Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/ba20d9617e1aa60984fcdefd32d3ff5b73e8eaf0.roa
File: ba20d9617e1aa60984fcdefd32d3ff5b73e8eaf0.roa (raw, json)
Hash identifier: PumSXqhfh8a3y/dnBVbesk5E+89ZpXdaACyvqvg7024=
Subject key identifier: 05:02:5D:9B:36:A1:42:F8:97:A2:A2:99:DB:9A:55:2E:75:B5:E9:BB
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 1DFB47
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/ba20d9617e1aa60984fcdefd32d3ff5b73e8eaf0.roa
Signing time: Thu 20 Oct 2022 16:02:22 +0000
ROA not before: Mon 26 Sep 2022 14:11:28 +0000
ROA not after: Fri 27 Sep 2024 14:11:28 +0000
asID: 3816
IP address blocks: 186.170.0.0/22 maxlen: 22
186.170.4.0/22 maxlen: 22
186.170.8.0/22 maxlen: 22
186.170.12.0/22 maxlen: 22
186.170.16.0/22 maxlen: 22
186.170.20.0/22 maxlen: 22
186.170.24.0/22 maxlen: 22
186.170.28.0/24 maxlen: 24
186.170.29.0/24 maxlen: 24
186.170.30.0/24 maxlen: 24
186.170.31.0/24 maxlen: 24
186.170.32.0/19 maxlen: 19
186.170.64.0/21 maxlen: 21
186.170.72.0/21 maxlen: 21
186.170.80.0/22 maxlen: 22
186.170.84.0/22 maxlen: 22
186.170.88.0/24 maxlen: 24
186.170.89.0/24 maxlen: 24
186.170.90.0/24 maxlen: 24
186.170.91.0/24 maxlen: 24
186.170.92.0/24 maxlen: 24
186.170.94.0/24 maxlen: 24
186.170.96.0/19 maxlen: 19
186.170.128.0/19 maxlen: 19
186.170.160.0/19 maxlen: 19
186.170.192.0/20 maxlen: 20
186.170.208.0/20 maxlen: 20
186.170.224.0/19 maxlen: 19
186.171.0.0/17 maxlen: 17
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1964871 (0x1dfb47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Sep 26 14:11:28 2022 GMT
Not After : Sep 27 14:11:28 2024 GMT
Subject: CN=ba20d9617e1aa60984fcdefd32d3ff5b73e8eaf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:3b:2b:14:9d:e3:93:d5:c3:d7:59:5c:61:60:
53:8e:ab:bf:e8:6d:97:d6:51:18:21:15:7c:9c:dc:
fb:26:8e:9b:05:e1:cf:4c:33:64:a4:4a:c7:0f:4f:
b3:87:dc:ef:e5:28:79:6e:9a:14:1e:c3:4c:11:a1:
55:ce:ba:93:50:02:4a:9a:8b:16:56:64:e4:2c:79:
29:08:59:19:bb:b1:3b:81:d3:62:e1:d3:f4:2f:b8:
9f:b7:f5:82:ee:e4:48:cf:ef:b2:66:44:fe:0f:fd:
23:2e:62:fa:a5:fe:0e:ec:d8:48:13:f8:b9:17:63:
61:c8:bb:62:05:76:cf:b1:58:f3:40:3a:e7:80:84:
68:0a:72:85:15:42:d7:c1:f9:95:07:06:02:21:40:
cb:b5:20:84:d7:43:8f:60:d4:18:f1:de:ba:9a:62:
c1:b3:14:53:16:d7:96:bc:9f:a4:30:e0:49:29:39:
1d:3f:de:d3:a8:eb:0d:3f:0d:72:a3:ef:12:08:51:
55:de:c1:cb:b6:1e:78:aa:fe:f7:8d:f7:33:ed:b3:
b6:44:b0:02:45:f7:86:83:0f:30:13:d4:2e:f3:1a:
81:5e:5f:43:8c:18:e6:9a:66:2b:24:28:12:cb:ae:
2f:e0:71:f1:0d:ba:85:27:4b:5b:40:86:c6:31:4b:
a8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:02:5D:9B:36:A1:42:F8:97:A2:A2:99:DB:9A:55:2E:75:B5:E9:BB
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/ba20d9617e1aa60984fcdefd32d3ff5b73e8eaf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.170.0.0-186.170.92.255
186.170.94.0/24
186.170.96.0-186.171.127.255
Signature Algorithm: sha256WithRSAEncryption
70:6b:7b:49:fa:e8:f3:c5:be:26:49:de:83:85:2c:85:99:10:
bf:2b:d9:32:6e:4f:bb:e6:44:f8:38:75:2b:2e:7a:f5:4a:09:
80:13:ca:ed:c3:b4:c7:96:fc:df:e4:30:1b:d9:63:72:56:6c:
92:8e:4e:15:54:8b:ce:f9:75:49:7d:ed:c9:9d:58:e5:7f:4f:
89:c3:c5:5b:f8:a8:f7:91:94:1d:26:b0:0e:51:4f:88:74:8e:
54:0c:de:df:4f:4d:7f:61:f4:87:08:40:66:7a:3b:6e:9d:b5:
97:98:aa:c4:a1:7e:0e:7e:b5:3b:ba:90:d9:b1:b7:3c:0d:77:
e7:e0:e6:a4:4d:90:3c:47:0f:c1:e0:5a:7b:a6:99:a9:a7:5b:
cd:07:b8:7e:b3:1d:a0:ca:31:c3:17:8e:63:22:1c:6b:c2:0a:
b6:49:eb:82:70:2a:a7:87:ab:33:d8:b9:67:c6:d0:cd:4c:42:
f8:76:01:d2:39:24:2b:ba:96:6a:4a:2d:78:f4:42:17:47:fc:
a1:71:a4:b3:99:c4:19:7d:be:88:80:02:a7:4a:a8:ca:85:af:
a7:fb:c9:83:72:ae:58:f5:eb:4c:c2:a1:a4:36:84:b3:6e:86:
16:11:ac:f4:0f:85:80:3c:4d:b6:33:80:eb:91:c0:84:2b:c4:
17:65:e2:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:53 2023 by rpki-client on console-ams.rpki-client.org