Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/2a352ba9c87b4282d7d13250bd225df98e9bd73c.roa
File: 2a352ba9c87b4282d7d13250bd225df98e9bd73c.roa (raw, json)
Hash identifier: dh293dQrUBX+r408UUE8XttYMIiNWvxBAezmw0CPQck=
Subject key identifier: 2F:85:DF:D0:79:A7:07:C2:E1:CB:9B:AE:1A:17:47:51:F5:D2:1A:37
Certificate issuer: /CN=eec9334789d4fb97b0c0aa483563906a5d69b4c2
Certificate serial: 0B900A
Authority key identifier: 08:91:AA:C4:91:82:BB:0E:06:78:FA:DA:78:35:8C:58:DF:34:5C:CB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/eec9334789d4fb97b0c0aa483563906a5d69b4c2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/2a352ba9c87b4282d7d13250bd225df98e9bd73c.roa
Signing time: Wed 24 Mar 2021 14:31:58 +0000
ROA not before: Wed 24 Mar 2021 14:31:57 +0000
ROA not after: Tue 24 Mar 2026 14:31:57 +0000
asID: 27993
IP address blocks: 170.210.8.0/21 maxlen: 24
170.210.36.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 757770 (0xb900a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eec9334789d4fb97b0c0aa483563906a5d69b4c2
Validity
Not Before: Mar 24 14:31:57 2021 GMT
Not After : Mar 24 14:31:57 2026 GMT
Subject: CN=2a352ba9c87b4282d7d13250bd225df98e9bd73c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0c:fd:0a:3a:f4:8d:a6:ca:a6:d7:62:4b:04:
94:f0:86:22:80:68:39:8e:11:06:de:10:ee:93:a7:
20:98:3f:80:0c:40:ec:7b:7d:6f:39:57:6d:b9:42:
61:fb:bb:99:aa:59:ad:62:1c:8b:14:24:3a:e5:c1:
1c:80:f4:44:ae:e3:3f:64:cd:79:ce:73:40:ef:33:
9d:46:91:9e:87:41:d4:75:f3:75:fd:4d:88:37:c2:
e7:bd:35:06:e7:8d:e2:dc:d6:11:09:40:dd:93:6c:
5b:c1:aa:ef:7a:16:67:c2:0c:f7:09:35:0d:e4:17:
5e:d6:4a:12:01:9c:c9:3b:70:ba:3a:fa:a9:01:06:
30:81:82:f4:f5:25:c1:5a:71:f4:c3:31:6d:85:be:
3c:e6:8f:8c:c6:bf:b0:87:ac:79:85:9f:34:35:3c:
35:1d:5a:a4:9b:e8:54:93:fd:53:77:3e:65:4a:3d:
a1:85:94:1a:db:33:5f:93:f7:74:6d:07:14:b3:16:
76:cc:7b:47:c2:87:9b:e6:aa:8e:5d:7a:44:8d:98:
e0:1d:58:24:21:23:30:5d:7c:31:f4:1e:fa:4c:59:
0a:5c:10:45:ce:2a:b7:82:9a:52:c2:ce:0f:dc:33:
1f:94:82:24:3b:6c:ff:ad:c3:d6:26:4a:48:ca:7f:
c0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:85:DF:D0:79:A7:07:C2:E1:CB:9B:AE:1A:17:47:51:F5:D2:1A:37
X509v3 Authority Key Identifier:
keyid:08:91:AA:C4:91:82:BB:0E:06:78:FA:DA:78:35:8C:58:DF:34:5C:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/eec9334789d4fb97b0c0aa483563906a5d69b4c2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/2a352ba9c87b4282d7d13250bd225df98e9bd73c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f8d5be4d-e751-4c70-966b-cff5ed7bf5be/eec9334789d4fb97b0c0aa483563906a5d69b4c2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.210.8.0/21
170.210.36.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:0d:3c:62:c9:27:8f:fc:54:18:9a:26:df:27:38:c1:9f:f0:
b9:53:16:cc:32:8f:1f:13:d8:85:a7:63:f7:4f:00:b7:fe:0c:
f1:90:1f:96:1a:0b:2a:2c:6c:de:14:47:cc:ec:2f:62:72:8f:
35:03:75:3d:e6:bd:0f:28:e5:46:22:6a:4c:13:20:ec:4e:e9:
32:88:80:d4:29:89:21:17:b8:33:1b:1d:52:34:b2:68:13:6c:
c9:c4:5d:61:97:bf:95:c5:e8:d0:1b:99:80:f3:c8:d8:80:9f:
3e:f6:1e:6e:b4:d8:82:be:e6:51:6f:48:2d:de:ea:c8:bc:6f:
c3:46:64:05:7b:a6:7a:f0:8e:be:8d:7e:bf:cd:c8:9d:cc:32:
63:58:00:25:44:cb:ef:7a:ef:a2:13:f1:21:eb:82:aa:ee:9b:
f2:9a:2f:ad:b2:7d:d3:b2:a4:b2:f0:d5:44:67:c9:30:e8:fa:
e4:86:94:bc:48:78:0e:be:4b:1c:f4:cf:c2:1b:7a:48:0b:87:
fc:76:68:f9:a9:96:51:0b:32:5f:06:c3:96:49:27:04:74:25:
1a:1e:df:8d:13:ee:94:b6:c0:86:3e:d0:9c:62:80:28:dc:85:
7e:30:f4:01:e8:a5:d7:0a:8c:27:ab:c1:eb:a0:b6:60:88:b1:
ae:45:3c:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:44 2023 by rpki-client on console-fra.rpki-client.org