Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/5a3d7f6fc530d4a2d4b240f37a3fc84166a27c50.roa
File: 5a3d7f6fc530d4a2d4b240f37a3fc84166a27c50.roa (raw, json)
Hash identifier: UtLIJlifHIpio9X9cme5sr0ZGQNeQmyRm2YpANDEy98=
Subject key identifier: 4A:8A:8F:7D:2E:BC:42:C3:99:30:22:C3:E0:2D:F1:12:DE:1B:B6:03
Certificate issuer: /CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Certificate serial: 07043C
Authority key identifier: 8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/5a3d7f6fc530d4a2d4b240f37a3fc84166a27c50.roa
Signing time: Tue 07 Mar 2023 18:42:25 +0000
ROA not before: Mon 06 Mar 2023 18:15:34 +0000
ROA not after: Fri 07 Mar 2025 18:15:34 +0000
asID: 17072
IP address blocks: 187.188.26.0/24 maxlen: 24
187.188.32.0/24 maxlen: 24
187.189.0.0/24 maxlen: 24
187.189.49.0/24 maxlen: 24
187.189.50.0/24 maxlen: 24
187.189.90.0/24 maxlen: 24
187.189.119.0/24 maxlen: 24
187.190.151.0/24 maxlen: 24
187.190.168.0/24 maxlen: 24
187.190.169.0/24 maxlen: 24
187.190.174.0/24 maxlen: 24
187.190.175.0/24 maxlen: 24
187.190.191.0/24 maxlen: 24
187.190.215.0/24 maxlen: 24
189.203.87.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459836 (0x7043c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Validity
Not Before: Mar 6 18:15:34 2023 GMT
Not After : Mar 7 18:15:34 2025 GMT
Subject: CN=5a3d7f6fc530d4a2d4b240f37a3fc84166a27c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c9:31:9f:cc:93:e4:0d:81:10:ad:ab:64:a8:
82:b4:9e:7a:be:87:ab:a2:a7:00:38:7e:52:a3:3c:
53:00:87:d8:97:60:2d:04:b6:ae:c4:ad:d0:0f:fb:
ee:df:51:72:51:c9:46:5a:5c:55:33:25:6a:0a:fe:
ee:28:e5:82:7c:45:43:eb:ae:47:c6:54:4c:4f:e4:
7f:96:f5:42:78:9c:29:3d:e8:f4:2a:86:ce:77:92:
ca:8e:38:03:f6:87:4c:03:cd:6a:6f:aa:85:ef:a7:
e3:ae:a5:fd:54:63:5e:e2:4c:b7:a9:18:fe:cb:fa:
27:00:a2:8a:bc:aa:25:85:0d:cc:eb:b6:7d:b4:d8:
73:10:9d:72:60:41:bb:e5:ad:3c:e4:32:94:de:c9:
41:d7:6c:ee:ab:bc:e0:a4:8d:00:fe:c8:d6:b5:82:
9e:49:ff:55:fe:a1:bf:02:0a:71:1f:a0:a9:51:80:
35:3a:56:21:d7:60:b3:f1:d7:45:55:5b:7d:d0:e9:
07:e4:b9:03:25:45:9c:bf:12:57:73:9d:9d:47:c6:
97:21:e1:64:ff:67:dc:77:32:26:4a:10:f6:ca:3b:
49:22:d3:5d:96:5a:a0:38:ab:2f:56:47:a0:77:f0:
cd:4c:ed:1f:e1:fa:84:88:d9:12:43:97:cb:db:8d:
15:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:8A:8F:7D:2E:BC:42:C3:99:30:22:C3:E0:2D:F1:12:DE:1B:B6:03
X509v3 Authority Key Identifier:
keyid:8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/5a3d7f6fc530d4a2d4b240f37a3fc84166a27c50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.188.26.0/24
187.188.32.0/24
187.189.0.0/24
187.189.49.0-187.189.50.255
187.189.90.0/24
187.189.119.0/24
187.190.151.0/24
187.190.168.0/23
187.190.174.0/23
187.190.191.0/24
187.190.215.0/24
189.203.87.0/24
Signature Algorithm: sha256WithRSAEncryption
60:3a:c5:95:9c:b4:7e:f5:c5:73:60:82:0f:e9:ef:72:c6:0b:
c8:78:b3:4a:9c:93:39:dd:0e:f9:3b:a4:8e:a9:1e:bd:eb:b7:
d8:c0:2b:29:68:ff:85:93:e0:a8:b3:53:4a:4a:ba:38:ff:e8:
31:10:63:d8:7b:18:5e:5a:22:9e:a7:dd:7d:01:aa:8c:03:35:
d2:a9:d9:d0:2d:73:1e:af:5c:c2:b8:20:bb:70:be:8d:20:76:
0b:c6:a3:9d:28:5d:c5:04:89:27:d3:a2:9c:27:45:4a:9a:c6:
a0:cc:dd:33:64:79:1c:7c:bd:14:f7:94:ba:f3:c8:ca:ee:95:
d5:3f:df:ea:96:7c:af:3f:ae:a6:57:ce:2c:d5:e8:ef:df:bc:
2c:f9:0d:1f:07:1d:bd:13:10:f8:fd:78:01:35:54:67:65:01:
31:c3:25:d6:59:51:ab:98:71:ee:59:d8:17:fe:99:32:90:85:
8c:79:76:fc:2d:ff:4b:89:27:a2:46:82:e7:7a:c9:ae:13:46:
3e:05:5c:4d:df:16:4f:d3:ed:f5:d7:47:1b:89:9b:2f:63:40:
f5:2b:15:f1:a1:f1:77:01:a1:66:4a:34:73:79:c2:ed:f9:a8:
01:72:8b:cc:70:99:5c:4e:e8:21:56:ac:b0:6c:21:ab:a7:7f:
a1:8c:1b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:54 2023 by rpki-client on console-ams.rpki-client.org