Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/f8652e3e890356fba93df245fc6d07ececc26e86.roa
File: f8652e3e890356fba93df245fc6d07ececc26e86.roa (raw, json)
Hash identifier: r2ZhSKoYGMwxVapTIhbERNQ19eVfWt7R2zj6+7AGnZY=
Subject key identifier: 4B:34:D8:74:81:9A:77:3F:EC:B5:CC:3D:E5:A2:16:92:A9:7D:49:F7
Certificate issuer: /CN=1c730cc4f1140e9c3a243768d1052ae2bf36d279
Certificate serial: 235234
Authority key identifier: 3D:A3:67:37:DA:4A:CD:E5:E9:6B:4B:A9:47:08:77:64:8A:B3:25:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c730cc4f1140e9c3a243768d1052ae2bf36d279.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/f8652e3e890356fba93df245fc6d07ececc26e86.roa
Signing time: Wed 23 Aug 2023 18:47:30 +0000
ROA not before: Tue 22 Aug 2023 18:47:26 +0000
ROA not after: Sat 23 Aug 2025 18:47:26 +0000
asID: 6429
IP address blocks: 200.9.151.0/24 maxlen: 24
190.54.187.0/24 maxlen: 24
190.54.188.0/24 maxlen: 24
190.208.0.0/18 maxlen: 24
200.29.143.0/24 maxlen: 24
190.54.4.0/22 maxlen: 22
190.54.0.0/17 maxlen: 24
200.29.151.0/24 maxlen: 24
190.54.8.0/21 maxlen: 21
190.54.16.0/20 maxlen: 20
200.32.160.0/19 maxlen: 19
190.54.136.0/22 maxlen: 24
190.54.140.0/23 maxlen: 23
190.54.178.0/23 maxlen: 24
190.54.177.0/24 maxlen: 24
190.54.178.0/23 maxlen: 24
190.54.180.0/24 maxlen: 24
190.54.183.0/24 maxlen: 24
190.54.184.0/23 maxlen: 24
200.31.32.0/19 maxlen: 24
190.54.96.0/19 maxlen: 19
2800:3b0:10ff::/48 maxlen: 48
2800:3b0:1001::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 29 Jan 2024 14:29:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2314804 (0x235234)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c730cc4f1140e9c3a243768d1052ae2bf36d279
Validity
Not Before: Aug 22 18:47:26 2023 GMT
Not After : Aug 23 18:47:26 2025 GMT
Subject: CN=f8652e3e890356fba93df245fc6d07ececc26e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9c:b3:a2:1f:af:36:c4:ff:b8:d9:76:43:24:
a7:0c:7d:f9:55:9f:d4:2a:2e:de:0c:96:a1:43:e6:
4a:05:2e:df:c4:9b:5f:f4:23:57:49:83:6b:4a:9c:
c0:2a:45:b4:d6:72:62:6f:35:78:21:f7:af:3a:2a:
84:cb:b3:bd:57:37:5d:d4:bd:7b:09:e8:75:d9:2c:
1e:b7:4c:0a:28:11:63:95:4b:cf:29:3e:a1:a9:2c:
a5:b7:04:42:4e:a8:23:58:d1:63:6a:30:3f:11:89:
26:3a:6b:dc:fd:1f:1f:72:f3:e2:0f:5e:04:6b:ca:
df:8c:9c:7a:a8:4b:6b:10:b4:f4:f6:b8:b9:c8:22:
44:9a:02:8c:d3:14:e0:c8:78:92:8e:60:60:3c:7c:
66:79:65:b7:8c:97:46:4b:2a:b3:dc:ec:75:ef:88:
45:3f:59:29:4d:3a:35:6f:b0:28:b3:25:05:c6:9e:
ba:b5:6f:91:a0:28:be:9b:24:f5:bc:94:8c:00:17:
ca:0a:49:cb:4e:b7:61:fd:d1:b3:71:4c:e2:5e:fb:
da:15:4a:84:05:8e:38:8a:65:81:7b:bc:41:d9:ac:
b9:af:25:76:0c:a3:b1:95:31:46:d3:58:79:a6:20:
31:22:dc:a5:59:19:33:de:e7:21:29:b7:9c:99:93:
a8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:34:D8:74:81:9A:77:3F:EC:B5:CC:3D:E5:A2:16:92:A9:7D:49:F7
X509v3 Authority Key Identifier:
keyid:3D:A3:67:37:DA:4A:CD:E5:E9:6B:4B:A9:47:08:77:64:8A:B3:25:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c730cc4f1140e9c3a243768d1052ae2bf36d279.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/f8652e3e890356fba93df245fc6d07ececc26e86.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/1c730cc4f1140e9c3a243768d1052ae2bf36d279.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.54.0.0/17
190.54.136.0-190.54.141.255
190.54.177.0-190.54.180.255
190.54.183.0-190.54.185.255
190.54.187.0-190.54.188.255
190.208.0.0/18
200.9.151.0/24
200.29.143.0/24
200.29.151.0/24
200.31.32.0/19
200.32.160.0/19
IPv6:
2800:3b0:1001::/48
2800:3b0:10ff::/48
Signature Algorithm: sha256WithRSAEncryption
34:79:ad:a7:4f:13:5f:c0:4e:8e:e3:ec:4f:dc:aa:c8:72:3b:
2b:f1:e5:d5:d0:6b:47:92:b8:cc:30:84:0c:19:13:54:88:45:
68:10:f0:58:27:b4:77:47:6e:20:2d:09:cb:06:53:80:dc:3f:
29:d5:01:ef:b9:85:5a:d8:c2:f6:78:17:43:e9:ab:33:98:f7:
e7:4d:d0:36:b2:24:24:44:c1:d6:30:fc:78:cf:39:ed:41:53:
ff:d5:e9:96:fd:f9:03:42:bb:6b:31:89:31:59:d7:42:25:72:
2c:9c:9a:d0:58:48:77:2b:04:f2:fe:ac:a0:aa:4e:af:17:6c:
88:a3:07:c7:47:7a:50:49:ff:ac:f6:f4:3a:69:8e:64:53:30:
7c:13:02:16:ec:24:b7:06:89:87:35:ff:f0:ce:2e:4e:f3:1c:
c0:97:cc:25:2d:25:77:d8:3b:34:a5:c2:c1:5e:c1:d5:ea:5b:
28:b0:1a:e6:d8:35:21:ae:ac:9c:e5:4d:9e:c3:fa:08:11:cc:
9d:53:11:fb:43:c3:21:35:39:05:61:22:52:33:52:8a:73:02:
08:0d:cd:5d:20:87:75:f4:79:f1:50:38:e8:f3:9c:27:75:2d:
2d:32:50:6a:01:4c:5d:42:ca:58:6f:83:30:c9:0b:4c:33:63:
bf:d7:59:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 29 19:44:54 2024 by rpki-client on console-ams.rpki-client.org