Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/d5c07b1f-a5f9-4e03-ab3c-30e993cc1fc7/3d29ed46d3991d75f178aa3940a6b4f3376cfa76.roa
File: 3d29ed46d3991d75f178aa3940a6b4f3376cfa76.roa (raw, json)
Hash identifier: 2SDEKiYUXDvqUaZ1OXYCQ+rukbgcNnUI4b4lEeSJ5zA=
Subject key identifier: 40:83:AD:6C:8D:7D:46:1B:09:3B:8E:AE:F7:32:34:0C:B5:FC:DD:D8
Certificate issuer: /CN=5d58b8d1fe1a7ec6f16054c5c8e97d1261a255ed
Certificate serial: 0DB016
Authority key identifier: AA:D3:E4:91:DA:FA:6F:0D:36:21:13:B5:B2:84:C7:CD:C9:4E:A0:04
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d58b8d1fe1a7ec6f16054c5c8e97d1261a255ed.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/d5c07b1f-a5f9-4e03-ab3c-30e993cc1fc7/3d29ed46d3991d75f178aa3940a6b4f3376cfa76.roa
Signing time: Wed 24 Mar 2021 14:39:34 +0000
ROA not before: Wed 24 Mar 2021 14:39:33 +0000
ROA not after: Tue 24 Mar 2026 14:39:33 +0000
asID: 27947
IP address blocks: 190.107.68.0/24 maxlen: 24
190.107.69.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897046 (0xdb016)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d58b8d1fe1a7ec6f16054c5c8e97d1261a255ed
Validity
Not Before: Mar 24 14:39:33 2021 GMT
Not After : Mar 24 14:39:33 2026 GMT
Subject: CN=3d29ed46d3991d75f178aa3940a6b4f3376cfa76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8f:bf:ed:76:d8:f5:79:02:b6:9b:a9:44:0a:
d1:a6:ac:19:fd:dc:d3:34:c7:1a:30:89:2c:0a:1a:
07:75:67:53:81:41:3a:26:80:fa:96:39:90:23:f5:
db:d9:a2:72:8c:21:7c:7f:5c:12:a4:78:31:c4:a5:
38:08:dc:d3:99:7b:d8:a9:0c:b5:09:90:ba:c4:34:
ee:e0:5d:32:44:8b:f8:81:50:42:02:5e:1a:fa:c9:
98:cd:04:7b:f0:a8:ce:e4:2a:14:ef:4d:1b:cc:be:
13:41:2c:64:7d:54:28:f0:1b:28:d8:cc:dc:6e:f8:
75:9e:42:5d:85:9e:d6:89:ff:dd:c9:66:32:dd:33:
ab:98:22:c3:cf:e6:37:9e:bc:29:c6:3f:c3:23:c3:
f9:fc:84:5a:59:15:01:18:23:f4:66:c7:04:47:27:
c1:23:3e:0e:29:9f:a4:db:a0:3e:02:32:0e:5b:b1:
e4:29:77:a0:c7:d8:7c:48:39:16:2b:c0:44:e6:24:
03:18:87:1a:0c:2a:7c:38:f8:25:f3:b4:52:f4:cd:
36:56:5b:de:8c:f3:d1:71:40:b1:f6:55:43:a3:75:
59:eb:9f:b5:19:b6:66:9c:90:5f:87:5f:5e:4a:60:
c6:36:b5:66:d4:26:a9:c4:5d:e1:f4:1d:e0:74:e1:
02:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:83:AD:6C:8D:7D:46:1B:09:3B:8E:AE:F7:32:34:0C:B5:FC:DD:D8
X509v3 Authority Key Identifier:
keyid:AA:D3:E4:91:DA:FA:6F:0D:36:21:13:B5:B2:84:C7:CD:C9:4E:A0:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d58b8d1fe1a7ec6f16054c5c8e97d1261a255ed.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/d5c07b1f-a5f9-4e03-ab3c-30e993cc1fc7/3d29ed46d3991d75f178aa3940a6b4f3376cfa76.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/d5c07b1f-a5f9-4e03-ab3c-30e993cc1fc7/5d58b8d1fe1a7ec6f16054c5c8e97d1261a255ed.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.107.68.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:b3:7f:8d:d5:59:cc:7d:5e:bc:8d:31:fe:be:d5:b8:33:94:
c8:ad:83:b8:5e:82:d3:83:ef:db:29:d8:46:eb:9c:0a:e5:21:
bd:5c:e4:90:85:1f:5b:78:c1:2b:90:a2:d9:5d:c1:7e:91:1f:
aa:93:80:55:04:be:70:2a:77:41:fd:e7:9b:81:b3:4e:6a:b5:
56:a7:96:aa:c6:fa:12:15:57:3f:ab:f8:eb:e0:be:6e:83:99:
f9:d2:b9:e7:26:e7:35:5d:ad:d8:d3:37:df:4f:4d:89:f4:4d:
8a:d5:a2:74:31:ea:0c:e2:fc:8d:0e:59:93:67:0f:21:86:dc:
05:c7:5f:ef:b0:fc:ef:0d:b8:c8:7a:46:58:13:de:3c:c5:65:
62:35:ff:a1:ae:ed:e1:47:6e:1d:cc:9d:8e:2d:10:f2:93:25:
ec:bb:db:77:9e:bf:3a:22:7a:80:23:2e:e1:16:7b:7a:49:61:
37:dc:50:e5:fe:1f:5c:fc:cf:44:a7:da:c0:70:b2:69:b0:5b:
cb:44:2d:7c:2f:c5:99:9f:a2:95:bd:f9:e4:05:a7:85:e8:a8:
d5:16:93:77:6a:d4:b0:e3:05:16:d8:eb:4c:67:41:66:42:15:
07:e5:4e:6c:ab:8f:49:74:2f:64:7c:97:e1:0b:d2:66:f1:e0:
44:20:21:f2
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDDbAWMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDVk
NThiOGQxZmUxYTdlYzZmMTYwNTRjNWM4ZTk3ZDEyNjFhMjU1ZWQwHhcNMjEwMzI0
MTQzOTMzWhcNMjYwMzI0MTQzOTMzWjAzMTEwLwYDVQQDEygzZDI5ZWQ0NmQzOTkx
ZDc1ZjE3OGFhMzk0MGE2YjRmMzM3NmNmYTc2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAoo+/7XbY9XkCtpupRArRpqwZ/dzTNMcaMIksChoHdWdTgUE6
JoD6ljmQI/Xb2aJyjCF8f1wSpHgxxKU4CNzTmXvYqQy1CZC6xDTu4F0yRIv4gVBC
Al4a+smYzQR78KjO5CoU700bzL4TQSxkfVQo8Bso2Mzcbvh1nkJdhZ7Wif/dyWYy
3TOrmCLDz+Y3nrwpxj/DI8P5/IRaWRUBGCP0ZscERyfBIz4OKZ+k26A+AjIOW7Hk
KXegx9h8SDkWK8BE5iQDGIcaDCp8OPgl87RS9M02VlvejPPRcUCx9lVDo3VZ65+1
GbZmnJBfh19eSmDGNrVm1CapxF3h9B3gdOEC8QIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFECDrWyNfUYbCTuOrvcyNAy1/N3YMB8GA1UdIwQYMBaAFKrT5JHa+m8NNiET
tbKEx83JTqAEMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNWQ1OGI4
ZDFmZTFhN2VjNmYxNjA1NGM1YzhlOTdkMTI2MWEyNTVlZC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZDVjMDdiMWYtYTVmOS00ZTAzLWFiM2MtMzBlOTkz
Y2MxZmM3LzNkMjllZDQ2ZDM5OTFkNzVmMTc4YWEzOTQwYTZiNGYzMzc2Y2ZhNzYu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9kNWMwN2IxZi1hNWY5LTRlMDMtYWIzYy0zMGU5
OTNjYzFmYzcvNWQ1OGI4ZDFmZTFhN2VjNmYxNjA1NGM1YzhlOTdkMTI2MWEyNTVl
ZC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAb5rRDANBgkqhkiG9w0BAQsFAAOCAQEAfLN/jdVZzH1evI0x
/r7VuDOUyK2DuF6C04Pv2ynYRuucCuUhvVzkkIUfW3jBK5Ci2V3BfpEfqpOAVQS+
cCp3Qf3nm4GzTmq1VqeWqsb6EhVXP6v46+C+boOZ+dK55ybnNV2t2NM3309NifRN
itWidDHqDOL8jQ5Zk2cPIYbcBcdf77D87w24yHpGWBPePMVlYjX/oa7t4UduHcyd
ji0Q8pMl7Lvbd56/OiJ6gCMu4RZ7eklhN9xQ5f4fXPzPRKfawHCyabBby0QtfC/F
mZ+ilb355AWnheio1RaTd2rUsOMFFtjrTGdBZkIVB+VObKuPSXQvZHyX4QvSZvHg
RCAh8g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:40 2023 by rpki-client on console-fra.rpki-client.org