Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8870148c-d4cf-4de1-88d3-27a60e0936e1/0f7fdd129112257afb2731d2fef41690a7b78bbd.roa
File: 0f7fdd129112257afb2731d2fef41690a7b78bbd.roa (raw, json)
Hash identifier: UlXPBN2Qv4EdYSHNQLzNL2HzjTnn7Bo29BS93xh/X/Y=
Subject key identifier: DA:32:BE:7E:DE:7B:92:47:B0:A9:0F:2C:88:FE:91:C5:01:D6:95:69
Certificate issuer: /CN=d9df42accb42ae0dc974df4ee3b46e48d9105526
Certificate serial: 05B264
Authority key identifier: B7:F5:EE:95:AE:93:AA:01:4C:E3:44:72:B9:C3:58:49:4E:71:CD:A7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d9df42accb42ae0dc974df4ee3b46e48d9105526.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8870148c-d4cf-4de1-88d3-27a60e0936e1/0f7fdd129112257afb2731d2fef41690a7b78bbd.roa
Signing time: Wed 24 Mar 2021 14:32:09 +0000
ROA not before: Wed 24 Mar 2021 14:32:09 +0000
ROA not after: Tue 24 Mar 2026 14:32:09 +0000
asID: 262259
IP address blocks: 190.99.112.0/22 maxlen: 22
191.102.16.0/22 maxlen: 22
191.102.20.0/22 maxlen: 22
191.102.24.0/22 maxlen: 22
191.102.28.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373348 (0x5b264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9df42accb42ae0dc974df4ee3b46e48d9105526
Validity
Not Before: Mar 24 14:32:09 2021 GMT
Not After : Mar 24 14:32:09 2026 GMT
Subject: CN=0f7fdd129112257afb2731d2fef41690a7b78bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:5b:f7:9e:03:3b:67:d0:26:42:29:1f:de:58:
50:19:19:d5:94:54:91:33:8a:21:3f:62:b9:4d:cb:
6a:67:db:d8:e7:9b:53:5c:28:b9:8e:b4:37:8c:17:
59:c2:39:47:b6:f6:56:44:6b:02:50:2a:f8:39:a4:
09:40:ba:ff:47:33:be:70:b6:d4:f6:67:55:1f:4b:
e9:c7:cb:66:de:b6:3c:45:81:0b:f8:e9:0e:02:d4:
63:ae:5a:e4:2b:7d:e8:72:de:31:d2:ef:db:ed:7c:
a1:b8:5d:a0:d0:f6:cc:48:bc:db:f7:9d:24:aa:f6:
ae:64:f5:05:40:52:b4:da:b3:3d:0a:ae:4c:e6:60:
c3:ed:b9:e4:f1:89:ff:2c:59:ca:93:02:24:59:69:
c8:d1:8a:1e:55:58:c3:32:d4:53:bc:dd:6b:87:f7:
8d:3c:60:f9:5a:ed:d2:e8:a4:88:93:be:ab:ac:1d:
50:56:be:2c:e7:c6:73:9a:21:df:f4:57:fb:42:38:
7d:74:cb:6a:20:de:6e:b9:64:91:09:c0:d4:99:2c:
2c:85:51:f5:19:cf:05:fb:7c:91:da:03:ea:74:9a:
dd:06:ff:7b:05:9c:e0:95:f5:e8:f7:f6:d6:c0:63:
62:ba:32:a2:a3:ea:22:c9:35:cd:d1:7e:c5:7c:f4:
05:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:32:BE:7E:DE:7B:92:47:B0:A9:0F:2C:88:FE:91:C5:01:D6:95:69
X509v3 Authority Key Identifier:
keyid:B7:F5:EE:95:AE:93:AA:01:4C:E3:44:72:B9:C3:58:49:4E:71:CD:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d9df42accb42ae0dc974df4ee3b46e48d9105526.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8870148c-d4cf-4de1-88d3-27a60e0936e1/0f7fdd129112257afb2731d2fef41690a7b78bbd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8870148c-d4cf-4de1-88d3-27a60e0936e1/d9df42accb42ae0dc974df4ee3b46e48d9105526.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.99.112.0/22
191.102.16.0/20
Signature Algorithm: sha256WithRSAEncryption
7c:e5:97:60:69:5e:4b:13:8c:23:41:68:38:3b:33:07:d1:fd:
83:99:45:c4:28:76:c4:0e:c4:7f:0f:4b:3b:a0:ad:63:de:50:
00:80:f3:0e:0a:d1:b5:4b:7f:8a:4b:7d:c8:ef:bb:77:01:46:
8a:37:6a:9b:1d:11:80:32:07:56:1f:f1:2b:1c:a3:73:63:e3:
2c:1a:99:24:b2:61:7f:0d:f2:91:fc:8c:4b:e6:eb:42:d0:dc:
ff:d9:bd:99:a4:cb:b2:6e:e4:51:1f:c8:a4:de:c3:21:35:47:
d1:ce:e2:5c:ab:67:2c:76:d2:5a:c5:2f:e0:e0:9d:f8:d3:4e:
df:5a:52:41:48:29:21:9b:d0:b0:8d:c4:e8:92:67:c2:99:e1:
09:0f:e1:7d:ce:5d:0a:22:3d:ea:f5:21:94:8a:49:26:4c:0b:
31:f8:cf:a7:cd:82:3d:34:33:3d:d7:53:39:c7:45:6f:e8:d7:
a0:43:44:71:c9:71:7b:d3:c9:a2:66:f7:d0:ae:81:d8:eb:08:
0f:84:e3:63:1e:a6:ff:1b:63:4c:68:8b:4f:32:58:b0:88:5b:
04:33:2b:a5:67:7f:8e:88:59:c6:36:29:4a:e3:21:20:01:f0:
1b:00:30:76:50:38:ba:cd:86:53:bb:59:68:30:3a:31:3e:d0:
d5:3d:b3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 3 03:44:27 2023 by rpki-client on console-ams.rpki-client.org