Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/da916cf9-c7c0-4469-a191-bc703b25c305/0841aee82ff70a5b4d6fffd2cd161ee1f7567849.roa
File: 0841aee82ff70a5b4d6fffd2cd161ee1f7567849.roa (raw, json)
Hash identifier: OuwKQjFAbYRR8PPcnimrWZzPA4HLWVe54afsuqAKTu0=
Subject key identifier: 5D:97:8A:C7:9E:6E:4D:BF:4D:91:8D:79:B0:9C:6B:0F:2A:77:41:16
Certificate issuer: /CN=cabb0cf6251beebdb70ee6bb05d5743481029a07
Certificate serial: 28357D
Authority key identifier: D1:5E:AA:17:52:36:CC:A2:7C:F1:BA:D2:14:3C:8A:28:9A:3E:A9:FD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/cabb0cf6251beebdb70ee6bb05d5743481029a07.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/da916cf9-c7c0-4469-a191-bc703b25c305/0841aee82ff70a5b4d6fffd2cd161ee1f7567849.roa
Signing time: Wed 20 Mar 2024 16:32:50 +0000
ROA not before: Wed 20 Mar 2024 16:32:50 +0000
ROA not after: Tue 20 Mar 2029 16:32:50 +0000
asID: 27806
IP address blocks: 200.13.136.0/21 maxlen: 24
200.13.136.0/22 maxlen: 24
200.13.141.0/24 maxlen: 24
200.13.142.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 14:56:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2635133 (0x28357d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cabb0cf6251beebdb70ee6bb05d5743481029a07
Validity
Not Before: Mar 20 16:32:50 2024 GMT
Not After : Mar 20 16:32:50 2029 GMT
Subject: CN=0841aee82ff70a5b4d6fffd2cd161ee1f7567849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c1:7d:70:80:d6:b7:f9:d9:b2:e6:92:35:39:
e7:00:ba:eb:18:ca:67:c8:b5:77:55:e9:44:4e:55:
0d:f6:0f:0b:29:1f:75:3b:05:e2:fc:cf:be:67:f4:
46:ec:4b:09:bc:39:52:e2:46:c9:8f:98:26:14:f0:
f7:64:a8:db:cb:f8:fc:c5:63:de:3b:75:31:96:22:
28:a1:b3:75:05:6f:5a:e5:16:1d:ee:f4:b9:15:c9:
6f:9b:d4:4e:e4:8f:6b:94:75:f2:27:4b:03:22:d6:
39:63:d1:f7:32:18:6b:e0:80:b5:11:96:a0:a6:de:
a0:fa:60:65:5f:11:dd:51:84:f9:f5:e6:71:2e:9d:
ff:05:24:fb:3c:f8:a1:63:59:e1:37:bf:26:ca:e0:
e3:c4:96:1e:36:4a:da:df:9b:36:0e:c9:18:c8:d3:
07:40:b4:c6:11:17:67:89:c4:98:64:7b:a1:cd:14:
3f:b6:5f:69:1f:3e:b9:1f:17:c4:0f:58:88:ba:34:
02:22:e8:0e:b8:a7:95:d2:00:f2:f1:55:c9:76:84:
a1:78:62:17:a3:28:51:02:9a:d7:a6:29:6e:05:a3:
ec:ab:66:ad:8b:39:80:a8:b1:dd:05:8a:6c:4d:8f:
62:28:bc:02:34:6d:95:a4:cc:b0:2e:6f:d0:66:e5:
c9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:97:8A:C7:9E:6E:4D:BF:4D:91:8D:79:B0:9C:6B:0F:2A:77:41:16
X509v3 Authority Key Identifier:
keyid:D1:5E:AA:17:52:36:CC:A2:7C:F1:BA:D2:14:3C:8A:28:9A:3E:A9:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/cabb0cf6251beebdb70ee6bb05d5743481029a07.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/da916cf9-c7c0-4469-a191-bc703b25c305/0841aee82ff70a5b4d6fffd2cd161ee1f7567849.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/da916cf9-c7c0-4469-a191-bc703b25c305/cabb0cf6251beebdb70ee6bb05d5743481029a07.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.13.136.0/21
Signature Algorithm: sha256WithRSAEncryption
1a:f7:2a:1f:3d:dc:d5:9a:31:33:d4:1a:df:3e:57:47:97:b0:
70:1d:a3:90:e3:f7:10:cd:b8:53:5a:91:28:4c:a4:8c:01:37:
da:1e:43:b9:1b:9e:cc:5a:2a:7e:12:b8:bc:3a:9f:dd:e7:cc:
3c:50:e3:71:44:25:d0:80:af:ee:4a:fd:8f:7a:c7:19:35:a9:
b8:b3:11:6c:3c:94:3c:d5:ac:a9:07:02:83:cd:9e:98:c9:c5:
aa:60:3e:c6:5c:10:a4:3b:9e:60:32:8d:4a:9c:f1:15:8e:35:
df:af:1e:e3:64:86:8d:cc:10:a4:4a:fe:31:81:61:e3:eb:f9:
cd:6b:cc:a0:6a:49:19:52:15:b3:a3:a0:5f:67:68:35:6f:ab:
c5:80:b9:39:d8:f4:74:f5:78:7f:58:b1:90:59:09:43:2c:2e:
ce:a9:43:85:99:48:77:3b:cb:08:b4:f9:fa:5e:82:c3:09:30:
e8:da:fa:15:24:40:6a:93:e1:ea:bd:ad:2c:48:4e:f3:91:63:
95:64:7b:73:14:2d:c3:8c:65:1f:80:bd:ab:f4:ba:bd:78:76:
92:cd:fc:2d:9d:26:21:de:d9:8f:13:b6:fd:c5:01:6d:3c:40:
0c:e2:46:25:01:94:8c:b7:b2:e2:79:95:43:e8:ce:0c:77:02:
0a:9d:fa:ac
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDKDV9MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNh
YmIwY2Y2MjUxYmVlYmRiNzBlZTZiYjA1ZDU3NDM0ODEwMjlhMDcwHhcNMjQwMzIw
MTYzMjUwWhcNMjkwMzIwMTYzMjUwWjAzMTEwLwYDVQQDEygwODQxYWVlODJmZjcw
YTViNGQ2ZmZmZDJjZDE2MWVlMWY3NTY3ODQ5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmMF9cIDWt/nZsuaSNTnnALrrGMpnyLV3VelETlUN9g8LKR91
OwXi/M++Z/RG7EsJvDlS4kbJj5gmFPD3ZKjby/j8xWPeO3UxliIoobN1BW9a5RYd
7vS5Fclvm9RO5I9rlHXyJ0sDItY5Y9H3Mhhr4IC1EZagpt6g+mBlXxHdUYT59eZx
Lp3/BST7PPihY1nhN78myuDjxJYeNkra35s2DskYyNMHQLTGERdnicSYZHuhzRQ/
tl9pHz65HxfED1iIujQCIugOuKeV0gDy8VXJdoSheGIXoyhRAprXpiluBaPsq2at
izmAqLHdBYpsTY9iKLwCNG2VpMywLm/QZuXJPwIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFF2Xiseebk2/TZGNebCcaw8qd0EWMB8GA1UdIwQYMBaAFNFeqhdSNsyifPG6
0hQ8iiiaPqn9MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvY2FiYjBj
ZjYyNTFiZWViZGI3MGVlNmJiMDVkNTc0MzQ4MTAyOWEwNy5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZGE5MTZjZjktYzdjMC00NDY5LWExOTEtYmM3MDNi
MjVjMzA1LzA4NDFhZWU4MmZmNzBhNWI0ZDZmZmZkMmNkMTYxZWUxZjc1Njc4NDku
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9kYTkxNmNmOS1jN2MwLTQ0NjktYTE5MS1iYzcw
M2IyNWMzMDUvY2FiYjBjZjYyNTFiZWViZGI3MGVlNmJiMDVkNTc0MzQ4MTAyOWEw
Ny5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEA8gNiDANBgkqhkiG9w0BAQsFAAOCAQEAGvcqHz3c1ZoxM9Qa
3z5XR5ewcB2jkOP3EM24U1qRKEykjAE32h5DuRuezFoqfhK4vDqf3efMPFDjcUQl
0ICv7kr9j3rHGTWpuLMRbDyUPNWsqQcCg82emMnFqmA+xlwQpDueYDKNSpzxFY41
368e42SGjcwQpEr+MYFh4+v5zWvMoGpJGVIVs6OgX2doNW+rxYC5Odj0dPV4f1ix
kFkJQywuzqlDhZlIdzvLCLT5+l6Cwwkw6Nr6FSRAapPh6r2tLEhO85FjlWR7cxQt
w4xlH4C9q/S6vXh2ks38LZ0mId7ZjxO2/cUBbTxADOJGJQGUjLey4nmVQ+jODHcC
Cp36rA==
-----END CERTIFICATE-----
Generated at Thu Mar 21 18:08:31 2024 by rpki-client on console-fra.rpki-client.org