Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/964b6088-85a6-4363-a11f-20d725bba3f7/3e1f6dc08636d35d68cf015e03cba219b773f0a4.roa
File: 3e1f6dc08636d35d68cf015e03cba219b773f0a4.roa (raw, json)
Hash identifier: sTutB4wMu3plej/Ejbkr5U5p06kFTa57+5XNYL/Uejk=
Subject key identifier: 27:10:99:37:6D:8D:9A:74:16:51:97:91:76:B6:D5:ED:7A:27:2F:F3
Certificate issuer: /CN=d5f5b360f6396f35cac76fe7727148af2ea950d9
Certificate serial: 231C10
Authority key identifier: 38:66:D1:54:E1:04:2B:B2:C3:11:22:39:6A:CB:0D:60:F0:7A:DD:C9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5f5b360f6396f35cac76fe7727148af2ea950d9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/964b6088-85a6-4363-a11f-20d725bba3f7/3e1f6dc08636d35d68cf015e03cba219b773f0a4.roa
Signing time: Fri 28 Apr 2023 17:51:37 +0000
ROA not before: Thu 27 Apr 2023 17:51:37 +0000
ROA not after: Mon 28 Apr 2025 17:51:37 +0000
asID: 52323
IP address blocks: 181.16.236.0/22 maxlen: 24
181.16.240.0/24 maxlen: 24
181.16.254.0/23 maxlen: 24
181.16.160.0/23 maxlen: 24
181.16.168.0/24 maxlen: 24
181.16.175.0/24 maxlen: 24
181.16.176.0/23 maxlen: 24
181.16.180.0/23 maxlen: 24
181.16.184.0/22 maxlen: 24
181.16.192.0/22 maxlen: 24
181.16.196.0/23 maxlen: 24
181.16.204.0/22 maxlen: 24
181.16.208.0/21 maxlen: 24
181.16.130.0/23 maxlen: 24
181.16.136.0/21 maxlen: 24
181.16.145.0/24 maxlen: 24
181.16.146.0/24 maxlen: 24
181.16.156.0/23 maxlen: 24
2800:600::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2300944 (0x231c10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f5b360f6396f35cac76fe7727148af2ea950d9
Validity
Not Before: Apr 27 17:51:37 2023 GMT
Not After : Apr 28 17:51:37 2025 GMT
Subject: CN=3e1f6dc08636d35d68cf015e03cba219b773f0a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:55:f8:59:b2:4f:84:eb:33:6d:ff:ab:b1:f3:
9b:c5:ff:57:14:96:03:1f:bb:1d:03:cd:e8:10:09:
27:46:df:54:60:c3:b1:b1:14:09:31:c5:39:41:4e:
f9:97:60:54:3f:4d:ea:5b:ea:50:41:9e:2f:b2:2b:
84:2a:a1:8a:f3:e5:17:aa:84:d7:da:27:85:98:6f:
93:e6:f2:bf:e9:fa:f6:85:56:9b:30:0a:a1:f8:31:
46:7c:78:cb:2e:30:e7:c1:b0:77:b5:2c:83:68:99:
d3:1f:ed:ba:b5:3a:4c:fb:85:9d:d7:03:1a:f8:e0:
e1:eb:b8:84:85:55:2b:8a:dd:cf:9b:ac:05:c9:4f:
ce:27:ff:8a:59:7b:ef:60:32:e2:b1:d5:b2:0f:03:
be:ca:0e:eb:79:50:9b:ae:1b:e9:0e:07:c1:dc:81:
a0:8f:b0:55:7f:22:7f:38:3d:2e:21:c1:bb:23:14:
75:b0:dc:40:69:1a:70:c5:9a:16:c1:64:08:f7:16:
da:60:a5:b1:41:6a:f0:a2:22:21:ec:91:3b:f1:8d:
b1:c9:a8:fe:b7:1e:5d:35:47:69:68:d6:f6:a5:ea:
3f:0e:0e:53:8e:a3:5f:d2:67:17:56:90:34:e2:9b:
c4:06:da:ee:88:17:b6:16:7b:41:07:96:6a:9e:a0:
2e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:10:99:37:6D:8D:9A:74:16:51:97:91:76:B6:D5:ED:7A:27:2F:F3
X509v3 Authority Key Identifier:
keyid:38:66:D1:54:E1:04:2B:B2:C3:11:22:39:6A:CB:0D:60:F0:7A:DD:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5f5b360f6396f35cac76fe7727148af2ea950d9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/964b6088-85a6-4363-a11f-20d725bba3f7/3e1f6dc08636d35d68cf015e03cba219b773f0a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/964b6088-85a6-4363-a11f-20d725bba3f7/d5f5b360f6396f35cac76fe7727148af2ea950d9.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.16.130.0/23
181.16.136.0/21
181.16.145.0-181.16.146.255
181.16.156.0/23
181.16.160.0/23
181.16.168.0/24
181.16.175.0-181.16.177.255
181.16.180.0/23
181.16.184.0/22
181.16.192.0-181.16.197.255
181.16.204.0-181.16.215.255
181.16.236.0-181.16.240.255
181.16.254.0/23
IPv6:
2800:600::/32
Signature Algorithm: sha256WithRSAEncryption
67:4b:f2:f4:38:ce:1f:b1:e2:f1:1f:fa:41:06:f9:f1:f5:ad:
39:50:9a:26:f2:c2:ea:b5:4b:f2:5c:e4:23:92:c2:e9:6d:6f:
a8:a9:c3:10:0b:ee:e9:f5:e8:21:6b:1b:be:4b:0b:d7:c9:3b:
a6:43:af:1f:b7:18:9b:e1:0a:42:30:a1:b2:7a:2a:9f:5f:f5:
df:b3:4f:af:12:a9:fb:be:63:19:f3:ff:cb:08:04:a3:da:55:
09:9a:e7:8c:4e:a6:41:92:e4:19:24:58:6d:ea:45:92:45:df:
85:ea:24:ec:2f:17:6b:02:bd:3f:4c:d3:26:80:6f:a2:7f:62:
53:e6:36:99:70:78:db:51:6f:f0:b3:d1:e3:18:8b:b6:2d:09:
1c:8a:ad:0c:9b:c2:ec:22:b7:51:c5:ee:e4:ec:ec:72:f0:6b:
47:cf:f4:ee:b8:f2:85:93:10:af:ca:3a:45:78:05:5d:86:0d:
93:06:05:0c:53:db:bc:40:3a:a3:72:c3:84:5f:16:9c:3e:ef:
09:54:49:0c:8c:b7:b1:ec:c4:4d:00:a3:9d:e5:53:2b:0c:a2:
c3:e8:51:3b:3b:2b:72:88:44:c3:12:99:b7:41:3b:2b:22:6f:
df:c6:5a:65:4c:33:06:e0:7b:81:b4:25:2d:30:13:df:c9:22:
ed:70:2d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 25 18:31:34 2023 by rpki-client on console-ams.rpki-client.org