Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/c2070df39f5f9cbc3c2bf0453568a1cc82dac9db.roa
File: c2070df39f5f9cbc3c2bf0453568a1cc82dac9db.roa (raw, json)
Hash identifier: 0eLUbQP5Mgo2S3omr0leWJqnVca4iUCdWkye7hZY1dQ=
Subject key identifier: 7A:A5:74:51:58:F4:3C:F5:5E:21:0E:76:E4:28:EC:DD:3D:02:59:CA
Certificate issuer: /CN=c4935075ec435dbda09406df9fa324ff802f1d14
Certificate serial: 20FCD4
Authority key identifier: 76:83:16:F0:88:5D:BF:BD:21:FF:F5:2D:ED:2B:87:BE:D1:53:D7:ED
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c4935075ec435dbda09406df9fa324ff802f1d14.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/c2070df39f5f9cbc3c2bf0453568a1cc82dac9db.roa
Signing time: Tue 23 May 2023 19:01:41 +0000
ROA not before: Mon 22 May 2023 19:01:38 +0000
ROA not after: Tue 23 May 2028 19:01:38 +0000
asID: 23243
IP address blocks: 181.189.128.0/24 maxlen: 24
181.189.144.0/21 maxlen: 24
181.189.152.0/24 maxlen: 24
181.189.154.0/24 maxlen: 24
190.14.2.0/24 maxlen: 24
190.14.3.0/24 maxlen: 24
190.14.4.0/24 maxlen: 24
190.14.5.0/24 maxlen: 24
190.14.6.0/24 maxlen: 24
190.111.17.0/24 maxlen: 24
190.111.24.0/24 maxlen: 24
190.111.29.0/24 maxlen: 24
200.94.249.0/24 maxlen: 24
200.94.250.0/24 maxlen: 24
200.94.251.0/24 maxlen: 24
2803:3a00::/37 maxlen: 48
2803:3a00:1800::/37 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2161876 (0x20fcd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4935075ec435dbda09406df9fa324ff802f1d14
Validity
Not Before: May 22 19:01:38 2023 GMT
Not After : May 23 19:01:38 2028 GMT
Subject: CN=c2070df39f5f9cbc3c2bf0453568a1cc82dac9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:71:ac:8b:57:0a:cb:fa:6f:e9:ee:76:af:18:
be:7d:6a:62:11:74:a1:98:ef:07:72:be:22:f3:2f:
4b:19:23:a7:f1:bd:91:5c:d0:63:00:c0:99:49:90:
5c:3d:77:ba:00:9d:01:a7:ea:b5:b2:30:63:3c:17:
11:f7:12:af:c5:86:2d:70:bc:69:04:24:a6:97:36:
ac:48:fc:58:ed:72:cc:a0:ba:01:20:3d:28:1b:bf:
72:0b:63:d8:e0:18:3d:87:36:7b:00:76:fd:d2:49:
34:19:55:1e:9d:f7:40:32:12:d8:3f:31:cd:3a:fc:
ff:80:38:0c:c3:44:c8:37:7c:25:47:00:99:89:e6:
cd:37:d1:63:60:6d:88:a2:eb:2c:01:ed:8e:37:5d:
01:b7:99:4a:eb:f4:eb:5b:ae:41:e9:49:c8:f3:0f:
0d:56:1d:e6:7e:c0:55:ce:a0:2a:f5:61:34:6e:5b:
75:af:07:e7:62:49:bd:c5:25:ff:be:28:a6:5d:29:
c9:f6:fd:31:35:e5:f7:71:d0:0d:93:fa:6c:56:be:
eb:5c:b4:0c:70:36:e1:ea:3c:9d:06:6f:10:a4:6d:
3a:8e:c0:89:16:5d:b6:4e:a0:be:20:8a:df:a4:3a:
49:92:d9:d5:35:4b:0d:ad:7b:43:9c:b4:d4:5c:8d:
3d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A5:74:51:58:F4:3C:F5:5E:21:0E:76:E4:28:EC:DD:3D:02:59:CA
X509v3 Authority Key Identifier:
keyid:76:83:16:F0:88:5D:BF:BD:21:FF:F5:2D:ED:2B:87:BE:D1:53:D7:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c4935075ec435dbda09406df9fa324ff802f1d14.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/c2070df39f5f9cbc3c2bf0453568a1cc82dac9db.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/c4935075ec435dbda09406df9fa324ff802f1d14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.189.128.0/24
181.189.144.0-181.189.152.255
181.189.154.0/24
190.14.2.0-190.14.6.255
190.111.17.0/24
190.111.24.0/24
190.111.29.0/24
200.94.249.0-200.94.251.255
IPv6:
2803:3a00::/37
2803:3a00:1800::/37
Signature Algorithm: sha256WithRSAEncryption
62:6d:e9:d2:43:e3:c2:18:ea:ac:8a:ec:29:ac:84:22:ce:61:
dd:7b:5c:ed:db:5c:7b:e8:79:07:79:18:37:8d:1c:27:03:b2:
b6:72:97:fc:52:91:a5:7d:c1:bb:e6:7b:17:07:54:2b:95:cc:
36:c5:57:69:58:0e:49:20:b8:57:e3:09:10:38:c3:07:36:04:
9f:93:e0:a2:9d:66:e2:42:4a:42:86:70:ec:ad:26:df:41:24:
f6:ea:93:25:f9:59:c2:0e:c7:f4:3f:54:db:08:91:4c:08:7b:
e0:d5:0a:b6:d8:57:cf:62:45:2a:7a:91:1b:d6:c6:5b:7c:92:
e9:f6:c2:86:0f:29:90:d3:95:aa:a0:56:c5:f6:62:18:49:1f:
73:ca:cf:47:7c:a4:a6:4c:e8:1c:65:96:9a:fc:35:52:da:f4:
6c:d2:85:db:ea:4c:1a:e2:e8:af:34:9b:3b:67:4c:d0:5b:ab:
93:2d:0c:f2:e3:0d:b5:25:01:f3:97:52:61:7a:d0:70:f8:7a:
58:fa:e2:b9:89:d1:3b:ba:b0:00:1e:d8:07:07:7d:59:c5:d4:
1c:4a:f9:ea:eb:79:c7:6b:7e:ce:9b:43:68:ef:b4:a1:82:52:
07:d9:2e:bb:f0:57:6e:64:3e:a6:a6:6d:22:bc:d5:6a:13:5d:
61:1f:18:74
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:53 2023 by rpki-client on console-ams.rpki-client.org