Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3c4caea2-569f-4678-a145-28e3fd234454/7df6b299208795266d71959b652b111463a97f8f.roa
File: 7df6b299208795266d71959b652b111463a97f8f.roa (raw, json)
Hash identifier: i2wW4unGUZQiyyC7DJWD9yJWJViOHpVdYp+T8L+g5Co=
Subject key identifier: 03:37:49:41:13:B5:D7:0C:9A:8C:0B:1F:AB:86:CD:4C:82:82:66:AA
Certificate issuer: /CN=23604b73c22ca1f7419d3ca4dccb9ce28f4435a8
Certificate serial: 20FD5A
Authority key identifier: D7:E8:15:32:35:AE:58:6B:50:47:7F:AC:6D:E7:E4:FA:79:9E:6C:3E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/23604b73c22ca1f7419d3ca4dccb9ce28f4435a8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3c4caea2-569f-4678-a145-28e3fd234454/7df6b299208795266d71959b652b111463a97f8f.roa
Signing time: Tue 11 Jul 2023 02:33:08 +0000
ROA not before: Mon 10 Jul 2023 02:33:07 +0000
ROA not after: Fri 11 Jul 2025 02:33:07 +0000
asID: 264732
IP address blocks: 45.177.144.0/22 maxlen: 24
170.233.68.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2162010 (0x20fd5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23604b73c22ca1f7419d3ca4dccb9ce28f4435a8
Validity
Not Before: Jul 10 02:33:07 2023 GMT
Not After : Jul 11 02:33:07 2025 GMT
Subject: CN=7df6b299208795266d71959b652b111463a97f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:49:89:62:90:cb:d8:eb:29:88:07:97:c4:6c:
12:83:ec:65:a2:4e:d7:92:2f:d9:26:22:ea:18:2e:
6e:8e:a1:7b:3e:bc:5b:95:1c:80:b7:da:f7:c9:72:
e5:4b:64:fb:db:13:7b:8c:87:0c:53:9f:fc:4c:6f:
24:3a:7c:6f:6b:8c:05:1a:e0:ae:92:d4:29:81:e8:
03:5f:95:9f:6e:ab:91:0b:2e:64:dd:e6:f6:4f:05:
62:33:cd:ae:ba:17:92:3d:72:67:1f:b2:6e:7d:f8:
ba:96:ba:1c:a6:f4:dc:eb:6c:0c:80:2e:ad:74:e9:
31:a0:59:b5:ba:45:b2:24:73:d5:de:3c:13:bd:97:
93:6b:91:4c:69:df:9f:98:5c:4e:29:aa:be:b1:06:
b6:13:ad:ea:34:63:a0:c8:c7:1b:92:7b:ac:bc:82:
68:04:31:c7:25:5f:58:f5:dd:25:5a:a3:62:d1:ef:
e2:33:35:3d:99:4f:0f:70:6f:d3:a4:3f:ac:5f:7b:
e1:4c:58:de:74:ee:f7:89:98:5f:b0:08:c6:a7:ce:
53:01:89:0b:e0:da:f3:6f:0f:04:d2:48:cd:56:ec:
03:c2:2e:38:48:93:fc:9e:58:50:66:d9:a1:fd:3c:
c8:0f:17:4d:2b:08:bd:00:1d:c1:f5:62:6d:c0:cd:
b3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:37:49:41:13:B5:D7:0C:9A:8C:0B:1F:AB:86:CD:4C:82:82:66:AA
X509v3 Authority Key Identifier:
keyid:D7:E8:15:32:35:AE:58:6B:50:47:7F:AC:6D:E7:E4:FA:79:9E:6C:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/23604b73c22ca1f7419d3ca4dccb9ce28f4435a8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3c4caea2-569f-4678-a145-28e3fd234454/7df6b299208795266d71959b652b111463a97f8f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3c4caea2-569f-4678-a145-28e3fd234454/23604b73c22ca1f7419d3ca4dccb9ce28f4435a8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.177.144.0/22
170.233.68.0/22
Signature Algorithm: sha256WithRSAEncryption
06:dc:89:92:90:8d:df:a1:87:56:65:f1:93:a3:19:cc:78:7a:
56:56:f2:a8:ed:6a:17:6c:65:bf:f1:84:5b:64:d5:a0:06:76:
17:c3:da:bd:6a:2a:2e:d1:08:bf:bc:e9:56:5f:5e:32:a3:f4:
91:a1:7e:df:0b:ac:65:a4:45:a8:ca:38:4c:9d:d9:ae:e6:ed:
b8:4e:40:48:6e:7d:a7:34:8b:4e:4c:4f:58:7b:55:a9:13:2f:
08:65:99:c8:52:ba:aa:4e:53:fe:3f:50:10:e6:89:af:06:a9:
7a:0b:ed:98:05:84:95:1a:51:9d:d7:66:d6:88:8e:13:0b:8c:
17:14:3d:4e:04:fb:27:66:88:66:9f:db:8e:05:a0:9b:f1:0a:
80:07:d1:0c:38:83:8c:0b:8c:1e:33:4c:63:ea:b8:96:f2:78:
3d:df:d8:cd:f8:90:03:bc:bb:cb:05:12:0c:c4:6f:1f:75:58:
ad:14:b6:25:47:57:7d:8f:e9:ce:bb:e6:e1:b2:8c:67:24:53:
40:8e:b8:bd:b5:c1:61:2a:03:aa:ad:fc:93:5d:92:be:e0:aa:
5b:3c:4c:e3:15:7e:8c:ae:d8:14:31:19:c8:7b:1c:49:80:8e:
31:fd:ab:df:66:d3:f3:46:cd:f0:e7:25:1e:a0:ef:98:6b:ee:
6c:82:e8:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:14 2023 by rpki-client on console-fra.rpki-client.org