Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9bea6cad-29d6-4385-a4f9-cbe4ba3d121f/a296ba8c520114e906e53bdf3b94efbf1ed32796.roa
File: a296ba8c520114e906e53bdf3b94efbf1ed32796.roa (raw, json)
Hash identifier: fXDqpR+vkblu3eemfPDRGSxzsAMLY4fUA6eHQaps10s=
Subject key identifier: 0D:49:FE:8A:79:D1:7F:DC:2F:1A:B9:2D:0F:EB:0F:F1:86:20:FA:C4
Certificate issuer: /CN=600a05248a907def76410027882b2f4a8085c07a
Certificate serial: 21786A
Authority key identifier: BC:3B:FF:4B:5D:A8:0B:F5:44:27:AE:25:A5:40:BB:0C:11:7C:D2:CA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/600a05248a907def76410027882b2f4a8085c07a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9bea6cad-29d6-4385-a4f9-cbe4ba3d121f/a296ba8c520114e906e53bdf3b94efbf1ed32796.roa
Signing time: Thu 13 Jul 2023 12:04:41 +0000
ROA not before: Wed 12 Jul 2023 12:04:41 +0000
ROA not after: Sun 13 Jul 2025 12:04:41 +0000
asID: 27831
IP address blocks: 177.252.0.0/14 maxlen: 14
179.12.0.0/14 maxlen: 14
181.68.0.0/15 maxlen: 15
181.70.0.0/15 maxlen: 15
181.205.0.0/16 maxlen: 16
186.97.0.0/18 maxlen: 18
186.97.64.0/18 maxlen: 18
186.97.128.0/17 maxlen: 17
186.180.0.0/16 maxlen: 16
186.181.0.0/16 maxlen: 16
190.102.192.0/20 maxlen: 20
190.102.208.0/20 maxlen: 20
190.120.128.0/20 maxlen: 20
191.88.0.0/13 maxlen: 13
2803:1800::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2193514 (0x21786a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=600a05248a907def76410027882b2f4a8085c07a
Validity
Not Before: Jul 12 12:04:41 2023 GMT
Not After : Jul 13 12:04:41 2025 GMT
Subject: CN=a296ba8c520114e906e53bdf3b94efbf1ed32796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:0e:52:c2:1d:3f:72:2d:9b:95:75:d3:58:ad:
19:87:4e:e0:f7:b0:4a:97:89:c6:85:72:ea:d8:35:
51:41:ff:42:80:6e:00:40:4b:a4:96:85:f7:c0:ed:
98:2c:58:55:10:14:54:85:00:3e:bc:37:b6:d8:f8:
fa:c9:0e:2e:13:ae:79:eb:67:a7:3a:a6:4d:5b:a3:
25:8a:ca:3d:ac:d4:52:23:5a:30:6b:f4:cf:be:2f:
c3:d5:b9:0d:91:94:76:87:ff:a7:94:e2:5f:e1:12:
3b:a9:dd:b1:61:cb:99:69:98:d6:bb:5c:9f:45:82:
98:ef:c7:69:ed:76:6f:04:7f:af:e6:13:ab:be:ab:
2d:85:33:3f:d1:40:4c:9f:fa:aa:3d:57:65:57:41:
ce:d8:78:cf:be:53:bf:64:8f:91:ec:79:32:67:7a:
7b:d0:88:06:b4:4e:b5:25:66:b3:69:88:00:a9:3d:
40:cc:75:7f:3d:ca:6a:37:92:cf:24:60:cd:5d:01:
5e:f0:52:58:a2:53:cc:8a:4e:43:6f:01:56:22:89:
e1:6c:0f:c0:e4:e1:80:e8:be:ca:3d:9d:5c:34:6b:
23:0f:71:e2:2f:c8:86:2c:96:36:5c:56:09:9c:2f:
11:73:5a:e0:1d:9c:c4:63:1a:fb:43:38:18:1b:15:
0f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:49:FE:8A:79:D1:7F:DC:2F:1A:B9:2D:0F:EB:0F:F1:86:20:FA:C4
X509v3 Authority Key Identifier:
keyid:BC:3B:FF:4B:5D:A8:0B:F5:44:27:AE:25:A5:40:BB:0C:11:7C:D2:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/600a05248a907def76410027882b2f4a8085c07a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9bea6cad-29d6-4385-a4f9-cbe4ba3d121f/a296ba8c520114e906e53bdf3b94efbf1ed32796.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9bea6cad-29d6-4385-a4f9-cbe4ba3d121f/600a05248a907def76410027882b2f4a8085c07a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.252.0.0/14
179.12.0.0/14
181.68.0.0/14
181.205.0.0/16
186.97.0.0/16
186.180.0.0/15
190.102.192.0/19
190.120.128.0/20
191.88.0.0/13
IPv6:
2803:1800::/32
Signature Algorithm: sha256WithRSAEncryption
32:4a:5b:d5:86:09:26:f5:bc:3d:c5:11:44:7c:4a:86:29:8c:
9c:4b:4c:0c:01:d7:19:84:a1:7e:87:96:a6:d0:d7:45:88:66:
60:17:63:2a:ad:40:cb:ac:84:17:8b:eb:ae:c5:3e:e8:52:3c:
09:d9:8b:f0:04:22:c1:5f:43:ee:a7:e5:32:4c:19:b5:e1:c6:
7d:99:35:ac:5b:ab:2a:91:30:4b:ea:b2:2e:02:7a:3a:ef:c1:
36:b8:01:71:26:98:3d:db:b6:de:19:7d:25:4b:e9:ff:38:8b:
5b:3b:34:f1:52:d9:4a:a0:b5:31:1f:8c:b7:b5:1b:fa:66:c3:
24:73:8c:df:6a:70:a5:3e:84:1d:27:8c:53:4c:ec:bb:9a:93:
57:f8:b9:ba:99:47:5c:c5:97:94:87:5a:8c:57:68:6d:fb:89:
a9:4b:ec:ae:c6:00:0d:48:d4:2e:7e:fb:02:3f:4b:35:54:47:
c1:eb:f1:48:a2:15:22:49:61:3f:27:8b:2f:6c:d7:06:83:69:
53:28:2c:e8:84:0e:3e:20:7a:2e:bd:d0:74:95:74:41:e4:50:
ff:7f:21:b4:db:d2:15:55:ae:3c:d8:10:6e:4b:7c:87:f5:33:
e7:60:6f:cb:cd:ce:82:36:9f:aa:99:c4:33:34:88:20:33:22:
a9:ed:d2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:47 2023 by rpki-client on console-ams.rpki-client.org