Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0985e667-da9f-4f15-acff-59a3666037be/b89ad59827d431485de50a4dcc0fb52bd1320e7a.roa
File: b89ad59827d431485de50a4dcc0fb52bd1320e7a.roa (raw, json)
Hash identifier: iSxzTX+1MOali/giIbjDuvclK//xk6i+2P5uBT/0vbc=
Subject key identifier: 71:69:0E:65:38:0C:A7:F6:43:6C:D9:5C:0F:A5:93:F0:BC:52:D9:EB
Certificate issuer: /CN=374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c
Certificate serial: 19F6DE
Authority key identifier: 61:EE:C6:FD:C2:CC:2F:CE:DC:E0:F7:2C:72:C7:54:2C:93:0D:F6:C5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0985e667-da9f-4f15-acff-59a3666037be/b89ad59827d431485de50a4dcc0fb52bd1320e7a.roa
Signing time: Thu 02 Nov 2023 19:04:25 +0000
ROA not before: Thu 02 Nov 2023 19:04:25 +0000
ROA not after: Sun 02 Nov 2025 19:04:25 +0000
asID: 272992
IP address blocks: 131.221.41.0/24 maxlen: 24
131.221.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 16:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1701598 (0x19f6de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c
Validity
Not Before: Nov 2 19:04:25 2023 GMT
Not After : Nov 2 19:04:25 2025 GMT
Subject: CN=b89ad59827d431485de50a4dcc0fb52bd1320e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6d:06:4a:9c:13:da:75:60:18:29:f7:0d:a6:
c1:3f:16:81:e7:d5:f8:c5:9b:02:52:6a:65:95:86:
15:60:d1:8e:aa:9d:a5:75:48:e3:06:15:54:32:b9:
7c:de:23:62:34:cc:a5:49:98:7a:1f:26:c3:23:3a:
56:4d:62:e5:41:1e:6c:6e:a6:ce:38:72:5d:cd:90:
b3:67:51:29:b8:36:98:0b:c6:07:fe:12:37:7a:68:
1a:be:fc:cc:b6:a7:91:dc:e8:8b:07:36:b8:1f:d0:
75:77:03:5c:b2:25:4d:44:40:ac:92:c3:f0:99:af:
73:43:91:32:ae:2a:e8:f3:4a:09:b6:68:50:04:e6:
32:b6:44:c3:dd:65:34:63:6b:97:75:02:b4:c1:64:
f1:11:41:21:1b:8d:36:0d:11:59:cf:e0:a9:52:44:
62:41:31:b6:eb:c2:57:ca:1f:24:ab:2f:05:1b:2d:
07:77:69:3a:b9:f5:eb:ff:a5:c3:d7:e9:d7:19:24:
ce:bd:0a:2c:7a:3f:38:b8:cb:76:3d:75:b6:51:d1:
79:7c:c2:b8:ca:40:71:59:b9:ae:3a:26:e5:93:31:
64:09:bd:14:ec:a2:ba:be:ff:c1:82:34:6e:f5:4e:
08:a1:9d:40:e4:cf:99:d5:6f:45:ca:7f:83:fc:43:
1b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:69:0E:65:38:0C:A7:F6:43:6C:D9:5C:0F:A5:93:F0:BC:52:D9:EB
X509v3 Authority Key Identifier:
keyid:61:EE:C6:FD:C2:CC:2F:CE:DC:E0:F7:2C:72:C7:54:2C:93:0D:F6:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0985e667-da9f-4f15-acff-59a3666037be/b89ad59827d431485de50a4dcc0fb52bd1320e7a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0985e667-da9f-4f15-acff-59a3666037be/374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.221.41.0-131.221.42.255
Signature Algorithm: sha256WithRSAEncryption
42:0d:66:1c:c3:0a:94:b1:34:e6:de:5f:fd:9b:40:be:0e:42:
c8:d0:4e:c6:94:05:e3:61:52:0f:96:e9:63:54:01:72:28:83:
c4:1c:f3:12:2d:4a:46:74:be:69:e7:b6:27:42:89:7a:e1:53:
52:6e:f0:e8:52:c9:2d:39:04:13:92:63:a1:6f:74:cd:8a:d3:
6f:dc:55:70:99:c3:7a:ae:e2:ad:50:59:25:41:2b:4c:45:55:
ec:78:d2:5d:2f:14:82:ad:be:6c:df:70:f3:63:5d:7a:34:5a:
2e:1e:e4:eb:3a:2c:50:9c:89:29:63:75:57:49:7d:0e:fc:6b:
75:b4:e8:b5:09:f0:63:10:a2:e7:ba:6e:79:33:b2:61:7e:89:
f0:58:7e:80:b1:34:45:22:7f:8b:5d:6c:7d:fa:25:d8:d9:cd:
85:9a:32:39:e1:3e:ae:90:9c:37:07:76:01:e8:2d:9e:36:e3:
19:d3:a5:16:14:22:17:14:d3:15:86:5c:c6:5f:f4:9a:a7:7d:
6f:39:c8:6c:44:74:19:05:2c:24:bf:dc:47:2a:42:88:1f:d9:
20:7a:07:31:a9:c7:26:ba:7e:7e:82:7e:87:75:16:13:d7:a2:
80:42:3b:15:2e:78:41:e6:0a:89:fe:09:ae:db:6a:be:c2:8f:
68:2c:0f:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 28 20:08:11 2024 by rpki-client on console-ams.rpki-client.org