Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/d6aec817ac40792b675046cae2c74cdafdac0990.roa
File: d6aec817ac40792b675046cae2c74cdafdac0990.roa (raw, json)
Hash identifier: 66rU2v10jQXTfcpPSpaqcUo4qzlhPMk5f4bG7+k40HY=
Subject key identifier: 2F:7E:99:D5:F3:EB:38:5C:F4:DD:47:26:6D:53:B6:F7:30:E2:43:EE
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 0DCC29
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/d6aec817ac40792b675046cae2c74cdafdac0990.roa
Signing time: Wed 24 Mar 2021 14:34:58 +0000
ROA not before: Wed 24 Mar 2021 14:34:57 +0000
ROA not after: Tue 24 Mar 2026 14:34:57 +0000
asID: 27817
IP address blocks: 186.113.21.232/29 maxlen: 29
186.113.28.112/29 maxlen: 29
186.113.30.192/26 maxlen: 26
186.116.9.240/28 maxlen: 28
186.117.159.24/29 maxlen: 29
190.255.36.80/29 maxlen: 29
190.255.39.144/29 maxlen: 29
190.68.152.88/30 maxlen: 30
200.21.104.0/25 maxlen: 26
200.21.217.0/24 maxlen: 24
200.21.232.128/25 maxlen: 25
200.21.45.0/24 maxlen: 24
200.21.71.0/24 maxlen: 24
200.21.94.128/26 maxlen: 26
200.21.98.192/26 maxlen: 26
200.21.98.64/27 maxlen: 27
201.228.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 904233 (0xdcc29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Mar 24 14:34:57 2021 GMT
Not After : Mar 24 14:34:57 2026 GMT
Subject: CN=d6aec817ac40792b675046cae2c74cdafdac0990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d3:9d:5a:6a:60:a3:93:44:4f:1d:a7:12:63:
13:02:02:e3:ce:ad:78:d5:56:76:82:f0:5e:72:2c:
43:1b:da:9c:62:b3:01:55:f0:ac:52:ac:4e:4f:43:
b5:b3:51:5f:50:42:9b:df:ea:a1:b6:b7:6e:95:74:
96:48:62:e2:86:a9:1c:de:bc:31:fa:a5:f8:f4:f3:
01:f4:38:8b:d9:a2:ef:fc:bd:37:b7:5e:aa:0c:a7:
02:dc:ef:d4:07:3e:39:2e:ef:02:69:96:c6:c1:97:
1a:8d:b5:36:32:a4:cf:1e:b0:82:e0:ac:a3:da:13:
1a:56:a3:db:53:7c:0e:6e:8c:06:a2:4e:13:90:1d:
5a:6c:8e:12:ca:a3:4f:ee:bb:41:71:7a:bc:36:51:
a4:65:b1:7b:ec:26:e3:ab:9e:e3:ab:a1:fd:ab:5e:
3f:9e:b3:81:70:cb:df:4d:a4:90:96:83:85:df:4d:
36:ee:dd:4c:d2:84:8d:e6:5f:53:76:13:45:fa:2b:
af:b3:25:fc:cf:bd:f7:ce:3e:4d:96:ef:27:f3:1d:
76:23:06:e7:12:41:a3:e3:24:bd:36:f0:83:4d:5b:
b7:2d:7b:c4:3a:be:9b:12:e1:97:60:95:c5:ca:27:
bc:9b:87:a9:d3:ae:ab:1b:12:9b:4a:91:07:c4:94:
17:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:7E:99:D5:F3:EB:38:5C:F4:DD:47:26:6D:53:B6:F7:30:E2:43:EE
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/d6aec817ac40792b675046cae2c74cdafdac0990.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.113.21.232/29
186.113.28.112/29
186.113.30.192/26
186.116.9.240/28
186.117.159.24/29
190.68.152.88/30
190.255.36.80/29
190.255.39.144/29
200.21.45.0/24
200.21.71.0/24
200.21.94.128/26
200.21.98.64/27
200.21.98.192/26
200.21.104.0/25
200.21.217.0/24
200.21.232.128/25
201.228.3.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:96:ba:b7:3d:2a:de:23:fa:7b:7a:a2:07:62:4a:85:30:19:
ca:61:70:50:62:12:7a:51:9d:fb:45:d2:6c:bc:0e:31:f6:84:
28:76:02:6d:d9:8c:a3:8c:8e:df:20:6b:71:2e:a2:5e:00:2e:
ab:63:17:c1:1c:34:d6:f8:e7:e0:89:77:a2:61:34:a1:d7:0d:
e6:33:69:9a:c0:a8:b8:19:5e:a6:50:ee:1c:d3:40:4a:70:dd:
af:2c:93:58:b9:61:f5:4c:dd:ac:04:55:99:c7:ed:5e:d4:2c:
70:4b:70:6b:5e:68:38:a9:27:d9:96:8a:88:33:56:00:09:06:
50:0e:d7:02:f3:58:00:ba:23:e9:60:68:48:29:30:8b:e1:95:
5c:94:d6:d4:68:93:b2:fa:89:bb:c4:aa:a9:58:28:b1:be:5e:
40:0e:c1:b8:be:3d:8d:dd:66:1a:a2:c6:20:19:a7:76:9d:07:
40:ef:ca:39:a8:88:00:a5:be:53:98:e3:3b:09:af:d1:a3:f1:
05:7f:4b:bd:10:a8:45:93:ee:9a:6e:df:05:dd:92:30:56:38:
d9:a9:e7:ee:4c:71:cf:0f:04:bc:fb:cd:d5:f6:27:75:f8:c7:
2b:fb:64:8f:38:4a:dd:c2:fa:07:fe:09:9c:7d:5d:d1:86:35:
bd:8f:2a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:39 2023 by rpki-client on console-fra.rpki-client.org