Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/e2efa464-0902-4477-a433-3476f42cc325/421650f5df98ffd8d2e50556d80f486cc7669fdf.roa
File: 421650f5df98ffd8d2e50556d80f486cc7669fdf.roa (raw, json)
Hash identifier: FaVQrU2ttmu16rc6RYBteLkOOvcZ93cGgjfbMojz/Is=
Subject key identifier: A2:77:29:A5:E3:F3:DB:25:73:30:31:D7:35:78:05:43:02:66:22:4F
Certificate issuer: /CN=58c2bc7895cd7c147803e7c9790ece03a9e82fa6
Certificate serial: 0D8633
Authority key identifier: 18:DC:42:6A:C7:DA:80:CB:A2:FA:32:DB:5C:BD:9E:55:15:E2:8F:5B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58c2bc7895cd7c147803e7c9790ece03a9e82fa6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/e2efa464-0902-4477-a433-3476f42cc325/421650f5df98ffd8d2e50556d80f486cc7669fdf.roa
Signing time: Wed 24 Mar 2021 14:30:05 +0000
ROA not before: Wed 24 Mar 2021 14:30:05 +0000
ROA not after: Tue 24 Mar 2026 14:30:05 +0000
asID: 11014
IP address blocks: 143.0.76.0/22 maxlen: 24
170.83.4.0/22 maxlen: 24
170.150.152.0/22 maxlen: 24
190.12.96.0/20 maxlen: 24
190.12.112.0/22 maxlen: 24
190.12.116.0/24 maxlen: 24
190.12.119.0/24 maxlen: 24
190.12.120.0/21 maxlen: 24
190.104.194.0/23 maxlen: 24
190.104.196.0/23 maxlen: 24
190.104.198.0/24 maxlen: 24
190.104.200.0/21 maxlen: 24
190.104.208.0/20 maxlen: 24
190.104.224.0/20 maxlen: 24
190.104.241.0/24 maxlen: 24
190.104.242.0/23 maxlen: 24
190.104.244.0/22 maxlen: 24
190.104.248.0/21 maxlen: 24
190.111.192.0/19 maxlen: 24
190.111.224.0/21 maxlen: 24
190.111.232.0/23 maxlen: 24
190.111.234.0/24 maxlen: 24
190.111.237.0/24 maxlen: 24
190.111.238.0/23 maxlen: 24
190.111.240.0/20 maxlen: 24
200.110.216.0/22 maxlen: 24
200.110.220.0/23 maxlen: 24
200.110.223.0/24 maxlen: 24
2800:a10::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 886323 (0xd8633)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58c2bc7895cd7c147803e7c9790ece03a9e82fa6
Validity
Not Before: Mar 24 14:30:05 2021 GMT
Not After : Mar 24 14:30:05 2026 GMT
Subject: CN=421650f5df98ffd8d2e50556d80f486cc7669fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f0:6c:35:b6:f6:bc:41:15:e9:3c:1c:c5:05:
6c:5b:44:d2:62:fe:f9:0d:57:21:26:2b:f8:7e:9d:
bb:1e:8c:ec:d2:06:88:62:5b:41:22:09:3b:bc:75:
1a:5a:8f:ff:8d:5a:18:88:fa:de:72:7e:24:66:d3:
0a:1c:e8:82:dd:8b:a6:2b:fa:21:9b:8f:49:17:d3:
05:09:25:42:bd:2f:b5:ed:9e:b0:25:1a:05:00:08:
98:92:ce:88:8b:cd:64:e0:5a:5d:74:b8:ab:7d:23:
d1:aa:26:1d:87:5f:dc:07:94:97:a8:2f:1f:8d:3a:
a2:8f:29:4a:ec:b2:8b:e1:75:0e:86:f7:78:a6:9d:
05:ba:36:19:28:b3:db:b1:20:60:36:22:4e:28:ba:
3b:d4:df:38:a3:03:2c:f4:c6:4d:25:eb:2c:55:41:
60:7f:61:25:6b:1e:c1:c0:dc:1b:f8:26:17:35:5d:
fa:53:13:e9:17:85:a8:05:db:0e:2c:e3:cf:cd:fd:
86:1e:54:27:b2:fa:24:37:04:92:ed:f8:9a:e2:5b:
be:53:3e:0e:e6:45:fe:0f:73:f4:22:11:25:46:13:
54:49:18:1c:83:24:39:18:3c:85:83:92:a9:5d:29:
5e:ee:bf:49:0d:fe:c0:81:ab:7b:78:97:37:c4:84:
ba:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:77:29:A5:E3:F3:DB:25:73:30:31:D7:35:78:05:43:02:66:22:4F
X509v3 Authority Key Identifier:
keyid:18:DC:42:6A:C7:DA:80:CB:A2:FA:32:DB:5C:BD:9E:55:15:E2:8F:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58c2bc7895cd7c147803e7c9790ece03a9e82fa6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/e2efa464-0902-4477-a433-3476f42cc325/421650f5df98ffd8d2e50556d80f486cc7669fdf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/e2efa464-0902-4477-a433-3476f42cc325/58c2bc7895cd7c147803e7c9790ece03a9e82fa6.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.0.76.0/22
170.83.4.0/22
170.150.152.0/22
190.12.96.0-190.12.116.255
190.12.119.0-190.12.127.255
190.104.194.0-190.104.198.255
190.104.200.0-190.104.239.255
190.104.241.0-190.104.255.255
190.111.192.0-190.111.234.255
190.111.237.0-190.111.255.255
200.110.216.0-200.110.221.255
200.110.223.0/24
IPv6:
2800:a10::/32
Signature Algorithm: sha256WithRSAEncryption
39:52:5c:31:21:e6:b5:64:78:da:0a:97:91:da:06:52:13:1a:
7a:08:d7:e8:9e:30:c5:08:ae:77:ef:fb:69:dd:ba:1f:0f:5c:
5b:01:18:52:0e:30:14:22:d6:22:7a:97:fe:29:37:1d:3e:02:
f4:49:81:2f:27:1c:89:43:53:e1:b5:e1:ac:5a:1c:ce:ec:98:
1c:b2:13:11:eb:11:92:e5:78:4b:5e:d5:9c:6f:a7:42:7a:4a:
77:1d:5b:9f:2b:10:98:2f:06:0c:b4:59:0a:6a:56:30:05:92:
f5:70:0f:e8:af:f1:cf:88:50:5b:4f:8f:ad:cf:20:8c:4c:fa:
24:e4:15:7c:fc:38:3e:68:7f:ac:7d:06:7e:1d:08:33:da:6e:
67:31:70:55:d2:82:f3:20:ca:96:4f:c3:33:bc:98:9d:3d:17:
cd:b5:96:a8:e0:69:e8:f8:15:46:32:ef:93:5a:f8:88:0e:62:
76:b9:5e:d4:cb:f3:e4:53:0c:3e:12:2b:df:d6:4f:74:cc:15:
5b:f8:9b:02:56:86:af:91:4e:b5:cd:ae:e2:42:dc:f9:90:d0:
78:ca:6f:86:4f:d6:02:29:a3:24:48:29:fb:c3:c7:45:0d:8e:
26:e8:0c:08:69:7f:f8:e2:f8:de:30:e5:dd:20:c8:e7:6c:38:
9d:68:26:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:56 2023 by rpki-client on console-ams.rpki-client.org