Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/5a877788b3e63baf0f1c9fbb5e807f0b46fe6db1.roa
File: 5a877788b3e63baf0f1c9fbb5e807f0b46fe6db1.roa (raw, json)
Hash identifier: scTALq7WVzpf/wCNyZrZREIiI1odW9dIALO72fFNK1U=
Subject key identifier: B6:69:C5:9C:13:77:78:2C:34:44:05:FA:E6:A4:A5:C9:24:47:DC:DD
Certificate issuer: /CN=1c730cc4f1140e9c3a243768d1052ae2bf36d279
Certificate serial: 27506B
Authority key identifier: 3D:A3:67:37:DA:4A:CD:E5:E9:6B:4B:A9:47:08:77:64:8A:B3:25:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c730cc4f1140e9c3a243768d1052ae2bf36d279.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/5a877788b3e63baf0f1c9fbb5e807f0b46fe6db1.roa
Signing time: Mon 29 Jan 2024 14:52:31 +0000
ROA not before: Mon 29 Jan 2024 14:52:31 +0000
ROA not after: Thu 29 Jan 2026 14:52:31 +0000
asID: 6535
IP address blocks: 190.208.64.0/18 maxlen: 22
190.54.64.0/19 maxlen: 19
186.34.0.0/15 maxlen: 22
190.54.188.0/22 maxlen: 22
190.54.192.0/18 maxlen: 22
190.54.0.0/24 maxlen: 24
190.54.2.0/24 maxlen: 24
190.209.0.0/16 maxlen: 22
186.36.0.0/16 maxlen: 22
190.54.142.0/23 maxlen: 23
190.54.144.0/20 maxlen: 23
190.54.160.0/20 maxlen: 23
190.54.181.0/24 maxlen: 24
190.54.182.0/23 maxlen: 24
190.54.184.0/23 maxlen: 24
190.54.186.0/24 maxlen: 24
190.208.128.0/17 maxlen: 22
181.72.0.0/14 maxlen: 22
190.54.125.0/24 maxlen: 24
190.54.127.0/24 maxlen: 24
190.54.128.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 04:43:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2576491 (0x27506b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c730cc4f1140e9c3a243768d1052ae2bf36d279
Validity
Not Before: Jan 29 14:52:31 2024 GMT
Not After : Jan 29 14:52:31 2026 GMT
Subject: CN=5a877788b3e63baf0f1c9fbb5e807f0b46fe6db1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f1:b8:9b:98:3b:7d:96:01:d7:18:0e:ea:2b:
9a:35:89:8e:bc:7c:d4:51:6b:2c:ff:61:06:35:c2:
99:54:07:be:f9:1d:7d:ac:4b:65:fc:ed:bb:de:26:
5d:4c:cb:26:95:c8:0d:18:aa:49:0d:bd:7d:da:ff:
0b:72:1a:a1:8a:53:94:69:a2:50:61:8f:6a:3e:75:
98:5b:26:a4:52:e5:6d:1c:d4:51:85:62:4c:73:a3:
8e:f1:94:81:c1:b5:1e:ec:9b:97:ad:e1:2a:b9:b1:
65:5f:36:10:a2:58:e3:3c:84:e4:ad:bd:2c:a0:2f:
e6:18:cb:87:88:d9:3e:1c:9c:d8:eb:8d:1d:70:89:
46:a4:6a:4f:4e:a0:fb:22:2b:51:fa:f0:1f:0b:39:
17:23:50:79:2e:3f:60:39:ed:97:1b:7b:e5:03:d9:
47:0c:2e:01:14:6f:64:3b:09:96:5f:3e:23:e0:d2:
93:ad:cd:e4:6a:c0:f1:14:66:a4:1d:90:8f:e7:e5:
cd:24:4d:e9:3f:52:f1:8a:be:d4:0b:87:30:eb:08:
73:74:e7:fc:df:77:50:10:77:9b:07:c9:4e:50:0f:
4d:0b:12:ab:0f:86:43:a1:29:5a:90:1c:2b:ae:7a:
e5:01:bd:96:2d:9e:ae:4e:e3:5d:fd:15:ca:b7:df:
28:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:69:C5:9C:13:77:78:2C:34:44:05:FA:E6:A4:A5:C9:24:47:DC:DD
X509v3 Authority Key Identifier:
keyid:3D:A3:67:37:DA:4A:CD:E5:E9:6B:4B:A9:47:08:77:64:8A:B3:25:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c730cc4f1140e9c3a243768d1052ae2bf36d279.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/5a877788b3e63baf0f1c9fbb5e807f0b46fe6db1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/1c730cc4f1140e9c3a243768d1052ae2bf36d279.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.72.0.0/14
186.34.0.0-186.36.255.255
190.54.0.0/24
190.54.2.0/24
190.54.64.0/19
190.54.125.0/24
190.54.127.0-190.54.135.255
190.54.142.0-190.54.175.255
190.54.181.0-190.54.186.255
190.54.188.0-190.54.255.255
190.208.64.0-190.209.255.255
Signature Algorithm: sha256WithRSAEncryption
8e:16:50:bd:7d:41:d2:29:d4:58:5c:4d:99:7a:b8:f4:6a:e8:
b8:ee:39:56:df:61:83:25:03:44:87:dc:25:de:9f:13:43:c1:
13:01:59:79:c0:50:99:64:3e:fc:11:ce:af:3a:a9:f7:2d:d7:
e1:4a:74:13:27:35:ba:28:a4:69:8b:5d:df:5a:fc:66:84:94:
f7:64:61:67:3b:17:7c:8f:0f:55:a1:d5:5e:ee:e8:18:62:3e:
58:fb:26:0b:59:8e:b5:63:c9:26:29:02:73:04:11:d4:c1:c8:
ff:78:cf:05:33:06:c9:5f:f4:30:c8:79:ae:85:bd:a2:d6:2e:
ce:90:4e:32:c0:2f:0b:c2:00:50:a0:81:42:6c:2f:dd:51:74:
f6:46:56:ab:c4:fb:37:32:44:14:12:48:44:04:41:21:ca:0d:
f2:62:d7:99:1c:1a:25:45:c0:75:c6:cb:77:87:c3:90:d2:60:
45:e1:71:1d:1e:8e:3c:39:45:b6:e0:af:23:18:92:48:e9:97:
81:b3:2c:16:ab:6d:da:f5:5b:31:e9:a8:a5:71:c0:70:e6:fe:
33:03:cf:85:4a:0b:ca:21:5f:11:92:eb:d0:13:1e:42:1d:78:
81:22:b1:9c:9a:be:b7:89:ff:14:fb:9d:b2:3c:07:b7:d1:e5:
7b:9b:7c:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 30 08:26:38 2024 by rpki-client on console-fra.rpki-client.org