Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/d2aa9f1e2545aacae265f10bda8f21ba4a8b723d.roa
File: d2aa9f1e2545aacae265f10bda8f21ba4a8b723d.roa (raw, json)
Hash identifier: sIHOcBSyQn/wVNJlPNyLk+tJGJWU3hx6zleHzrwiJpQ=
Subject key identifier: A7:47:19:2B:FD:AA:03:64:04:93:36:A3:17:59:7F:E2:F6:94:D9:E7
Certificate issuer: /CN=88d3b38fb9bfced57c6ad5eb160c130acf32641c
Certificate serial: 0DE78F
Authority key identifier: FB:1B:2A:C1:49:DD:65:34:44:95:86:34:F9:B3:B7:A7:B7:69:E9:F8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/88d3b38fb9bfced57c6ad5eb160c130acf32641c.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/d2aa9f1e2545aacae265f10bda8f21ba4a8b723d.roa
Signing time: Wed 24 Mar 2021 14:28:59 +0000
ROA not before: Wed 24 Mar 2021 14:28:59 +0000
ROA not after: Tue 24 Mar 2026 14:28:59 +0000
asID: 28075
IP address blocks: 186.189.65.0/24 maxlen: 24
186.189.68.0/24 maxlen: 24
190.113.144.0/21 maxlen: 24
190.113.156.0/23 maxlen: 24
190.113.158.0/24 maxlen: 24
2803:6601::/34 maxlen: 64
2803:6603::/34 maxlen: 48
2803:6603:8000::/34 maxlen: 56
2803:6604::/34 maxlen: 34
2803:6604:c000::/34 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 911247 (0xde78f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88d3b38fb9bfced57c6ad5eb160c130acf32641c
Validity
Not Before: Mar 24 14:28:59 2021 GMT
Not After : Mar 24 14:28:59 2026 GMT
Subject: CN=d2aa9f1e2545aacae265f10bda8f21ba4a8b723d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f2:ce:3b:31:19:f6:7f:4a:cb:f5:79:fe:79:
50:88:b4:01:aa:20:f7:4f:22:18:e7:67:23:a3:fc:
a6:87:16:ac:81:10:fd:d2:9c:4b:d3:8d:a4:18:e9:
c3:41:58:97:e8:0a:76:18:61:22:5a:52:7e:b2:fd:
9f:19:8f:8b:cc:43:85:8f:f0:32:74:99:89:36:8c:
7c:9a:db:e8:13:df:e5:f5:c6:f8:9b:0b:3f:27:cf:
b9:5d:77:db:9b:bc:40:f4:06:89:ec:66:e4:c5:1d:
64:09:37:55:a0:93:d8:11:37:96:b4:ea:59:63:b4:
ca:22:97:47:97:a3:19:34:ab:00:9c:d2:90:bf:17:
68:66:d4:af:35:84:01:48:54:91:a6:02:be:fc:14:
0c:85:cd:6f:3d:b2:7f:30:93:db:9b:c2:92:cd:ac:
d1:8e:5a:3c:ff:59:21:b5:de:33:1e:33:e4:4f:4c:
1b:24:58:4c:a5:c6:e7:e8:71:d9:1e:c8:e3:83:43:
e4:3e:a7:78:ef:13:e5:0f:78:01:5b:f3:aa:d2:68:
a1:68:f2:48:58:16:cf:1e:84:96:15:ce:35:4b:30:
77:73:e7:35:2b:3b:ac:b1:ba:b8:11:21:2e:29:fe:
2f:e9:8f:dc:da:7e:9f:5e:c4:9a:62:65:a5:20:c6:
22:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:47:19:2B:FD:AA:03:64:04:93:36:A3:17:59:7F:E2:F6:94:D9:E7
X509v3 Authority Key Identifier:
keyid:FB:1B:2A:C1:49:DD:65:34:44:95:86:34:F9:B3:B7:A7:B7:69:E9:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/88d3b38fb9bfced57c6ad5eb160c130acf32641c.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/d2aa9f1e2545aacae265f10bda8f21ba4a8b723d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/88d3b38fb9bfced57c6ad5eb160c130acf32641c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.189.65.0/24
186.189.68.0/24
190.113.144.0/21
190.113.156.0-190.113.158.255
IPv6:
2803:6601::/34
2803:6603::/34
2803:6603:8000::/34
2803:6604::/34
2803:6604:c000::/34
Signature Algorithm: sha256WithRSAEncryption
7e:22:92:06:79:d3:3e:57:ba:e4:32:8f:37:26:0c:31:23:a7:
b1:60:21:5b:d9:e2:17:09:cf:96:d0:33:c4:d8:c6:7a:2c:77:
cc:a7:e3:e8:bf:1b:c1:04:c5:59:55:fb:81:8b:7d:3d:9a:f1:
68:95:c7:c0:00:b2:c8:fd:3a:ec:21:24:70:36:08:10:6c:58:
8a:b5:1d:1c:49:5b:69:aa:07:94:cf:47:27:55:90:6a:47:32:
97:8b:30:78:6f:48:96:65:ca:46:1d:6a:7f:64:dc:ad:7d:c6:
f9:ac:2e:ac:fe:87:42:86:05:bc:d6:dd:a8:cd:a4:a0:cd:23:
0c:26:41:f5:67:bb:05:98:b8:cd:a6:2f:93:20:0b:ff:73:df:
2a:68:0e:ac:28:e4:a8:a1:d2:2b:21:d0:02:c4:1f:29:46:ed:
81:3c:48:13:fe:5e:5d:dd:40:33:9c:7b:21:ed:21:15:25:c0:
12:27:22:47:23:99:35:84:ae:cd:d2:5f:74:0b:db:eb:31:67:
71:44:d3:69:25:0f:cb:79:79:b7:94:e9:df:2a:e8:ed:1c:aa:
4b:57:ce:5d:5b:11:17:da:72:b1:9a:15:de:09:bc:7a:cb:bd:
34:08:f0:49:13:35:e7:b0:5a:bd:7e:e8:96:ac:e8:9b:07:ef:
32:c5:8a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:58 2023 by rpki-client on console-ams.rpki-client.org