Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/f323d994c277339e076b19b9c83a4caaed8983d8.roa
File: f323d994c277339e076b19b9c83a4caaed8983d8.roa (raw, json)
Hash identifier: KqwxXy/vOdLgaZ6ArCWF6z1lCssHQ3F3bQ40kt9wpBU=
Subject key identifier: DA:4C:0A:ED:BC:2C:95:B1:B7:4C:FA:A1:C5:36:02:9E:93:E7:DC:0C
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 21D7A5
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/f323d994c277339e076b19b9c83a4caaed8983d8.roa
Signing time: Tue 14 Mar 2023 20:16:55 +0000
ROA not before: Mon 19 Sep 2022 15:15:42 +0000
ROA not after: Thu 26 Sep 2024 15:15:42 +0000
asID: 3816
IP address blocks: 152.200.0.0/17 maxlen: 17
152.200.128.0/20 maxlen: 20
152.200.144.0/22 maxlen: 22
152.200.148.0/22 maxlen: 22
152.200.152.0/22 maxlen: 22
152.200.156.0/22 maxlen: 22
152.200.160.0/22 maxlen: 22
152.200.164.0/22 maxlen: 22
152.200.168.0/22 maxlen: 22
152.200.172.0/22 maxlen: 22
152.200.176.0/20 maxlen: 20
152.200.192.0/20 maxlen: 20
152.201.32.0/19 maxlen: 19
152.201.64.0/19 maxlen: 19
152.201.96.0/19 maxlen: 19
152.201.128.0/19 maxlen: 19
152.201.160.0/19 maxlen: 19
152.201.192.0/19 maxlen: 19
152.201.224.0/19 maxlen: 19
152.202.0.0/19 maxlen: 19
152.202.32.0/19 maxlen: 19
152.202.64.0/19 maxlen: 19
152.202.96.0/19 maxlen: 19
152.202.128.0/19 maxlen: 19
152.202.160.0/19 maxlen: 19
152.202.192.0/19 maxlen: 19
152.202.224.0/19 maxlen: 19
152.203.0.0/20 maxlen: 20
152.203.32.0/19 maxlen: 19
152.203.64.0/18 maxlen: 18
152.203.128.0/19 maxlen: 19
152.203.160.0/19 maxlen: 19
152.203.192.0/19 maxlen: 19
152.203.224.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2217893 (0x21d7a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Sep 19 15:15:42 2022 GMT
Not After : Sep 26 15:15:42 2024 GMT
Subject: CN=f323d994c277339e076b19b9c83a4caaed8983d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:af:9c:62:59:15:b3:d6:45:ef:1d:b3:4d:60:
b7:8b:c8:6d:38:3c:ba:09:40:a9:12:4c:d8:57:e3:
35:56:ba:3f:9a:16:2b:2e:4f:12:97:07:84:96:af:
c6:3a:c5:75:eb:6f:ae:3a:c0:eb:8b:7a:1a:27:ce:
6d:f2:fe:01:23:53:2c:e0:b3:3b:8a:72:20:9b:af:
67:d8:a1:e3:33:cb:46:35:25:97:61:8a:9c:1a:92:
a5:61:e1:15:8f:7e:92:78:79:2c:32:27:9c:26:47:
7b:bb:5b:f9:d7:55:3c:ca:8e:46:9f:c0:1a:64:fe:
df:40:12:b0:a4:f2:0d:d1:06:ec:b0:c6:c1:a2:e5:
1c:ea:a5:6f:d6:7b:67:dc:31:80:89:e3:81:a9:b8:
d2:55:e2:9d:e5:fc:45:70:a8:f9:4b:a6:b9:14:d6:
d7:79:5e:8c:8a:b8:dd:be:26:2e:4f:78:1c:cc:a0:
eb:99:41:bc:ee:4f:c2:d4:e6:5f:f5:5c:98:02:7d:
d9:b1:c0:0c:77:98:48:83:69:e6:8c:2f:0b:18:65:
df:5e:51:6b:20:03:fd:b4:26:9d:de:2b:ef:80:4e:
4d:5b:34:8b:a4:d8:62:45:3f:03:2c:5c:fb:5e:c3:
8e:33:f5:c7:1e:d6:ee:b5:5d:e3:e8:d3:65:8a:66:
84:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:4C:0A:ED:BC:2C:95:B1:B7:4C:FA:A1:C5:36:02:9E:93:E7:DC:0C
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/f323d994c277339e076b19b9c83a4caaed8983d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.200.0.0-152.200.207.255
152.201.32.0-152.203.15.255
152.203.32.0-152.203.255.255
Signature Algorithm: sha256WithRSAEncryption
74:30:b1:e3:84:a5:9a:b4:37:37:88:be:26:f2:c9:00:fd:5e:
d2:4c:43:28:37:70:76:de:b2:aa:cf:fb:e8:01:81:b0:82:ee:
cb:9b:88:8b:eb:0f:4a:bc:7b:14:14:6f:24:f6:05:bb:44:09:
5e:38:40:09:5b:a9:1b:42:60:6e:9c:be:8b:2b:54:04:61:5e:
4e:39:a7:a3:4e:c0:7d:0b:08:0d:3e:00:3c:35:06:0b:5e:75:
57:3e:53:b0:61:33:81:bc:08:ab:d3:aa:43:79:d8:13:2e:60:
8c:31:9a:72:eb:8b:a6:ea:e4:e6:8e:f1:fc:90:24:24:5d:fe:
d1:4f:9b:b7:b7:08:11:9c:e3:bb:08:4e:bb:e0:d6:e4:f3:2d:
6b:45:e8:78:18:9b:f7:18:96:47:ee:61:1f:f8:49:7f:4e:dd:
95:af:cd:85:59:ce:dc:1c:aa:66:69:12:86:16:1d:ed:27:3d:
19:f4:4f:3a:64:f9:c8:bb:99:1a:dd:55:be:e9:9a:f8:be:2a:
31:32:9d:5a:fd:66:2d:42:c3:18:98:a6:7e:8e:67:ed:f4:04:
c5:ac:cd:f7:de:e7:d3:4f:ec:dc:f5:74:9a:fa:74:96:8c:29:
3a:b6:c8:92:58:9d:ac:84:98:b9:05:c7:85:73:60:57:f8:8d:
55:8d:48:b1
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgIDIdelMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGIz
NTgwMDc4ZjRmODk3ZmNmZGJhYTBkOTBjMmVjNmY0NjBlMzMyMjIwHhcNMjIwOTE5
MTUxNTQyWhcNMjQwOTI2MTUxNTQyWjAzMTEwLwYDVQQDEyhmMzIzZDk5NGMyNzcz
MzllMDc2YjE5YjljODNhNGNhYWVkODk4M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAm6+cYlkVs9ZF7x2zTWC3i8htODy6CUCpEkzYV+M1Vro/mhYr
Lk8SlweElq/GOsV162+uOsDri3oaJ85t8v4BI1Ms4LM7inIgm69n2KHjM8tGNSWX
YYqcGpKlYeEVj36SeHksMiecJkd7u1v511U8yo5Gn8AaZP7fQBKwpPIN0QbssMbB
ouUc6qVv1ntn3DGAieOBqbjSVeKd5fxFcKj5S6a5FNbXeV6MirjdviYuT3gczKDr
mUG87k/C1OZf9VyYAn3ZscAMd5hIg2nmjC8LGGXfXlFrIAP9tCad3ivvgE5NWzSL
pNhiRT8DLFz7XsOOM/XHHtbutV3j6NNlimaEUwIDAQABo4ICfTCCAnkwHQYDVR0O
BBYEFNpMCu28LJWxt0z6ocU2Ap6T59wMMB8GA1UdIwQYMBaAFN/Gyo1ROTKXljh0
TDeMs6BDDpW1MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYjM1ODAw
NzhmNGY4OTdmY2ZkYmFhMGQ5MGMyZWM2ZjQ2MGUzMzIyMi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYzIwYjU1OGEtODllMC00YzllLWI2YzgtZDdjNjk0
NjMyMTIwL2YzMjNkOTk0YzI3NzMzOWUwNzZiMTliOWM4M2E0Y2FhZWQ4OTgzZDgu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9jMjBiNTU4YS04OWUwLTRjOWUtYjZjOC1kN2M2
OTQ2MzIxMjAvYjM1ODAwNzhmNGY4OTdmY2ZkYmFhMGQ5MGMyZWM2ZjQ2MGUzMzIy
Mi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBBBggrBgEFBQcBBwEB/wQy
MDAwLgQCAAEwKDALAwMDmMgDBASYyMAwDAMEBZjJIAMEBJjLADALAwQFmMsgAwMC
mMgwDQYJKoZIhvcNAQELBQADggEBAHQwseOEpZq0NzeIvibyyQD9XtJMQyg3cHbe
sqrP++gBgbCC7subiIvrD0q8exQUbyT2BbtECV44QAlbqRtCYG6cvosrVARhXk45
p6NOwH0LCA0+ADw1BgtedVc+U7BhM4G8CKvTqkN52BMuYIwxmnLri6bq5OaO8fyQ
JCRd/tFPm7e3CBGc47sITrvg1uTzLWtF6HgYm/cYlkfuYR/4SX9O3ZWvzYVZztwc
qmZpEoYWHe0nPRn0Tzpk+ci7mRrdVb7pmvi+KjEynVr9Zi1CwxiYpn6OZ+30BMWs
zffe59NP7Nz1dJr6dJaMKTq2yJJYnayEmLkFx4VzYFf4jVWNSLE=
-----END CERTIFICATE-----
Generated at Wed Aug 30 18:08:10 2023 by rpki-client on console-fra.rpki-client.org