Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/91f0feda-4e2a-41b7-bf51-e657a5264035/66dbced19564f7b859f88de3151f0c858dcc3ce4.roa
File: 66dbced19564f7b859f88de3151f0c858dcc3ce4.roa (raw, json)
Hash identifier: Mv2rXY8SWuD9g2Ckof8zHjqY85fc3bcjlVrqmPp6Fi0=
Subject key identifier: CC:DB:B6:72:B9:CD:F1:53:96:EB:3C:B9:06:5F:38:2D:B4:64:7E:F3
Certificate issuer: /CN=d22cc49db918d10383d16f3a1f83aa1e2a5567b7
Certificate serial: 1F4993
Authority key identifier: CA:B2:DD:CB:EA:02:99:21:D9:53:0C:A6:A2:68:5C:12:F4:57:57:1A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d22cc49db918d10383d16f3a1f83aa1e2a5567b7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/91f0feda-4e2a-41b7-bf51-e657a5264035/66dbced19564f7b859f88de3151f0c858dcc3ce4.roa
Signing time: Wed 05 Apr 2023 08:30:00 +0000
ROA not before: Tue 04 Apr 2023 08:30:00 +0000
ROA not after: Thu 03 Apr 2025 08:30:00 +0000
asID: 27882
IP address blocks: 131.0.196.0/22 maxlen: 24
143.137.228.0/22 maxlen: 24
177.222.32.0/20 maxlen: 24
177.222.48.0/23 maxlen: 24
177.222.51.0/24 maxlen: 24
177.222.52.0/22 maxlen: 24
177.222.56.0/21 maxlen: 24
177.222.96.0/19 maxlen: 24
181.114.96.0/19 maxlen: 24
181.188.128.0/18 maxlen: 24
190.104.0.0/19 maxlen: 24
200.73.96.0/21 maxlen: 24
2800:320:402::/48 maxlen: 48
2800:320:404::/46 maxlen: 48
2800:320:408::/47 maxlen: 48
2800:320:822::/48 maxlen: 48
2800:320:8003::/48 maxlen: 48
2800:320:8401::/48 maxlen: 48
2800:320:8403::/48 maxlen: 48
2800:320:8404::/48 maxlen: 48
2800:320:8406::/48 maxlen: 48
2800:320:8408::/47 maxlen: 48
2800:320:840c::/48 maxlen: 48
2800:320:9800::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2050451 (0x1f4993)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d22cc49db918d10383d16f3a1f83aa1e2a5567b7
Validity
Not Before: Apr 4 08:30:00 2023 GMT
Not After : Apr 3 08:30:00 2025 GMT
Subject: CN=66dbced19564f7b859f88de3151f0c858dcc3ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ae:ef:a2:77:1f:d5:eb:c3:a7:41:59:2c:72:
fd:3a:2e:31:72:25:73:37:69:1f:a7:8b:c1:61:b2:
ca:20:ce:1d:b6:2b:d4:2d:f0:bc:f7:40:90:ab:35:
97:4d:e3:0f:99:b1:f3:36:6a:fb:cd:82:2a:fb:c3:
c1:df:7e:85:49:d8:02:a4:a8:1b:cf:f8:9d:30:12:
ad:65:a2:a6:c5:7f:56:8c:ff:ba:5e:7e:b1:93:65:
a0:fe:fb:49:47:6e:e3:c8:a8:56:0b:74:61:0d:a3:
b8:9a:b6:14:58:1b:e5:53:87:76:31:5a:93:95:b1:
2a:a4:0a:68:e1:a6:8d:90:cb:7d:8a:3a:ff:e0:9d:
05:eb:12:a8:37:e8:56:83:dc:3d:e8:46:94:d6:ed:
ba:de:1c:61:81:03:4b:be:b8:1b:df:3e:7e:37:5d:
6a:8d:c5:9f:2e:d9:9a:a1:e8:bc:86:82:09:21:b4:
98:d4:ec:81:16:2c:5b:c9:d9:d5:03:11:30:08:f5:
f9:c3:f4:a1:1b:3e:71:92:00:3b:6c:54:9c:e3:e8:
c9:94:8e:05:01:75:16:78:16:c5:0d:24:56:ce:28:
44:a4:5a:71:22:1e:6b:bf:36:f4:3a:d3:39:87:ea:
ca:8b:18:39:d6:1b:d6:3e:13:04:b3:13:fb:b4:4b:
08:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DB:B6:72:B9:CD:F1:53:96:EB:3C:B9:06:5F:38:2D:B4:64:7E:F3
X509v3 Authority Key Identifier:
keyid:CA:B2:DD:CB:EA:02:99:21:D9:53:0C:A6:A2:68:5C:12:F4:57:57:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d22cc49db918d10383d16f3a1f83aa1e2a5567b7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/91f0feda-4e2a-41b7-bf51-e657a5264035/66dbced19564f7b859f88de3151f0c858dcc3ce4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/91f0feda-4e2a-41b7-bf51-e657a5264035/d22cc49db918d10383d16f3a1f83aa1e2a5567b7.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.0.196.0/22
143.137.228.0/22
177.222.32.0-177.222.49.255
177.222.51.0-177.222.63.255
177.222.96.0/19
181.114.96.0/19
181.188.128.0/18
190.104.0.0/19
200.73.96.0/21
IPv6:
2800:320:402::/48
2800:320:404::-2800:320:409:ffff:ffff:ffff:ffff:ffff
2800:320:822::/48
2800:320:8003::/48
2800:320:8401::/48
2800:320:8403::-2800:320:8404:ffff:ffff:ffff:ffff:ffff
2800:320:8406::/48
2800:320:8408::/47
2800:320:840c::/48
2800:320:9800::/48
Signature Algorithm: sha256WithRSAEncryption
7e:bd:e8:b7:0b:9e:1b:50:ff:4e:e5:59:af:ae:30:40:eb:45:
59:af:bb:fb:5f:d2:25:df:71:c5:4d:05:2d:48:ab:2e:b1:e0:
5c:f4:a5:83:98:d4:22:bc:95:4f:8c:ae:f1:c0:f5:aa:25:2a:
74:b4:d7:fe:8d:43:b7:2b:f1:ff:98:2d:8d:f2:b7:c3:31:1d:
db:9d:7a:85:55:22:f4:9a:42:f4:ec:16:d8:b7:2a:6d:fa:28:
ff:6c:32:14:41:3c:98:59:a7:10:7e:f4:b2:59:37:d6:cf:b6:
ba:bd:ea:84:3c:b4:5a:f4:93:68:57:0a:31:ad:95:84:be:1c:
4b:17:ac:c8:73:b3:fb:9f:a5:bc:6e:69:24:38:5f:11:93:7d:
fc:15:67:ee:f0:a8:2d:5a:c2:a1:f4:f0:ce:f2:2d:9a:17:95:
bd:9c:82:cf:da:1f:41:3b:96:c4:0d:36:21:60:17:92:c6:ea:
c2:ee:1e:0e:bc:4c:85:db:19:82:1d:b9:fd:ef:ad:f2:6f:59:
b7:17:4b:8f:69:aa:a1:e6:c3:d4:4e:a5:ef:c4:f9:bc:c9:35:
6d:83:5e:6c:44:20:69:1d:bb:10:ee:0c:4d:23:a6:a8:e5:b5:
02:08:0a:f0:a7:a2:63:c8:2b:59:8f:c9:a1:43:b1:fc:96:ef:
e0:c9:04:f7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Sep 4 20:41:26 2023 by rpki-client on console-ams.rpki-client.org