Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/10b41726b96077f8079b2f7a299b38b2760fa015.roa
File: 10b41726b96077f8079b2f7a299b38b2760fa015.roa (raw, json)
Hash identifier: C9lWicqukZvM8wKD7rot+S1vL/sei2UTmeeVzepsKdo=
Subject key identifier: 37:CA:7B:19:3C:B4:68:1A:35:D2:1E:75:49:FF:EF:CB:D2:2B:51:15
Certificate issuer: /CN=2ea1715958333398146179fdbf2e485fe6525742
Certificate serial: 1A380A
Authority key identifier: 60:84:61:48:7C:36:64:D8:97:0A:C3:A9:A1:74:66:80:8B:AD:C8:BF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ea1715958333398146179fdbf2e485fe6525742.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/10b41726b96077f8079b2f7a299b38b2760fa015.roa
Signing time: Fri 15 Sep 2023 21:29:22 +0000
ROA not before: Thu 14 Sep 2023 21:29:00 +0000
ROA not after: Fri 15 Sep 2028 21:29:00 +0000
asID: 52266
IP address blocks: 201.219.252.0/24 maxlen: 25
201.219.252.0/25 maxlen: 25
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1718282 (0x1a380a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ea1715958333398146179fdbf2e485fe6525742
Validity
Not Before: Sep 14 21:29:00 2023 GMT
Not After : Sep 15 21:29:00 2028 GMT
Subject: CN=10b41726b96077f8079b2f7a299b38b2760fa015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f2:4f:16:7e:e2:9f:d1:35:55:81:23:bc:75:
3f:c0:86:bd:25:93:44:35:70:fb:70:b3:dc:83:68:
8f:32:03:97:8a:57:9d:39:32:c0:f1:9b:42:d2:f3:
a6:9f:7b:f2:4a:80:1f:eb:00:2d:9a:b8:ff:92:c6:
de:c4:62:5d:f5:56:41:a0:be:08:20:ac:8e:2d:cf:
64:81:d7:12:e6:da:38:05:3a:29:d6:e1:a4:2a:3a:
f6:57:fc:07:f5:38:00:a2:a1:e6:75:db:08:70:d1:
37:da:6a:62:18:67:42:56:8b:c5:9d:d4:c8:44:ea:
a8:82:05:fd:3a:a5:e8:b9:50:b0:16:0a:a9:29:b4:
dc:e4:e7:ec:62:c4:3e:7f:91:14:2f:b7:ff:65:3d:
c0:e3:65:a2:36:82:c9:5a:ba:5b:30:35:a0:d6:20:
71:b3:3a:eb:b1:a4:fc:9e:b7:19:f5:20:9f:38:7a:
b9:56:95:6d:14:1b:1c:8e:b0:ba:f4:09:9b:b6:3f:
7f:b3:fd:20:5b:ac:4a:bd:b1:a8:ba:72:95:1b:83:
6b:22:68:54:8f:12:1d:fc:a5:ad:a2:ac:28:51:b4:
50:b9:85:18:84:5e:76:27:40:ec:39:6b:76:22:97:
72:ce:40:ee:a1:c8:5a:83:13:1e:e9:12:9d:44:76:
d1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:CA:7B:19:3C:B4:68:1A:35:D2:1E:75:49:FF:EF:CB:D2:2B:51:15
X509v3 Authority Key Identifier:
keyid:60:84:61:48:7C:36:64:D8:97:0A:C3:A9:A1:74:66:80:8B:AD:C8:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ea1715958333398146179fdbf2e485fe6525742.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/10b41726b96077f8079b2f7a299b38b2760fa015.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/2ea1715958333398146179fdbf2e485fe6525742.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.219.252.0/24
Signature Algorithm: sha256WithRSAEncryption
57:5c:cf:34:cb:39:5d:9d:61:13:da:aa:7f:15:e2:9c:93:9f:
51:0f:32:b7:11:f1:ed:02:58:ad:d3:f5:64:e3:d4:6e:f4:b8:
d7:31:ee:67:88:0d:31:d8:bf:4d:fb:c7:52:63:f1:93:0c:fa:
ed:30:3a:f7:04:78:b9:52:9d:9a:3f:34:22:c5:a0:a4:80:5b:
91:a2:6c:dd:31:30:52:da:30:5b:0e:77:32:dd:46:6b:a7:af:
b0:85:8e:b1:a3:7a:fe:67:21:1c:a9:53:fa:55:81:24:b0:a6:
6b:65:19:5a:21:4b:62:8b:b0:2b:05:85:b9:bb:88:8c:9f:d5:
f3:84:64:4c:76:47:84:d0:f3:d8:56:10:30:70:f5:97:79:10:
72:9b:f1:58:b8:bc:5b:d4:c3:16:79:b1:d5:e5:76:79:3b:9a:
f0:24:72:47:f7:b8:d7:33:6b:a1:70:d5:98:d2:5d:72:61:ea:
ac:ca:d3:96:22:13:cb:40:0d:a2:9f:a2:fe:b9:0e:37:a7:ed:
d8:73:be:f8:fc:73:2e:f0:e8:7e:83:1e:25:bc:da:b3:86:e5:
64:2a:e6:ec:e2:e2:56:0c:09:18:31:71:67:55:ed:98:73:15:
1f:81:7a:dd:0a:fd:4e:2b:1e:69:1e:bb:ca:96:d0:85:de:2d:
ce:7b:1f:09
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDGjgKMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDJl
YTE3MTU5NTgzMzMzOTgxNDYxNzlmZGJmMmU0ODVmZTY1MjU3NDIwHhcNMjMwOTE0
MjEyOTAwWhcNMjgwOTE1MjEyOTAwWjAzMTEwLwYDVQQDEygxMGI0MTcyNmI5NjA3
N2Y4MDc5YjJmN2EyOTliMzhiMjc2MGZhMDE1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAgfJPFn7in9E1VYEjvHU/wIa9JZNENXD7cLPcg2iPMgOXiled
OTLA8ZtC0vOmn3vySoAf6wAtmrj/ksbexGJd9VZBoL4IIKyOLc9kgdcS5to4BTop
1uGkKjr2V/wH9TgAoqHmddsIcNE32mpiGGdCVovFndTIROqoggX9OqXouVCwFgqp
KbTc5OfsYsQ+f5EUL7f/ZT3A42WiNoLJWrpbMDWg1iBxszrrsaT8nrcZ9SCfOHq5
VpVtFBscjrC69Ambtj9/s/0gW6xKvbGounKVG4NrImhUjxId/KWtoqwoUbRQuYUY
hF52J0DsOWt2IpdyzkDuochagxMe6RKdRHbRUQIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFDfKexk8tGgaNdIedUn/78vSK1EVMB8GA1UdIwQYMBaAFGCEYUh8NmTYlwrD
qaF0ZoCLrci/MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMmVhMTcx
NTk1ODMzMzM5ODE0NjE3OWZkYmYyZTQ4NWZlNjUyNTc0Mi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZDliNmM1ZjUtMmZiMi00NzQ0LWI2ZTEtOTlkOTU4
OTJkMzc3LzEwYjQxNzI2Yjk2MDc3ZjgwNzliMmY3YTI5OWIzOGIyNzYwZmEwMTUu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9kOWI2YzVmNS0yZmIyLTQ3NDQtYjZlMS05OWQ5
NTg5MmQzNzcvMmVhMTcxNTk1ODMzMzM5ODE0NjE3OWZkYmYyZTQ4NWZlNjUyNTc0
Mi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAMnb/DANBgkqhkiG9w0BAQsFAAOCAQEAV1zPNMs5XZ1hE9qq
fxXinJOfUQ8ytxHx7QJYrdP1ZOPUbvS41zHuZ4gNMdi/TfvHUmPxkwz67TA69wR4
uVKdmj80IsWgpIBbkaJs3TEwUtowWw53Mt1Ga6evsIWOsaN6/mchHKlT+lWBJLCm
a2UZWiFLYouwKwWFubuIjJ/V84RkTHZHhNDz2FYQMHD1l3kQcpvxWLi8W9TDFnmx
1eV2eTua8CRyR/e41zNroXDVmNJdcmHqrMrTliITy0ANop+i/rkON6ft2HO++Pxz
LvDofoMeJbzas4blZCrm7OLiVgwJGDFxZ1XtmHMVH4F63Qr9TiseaR67ypbQhd4t
znsfCQ==
-----END CERTIFICATE-----
Generated at Wed Nov 29 15:36:22 2023 by rpki-client on console-fra.rpki-client.org