Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f04334a6-8e56-4903-90f0-1a897fc935c5/a4ca5bdd59c4ebccb57589e9a903f50c61eeefb9.roa
File: a4ca5bdd59c4ebccb57589e9a903f50c61eeefb9.roa (raw, json)
Hash identifier: R9g6Cnr3jVuf3+wW42ZlbFE7i267m2+EjkD2i/NYKR8=
Subject key identifier: 23:ED:3C:B9:56:2F:55:01:B9:7C:3F:C6:B6:64:A2:7D:98:7F:0E:47
Certificate issuer: /CN=c69b99fc2d2eefbdb75ba663d575a10ac84f78c1
Certificate serial: 22EDCD
Authority key identifier: 26:32:3A:4B:C0:9F:4A:66:92:5C:34:E7:A0:CD:05:9E:A1:ED:05:3B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c69b99fc2d2eefbdb75ba663d575a10ac84f78c1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f04334a6-8e56-4903-90f0-1a897fc935c5/a4ca5bdd59c4ebccb57589e9a903f50c61eeefb9.roa
Signing time: Tue 15 Aug 2023 21:56:54 +0000
ROA not before: Mon 14 Aug 2023 21:56:54 +0000
ROA not after: Fri 15 Aug 2025 21:56:54 +0000
asID: 6306
IP address blocks: 181.185.128.0/17 maxlen: 17
179.20.128.0/17 maxlen: 17
179.45.128.0/17 maxlen: 17
181.184.128.0/17 maxlen: 17
186.184.128.0/17 maxlen: 20
186.166.0.0/16 maxlen: 24
186.186.64.0/18 maxlen: 18
161.255.0.0/16 maxlen: 16
179.44.128.0/17 maxlen: 17
200.35.64.0/18 maxlen: 23
161.234.0.0/16 maxlen: 16
181.183.128.0/17 maxlen: 17
200.71.128.0/18 maxlen: 22
179.21.128.0/17 maxlen: 17
186.24.0.0/15 maxlen: 24
181.182.128.0/17 maxlen: 17
186.185.0.0/16 maxlen: 20
2800:6b0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2289101 (0x22edcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c69b99fc2d2eefbdb75ba663d575a10ac84f78c1
Validity
Not Before: Aug 14 21:56:54 2023 GMT
Not After : Aug 15 21:56:54 2025 GMT
Subject: CN=a4ca5bdd59c4ebccb57589e9a903f50c61eeefb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8e:ff:72:57:76:25:cb:43:f0:4f:2e:1f:8a:
a5:1a:e7:e5:14:db:d4:7d:38:e1:cf:74:90:56:c6:
18:23:fc:86:bc:d0:0a:79:7e:b4:04:c8:52:40:0e:
aa:67:a3:9f:3b:c9:d0:47:56:43:81:bf:f4:b4:bf:
85:69:37:4a:57:16:6b:31:f6:8e:0a:ea:0d:0f:6a:
4c:c0:50:57:35:d1:e5:a5:9c:8d:7b:e8:38:64:59:
4e:e0:e1:2a:2f:9b:17:af:3d:cf:c6:99:68:34:a3:
63:3e:fc:3a:32:85:eb:f2:7c:a7:fb:bd:35:c3:3d:
9d:49:6e:e1:7c:8a:b9:bd:94:02:59:b5:b8:e4:0d:
ec:8e:87:07:a2:20:97:19:bd:ca:3d:e0:37:ac:47:
da:6a:42:0f:0e:4a:b1:fc:ab:83:75:1e:10:20:ec:
62:e5:e9:5a:1e:4e:af:b4:4f:02:a5:04:7c:29:88:
d9:c6:2a:cb:6c:d8:f8:0b:1f:c0:80:a1:01:ec:98:
57:2a:b2:22:ce:3a:cd:43:e0:e7:f2:dd:80:a1:5e:
9f:b3:0e:83:70:b3:7b:66:7d:fc:8a:db:9d:49:83:
c0:39:a3:ce:7a:01:3f:2f:ff:46:f2:9f:a7:59:83:
54:96:8c:04:10:73:5f:9d:25:21:d0:ed:b8:15:02:
b9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:ED:3C:B9:56:2F:55:01:B9:7C:3F:C6:B6:64:A2:7D:98:7F:0E:47
X509v3 Authority Key Identifier:
keyid:26:32:3A:4B:C0:9F:4A:66:92:5C:34:E7:A0:CD:05:9E:A1:ED:05:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c69b99fc2d2eefbdb75ba663d575a10ac84f78c1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f04334a6-8e56-4903-90f0-1a897fc935c5/a4ca5bdd59c4ebccb57589e9a903f50c61eeefb9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f04334a6-8e56-4903-90f0-1a897fc935c5/c69b99fc2d2eefbdb75ba663d575a10ac84f78c1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.234.0.0/16
161.255.0.0/16
179.20.128.0/17
179.21.128.0/17
179.44.128.0/17
179.45.128.0/17
181.182.128.0/17
181.183.128.0/17
181.184.128.0/17
181.185.128.0/17
186.24.0.0/15
186.166.0.0/16
186.184.128.0-186.185.255.255
186.186.64.0/18
200.35.64.0/18
200.71.128.0/18
IPv6:
2800:6b0::/32
Signature Algorithm: sha256WithRSAEncryption
77:b0:c5:7d:af:60:48:69:35:2c:55:e5:7c:cc:b7:3e:3e:7c:
a2:57:3d:98:27:91:84:e3:5a:74:f2:a3:42:b0:49:20:04:15:
7b:ef:bb:eb:98:c9:a5:08:b5:33:f4:4d:ce:c6:2c:4c:ad:ac:
b4:8a:ad:c5:4b:dd:e9:7b:db:50:9f:75:76:6a:33:66:ca:81:
df:6a:f9:9e:49:e5:d5:2a:8c:57:c8:35:9d:70:8c:1e:bc:2d:
00:4f:a0:ae:7a:92:df:3f:7d:06:bd:a8:70:2a:46:15:2a:49:
7d:38:bb:6b:48:82:c1:fa:f2:01:28:2c:ca:c5:64:d5:d4:ca:
20:e1:e1:2d:6e:44:dd:8c:1b:06:cb:2b:95:ca:58:48:fc:57:
52:39:ab:a1:ad:a8:ce:43:10:91:4d:9b:8a:f9:9c:c9:a7:2b:
04:eb:96:1a:a5:30:47:43:4d:2e:c8:ad:0c:5c:03:4a:0b:1d:
17:c6:0b:40:7b:a5:4c:db:2b:75:ab:52:0c:ee:38:83:7a:45:
de:d3:b2:a7:a3:ba:34:3e:53:24:fa:a6:0f:48:80:78:93:12:
95:02:d8:ba:1a:a2:1d:da:0d:5f:e4:d5:47:04:b3:45:7c:21:
4c:5c:20:d7:fd:73:dc:d3:59:59:a9:c8:80:86:31:52:ee:42:
af:86:ce:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 16 17:17:53 2023 by rpki-client on console-ams.rpki-client.org