Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/28938d2b3540826aa96e885a11b943e6777e1222.roa
File: 28938d2b3540826aa96e885a11b943e6777e1222.roa (raw, json)
Hash identifier: jqI5HoGg9tPyeH7bvKEOBBEfwCjxGbxKshpOGCDeg64=
Subject key identifier: 94:78:21:C9:5D:F3:64:FC:B7:80:AA:3D:13:E0:78:DF:DA:08:62:0B
Certificate issuer: /CN=7aa34ce93acbfe70c4de64538dca0894b670f0d2
Certificate serial: 101692
Authority key identifier: 5F:85:D3:6E:A2:27:14:35:40:49:19:8D:ED:3B:94:16:27:FD:D5:35
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7aa34ce93acbfe70c4de64538dca0894b670f0d2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/28938d2b3540826aa96e885a11b943e6777e1222.roa
Signing time: Mon 05 Jul 2021 18:48:45 +0000
ROA not before: Mon 05 Jul 2021 03:00:00 +0000
ROA not after: Wed 05 Jul 2023 03:00:00 +0000
asID: 263173
IP address blocks: 200.14.203.0/24 maxlen: 24
200.14.213.0/24 maxlen: 24
200.14.214.0/24 maxlen: 24
200.14.226.0/23 maxlen: 24
200.14.245.0/24 maxlen: 24
200.14.246.0/23 maxlen: 24
200.14.248.0/22 maxlen: 24
200.14.252.0/24 maxlen: 24
200.14.254.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1054354 (0x101692)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aa34ce93acbfe70c4de64538dca0894b670f0d2
Validity
Not Before: Jul 5 03:00:00 2021 GMT
Not After : Jul 5 03:00:00 2023 GMT
Subject: CN=28938d2b3540826aa96e885a11b943e6777e1222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8a:be:9d:47:82:a1:5c:1f:b5:f5:8a:6d:9e:
86:c5:93:10:ec:bd:cb:bf:cc:93:e0:0c:d7:2f:40:
bd:5c:1a:d2:d3:b9:4b:17:86:cf:a4:78:34:ce:8c:
ab:fc:76:76:98:18:14:ce:16:76:61:ee:fb:3d:17:
cc:ba:c3:54:dc:b5:8e:2e:ba:3b:ad:e8:3b:b9:fe:
99:82:0f:7a:ad:1b:11:44:4f:ae:6f:6e:f9:ce:5b:
f2:c8:c2:22:e9:9a:ae:67:21:73:f3:84:53:7c:78:
e8:49:df:74:7f:09:9b:77:58:98:76:66:f9:8d:81:
2f:43:63:41:10:f9:2a:14:f2:ae:8c:8c:45:21:19:
a8:bb:a1:00:64:35:c3:99:f6:a0:d6:b0:33:27:ae:
b4:3a:18:8b:6f:c8:0e:3b:3f:8b:7b:e0:34:de:47:
4f:fc:48:6a:6a:cd:f8:71:61:80:ae:a6:92:96:75:
10:26:6e:2a:3b:0c:dd:31:cf:89:64:4f:51:af:af:
c5:5e:87:d4:e4:ac:25:ee:f9:ea:1d:63:84:48:8e:
8c:e6:fc:b0:cb:0a:b7:e7:88:66:4a:d0:44:30:df:
00:be:a6:79:fe:7c:80:77:b0:e2:ab:ad:09:6b:0f:
f7:af:e0:4e:e0:94:f0:4d:7b:aa:df:da:48:84:c2:
93:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:78:21:C9:5D:F3:64:FC:B7:80:AA:3D:13:E0:78:DF:DA:08:62:0B
X509v3 Authority Key Identifier:
keyid:5F:85:D3:6E:A2:27:14:35:40:49:19:8D:ED:3B:94:16:27:FD:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7aa34ce93acbfe70c4de64538dca0894b670f0d2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/28938d2b3540826aa96e885a11b943e6777e1222.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/7aa34ce93acbfe70c4de64538dca0894b670f0d2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.14.203.0/24
200.14.213.0-200.14.214.255
200.14.226.0/23
200.14.245.0-200.14.252.255
200.14.254.0/23
Signature Algorithm: sha256WithRSAEncryption
d6:74:a5:4b:52:21:13:73:93:c2:3b:8e:06:3f:81:05:ea:39:
18:92:42:d6:27:cc:cf:f6:b3:58:db:0e:8e:9a:77:ab:4a:08:
89:77:2c:ad:1f:ec:b5:5b:44:53:d2:f6:e5:7f:9b:55:fc:cf:
00:0e:1d:0c:38:8e:20:91:b9:7a:a9:3c:e4:6e:fc:d4:d3:30:
91:3d:dc:31:e3:26:99:cd:4a:0f:ed:58:a7:56:fd:c1:c6:be:
f7:c3:4d:82:19:9e:98:d9:ae:d4:61:fe:88:86:1c:2c:0e:b8:
67:46:db:04:c9:95:a6:9e:55:4b:84:e4:49:4e:33:90:18:14:
1f:3d:04:3f:ef:01:16:39:83:9c:13:f5:d8:1b:99:e9:48:55:
27:8a:1f:2d:69:38:f9:72:2d:41:aa:7b:6f:e6:ef:6e:b6:46:
18:63:0a:d9:ef:32:ba:e6:df:fe:f4:15:4f:51:7d:66:67:df:
09:62:05:dd:e6:ce:bc:42:ab:6b:75:96:a3:ad:0d:4c:12:20:
97:5d:24:53:4a:6a:bb:c6:0d:3e:58:00:7b:fd:e2:a4:a0:d1:
83:00:6f:32:ff:9e:cc:b6:bc:78:e1:5b:91:70:18:54:8f:8b:
17:72:0f:1f:93:7d:72:23:19:3b:42:97:e7:0e:36:a7:b1:f1:
d9:41:93:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:42 2023 by rpki-client on console-fra.rpki-client.org