Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/9e939743a074e5a651405dfc92bb8746885e9511.roa
File: 9e939743a074e5a651405dfc92bb8746885e9511.roa (raw, json)
Hash identifier: S4vE3us6aWac1I8FzpK4a612LSjALnru0uNtLxTvAvE=
Subject key identifier: 2A:E8:DA:45:2F:71:6D:91:9F:8F:1F:B2:D1:C0:F2:FD:77:B1:92:9F
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 1C15DF
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/9e939743a074e5a651405dfc92bb8746885e9511.roa
Signing time: Wed 28 Sep 2022 13:38:35 +0000
ROA not before: Wed 28 Sep 2022 13:36:55 +0000
ROA not after: Sat 28 Sep 2024 13:36:55 +0000
asID: 3816
IP address blocks: 186.99.0.0/19 maxlen: 19
186.99.32.0/19 maxlen: 19
186.99.64.0/19 maxlen: 19
186.99.96.0/20 maxlen: 20
186.99.112.0/20 maxlen: 20
186.99.128.0/20 maxlen: 20
186.99.144.0/20 maxlen: 20
186.99.160.0/22 maxlen: 22
186.99.164.0/22 maxlen: 22
186.99.168.0/22 maxlen: 22
186.99.172.0/22 maxlen: 22
186.99.176.0/22 maxlen: 22
186.99.180.0/22 maxlen: 22
186.99.184.0/22 maxlen: 22
186.99.188.0/22 maxlen: 22
186.99.192.0/22 maxlen: 22
186.99.196.0/22 maxlen: 22
186.99.200.0/22 maxlen: 22
186.99.204.0/22 maxlen: 22
186.99.208.0/22 maxlen: 22
186.99.212.0/22 maxlen: 22
186.99.216.0/22 maxlen: 22
186.99.220.0/22 maxlen: 22
186.99.224.0/20 maxlen: 20
186.99.240.0/21 maxlen: 21
186.99.252.0/24 maxlen: 24
186.99.253.0/24 maxlen: 24
186.99.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1840607 (0x1c15df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Sep 28 13:36:55 2022 GMT
Not After : Sep 28 13:36:55 2024 GMT
Subject: CN=9e939743a074e5a651405dfc92bb8746885e9511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5e:df:ae:85:56:5b:e3:b1:b6:ee:2a:e5:20:
cc:2e:37:94:24:c4:21:cc:01:2b:9b:b5:1b:8c:fd:
9c:3f:8a:26:9b:6e:36:4d:58:d5:4a:3c:5f:1b:ad:
6a:2d:c8:23:07:92:7f:5b:7f:4e:d1:22:23:89:8d:
ae:c6:62:88:21:93:e4:c1:10:17:89:52:00:47:37:
0c:7d:45:af:03:3e:ac:ea:80:f5:57:91:4b:ef:04:
31:a6:3e:c8:83:bf:25:46:8b:0f:2f:9a:28:76:b2:
aa:34:f3:48:58:6b:0c:02:7b:74:ae:6f:b0:e7:0f:
5d:c9:b4:a5:b5:8f:85:9a:7b:ef:e0:3f:dd:b7:bb:
ee:17:85:2e:76:11:0f:cc:55:19:32:28:95:87:e4:
d6:91:da:42:18:57:2c:8f:8e:29:f0:bc:1e:92:8b:
c0:91:28:db:cb:db:b3:37:c4:05:da:32:0d:34:1e:
01:be:c9:9f:87:9a:a3:5f:33:d1:42:53:0d:c8:72:
db:e3:cb:17:fb:70:fa:21:58:02:f4:af:d3:fc:fe:
b8:5a:c6:6a:34:c6:5d:5e:f1:90:75:45:d5:47:e0:
b7:2f:36:2d:2b:d8:be:cc:5a:6f:72:1f:e7:da:37:
63:c3:1b:ae:cf:1d:92:ee:df:9c:aa:11:df:64:0d:
62:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E8:DA:45:2F:71:6D:91:9F:8F:1F:B2:D1:C0:F2:FD:77:B1:92:9F
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/9e939743a074e5a651405dfc92bb8746885e9511.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.99.0.0-186.99.247.255
186.99.252.0-186.99.254.255
Signature Algorithm: sha256WithRSAEncryption
3d:b2:b7:19:c7:a0:65:df:69:f2:fa:df:d1:7f:83:6b:7c:fa:
75:9d:23:6c:76:38:6c:a9:9e:96:f1:d7:b7:16:45:10:eb:cb:
31:35:d5:6e:69:07:ea:36:22:69:e8:83:d1:c8:77:00:ca:47:
1a:3b:0d:f4:98:79:73:dc:9e:d9:2e:58:e8:ad:d1:72:b5:de:
40:5e:f3:9f:ef:64:34:a3:1a:7b:aa:a1:bc:c8:2e:5f:ba:f0:
81:07:ee:80:f6:df:1f:4d:00:d9:72:09:5c:2d:4b:40:f8:06:
3e:11:fa:96:48:ca:10:9e:7f:7c:3c:ff:61:3e:64:77:1d:8b:
e3:99:ac:f7:4c:9a:4f:79:82:a0:15:20:2b:6f:d2:80:b1:d5:
f1:db:6b:51:ea:23:f2:18:a7:6c:24:e9:2e:81:26:60:57:b8:
ec:0b:44:10:8b:53:8b:db:c7:34:31:58:17:8c:80:ee:c4:a9:
02:d9:e2:c3:1d:1d:8c:1d:f8:ce:fe:60:84:cd:07:ed:12:e4:
5e:bc:91:42:31:11:6e:40:01:26:f2:f2:d7:53:1d:80:42:90:
cb:b9:96:1f:47:a5:24:1b:46:3c:f9:fb:07:65:80:52:3c:c6:
36:ac:3c:bd:28:60:2c:d4:df:96:6d:a9:84:7e:c4:5f:c8:93:
09:da:00:99
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgIDHBXfMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGIz
NTgwMDc4ZjRmODk3ZmNmZGJhYTBkOTBjMmVjNmY0NjBlMzMyMjIwHhcNMjIwOTI4
MTMzNjU1WhcNMjQwOTI4MTMzNjU1WjAzMTEwLwYDVQQDEyg5ZTkzOTc0M2EwNzRl
NWE2NTE0MDVkZmM5MmJiODc0Njg4NWU5NTExMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAn17froVWW+Oxtu4q5SDMLjeUJMQhzAErm7UbjP2cP4omm242
TVjVSjxfG61qLcgjB5J/W39O0SIjiY2uxmKIIZPkwRAXiVIARzcMfUWvAz6s6oD1
V5FL7wQxpj7Ig78lRosPL5oodrKqNPNIWGsMAnt0rm+w5w9dybSltY+Fmnvv4D/d
t7vuF4UudhEPzFUZMiiVh+TWkdpCGFcsj44p8LwekovAkSjby9uzN8QF2jINNB4B
vsmfh5qjXzPRQlMNyHLb48sX+3D6IVgC9K/T/P64WsZqNMZdXvGQdUXVR+C3LzYt
K9i+zFpvch/n2jdjwxuuzx2S7t+cqhHfZA1iEQIDAQABo4ICcDCCAmwwHQYDVR0O
BBYEFCro2kUvcW2Rn48fstHA8v13sZKfMB8GA1UdIwQYMBaAFN/Gyo1ROTKXljh0
TDeMs6BDDpW1MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYjM1ODAw
NzhmNGY4OTdmY2ZkYmFhMGQ5MGMyZWM2ZjQ2MGUzMzIyMi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYzIwYjU1OGEtODllMC00YzllLWI2YzgtZDdjNjk0
NjMyMTIwLzllOTM5NzQzYTA3NGU1YTY1MTQwNWRmYzkyYmI4NzQ2ODg1ZTk1MTEu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9jMjBiNTU4YS04OWUwLTRjOWUtYjZjOC1kN2M2
OTQ2MzIxMjAvYjM1ODAwNzhmNGY4OTdmY2ZkYmFhMGQ5MGMyZWM2ZjQ2MGUzMzIy
Mi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQl
MCMwIQQCAAEwGzALAwMAumMDBAO6Y/AwDAMEArpj/AMEALpj/jANBgkqhkiG9w0B
AQsFAAOCAQEAPbK3GcegZd9p8vrf0X+Da3z6dZ0jbHY4bKmelvHXtxZFEOvLMTXV
bmkH6jYiaeiD0ch3AMpHGjsN9Jh5c9ye2S5Y6K3RcrXeQF7zn+9kNKMae6qhvMgu
X7rwgQfugPbfH00A2XIJXC1LQPgGPhH6lkjKEJ5/fDz/YT5kdx2L45ms90yaT3mC
oBUgK2/SgLHV8dtrUeoj8hinbCTpLoEmYFe47AtEEItTi9vHNDFYF4yA7sSpAtni
wx0djB34zv5ghM0H7RLkXryRQjERbkABJvLy11MdgEKQy7mWH0elJBtGPPn7B2WA
UjzGNqw8vShgLNTflm2phH7EX8iTCdoAmQ==
-----END CERTIFICATE-----
Generated at Wed Aug 30 18:08:10 2023 by rpki-client on console-fra.rpki-client.org