Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/822de167-46f2-49af-b15c-d5b386e60cc2/fc73ccecd378d78cf5fe0eb08a1d2e615d6d1c5f.roa
File: fc73ccecd378d78cf5fe0eb08a1d2e615d6d1c5f.roa (raw, json)
Hash identifier: yRnzHnp6QuedjVpvpWhssXI2/Kw7wiPZlkezv0u5Swc=
Subject key identifier: 88:A0:AC:AA:93:E1:9C:78:C2:41:C9:6C:00:5D:30:7A:B6:2D:46:AF
Certificate issuer: /CN=f704dcc2bd05f2f811f329995911565e1ff53e09
Certificate serial: 0CD996
Authority key identifier: 29:50:CD:67:0B:F0:D9:8B:2F:8D:D9:F4:08:53:EE:DB:28:C8:EA:B7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f704dcc2bd05f2f811f329995911565e1ff53e09.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/822de167-46f2-49af-b15c-d5b386e60cc2/fc73ccecd378d78cf5fe0eb08a1d2e615d6d1c5f.roa
Signing time: Wed 24 Mar 2021 14:34:02 +0000
ROA not before: Wed 24 Mar 2021 14:34:02 +0000
ROA not after: Tue 24 Mar 2026 14:34:02 +0000
asID: 20015
IP address blocks: 201.219.128.0/24 maxlen: 24
201.219.129.0/24 maxlen: 24
201.219.130.0/24 maxlen: 24
201.219.131.0/24 maxlen: 24
201.219.132.0/24 maxlen: 24
201.219.133.0/24 maxlen: 24
201.219.134.0/24 maxlen: 24
201.219.135.0/24 maxlen: 24
201.219.136.0/24 maxlen: 24
201.219.137.0/24 maxlen: 24
201.219.138.0/24 maxlen: 24
201.219.139.0/24 maxlen: 24
201.219.140.0/24 maxlen: 24
201.219.141.0/24 maxlen: 24
201.219.142.0/24 maxlen: 24
201.219.143.0/24 maxlen: 24
201.219.144.0/24 maxlen: 24
201.219.145.0/24 maxlen: 24
201.219.146.0/24 maxlen: 24
201.219.147.0/24 maxlen: 24
201.219.148.0/24 maxlen: 24
201.219.149.0/24 maxlen: 24
201.219.150.0/24 maxlen: 24
201.219.151.0/24 maxlen: 24
201.219.152.0/24 maxlen: 24
201.219.153.0/24 maxlen: 24
201.219.154.0/24 maxlen: 24
201.219.155.0/24 maxlen: 24
201.219.156.0/24 maxlen: 24
201.219.157.0/24 maxlen: 24
201.219.158.0/24 maxlen: 24
201.219.159.0/24 maxlen: 24
2800:290::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 10 Jan 2024 11:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 842134 (0xcd996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f704dcc2bd05f2f811f329995911565e1ff53e09
Validity
Not Before: Mar 24 14:34:02 2021 GMT
Not After : Mar 24 14:34:02 2026 GMT
Subject: CN=fc73ccecd378d78cf5fe0eb08a1d2e615d6d1c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:98:21:0d:0d:e9:03:26:16:0a:b5:41:b6:e9:
0b:62:60:20:97:dd:c2:22:b4:b9:fc:8c:fa:f0:90:
b7:96:66:2b:30:5d:1b:7c:52:5d:58:0e:39:ca:3d:
8b:44:f8:52:9a:0b:90:04:61:6a:fa:2a:a5:e3:48:
53:3b:b3:c7:a9:e2:c2:e2:55:15:03:f1:96:6a:1c:
19:5c:92:83:fe:f1:39:96:12:92:6e:c1:2e:04:0c:
cc:0e:89:3e:1a:20:1e:03:d9:bc:b3:8a:5a:c6:4e:
ef:3e:e1:30:23:f6:b3:94:40:bb:3d:28:7c:ce:9f:
cf:1d:86:a6:3d:63:5b:a6:bb:50:1b:05:cd:db:c0:
27:04:86:be:2b:05:a2:f1:bb:c0:4e:d0:7a:5d:74:
97:00:b1:4e:66:b0:f3:66:a0:52:35:36:d0:d7:1d:
35:3a:e9:7e:0c:d9:ec:35:f5:22:68:6a:90:2a:f1:
13:7b:55:99:48:94:b1:ab:09:94:0b:d7:10:9f:6d:
57:c6:dd:a2:ca:52:d1:02:0a:93:bd:e3:6d:2d:f0:
57:5b:21:ca:4b:9c:e2:fa:85:fe:8e:42:41:48:6c:
5d:09:44:68:26:a0:3a:f7:80:97:1e:71:e1:75:ad:
d5:21:a5:96:9a:bf:7e:19:17:c8:37:be:fc:ce:9b:
20:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A0:AC:AA:93:E1:9C:78:C2:41:C9:6C:00:5D:30:7A:B6:2D:46:AF
X509v3 Authority Key Identifier:
keyid:29:50:CD:67:0B:F0:D9:8B:2F:8D:D9:F4:08:53:EE:DB:28:C8:EA:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f704dcc2bd05f2f811f329995911565e1ff53e09.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/822de167-46f2-49af-b15c-d5b386e60cc2/fc73ccecd378d78cf5fe0eb08a1d2e615d6d1c5f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/822de167-46f2-49af-b15c-d5b386e60cc2/f704dcc2bd05f2f811f329995911565e1ff53e09.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.219.128.0/19
IPv6:
2800:290::/32
Signature Algorithm: sha256WithRSAEncryption
0e:f4:19:83:0c:af:b0:1b:7c:b5:08:8b:bd:89:4d:00:9e:29:
ef:9f:89:95:00:fe:96:e6:b2:53:11:30:ae:07:df:4a:3f:e2:
9f:87:49:f1:c4:75:37:8e:3b:c6:8b:57:67:8f:b0:2a:94:4a:
0e:24:20:c4:d8:9e:23:0d:99:29:4e:9e:ec:c2:21:32:d3:fb:
80:a6:34:f7:bb:14:e7:2c:5f:92:8e:f8:a6:c9:bb:fb:02:9e:
bd:55:2d:ac:80:b5:4d:5b:43:28:1a:00:a7:5e:b3:7c:c3:18:
25:ef:58:89:47:f9:f3:da:5c:4d:98:59:c1:92:46:1a:2a:42:
b1:ff:55:f9:6d:c0:f7:7a:07:a6:f4:8e:5e:23:9f:b6:ec:9e:
97:ab:ac:3e:3e:bc:87:52:72:ab:35:f7:f2:7d:f9:e9:3f:34:
16:36:a6:de:17:8a:3a:0a:40:a5:b0:a1:a1:d7:ca:91:d9:08:
41:e7:3f:b7:82:74:6d:be:5b:28:59:1a:ec:88:a1:a3:01:f5:
00:a3:94:00:ce:49:12:e7:97:5b:c8:20:ef:b2:21:33:f3:cc:
bb:b2:d9:16:d0:5e:ec:a5:88:50:d4:6f:58:47:c8:93:27:9c:
35:4c:bb:16:8c:bf:36:d6:81:6a:b5:60:6e:9c:e9:19:48:5d:
a8:7d:2a:ad
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgIDDNmWMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGY3
MDRkY2MyYmQwNWYyZjgxMWYzMjk5OTU5MTE1NjVlMWZmNTNlMDkwHhcNMjEwMzI0
MTQzNDAyWhcNMjYwMzI0MTQzNDAyWjAzMTEwLwYDVQQDEyhmYzczY2NlY2QzNzhk
NzhjZjVmZTBlYjA4YTFkMmU2MTVkNmQxYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAu5ghDQ3pAyYWCrVBtukLYmAgl93CIrS5/Iz68JC3lmYrMF0b
fFJdWA45yj2LRPhSmguQBGFq+iql40hTO7PHqeLC4lUVA/GWahwZXJKD/vE5lhKS
bsEuBAzMDok+GiAeA9m8s4paxk7vPuEwI/azlEC7PSh8zp/PHYamPWNbprtQGwXN
28AnBIa+KwWi8bvATtB6XXSXALFOZrDzZqBSNTbQ1x01Oul+DNnsNfUiaGqQKvET
e1WZSJSxqwmUC9cQn21Xxt2iylLRAgqTveNtLfBXWyHKS5zi+oX+jkJBSGxdCURo
JqA694CXHnHhda3VIaWWmr9+GRfIN778zpsg0QIDAQABo4ICajCCAmYwHQYDVR0O
BBYEFIigrKqT4Zx4wkHJbABdMHq2LUavMB8GA1UdIwQYMBaAFClQzWcL8NmLL43Z
9AhT7tsoyOq3MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZjcwNGRj
YzJiZDA1ZjJmODExZjMyOTk5NTkxMTU2NWUxZmY1M2UwOS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvODIyZGUxNjctNDZmMi00OWFmLWIxNWMtZDViMzg2
ZTYwY2MyL2ZjNzNjY2VjZDM3OGQ3OGNmNWZlMGViMDhhMWQyZTYxNWQ2ZDFjNWYu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy84MjJkZTE2Ny00NmYyLTQ5YWYtYjE1Yy1kNWIz
ODZlNjBjYzIvZjcwNGRjYzJiZDA1ZjJmODExZjMyOTk5NTkxMTU2NWUxZmY1M2Uw
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQf
MB0wDAQCAAEwBgMEBcnbgDANBAIAAjAHAwUAKAACkDANBgkqhkiG9w0BAQsFAAOC
AQEADvQZgwyvsBt8tQiLvYlNAJ4p75+JlQD+luayUxEwrgffSj/in4dJ8cR1N447
xotXZ4+wKpRKDiQgxNieIw2ZKU6e7MIhMtP7gKY097sU5yxfko74psm7+wKevVUt
rIC1TVtDKBoAp16zfMMYJe9YiUf589pcTZhZwZJGGipCsf9V+W3A93oHpvSOXiOf
tuyel6usPj68h1JyqzX38n356T80Fjam3heKOgpApbChodfKkdkIQec/t4J0bb5b
KFka7IihowH1AKOUAM5JEueXW8gg77IhM/PMu7LZFtBe7KWIUNRvWEfIkyecNUy7
Foy/NtaBarVgbpzpGUhdqH0qrQ==
-----END CERTIFICATE-----
Generated at Wed Jan 10 16:13:21 2024 by rpki-client on console-fra.rpki-client.org