Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/b678414f590f7a84293df03b13a88548b918fd73.roa
File: b678414f590f7a84293df03b13a88548b918fd73.roa (raw, json)
Hash identifier: iiO0MiPvzCZBpGaWTZwYMY5zPyBC39L/03Fw1cPIGGA=
Subject key identifier: 63:01:F5:09:1A:B5:83:B1:A0:60:34:BA:59:D8:9D:6F:8B:A1:C7:15
Certificate issuer: /CN=c42687bcebd27d6fd68fc0f95a18fd8af8b436bb
Certificate serial: 1F2DD9
Authority key identifier: BE:3E:AB:7A:10:6B:40:B0:F6:42:8F:4B:70:13:51:7C:9C:66:64:E0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c42687bcebd27d6fd68fc0f95a18fd8af8b436bb.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/b678414f590f7a84293df03b13a88548b918fd73.roa
Signing time: Tue 04 Apr 2023 19:39:23 +0000
ROA not before: Mon 24 Oct 2022 19:12:17 +0000
ROA not after: Sat 26 Oct 2024 19:12:17 +0000
asID: 269918
IP address blocks: 131.72.168.0/24 maxlen: 24
131.72.169.0/24 maxlen: 24
131.72.170.0/23 maxlen: 24
131.72.168.0/22 maxlen: 22
2803:dd80::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2043353 (0x1f2dd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42687bcebd27d6fd68fc0f95a18fd8af8b436bb
Validity
Not Before: Oct 24 19:12:17 2022 GMT
Not After : Oct 26 19:12:17 2024 GMT
Subject: CN=b678414f590f7a84293df03b13a88548b918fd73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:ed:3c:c8:9d:ef:df:28:c5:57:37:1c:fc:
fa:c1:32:3e:d1:1f:7c:ac:f3:4e:b3:af:11:0b:d3:
de:05:df:90:b1:d1:f6:a3:60:bd:17:5a:86:15:9e:
ba:b8:14:4c:18:2b:49:e4:73:65:fa:bd:56:b5:ed:
bf:e2:96:f9:e8:3c:d8:a5:59:82:22:81:9d:7a:cb:
f6:fb:d6:de:c7:cf:fb:ad:6c:28:17:0a:44:7c:06:
f7:4f:9f:d0:b2:67:ea:b6:f8:24:22:58:b7:df:14:
bc:ec:d0:a3:0f:45:3c:e7:f4:ae:48:0e:80:4d:6e:
b3:96:d5:31:21:a8:ef:08:8f:35:86:4d:f4:a2:3d:
48:ec:e6:1f:48:5d:34:fc:04:7e:15:86:7d:1e:88:
da:11:ea:25:ab:75:6c:3e:2b:fa:c7:9e:5f:5a:12:
19:f9:e3:98:86:ff:1d:60:7d:d8:13:dd:12:3f:1c:
0e:c8:fa:07:7d:c2:e6:b8:e1:c2:a3:b1:8f:3d:cf:
37:47:4c:f7:4c:e9:77:41:9d:c2:8b:2b:bf:25:8e:
4c:21:09:40:ff:a3:d3:26:8d:21:02:94:4b:03:d2:
96:db:96:41:08:2f:3e:a9:86:12:0d:46:8d:48:43:
f4:ed:15:ac:c2:4c:47:99:2c:dd:ee:26:1a:08:47:
ee:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:01:F5:09:1A:B5:83:B1:A0:60:34:BA:59:D8:9D:6F:8B:A1:C7:15
X509v3 Authority Key Identifier:
keyid:BE:3E:AB:7A:10:6B:40:B0:F6:42:8F:4B:70:13:51:7C:9C:66:64:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c42687bcebd27d6fd68fc0f95a18fd8af8b436bb.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/b678414f590f7a84293df03b13a88548b918fd73.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/c42687bcebd27d6fd68fc0f95a18fd8af8b436bb.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.72.168.0/22
IPv6:
2803:dd80::/32
Signature Algorithm: sha256WithRSAEncryption
26:8c:dc:3b:c4:b3:73:66:55:98:f2:99:60:b8:30:c9:b1:30:
15:ae:ec:d6:55:59:66:07:58:de:2d:2a:f3:ea:50:84:25:6a:
4d:15:93:d0:78:64:bb:e6:bc:f2:77:36:ec:68:f2:d8:14:1c:
ed:15:24:c6:0e:fa:15:5a:10:0d:a5:30:4f:3b:e0:da:ae:4d:
68:8f:4e:7f:05:12:4d:58:2a:2e:15:1e:8c:70:97:0e:d1:c2:
10:92:17:63:15:18:9a:9d:43:c9:66:bd:40:4b:fe:81:eb:3e:
0c:dc:c5:16:8f:57:ca:ba:ad:f6:7b:51:9f:24:5a:7e:1d:6b:
3a:c5:81:ec:bd:01:e7:35:13:e0:bd:0c:0a:d8:ce:e7:c7:41:
b0:c5:75:36:a5:cc:77:bc:e1:79:bd:6e:fc:b3:b9:0b:6e:95:
a4:60:8e:14:d9:05:d9:97:d9:bb:47:3c:46:b3:cf:3b:2d:b9:
a6:9b:c3:6c:1f:13:5a:b7:83:ab:e9:ed:00:f7:d9:8e:60:8a:
dc:be:d5:f1:4b:f5:4b:24:57:2f:b1:ac:c8:26:d1:0a:62:b4:
66:5c:1d:8a:60:b9:83:28:8e:e5:46:e9:03:46:de:05:cb:a1:
e4:e0:3f:4d:c6:60:22:f3:7c:40:b8:3d:18:56:34:33:31:02:
39:69:b7:ea
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgIDHy3ZMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGM0
MjY4N2JjZWJkMjdkNmZkNjhmYzBmOTVhMThmZDhhZjhiNDM2YmIwHhcNMjIxMDI0
MTkxMjE3WhcNMjQxMDI2MTkxMjE3WjAzMTEwLwYDVQQDEyhiNjc4NDE0ZjU5MGY3
YTg0MjkzZGYwM2IxM2E4ODU0OGI5MThmZDczMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwaDtPMid798oxVc3HPz6wTI+0R98rPNOs68RC9PeBd+QsdH2
o2C9F1qGFZ66uBRMGCtJ5HNl+r1Wte2/4pb56DzYpVmCIoGdesv2+9bex8/7rWwo
FwpEfAb3T5/QsmfqtvgkIli33xS87NCjD0U85/SuSA6ATW6zltUxIajvCI81hk30
oj1I7OYfSF00/AR+FYZ9HojaEeolq3VsPiv6x55fWhIZ+eOYhv8dYH3YE90SPxwO
yPoHfcLmuOHCo7GPPc83R0z3TOl3QZ3Ciyu/JY5MIQlA/6PTJo0hApRLA9KW25ZB
CC8+qYYSDUaNSEP07RWswkxHmSzd7iYaCEfutwIDAQABo4ICajCCAmYwHQYDVR0O
BBYEFGMB9QkatYOxoGA0ulnYnW+LoccVMB8GA1UdIwQYMBaAFL4+q3oQa0Cw9kKP
S3ATUXycZmTgMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYzQyNjg3
YmNlYmQyN2Q2ZmQ2OGZjMGY5NWExOGZkOGFmOGI0MzZiYi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYTAxMzQ1NjUtOWYzYy00OWIxLWFhZjYtZGZmMmVh
MzE0NmZlL2I2Nzg0MTRmNTkwZjdhODQyOTNkZjAzYjEzYTg4NTQ4YjkxOGZkNzMu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9hMDEzNDU2NS05ZjNjLTQ5YjEtYWFmNi1kZmYy
ZWEzMTQ2ZmUvYzQyNjg3YmNlYmQyN2Q2ZmQ2OGZjMGY5NWExOGZkOGFmOGI0MzZi
Yi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQf
MB0wDAQCAAEwBgMEAoNIqDANBAIAAjAHAwUAKAPdgDANBgkqhkiG9w0BAQsFAAOC
AQEAJozcO8Szc2ZVmPKZYLgwybEwFa7s1lVZZgdY3i0q8+pQhCVqTRWT0Hhku+a8
8nc27Gjy2BQc7RUkxg76FVoQDaUwTzvg2q5NaI9OfwUSTVgqLhUejHCXDtHCEJIX
YxUYmp1DyWa9QEv+ges+DNzFFo9Xyrqt9ntRnyRafh1rOsWB7L0B5zUT4L0MCtjO
58dBsMV1NqXMd7zheb1u/LO5C26VpGCOFNkF2ZfZu0c8RrPPOy25ppvDbB8TWreD
q+ntAPfZjmCK3L7V8Uv1SyRXL7GsyCbRCmK0ZlwdimC5gyiO5UbpA0beBcuh5OA/
TcZgIvN8QLg9GFY0MzECOWm36g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:48 2023 by rpki-client on console-ams.rpki-client.org