Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/b212d1a5e5cd796c033351da107d7a4801752c1b.roa
File: b212d1a5e5cd796c033351da107d7a4801752c1b.roa (raw, json)
Hash identifier: yOzXQXpmUTVZHJJqfzb9SjhU46ymE15YTxqUX4IM52w=
Subject key identifier: 13:0D:2C:D5:33:79:13:D4:EA:2D:BC:42:CF:12:5E:99:73:D6:0D:F6
Certificate issuer: /CN=337d330947d264c81b4503df3b1ef67d45cc2dc4
Certificate serial: 15B8AD
Authority key identifier: 61:B6:8D:FD:87:EB:CE:D6:CA:2B:24:E2:AA:8F:F7:07:DA:63:5E:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/337d330947d264c81b4503df3b1ef67d45cc2dc4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/b212d1a5e5cd796c033351da107d7a4801752c1b.roa
Signing time: Tue 04 Jan 2022 18:20:18 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 22368
IP address blocks: 181.174.0.0/18 maxlen: 24
190.13.0.0/20 maxlen: 23
190.13.24.0/21 maxlen: 23
190.13.32.0/21 maxlen: 22
190.13.40.0/21 maxlen: 22
190.96.128.0/21 maxlen: 22
190.96.160.0/20 maxlen: 24
190.96.176.0/21 maxlen: 23
190.96.192.0/21 maxlen: 24
190.96.208.0/20 maxlen: 24
190.124.96.0/19 maxlen: 24
190.184.128.0/18 maxlen: 24
201.221.128.0/20 maxlen: 24
201.221.144.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1423533 (0x15b8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=337d330947d264c81b4503df3b1ef67d45cc2dc4
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=b212d1a5e5cd796c033351da107d7a4801752c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d0:8a:86:13:4c:45:a4:42:ce:7d:d2:07:a0:
05:05:12:06:f7:1d:a2:6a:29:b1:46:0d:5e:59:e4:
4c:cb:b4:13:78:b1:ad:02:f0:bc:1c:c7:ff:15:35:
52:aa:83:a9:99:b4:82:ef:fa:7d:f2:ed:76:b5:af:
07:36:55:23:c8:ae:d5:cc:5c:22:3e:43:b3:d3:35:
ea:79:59:c6:c0:19:00:0c:85:90:09:82:c4:bf:98:
46:30:c3:38:e3:60:69:a4:fa:7f:5b:a7:4f:cc:57:
fc:19:5a:c8:4b:46:42:02:39:8c:97:c0:b3:10:4c:
4e:05:a1:83:06:5a:ce:d8:e9:bd:e1:a0:36:23:58:
8d:de:d7:b0:19:d4:db:fb:f2:2e:83:08:41:10:79:
10:79:14:51:dc:02:93:0e:00:f9:88:7c:62:a1:6c:
d4:1e:c9:3a:11:ee:d8:48:c6:bf:2d:75:ae:63:9e:
bc:e9:4b:88:f3:30:b7:de:d2:08:4b:a7:a7:93:66:
68:14:96:d2:29:99:49:52:8f:e3:cc:32:b9:d5:51:
7a:c5:1a:5e:1f:b2:17:e4:05:9f:d4:93:0e:0a:4c:
a7:33:2c:78:ea:8d:23:26:b5:29:bc:66:74:20:d3:
b1:7c:3a:4c:ee:4a:2d:56:53:e0:94:d9:62:7d:ac:
29:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:0D:2C:D5:33:79:13:D4:EA:2D:BC:42:CF:12:5E:99:73:D6:0D:F6
X509v3 Authority Key Identifier:
keyid:61:B6:8D:FD:87:EB:CE:D6:CA:2B:24:E2:AA:8F:F7:07:DA:63:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/337d330947d264c81b4503df3b1ef67d45cc2dc4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/b212d1a5e5cd796c033351da107d7a4801752c1b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/337d330947d264c81b4503df3b1ef67d45cc2dc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.174.0.0/18
190.13.0.0/20
190.13.24.0-190.13.47.255
190.96.128.0/21
190.96.160.0-190.96.183.255
190.96.192.0/21
190.96.208.0/20
190.124.96.0/19
190.184.128.0/18
201.221.128.0/19
Signature Algorithm: sha256WithRSAEncryption
88:8f:66:1b:fe:62:b1:a3:2e:fa:94:16:6d:0b:c8:7e:fd:f8:
a6:c3:58:88:ed:a2:b7:4e:d7:82:b5:d4:a0:67:1b:7b:93:37:
7c:71:ec:e9:5d:e0:d6:d5:c0:95:26:8b:03:21:aa:d9:78:5b:
04:92:80:4f:d4:17:5d:e5:50:5c:83:62:0f:1e:5b:e6:b6:c3:
d7:1a:92:56:3c:0c:02:5b:d8:e3:ce:c9:b2:96:2f:ed:16:3d:
cf:ee:e5:2c:fe:76:77:f4:0c:45:9a:f0:b8:d6:bd:a3:f1:79:
a2:61:d7:bf:c4:f1:6e:34:6a:64:75:9a:e2:34:50:10:c1:23:
58:50:ac:ef:34:e9:ab:18:f2:7c:70:e6:5a:47:71:d6:d5:20:
6a:2d:29:e5:bd:d7:a5:66:7d:91:1c:72:a9:a8:5d:34:16:91:
2a:00:b3:b5:1f:33:32:7c:e9:42:19:b0:17:ca:40:1c:52:12:
75:97:87:b4:e2:f9:67:83:87:da:95:b4:ed:8b:81:b3:aa:09:
3e:84:94:e6:9d:7c:01:e2:07:dc:ed:06:58:4e:84:df:c6:ec:
2b:05:3f:65:f2:15:83:04:bd:0e:99:ad:55:6f:67:dc:0e:ae:
f3:41:07:47:1e:a5:b1:bb:14:f8:cb:8b:4b:53:bc:73:3b:64:
9b:25:ac:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:37 2023 by rpki-client on console-fra.rpki-client.org