Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/865735b0d658074fda56d87703b19b3a9edd3e80.roa
File: 865735b0d658074fda56d87703b19b3a9edd3e80.roa (raw, json)
Hash identifier: oNvX5Kpawe9hKOyZ8T8RL8t2qBj6fGUfikkV7D+s20E=
Subject key identifier: 87:FD:7D:7E:4A:85:01:4E:93:A9:C9:AD:97:03:54:E3:2F:47:A5:5C
Certificate issuer: /CN=20cfd36a556e1a46c18de53d3fa81b0e1e970f23
Certificate serial: 0233E1
Authority key identifier: D6:76:54:78:51:E9:6F:3D:87:FA:EF:A4:05:EA:D4:A4:B7:0D:89:00
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/20cfd36a556e1a46c18de53d3fa81b0e1e970f23.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/865735b0d658074fda56d87703b19b3a9edd3e80.roa
Signing time: Wed 07 Dec 2022 03:15:07 +0000
ROA not before: Tue 20 Sep 2022 20:53:37 +0000
ROA not after: Sat 21 Sep 2024 20:53:37 +0000
asID: 8163
IP address blocks: 201.220.80.0/20 maxlen: 20
201.220.84.0/24 maxlen: 24
201.220.85.0/24 maxlen: 24
201.220.88.0/24 maxlen: 24
201.220.92.0/24 maxlen: 24
201.220.94.0/24 maxlen: 24
201.220.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144353 (0x233e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cfd36a556e1a46c18de53d3fa81b0e1e970f23
Validity
Not Before: Sep 20 20:53:37 2022 GMT
Not After : Sep 21 20:53:37 2024 GMT
Subject: CN=865735b0d658074fda56d87703b19b3a9edd3e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6d:69:20:43:b5:59:e3:2c:6c:63:8a:e3:02:
95:0a:09:de:be:66:0b:64:1d:45:64:3e:27:5b:82:
5f:20:ca:32:e9:0e:9c:a3:b9:69:4c:a1:58:d1:ca:
b3:96:35:23:7e:51:f4:03:7d:77:76:d5:88:c9:16:
53:e7:f7:b5:2f:51:23:a0:af:41:39:77:8e:95:d9:
bb:91:b7:6b:11:b2:db:89:5a:bb:55:d7:83:70:d0:
3c:09:89:88:13:80:64:45:4c:23:6c:aa:43:30:74:
1c:93:41:3f:d7:80:e9:32:78:73:2b:ae:23:9a:8a:
c7:b3:6a:44:cf:fb:a4:fe:68:1a:e8:35:a4:09:b8:
11:ae:b8:14:24:a9:00:3f:af:d3:8e:83:1a:20:3a:
4c:d6:10:e4:14:a1:32:fb:dc:ea:41:57:29:90:78:
66:5e:a6:1c:43:70:32:8b:20:68:66:cb:d4:18:23:
c1:7e:20:c7:01:ca:2b:2a:7a:a3:4d:5f:88:ab:bb:
94:59:97:3b:0e:5d:61:6f:ee:95:33:1e:fb:5a:5c:
bd:b7:45:35:77:c1:b4:a8:f2:87:fe:81:57:13:6c:
fb:a2:d3:06:8f:6b:63:34:b2:b7:33:36:65:19:90:
9e:c2:91:de:67:70:1e:ca:38:dc:ae:61:36:75:55:
b5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FD:7D:7E:4A:85:01:4E:93:A9:C9:AD:97:03:54:E3:2F:47:A5:5C
X509v3 Authority Key Identifier:
keyid:D6:76:54:78:51:E9:6F:3D:87:FA:EF:A4:05:EA:D4:A4:B7:0D:89:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/20cfd36a556e1a46c18de53d3fa81b0e1e970f23.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/865735b0d658074fda56d87703b19b3a9edd3e80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/20cfd36a556e1a46c18de53d3fa81b0e1e970f23.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.220.80.0/20
Signature Algorithm: sha256WithRSAEncryption
45:c6:4b:06:1a:fc:35:c2:b6:85:e6:bc:77:f6:dd:3c:97:92:
e5:39:c1:54:99:12:e2:1a:db:4e:ac:c3:f2:17:48:7d:1e:ea:
0e:32:ce:d1:f8:db:27:82:29:75:f2:4c:72:6e:f2:5d:17:1a:
33:92:9f:15:15:10:1e:47:c9:b6:bd:10:fb:15:5f:7a:c8:ce:
21:34:61:a9:89:13:d0:78:22:8f:03:f4:39:34:91:18:b8:de:
02:9b:01:30:fb:1a:bf:79:86:b8:5d:4b:cd:f2:1d:0f:da:b9:
59:17:70:4e:7d:ba:9d:2b:a8:39:4d:70:bd:50:8e:7a:0d:0e:
7d:ef:ed:3f:56:b0:28:74:d7:73:88:0b:27:2d:ba:f6:f3:f7:
4c:16:71:eb:a9:ac:d3:23:63:48:ec:f8:4a:82:c6:ac:5c:36:
f6:fb:35:32:d3:1d:57:b1:7e:46:a7:08:61:e2:dd:88:fd:e2:
9e:4c:7e:50:0b:a5:f4:39:57:6d:33:54:4b:69:5c:48:51:76:
ad:52:c9:2b:a1:52:b1:62:c6:39:ab:ab:9d:63:58:bd:13:f0:
6a:65:6d:95:12:f1:1c:9b:e7:b8:3b:73:7c:e8:13:fa:31:6c:
c5:b7:f7:a4:14:da:d6:dc:95:8b:d7:80:02:72:13:81:f5:5a:
17:dc:82:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 18:08:10 2023 by rpki-client on console-fra.rpki-client.org