Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/3139312e39372e31372e302f32342d3234203d3e20323634383434.roa
File: 3139312e39372e31372e302f32342d3234203d3e20323634383434.roa (raw, json)
Hash identifier: yqacIp7EHE1Doeb3UjcVTm44VSmO1sJiP07a823U39w=
Subject key identifier: 1E:BC:4E:BB:21:98:BD:F5:51:1B:29:0D:04:44:44:CB:CA:DD:97:B8
Certificate issuer: /CN=CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC
Certificate serial: 55A2A5C33B0B54D024FA952F6D512A339054A095
Authority key identifier: CE:FF:58:50:7A:F1:A0:6A:EF:DA:67:DD:8D:65:12:5C:36:4A:4D:EC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/3139312e39372e31372e302f32342d3234203d3e20323634383434.roa
Signing time: Tue 05 Mar 2024 18:23:36 +0000
ROA not before: Tue 05 Mar 2024 18:18:36 +0000
ROA not after: Tue 04 Mar 2025 18:23:36 +0000
asID: 264844
IP address blocks: 191.97.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 18:25:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:a2:a5:c3:3b:0b:54:d0:24:fa:95:2f:6d:51:2a:33:90:54:a0:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC
Validity
Not Before: Mar 5 18:18:36 2024 GMT
Not After : Mar 4 18:23:36 2025 GMT
Subject: CN=1EBC4EBB2198BDF5511B290D044444CBCADD97B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ec:6d:3d:5d:0e:14:4e:88:47:72:bd:9e:df:
d5:1a:c9:b6:00:a5:81:ff:fe:5a:94:d1:73:2b:12:
53:93:3b:e3:4f:06:0a:ff:0d:65:5c:cf:41:59:29:
2a:19:41:cf:e3:a4:53:aa:ca:c0:db:8e:f4:e2:12:
f3:77:4a:73:4a:b9:43:60:e4:f3:db:f5:44:ae:1a:
40:ff:b3:e6:e2:9b:3d:63:c8:e7:56:4f:79:16:c9:
cb:ac:35:97:f6:82:be:a9:10:7d:94:8e:ff:14:66:
e2:8b:1b:da:2c:35:8f:f2:b1:28:4e:fe:5b:e3:58:
fd:cb:dc:47:ad:dc:d0:a0:2e:0d:a2:46:62:e0:db:
e1:06:a1:c6:c2:34:d9:a5:8a:10:45:29:73:3b:48:
4e:a7:63:41:d7:68:0a:65:10:9e:26:3e:19:b9:6f:
29:e0:43:f3:4c:58:f6:9d:c2:3f:50:ee:26:07:fd:
03:e6:d1:39:c8:cd:2a:42:a2:31:7f:55:d7:5b:d6:
a8:f1:48:2d:9a:10:f2:a0:c7:ff:7f:a5:05:5c:5b:
8a:f9:ce:c8:07:3a:4d:d4:69:77:be:06:27:b9:47:
1a:bd:80:a2:dc:59:f9:4c:43:a8:bd:53:29:49:9c:
bb:c0:41:25:db:3f:48:a9:2b:4c:2c:a9:04:5a:cc:
e9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BC:4E:BB:21:98:BD:F5:51:1B:29:0D:04:44:44:CB:CA:DD:97:B8
X509v3 Authority Key Identifier:
keyid:CE:FF:58:50:7A:F1:A0:6A:EF:DA:67:DD:8D:65:12:5C:36:4A:4D:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/3139312e39372e31372e302f32342d3234203d3e20323634383434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.97.17.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a0:c2:5a:ae:2f:f5:26:a7:21:12:e5:1c:63:65:55:9e:b4:
ba:ca:5b:ee:84:31:0b:57:40:24:4d:df:6e:8f:0d:ae:a7:d6:
49:32:1c:08:bd:30:a4:64:cf:ce:c7:35:a7:bf:9d:b5:40:a0:
f2:a8:6c:36:9b:88:ed:4e:ac:5b:5b:21:2d:ee:4e:6e:75:06:
94:9e:3b:f3:31:7f:40:29:97:c3:04:e6:d1:5e:9d:3a:bd:b1:
ad:82:94:16:53:e2:87:9b:a2:01:b5:b4:e6:3a:4a:b1:31:5b:
bb:c4:c1:b6:c9:93:d0:e7:ac:c8:1d:41:a0:08:35:59:b1:e4:
e3:5d:97:3d:74:b7:02:2e:5a:f5:b4:a7:c2:aa:6f:49:31:1a:
f7:da:19:f4:b8:6c:6c:f6:7d:e8:72:49:85:92:fe:c6:1c:2c:
6c:9e:58:a9:ad:60:97:b6:7b:05:82:72:40:aa:20:1a:ae:59:
53:11:83:f9:62:cb:5c:61:17:79:13:68:bf:6a:8a:28:69:d3:
c5:65:45:d1:81:2f:07:73:8c:16:87:5a:c5:d7:61:e3:49:ff:
cf:8f:ae:7a:bb:7a:54:9c:43:bf:82:92:da:84:b4:45:36:45:
f7:f5:94:3a:a9:64:c3:58:2f:fd:7d:73:ce:3e:ff:03:70:2b:
e3:a4:e6:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:59 2024 by rpki-client on console-fra.rpki-client.org