Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/f88386ce316f1023f48eb4663bd898832f5a129b.roa
File: f88386ce316f1023f48eb4663bd898832f5a129b.roa (raw, json)
Hash identifier: cwxrLrN65zG/JKCKwL5KPf6U0LQAdlFrXdfsComj2Rg=
Subject key identifier: 20:8B:79:71:E0:A3:13:EF:47:8C:3E:31:A3:36:5D:8A:42:75:76:9D
Certificate issuer: /CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Certificate serial: 0E9B2D
Authority key identifier: 80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/f88386ce316f1023f48eb4663bd898832f5a129b.roa
Signing time: Wed 24 Mar 2021 22:50:43 +0000
ROA not before: Wed 24 Mar 2021 22:47:59 +0000
ROA not after: Fri 24 Mar 2023 22:47:59 +0000
asID: 28006
IP address blocks: 181.196.80.0/24 maxlen: 24
181.211.132.0/22 maxlen: 24
186.178.104.0/21 maxlen: 24
186.178.112.0/24 maxlen: 24
186.178.113.0/24 maxlen: 24
186.178.118.0/24 maxlen: 24
186.178.120.0/21 maxlen: 24
186.178.80.0/21 maxlen: 24
186.42.174.0/23 maxlen: 24
186.46.92.0/22 maxlen: 24
186.47.176.0/22 maxlen: 22
186.47.206.0/24 maxlen: 24
190.152.153.0/24 maxlen: 24
190.152.214.0/24 maxlen: 24
190.214.216.0/24 maxlen: 24
190.214.3.0/24 maxlen: 24
201.219.1.0/24 maxlen: 24
201.219.10.0/24 maxlen: 24
201.219.15.0/24 maxlen: 24
201.219.18.0/24 maxlen: 24
201.219.2.0/24 maxlen: 24
201.219.22.0/24 maxlen: 24
201.219.23.0/24 maxlen: 24
201.219.24.0/24 maxlen: 24
201.219.26.0/24 maxlen: 24
201.219.27.0/24 maxlen: 24
201.219.28.0/24 maxlen: 24
201.219.29.0/24 maxlen: 24
201.219.3.0/24 maxlen: 24
201.219.30.0/24 maxlen: 24
201.219.31.0/24 maxlen: 24
201.219.33.0/24 maxlen: 24
201.219.35.0/24 maxlen: 24
201.219.36.0/24 maxlen: 24
201.219.4.0/24 maxlen: 24
201.219.40.0/24 maxlen: 24
201.219.41.0/24 maxlen: 24
201.219.44.0/24 maxlen: 24
201.219.5.0/24 maxlen: 24
201.219.55.0/24 maxlen: 24
201.219.6.0/24 maxlen: 24
201.219.62.0/24 maxlen: 24
201.219.63.0/24 maxlen: 24
201.219.7.0/24 maxlen: 24
201.219.8.0/24 maxlen: 24
2800:370:10:31::/64 maxlen: 64
2800:370:10::/48 maxlen: 64
2800:4f0:10:24::/64 maxlen: 64
2800:4f0:10:25::/64 maxlen: 64
2800:4f0:10::/48 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 957229 (0xe9b2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Validity
Not Before: Mar 24 22:47:59 2021 GMT
Not After : Mar 24 22:47:59 2023 GMT
Subject: CN=f88386ce316f1023f48eb4663bd898832f5a129b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ba:97:73:e2:7a:62:9c:80:a3:53:5b:fe:df:
57:06:d8:ae:f7:5e:9b:17:ea:7b:c7:1d:cd:74:2c:
b1:60:c3:ef:80:15:d0:5c:8a:5f:06:65:16:c0:8f:
96:d9:e3:c2:23:5d:ed:f8:4a:cb:24:0f:8c:ef:5f:
bd:da:8a:71:32:23:5c:55:04:99:25:3a:56:5e:51:
f5:af:e8:1f:57:76:0e:b4:9c:52:6c:b4:51:f2:95:
ca:3c:75:8d:f5:2e:b2:6d:d2:d2:e2:8d:b0:76:df:
0c:43:0b:13:65:58:42:7b:b2:16:19:2d:44:5c:a7:
f0:0b:de:00:ea:c6:ad:80:6c:73:e6:78:a0:e9:2e:
ca:c4:21:b7:f4:e7:30:c0:09:60:35:3d:25:1f:92:
71:67:c8:a3:99:6d:6e:f4:e8:95:59:10:df:28:5c:
36:ad:a9:b7:6b:2b:cc:ca:92:6a:30:cd:89:b6:02:
0c:49:56:6d:58:8a:e3:d5:b2:63:37:0f:8e:2d:87:
f6:04:ba:ac:63:1e:25:ac:ea:b0:a6:4b:4f:e1:ca:
c1:0e:5d:fd:72:24:7b:35:b1:4e:09:2b:3e:e5:0d:
a3:cd:38:17:58:c5:f3:57:50:47:45:cd:a0:20:58:
99:bd:cd:b6:a2:6c:93:d7:b4:a1:63:cb:5d:9f:1b:
54:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8B:79:71:E0:A3:13:EF:47:8C:3E:31:A3:36:5D:8A:42:75:76:9D
X509v3 Authority Key Identifier:
keyid:80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/f88386ce316f1023f48eb4663bd898832f5a129b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/1059e1e3317704575f2c0b750ee73b166a39cd37.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.196.80.0/24
181.211.132.0/22
186.42.174.0/23
186.46.92.0/22
186.47.176.0/22
186.47.206.0/24
186.178.80.0/21
186.178.104.0-186.178.113.255
186.178.118.0/24
186.178.120.0/21
190.152.153.0/24
190.152.214.0/24
190.214.3.0/24
190.214.216.0/24
201.219.1.0-201.219.8.255
201.219.10.0/24
201.219.15.0/24
201.219.18.0/24
201.219.22.0-201.219.24.255
201.219.26.0-201.219.31.255
201.219.33.0/24
201.219.35.0-201.219.36.255
201.219.40.0/23
201.219.44.0/24
201.219.55.0/24
201.219.62.0/23
IPv6:
2800:370:10::/48
2800:4f0:10::/48
Signature Algorithm: sha256WithRSAEncryption
4d:90:f6:e9:0a:96:bd:e5:e2:41:6d:d4:d4:8b:77:e9:e1:c1:
e1:24:df:72:77:e7:7a:6a:82:8f:ec:3d:bc:a0:88:12:d4:39:
2a:5d:67:18:c8:43:83:7f:33:f0:d9:2d:a2:0b:86:54:72:18:
2c:25:d8:65:29:9b:2c:94:2c:84:39:69:6b:fe:a6:02:fd:f4:
77:b0:58:d0:a2:93:7a:7f:ed:98:ff:2e:13:b0:16:10:72:b3:
8c:85:28:f8:a3:5e:48:10:72:c7:ee:64:58:82:08:b5:4d:c5:
c9:e0:8e:cc:70:1c:b9:fc:5f:b6:7a:ad:44:3f:16:6c:00:97:
03:55:d9:fb:ae:3c:f1:d8:75:5e:72:55:56:88:9f:b2:96:8e:
3a:a4:c9:71:a1:3a:8d:fe:9d:61:19:49:f6:b7:d7:68:24:5b:
79:98:cc:08:0f:31:d1:29:5b:bc:a8:32:d6:66:10:dd:f4:47:
32:4b:df:4e:99:8f:35:02:3d:8e:38:a0:f0:e4:06:9a:be:65:
29:d2:52:0d:29:aa:4f:6f:43:11:66:2c:3b:40:dc:47:25:a1:
7c:62:5c:47:aa:33:b6:32:22:48:24:17:a7:2c:b3:2b:09:16:
e7:e5:6b:c2:b2:f0:8c:00:4d:b1:11:31:55:8f:d9:93:9e:f7:
75:2f:14:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:51 2023 by rpki-client on console-ams.rpki-client.org