Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2ba95eb8-0fdb-47e5-8722-1670732ca03f/3fa37764482419a85bdcfdd25ebe72fdfbe47e6a.roa
File: 3fa37764482419a85bdcfdd25ebe72fdfbe47e6a.roa (raw, json)
Hash identifier: oka47WKfbuNxPtXDfXxVpdomxc9BsOe1exf+/AQD62I=
Subject key identifier: A0:84:9E:72:F8:16:18:25:C0:0B:FE:B5:D3:D5:86:30:D2:E5:0E:1C
Certificate issuer: /CN=904a59874ab57a97e46cd1d939a2312a85fe9c71
Certificate serial: 21BE69
Authority key identifier: 4E:23:5A:F0:59:C4:DE:77:9B:DA:BA:DA:4D:17:2F:37:34:F3:E2:82
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/904a59874ab57a97e46cd1d939a2312a85fe9c71.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2ba95eb8-0fdb-47e5-8722-1670732ca03f/3fa37764482419a85bdcfdd25ebe72fdfbe47e6a.roa
Signing time: Tue 27 Jun 2023 08:30:00 +0000
ROA not before: Mon 26 Jun 2023 08:30:00 +0000
ROA not after: Wed 25 Jun 2025 08:30:00 +0000
asID: 271923
IP address blocks: 164.163.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Mar 2024 16:06:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2211433 (0x21be69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=904a59874ab57a97e46cd1d939a2312a85fe9c71
Validity
Not Before: Jun 26 08:30:00 2023 GMT
Not After : Jun 25 08:30:00 2025 GMT
Subject: CN=3fa37764482419a85bdcfdd25ebe72fdfbe47e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5c:05:0f:75:b8:83:e0:1b:c8:7e:7b:8e:79:
c8:69:86:f3:1f:e2:1c:e1:ed:3c:a8:c5:19:ae:6f:
c6:86:67:23:60:5c:2c:98:6b:2c:22:92:b2:45:44:
65:42:90:0d:97:0c:9c:0e:ed:02:0a:75:5b:d4:4b:
08:de:82:1c:b3:c3:55:c0:4f:48:91:34:b9:79:69:
12:24:6f:d1:3f:57:4c:31:d0:0d:a5:b3:d1:90:eb:
bd:30:2c:46:47:c9:5f:d1:d7:c1:74:97:e9:5c:a1:
5f:15:58:84:09:7e:94:eb:d7:45:bb:87:7f:cb:0a:
15:d8:c0:18:76:f4:bc:c8:8b:09:04:1f:f1:ba:95:
53:ca:d0:8c:c7:54:fd:0c:05:78:d7:b2:1a:2d:e3:
e1:e8:24:9b:f9:92:d6:a3:f6:e0:19:4e:99:36:48:
95:44:3d:66:c4:0a:1f:2c:07:ff:f5:20:b1:f4:d6:
62:37:8d:0e:4b:68:09:a9:7a:fa:8a:f3:aa:6c:4c:
bf:cf:b3:99:84:44:89:d7:07:89:7e:8f:3f:5e:f9:
62:8e:09:b0:d5:9b:87:5d:ec:d2:73:54:b8:92:3f:
ca:01:9b:95:ee:90:8e:54:cd:28:7f:4c:86:09:c9:
7b:9a:e3:55:5e:53:cb:11:93:66:9a:fa:3e:69:d8:
1d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:84:9E:72:F8:16:18:25:C0:0B:FE:B5:D3:D5:86:30:D2:E5:0E:1C
X509v3 Authority Key Identifier:
keyid:4E:23:5A:F0:59:C4:DE:77:9B:DA:BA:DA:4D:17:2F:37:34:F3:E2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/904a59874ab57a97e46cd1d939a2312a85fe9c71.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2ba95eb8-0fdb-47e5-8722-1670732ca03f/3fa37764482419a85bdcfdd25ebe72fdfbe47e6a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2ba95eb8-0fdb-47e5-8722-1670732ca03f/904a59874ab57a97e46cd1d939a2312a85fe9c71.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.163.48.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:e7:20:25:33:06:30:aa:98:80:b4:98:a6:53:24:84:b5:9d:
27:b8:e7:68:62:a3:4b:30:04:52:bf:78:72:9f:24:67:62:5e:
28:df:75:d6:3f:d5:46:e5:df:9d:bf:78:3f:e4:92:d2:e8:c4:
8a:f2:b0:c5:ab:22:11:47:55:de:17:62:6a:42:c1:ec:29:ec:
da:ac:7f:c5:cb:7a:d0:20:39:ea:c1:bf:e0:26:c1:7a:a1:de:
a4:bf:47:3f:f6:f0:fa:43:2c:6b:b2:68:50:de:5f:0c:47:eb:
f1:13:89:24:74:3a:81:97:c2:54:ae:63:ac:6c:a2:04:7a:33:
b0:a2:a5:b2:af:4d:41:0e:6a:18:c4:3c:27:3f:b8:a3:3a:7a:
91:1d:9a:f5:98:2f:38:d6:63:f3:aa:3d:fd:1f:7a:d1:7a:65:
11:d6:07:9c:8e:8e:7a:4d:40:c5:6e:a6:69:2c:38:f6:3f:b3:
57:48:0b:45:3b:f0:44:9b:7c:da:eb:b6:e5:2e:61:64:48:85:
c4:46:75:0e:fd:b8:a0:c6:46:a2:df:b8:9c:f3:67:97:61:20:
d0:81:a5:42:b2:c1:86:3d:b2:a1:d2:c7:d8:e2:09:5b:28:17:
51:91:bc:be:2d:95:2c:34:9e:10:e5:d8:8a:49:12:ee:9d:3c:
91:1d:cd:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 2 19:43:24 2024 by rpki-client on console-ams.rpki-client.org