Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/958f2cf7fe684a116c2077188d83bd10c7b854b4.roa
File: 958f2cf7fe684a116c2077188d83bd10c7b854b4.roa (raw, json)
Hash identifier: vW6h8kumte1+7PlwmMHL50HlK+C9xV/9iwANrMojC08=
Subject key identifier: 7C:01:9C:F4:B2:73:96:0E:56:4B:7D:61:33:CA:C7:20:08:82:25:1E
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 1BD613
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/958f2cf7fe684a116c2077188d83bd10c7b854b4.roa
Signing time: Mon 26 Sep 2022 20:25:06 +0000
ROA not before: Mon 26 Sep 2022 20:23:04 +0000
ROA not after: Thu 26 Sep 2024 20:23:04 +0000
asID: 3816
IP address blocks: 181.236.160.0/20 maxlen: 20
181.236.214.0/23 maxlen: 23
181.236.217.0/24 maxlen: 24
181.236.218.0/24 maxlen: 24
181.236.221.0/24 maxlen: 24
181.236.223.0/24 maxlen: 24
181.237.0.0/20 maxlen: 20
181.237.16.0/20 maxlen: 20
181.237.32.0/20 maxlen: 20
181.237.48.0/20 maxlen: 20
181.237.64.0/20 maxlen: 20
181.237.80.0/20 maxlen: 20
181.237.96.0/20 maxlen: 20
181.237.112.0/20 maxlen: 20
181.237.128.0/20 maxlen: 20
181.237.144.0/20 maxlen: 20
181.237.160.0/20 maxlen: 20
181.237.176.0/20 maxlen: 20
181.237.192.0/20 maxlen: 20
181.237.208.0/20 maxlen: 20
181.237.224.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1824275 (0x1bd613)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Sep 26 20:23:04 2022 GMT
Not After : Sep 26 20:23:04 2024 GMT
Subject: CN=958f2cf7fe684a116c2077188d83bd10c7b854b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9e:27:80:b3:be:f7:37:eb:98:c0:eb:b9:30:
6c:bc:19:4a:97:33:c3:22:99:fc:ea:9a:f8:2d:f0:
7c:50:ba:c5:41:d6:48:02:63:45:88:d3:68:89:58:
6b:82:4a:12:d0:7f:fa:dd:01:b3:9d:d5:d7:66:b3:
46:86:52:b3:7c:25:2c:1c:0a:a2:7a:26:81:6e:ea:
81:1d:17:eb:80:1c:69:f2:f1:1d:33:57:67:ef:52:
61:e9:c0:39:9b:da:1f:dc:d6:f5:89:d4:ea:38:32:
0d:22:05:a8:43:7e:ab:3d:20:a0:a0:4d:e4:0c:e7:
5e:da:f0:38:85:28:a1:b3:24:3c:47:f4:84:b8:9f:
9c:4b:c3:ae:61:21:dc:dd:30:35:54:b1:de:4d:86:
0c:3a:e0:8e:a0:8f:72:aa:b5:a6:ec:20:97:47:fc:
68:94:9b:bf:86:0a:03:b1:54:98:1f:ac:ef:7d:be:
75:72:27:34:ec:be:92:67:08:b4:38:33:ed:15:f0:
a7:ae:9c:e7:cd:52:83:18:fe:02:71:75:cc:d9:10:
fa:bd:75:73:ea:79:b7:2d:46:27:e5:c0:8e:a4:99:
44:92:31:22:68:f3:0a:8c:82:bf:d0:10:e3:1e:00:
e5:81:71:05:e9:eb:eb:bd:dd:84:58:95:08:78:af:
80:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:01:9C:F4:B2:73:96:0E:56:4B:7D:61:33:CA:C7:20:08:82:25:1E
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/958f2cf7fe684a116c2077188d83bd10c7b854b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.236.160.0/20
181.236.214.0/23
181.236.217.0-181.236.218.255
181.236.221.0/24
181.236.223.0/24
181.237.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:c4:ab:5f:6a:d2:5d:c8:d6:4a:09:db:80:29:ef:99:f6:6a:
81:59:02:a3:10:20:88:2d:1e:93:a5:a0:57:ec:17:74:f3:66:
c3:49:68:8b:e0:d7:57:74:f9:14:1a:fc:68:90:40:9c:0d:3f:
e6:24:0e:0c:4b:4b:17:0d:63:b4:07:a3:a1:ec:ee:2e:06:c1:
e5:c0:f7:43:a4:dd:93:7e:57:ad:45:16:56:36:2d:48:66:5c:
83:03:39:36:03:17:48:f2:f5:b5:b9:65:2a:ba:0b:c5:a1:9b:
29:3c:0b:e9:a3:cc:4a:34:37:6f:e3:be:e9:ab:87:ae:fb:32:
28:5b:c8:4f:8f:4e:48:45:20:3d:d5:3a:45:4e:08:f3:99:e2:
8f:9c:b4:b2:92:ea:f5:66:4d:8e:af:b9:e3:6c:4d:95:f5:49:
f3:0a:dc:d2:f1:cd:c0:0c:81:7d:76:20:0f:09:56:72:b4:97:
78:87:2a:23:77:bd:88:1a:62:e2:63:a3:d1:21:d7:8a:14:71:
1c:8c:4b:bd:71:24:16:0f:73:23:f0:3d:23:5f:21:ee:8c:db:
c3:3f:73:d2:1c:56:78:fd:85:dc:14:5e:0e:1e:28:4b:3d:59:
e1:05:40:8c:d4:7a:09:7e:8c:78:70:4f:d8:43:48:b5:e7:d0:
e8:40:3a:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 18:08:10 2023 by rpki-client on console-fra.rpki-client.org