Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/eff438e699a346a10a4889b209868a1204bb2182.roa
File: eff438e699a346a10a4889b209868a1204bb2182.roa (raw, json)
Hash identifier: FJx7hvHjKHTUjUIzaPDa3tjrVbaJ46/wAxF36ieq8tA=
Subject key identifier: 6B:72:5C:E7:B9:72:1A:B3:24:2E:3A:F6:9E:FD:7E:52:88:24:1B:BD
Certificate issuer: /CN=20cfd36a556e1a46c18de53d3fa81b0e1e970f23
Certificate serial: 025718
Authority key identifier: D6:76:54:78:51:E9:6F:3D:87:FA:EF:A4:05:EA:D4:A4:B7:0D:89:00
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/20cfd36a556e1a46c18de53d3fa81b0e1e970f23.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/eff438e699a346a10a4889b209868a1204bb2182.roa
Signing time: Wed 07 Dec 2022 03:20:00 +0000
ROA not before: Tue 20 Sep 2022 20:47:05 +0000
ROA not after: Sat 21 Sep 2024 20:47:05 +0000
asID: 8163
IP address blocks: 190.182.64.0/18 maxlen: 18
190.182.64.0/24 maxlen: 24
190.182.65.0/24 maxlen: 24
190.182.66.0/24 maxlen: 24
190.182.67.0/24 maxlen: 24
190.182.68.0/24 maxlen: 24
190.182.69.0/24 maxlen: 24
190.182.70.0/24 maxlen: 24
190.182.72.0/24 maxlen: 24
190.182.73.0/24 maxlen: 24
190.182.74.0/24 maxlen: 24
190.182.75.0/24 maxlen: 24
190.182.76.0/24 maxlen: 24
190.182.77.0/24 maxlen: 24
190.182.78.0/24 maxlen: 24
190.182.79.0/24 maxlen: 24
190.182.80.0/24 maxlen: 24
190.182.81.0/24 maxlen: 24
190.182.82.0/24 maxlen: 24
190.182.83.0/24 maxlen: 24
190.182.84.0/24 maxlen: 24
190.182.85.0/24 maxlen: 24
190.182.86.0/24 maxlen: 24
190.182.88.0/24 maxlen: 24
190.182.99.0/24 maxlen: 24
190.182.100.0/24 maxlen: 24
190.182.126.0/24 maxlen: 24
190.182.127.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153368 (0x25718)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cfd36a556e1a46c18de53d3fa81b0e1e970f23
Validity
Not Before: Sep 20 20:47:05 2022 GMT
Not After : Sep 21 20:47:05 2024 GMT
Subject: CN=eff438e699a346a10a4889b209868a1204bb2182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:31:ed:35:ac:27:ad:35:c1:22:ed:94:c5:18:
8f:ae:d2:24:b1:9a:bc:c9:85:a2:bb:5a:5c:f7:c0:
e7:bd:53:fc:cf:00:1f:67:b5:02:65:35:89:99:a4:
19:a0:19:e6:38:61:87:a1:8e:54:ee:ca:78:a2:58:
54:a7:a8:b9:31:0a:f3:ee:58:42:51:29:8e:a6:01:
d3:0c:5c:cb:80:1d:1c:17:3e:16:d5:45:7f:fe:f8:
ea:bc:c2:bc:1f:16:ff:5d:71:bb:a7:d6:e0:04:6e:
04:32:aa:2f:cf:5e:d5:95:26:bc:a1:98:f0:ce:ad:
52:2b:ce:28:2e:f7:68:c7:90:de:2a:1d:ff:1b:a8:
73:9f:3e:c2:17:54:a7:a4:47:c8:bc:9c:09:2b:74:
5e:55:61:d6:35:16:96:3a:2d:a4:93:c8:49:f5:3d:
f0:25:b5:4f:7c:5a:67:9b:d3:04:02:79:8c:05:f7:
12:4f:c5:18:17:30:33:a7:12:89:78:77:cb:b4:eb:
bb:6e:e0:5d:f1:1e:27:a0:e5:c5:97:d6:16:fa:1d:
db:c3:7f:64:08:1e:99:48:ee:78:8b:00:d6:23:30:
6c:d6:c9:36:88:09:95:d3:76:e9:3b:cd:c5:f5:28:
16:7d:db:97:ea:d8:37:52:0e:61:92:99:c1:a9:b3:
a3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:72:5C:E7:B9:72:1A:B3:24:2E:3A:F6:9E:FD:7E:52:88:24:1B:BD
X509v3 Authority Key Identifier:
keyid:D6:76:54:78:51:E9:6F:3D:87:FA:EF:A4:05:EA:D4:A4:B7:0D:89:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/20cfd36a556e1a46c18de53d3fa81b0e1e970f23.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/eff438e699a346a10a4889b209868a1204bb2182.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/958b31ec-3133-423d-8adb-38136b3c9f51/20cfd36a556e1a46c18de53d3fa81b0e1e970f23.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.182.64.0/18
Signature Algorithm: sha256WithRSAEncryption
5e:45:d6:a0:28:20:93:d0:32:8c:44:3a:b1:f0:46:54:14:da:
9d:36:7f:8e:5b:a4:39:d5:60:07:fd:b4:e3:5e:1a:0c:a8:0f:
34:47:b0:56:54:c6:9c:cc:4d:87:41:df:56:fe:6c:52:b1:5b:
87:0e:7e:2f:ca:ff:37:a0:ea:a7:bd:86:ef:c4:33:d7:82:70:
24:b2:0c:dc:25:65:6c:ec:2c:c0:df:e8:18:1c:f4:67:30:d2:
75:bd:76:46:06:ba:90:c2:fa:f2:f0:e7:e5:db:fe:fe:3d:c0:
6e:e2:bf:7d:ea:c2:20:df:12:24:bb:73:88:81:48:ab:f4:ba:
df:ed:68:aa:2e:89:3e:12:b4:ff:b4:f7:ac:24:bf:84:94:3c:
39:e5:cf:d1:13:76:4a:c5:cc:38:b7:17:39:27:32:da:ce:16:
9a:5a:f0:40:0d:f9:72:91:76:91:b5:90:63:b7:25:0a:c5:1b:
8c:60:ff:ba:9e:3e:8f:c2:9d:f4:0d:44:8c:c0:32:79:57:20:
71:5d:b5:bb:57:df:81:6f:40:9b:4a:20:65:ff:fb:c3:84:39:
70:80:80:1b:30:5c:74:44:65:73:a8:1b:0b:39:f1:75:ba:8b:
db:83:98:8a:e4:de:34:2d:18:4c:a0:64:cd:e8:ad:7f:75:76:
9d:9a:af:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 17:58:47 2023 by rpki-client on console-ams.rpki-client.org