324cf2090d35802a6.roa (raw, json)
Hash identifier: DbSSDTzOl3tsyb07UtKqON0floI1L4M5G0nnYNc3NHw=
Subject key identifier: 89:F6:70:1F:ED:59:EC:B6:DB:4A:11:D9:01:38:59:47:CA:A8:3C:6F
Certificate issuer: /CN=2114c12558d3e7c70c4a1a25a2c8de34959f5ec4
Certificate serial: 0D79FF
Authority key identifier: 3C:5A:35:90:43:FA:D7:3A:F7:D0:0A:73:22:2A:9D:CB:73:06:05:93
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2114c12558d3e7c70c4a1a25a2c8de34959f5ec4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/40aa3141870cb4d17290fe6324cf2090d35802a6.roa
Signing time: Wed 24 Mar 2021 14:40:20 +0000
ROA not before: Wed 24 Mar 2021 14:40:20 +0000
ROA not after: Tue 24 Mar 2026 14:40:20 +0000
asID: 262223
IP address blocks: 190.96.96.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 883199 (0xd79ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2114c12558d3e7c70c4a1a25a2c8de34959f5ec4
Validity
Not Before: Mar 24 14:40:20 2021 GMT
Not After : Mar 24 14:40:20 2026 GMT
Subject: CN=40aa3141870cb4d17290fe6324cf2090d35802a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5f:5e:d6:29:ea:14:c8:be:49:be:60:56:d9:
f5:62:6f:0f:4b:36:1c:a0:b4:4b:47:13:6c:31:68:
89:b8:7d:1d:fc:5d:4d:14:03:a9:b7:dd:4c:bf:02:
11:8e:01:52:08:7d:a7:f0:ad:26:00:f4:d9:36:2b:
99:7c:d4:b1:a7:b4:c6:6e:07:b6:44:57:fb:da:4d:
68:03:07:88:3c:00:79:1c:c0:4f:ee:f9:6b:b0:90:
7a:c5:7a:68:d5:2f:fd:16:45:b7:cd:9f:8b:cc:43:
03:7e:d1:d5:a5:d5:d2:e2:12:48:7c:08:50:b8:59:
68:1a:32:3d:cc:b3:69:7e:cf:ce:9e:74:f0:38:32:
69:e7:45:3f:03:68:9e:33:21:40:75:de:45:f1:d1:
d5:18:e3:61:ce:24:7d:95:50:f6:9e:91:e9:fa:4f:
f4:e9:94:c4:15:21:91:a8:68:f9:e0:0e:b2:11:8d:
6e:9c:1e:07:32:2a:78:8e:90:31:a5:01:47:9c:dd:
ea:80:1e:ff:29:27:f5:8e:09:8b:f9:17:ee:4d:af:
64:da:9f:01:4f:01:cd:83:c2:c3:6e:ac:2f:49:cf:
94:5d:14:02:80:b5:d2:a0:d1:a8:85:ea:cf:a6:eb:
fe:6c:27:c9:34:02:2a:1e:4a:12:1f:b3:aa:ab:cb:
bb:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F6:70:1F:ED:59:EC:B6:DB:4A:11:D9:01:38:59:47:CA:A8:3C:6F
X509v3 Authority Key Identifier:
keyid:3C:5A:35:90:43:FA:D7:3A:F7:D0:0A:73:22:2A:9D:CB:73:06:05:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2114c12558d3e7c70c4a1a25a2c8de34959f5ec4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/40aa3141870cb4d17290fe6324cf2090d35802a6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7473b339-5fea-4bc4-84c8-375fd39cc7a7/2114c12558d3e7c70c4a1a25a2c8de34959f5ec4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.96.96.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:43:ef:eb:d4:cd:f1:e0:c1:1c:0a:68:60:e0:1f:67:b3:20:
7c:4f:5d:ca:e8:10:bf:34:5a:c4:52:47:94:49:95:6b:27:38:
e9:a6:0e:b8:d3:e7:9d:68:0b:15:94:9b:7c:0b:ca:68:a2:b6:
0f:e0:a2:38:c6:27:3a:28:64:43:a6:6c:37:3d:6a:23:38:37:
d9:51:85:5a:f1:e8:c8:c3:ab:36:96:2e:6c:7b:cd:c7:1b:f6:
d6:ba:44:94:29:e5:9c:47:33:f0:55:71:34:53:1a:84:c1:af:
e8:e4:2b:c6:b9:2a:07:96:2b:b4:b8:48:fe:64:93:b8:83:23:
ba:fa:57:cc:a1:f8:2b:96:46:9b:83:2d:ca:b0:e5:f1:be:97:
e8:34:69:7d:23:1b:66:d2:53:19:c0:23:1f:59:4f:dd:db:72:
72:be:c7:f4:12:2a:22:86:cd:11:2f:02:45:60:11:95:fc:db:
15:c2:6e:a9:6c:a5:b0:5a:d1:7d:c0:2f:46:80:74:d1:8e:95:
7d:c7:e0:63:64:6e:3b:35:e9:c4:6b:b2:bf:fa:4c:73:59:8a:
93:e8:85:37:de:a5:93:b4:5e:18:a6:38:37:51:36:97:b4:0a:
a3:40:64:fd:d9:2f:54:d0:7c:a1:88:2a:3f:b1:06:59:68:e9:
fc:ea:ff:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:24 2023 by rpki-client on console-fra.rpki-client.org