Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/659f8e494ce1e759e0538a8f45dcb578377778ba.roa
File: 659f8e494ce1e759e0538a8f45dcb578377778ba.roa (raw, json)
Hash identifier: 8FBrnFKqOihNDG33ADA4Z3x9YONjmhSUWHaVPkG80FM=
Subject key identifier: 9B:04:04:F6:D1:3E:99:3D:A7:A5:35:D2:CF:45:25:3E:BB:18:82:74
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 204270
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/659f8e494ce1e759e0538a8f45dcb578377778ba.roa
Signing time: Tue 17 Jan 2023 22:33:10 +0000
ROA not before: Wed 21 Sep 2022 15:15:42 +0000
ROA not after: Thu 26 Sep 2024 15:15:42 +0000
asID: 3816
IP address blocks: 152.200.0.0/17 maxlen: 17
152.200.128.0/20 maxlen: 20
152.200.144.0/22 maxlen: 22
152.200.148.0/22 maxlen: 22
152.200.152.0/22 maxlen: 22
152.200.156.0/22 maxlen: 22
152.200.160.0/22 maxlen: 22
152.200.164.0/22 maxlen: 22
152.200.168.0/22 maxlen: 22
152.200.172.0/22 maxlen: 22
152.200.176.0/20 maxlen: 20
152.201.32.0/19 maxlen: 19
152.201.64.0/19 maxlen: 19
152.201.96.0/19 maxlen: 19
152.201.128.0/19 maxlen: 19
152.201.160.0/19 maxlen: 19
152.202.0.0/19 maxlen: 19
152.202.32.0/19 maxlen: 19
152.202.64.0/19 maxlen: 19
152.202.96.0/19 maxlen: 19
152.202.128.0/19 maxlen: 19
152.202.160.0/19 maxlen: 19
152.202.192.0/19 maxlen: 19
152.202.224.0/19 maxlen: 19
152.203.0.0/20 maxlen: 20
152.203.32.0/19 maxlen: 19
152.203.64.0/18 maxlen: 18
152.203.128.0/19 maxlen: 19
152.203.160.0/19 maxlen: 19
152.203.192.0/19 maxlen: 19
152.203.224.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2114160 (0x204270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Sep 21 15:15:42 2022 GMT
Not After : Sep 26 15:15:42 2024 GMT
Subject: CN=659f8e494ce1e759e0538a8f45dcb578377778ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8a:0f:fa:c6:39:42:65:97:28:dc:02:19:a2:
25:2e:c8:26:fd:1c:5c:e6:84:55:52:2f:c8:ce:d1:
86:26:66:11:27:ea:54:fe:c0:2a:b7:1b:d1:24:f1:
86:d0:d9:e7:62:be:ba:db:8e:ac:2f:11:fc:8d:99:
23:7c:d1:0a:46:1c:13:a6:a2:f9:4a:57:c9:31:2d:
b8:1e:6b:7f:c2:99:c0:5c:ef:0f:99:56:6a:83:8a:
53:a2:53:1d:8a:1d:02:5a:20:ee:ea:d8:bc:1e:f0:
5b:4b:75:a2:8a:bf:04:1c:00:bf:d2:09:ba:1d:c2:
40:a3:44:ad:ec:de:d9:f5:ee:c2:c6:ca:0e:4c:44:
43:5d:d3:86:6a:3c:97:96:52:69:7b:32:a0:50:ca:
c9:ca:84:bc:85:44:a4:24:5f:c4:ae:de:fb:f0:9b:
98:af:3a:36:68:ed:1a:67:26:b9:d0:fd:71:fb:a1:
29:68:33:bc:25:4c:cb:1b:d8:8f:50:31:5e:78:e7:
bd:ed:7e:57:9c:2a:04:95:4d:29:03:0d:3a:81:6c:
b0:38:1f:ed:0a:1d:47:78:e7:58:f9:1f:92:fe:3f:
55:03:40:ed:12:2f:9a:e4:9a:4d:5b:46:27:a7:64:
6a:72:90:79:ec:5c:fe:c0:19:10:eb:72:58:1b:8d:
1c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:04:04:F6:D1:3E:99:3D:A7:A5:35:D2:CF:45:25:3E:BB:18:82:74
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/659f8e494ce1e759e0538a8f45dcb578377778ba.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.200.0.0-152.200.191.255
152.201.32.0-152.201.191.255
152.202.0.0-152.203.15.255
152.203.32.0-152.203.255.255
Signature Algorithm: sha256WithRSAEncryption
72:61:bb:20:85:f3:7d:b5:96:de:02:33:2e:c2:ce:1f:20:f7:
48:4b:3e:80:9a:7f:90:36:a3:1c:ea:2e:b9:9c:cb:d5:c2:a0:
a4:1f:f4:3e:f6:a8:c9:6d:1e:ad:38:6a:d1:5b:b7:44:57:09:
77:5a:be:25:e3:49:c1:70:ff:90:05:c8:39:2e:12:a7:40:3b:
d4:47:03:04:0e:f3:bb:dc:a4:f7:f1:a4:71:ee:09:e4:b9:04:
e8:de:9c:24:59:b1:b6:cf:6d:17:90:8b:da:0d:e0:e1:c3:f4:
35:72:6a:05:f7:98:7d:e2:a1:ee:b2:89:8f:ef:6e:10:2c:8d:
b0:34:31:96:46:3a:5f:40:81:88:a7:db:b6:f7:cc:45:a8:2c:
0e:c9:f4:ce:e6:56:4b:cf:e7:a4:3b:68:61:99:8f:88:75:15:
94:b9:f1:7c:87:93:c4:ee:1b:e6:51:cb:e1:ed:95:c2:8d:f7:
e6:8f:d3:03:4e:14:ce:b8:69:4e:ca:e1:5d:8e:b2:e4:e8:ce:
ff:59:b5:96:e2:f9:0e:af:80:df:98:46:80:49:b2:61:92:76:
a5:a9:9f:d0:0d:ae:28:40:29:34:99:18:40:92:42:3a:3f:90:
8a:61:15:69:97:a2:07:82:d5:b0:63:9f:a2:c7:89:8b:f0:5b:
d9:10:2f:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:53 2023 by rpki-client on console-ams.rpki-client.org