Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/fe91a7aa-2d10-478d-abc0-c38f604f3488/d54711b435f41976940e0b8a216e7ce241069446.roa
File: d54711b435f41976940e0b8a216e7ce241069446.roa (raw, json)
Hash identifier: 89ymON3D+6AMDRS8qN6AUyZTxKdxcuJDA0Ih2BHgq3U=
Subject key identifier: 8D:DC:59:12:4E:3F:56:ED:F2:5E:ED:7C:57:DF:1F:9B:E5:D7:C9:CB
Certificate issuer: /CN=6e37ba61cda2665349146e3f47d9626599bc42f0
Certificate serial: 0F3BB9
Authority key identifier: 95:AE:CE:6D:67:BE:1D:4E:2D:8F:34:DB:70:3E:01:B2:11:53:03:12
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6e37ba61cda2665349146e3f47d9626599bc42f0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/fe91a7aa-2d10-478d-abc0-c38f604f3488/d54711b435f41976940e0b8a216e7ce241069446.roa
Signing time: Wed 16 Jun 2021 15:44:36 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 6057
IP address blocks: 179.24.0.0/13 maxlen: 24
186.48.0.0/14 maxlen: 24
186.52.0.0/14 maxlen: 24
190.0.128.0/19 maxlen: 24
190.64.0.0/17 maxlen: 24
190.64.128.0/17 maxlen: 24
190.132.0.0/16 maxlen: 24
190.133.0.0/16 maxlen: 24
190.134.0.0/15 maxlen: 24
200.2.32.0/19 maxlen: 24
200.125.0.0/20 maxlen: 24
200.125.16.0/20 maxlen: 24
200.125.32.0/20 maxlen: 24
200.125.48.0/20 maxlen: 24
201.217.128.0/19 maxlen: 24
201.217.160.0/19 maxlen: 24
201.221.32.0/20 maxlen: 24
201.221.48.0/20 maxlen: 24
2800:a0::/28 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 998329 (0xf3bb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e37ba61cda2665349146e3f47d9626599bc42f0
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=d54711b435f41976940e0b8a216e7ce241069446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dc:b8:8e:bc:d8:ef:9e:ec:2f:4b:58:b3:a2:
22:77:60:b9:d5:8f:64:0e:f7:ac:44:65:1d:9f:cd:
e5:b8:f9:07:42:bd:02:16:c2:8c:39:38:d7:39:f5:
4e:73:82:47:c0:75:4e:63:91:0e:4b:36:92:cd:ab:
45:ba:88:16:4e:f6:97:88:80:45:d1:86:f3:a7:46:
e1:99:f9:1a:eb:ee:f3:7f:aa:83:cb:ff:94:19:76:
22:3d:2a:94:a2:84:de:ff:f4:92:b0:a1:80:6b:0e:
44:bd:c2:2b:b4:6b:20:be:da:a9:45:4c:88:63:c3:
3c:22:78:54:14:cb:3d:35:97:a2:fe:e7:5f:6c:d8:
4d:76:92:55:4f:38:81:16:aa:fe:19:0d:42:60:38:
b9:87:a3:38:1d:55:32:20:39:02:cb:d5:d0:6d:8f:
25:0e:b1:fc:75:60:71:9d:f1:ee:7c:56:67:11:6b:
2f:f1:da:36:ef:ec:f4:de:90:c6:a3:5b:01:79:d3:
d6:19:ac:5e:d3:38:3f:ed:c1:70:93:87:68:0d:39:
40:14:91:89:03:30:7f:71:63:ce:04:de:6a:0a:39:
56:5a:ae:35:bb:f0:c5:5c:11:c6:1b:1a:45:ea:d1:
c3:75:fa:f5:ad:11:29:0f:a5:7f:ff:c5:e7:8b:39:
85:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:DC:59:12:4E:3F:56:ED:F2:5E:ED:7C:57:DF:1F:9B:E5:D7:C9:CB
X509v3 Authority Key Identifier:
keyid:95:AE:CE:6D:67:BE:1D:4E:2D:8F:34:DB:70:3E:01:B2:11:53:03:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6e37ba61cda2665349146e3f47d9626599bc42f0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/fe91a7aa-2d10-478d-abc0-c38f604f3488/d54711b435f41976940e0b8a216e7ce241069446.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/fe91a7aa-2d10-478d-abc0-c38f604f3488/6e37ba61cda2665349146e3f47d9626599bc42f0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.24.0.0/13
186.48.0.0/13
190.0.128.0/19
190.64.0.0/16
190.132.0.0/14
200.2.32.0/19
200.125.0.0/18
201.217.128.0/18
201.221.32.0/19
IPv6:
2800:a0::/28
Signature Algorithm: sha256WithRSAEncryption
2c:44:f2:34:fb:34:4d:5c:0b:e7:91:e3:69:f5:06:ee:87:53:
77:4b:e8:3a:cf:08:72:76:6e:a4:93:20:40:56:b4:a2:16:a1:
3e:8c:29:bb:7d:76:54:a5:fe:96:bf:1d:68:c5:51:43:43:b2:
89:73:3e:45:61:39:6b:d6:e7:ae:00:90:eb:19:b8:ae:da:86:
ab:50:98:2d:c4:88:ba:8b:c2:1d:58:3c:03:01:4d:fe:aa:fc:
9c:e2:f1:39:81:87:00:7c:ca:7c:69:f0:f8:d4:c9:54:0f:ab:
53:75:31:8e:ad:be:94:3e:17:4f:23:68:04:ab:ab:42:1d:c9:
3e:4d:47:d9:0d:ba:a2:7f:58:0a:1f:31:54:40:97:d7:6a:8e:
89:6b:65:d0:a5:f8:7f:19:81:42:29:d3:67:8a:4d:0d:de:6b:
6d:fe:2e:29:aa:f1:19:bc:47:7e:e4:d2:db:1e:3f:fc:d0:9d:
90:d0:ce:c7:d2:66:87:20:7a:af:40:d7:0a:2f:2d:a2:94:7b:
1c:8e:19:15:a1:2f:02:bd:cd:e7:4b:03:5d:57:46:5f:fe:34:
21:97:23:e1:86:02:72:27:71:f0:69:82:00:c9:36:de:dc:71:
08:7a:20:99:b2:5c:7e:c6:c1:94:b5:91:cd:e0:23:30:02:91:
e8:d6:cd:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 15:37:16 2023 by rpki-client on console-ams.rpki-client.org