Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/e597bf3b2ef2a952e9d7c3a9749b3cba277b72d9.roa
File: e597bf3b2ef2a952e9d7c3a9749b3cba277b72d9.roa (raw, json)
Hash identifier: oJNhJAlXAFuG5TvX1kz4aYQuYMqfuyYGk8yI2S/CWus=
Subject key identifier: 74:1A:D7:CB:DD:6C:3F:96:11:9A:BA:66:C4:73:C4:A3:D2:04:08:8D
Certificate issuer: /CN=2ea1715958333398146179fdbf2e485fe6525742
Certificate serial: 1D6B0B
Authority key identifier: 60:84:61:48:7C:36:64:D8:97:0A:C3:A9:A1:74:66:80:8B:AD:C8:BF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ea1715958333398146179fdbf2e485fe6525742.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/e597bf3b2ef2a952e9d7c3a9749b3cba277b72d9.roa
Signing time: Thu 28 Dec 2023 16:01:45 +0000
ROA not before: Thu 28 Dec 2023 16:01:44 +0000
ROA not after: Sun 28 Dec 2025 16:01:44 +0000
asID: 264845
IP address blocks: 201.219.252.0/23 maxlen: 24
2800:700::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1927947 (0x1d6b0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ea1715958333398146179fdbf2e485fe6525742
Validity
Not Before: Dec 28 16:01:44 2023 GMT
Not After : Dec 28 16:01:44 2025 GMT
Subject: CN=e597bf3b2ef2a952e9d7c3a9749b3cba277b72d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:38:db:e1:f3:76:e7:64:1a:6a:89:88:e1:30:
01:e6:5c:9d:e2:a6:e8:28:85:e4:64:42:12:18:ca:
e7:b1:61:28:52:f5:e0:c3:25:45:8b:68:2c:79:aa:
aa:e2:dd:87:d9:8d:43:84:af:ec:85:5c:89:b5:08:
39:2c:68:6b:c1:76:9f:57:bb:7e:fc:7c:4b:c6:f7:
85:74:3a:78:9f:f1:6d:ae:a1:c0:9e:ee:aa:d1:57:
67:91:67:d2:6d:ac:7f:47:c1:c3:19:d2:e5:60:19:
ab:29:34:62:dd:2c:a2:78:2e:9e:14:5a:f5:e7:7a:
30:f3:10:16:1c:7e:e5:95:aa:31:0f:5d:61:7c:bb:
de:1b:62:61:be:f9:cd:72:0d:50:43:bc:5e:c7:13:
d7:72:b2:8f:93:4b:79:bb:ca:36:3e:ff:91:28:86:
66:a5:c1:cb:0b:ce:ea:db:69:1e:bf:5a:ce:40:7c:
07:3c:9c:1f:6b:36:07:37:98:a0:41:e6:66:9e:c9:
56:e8:77:57:d6:c8:69:35:e7:5a:6b:b6:c3:c9:77:
46:55:40:ef:14:dd:6d:cd:34:47:91:71:9c:a0:1e:
1c:2f:ac:7e:7c:bb:8c:27:41:ea:35:20:42:96:78:
76:81:ca:01:41:d5:ab:f1:86:86:bf:f9:22:36:68:
0d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:1A:D7:CB:DD:6C:3F:96:11:9A:BA:66:C4:73:C4:A3:D2:04:08:8D
X509v3 Authority Key Identifier:
keyid:60:84:61:48:7C:36:64:D8:97:0A:C3:A9:A1:74:66:80:8B:AD:C8:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ea1715958333398146179fdbf2e485fe6525742.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/e597bf3b2ef2a952e9d7c3a9749b3cba277b72d9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/2ea1715958333398146179fdbf2e485fe6525742.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.219.252.0/23
IPv6:
2800:700::/32
Signature Algorithm: sha256WithRSAEncryption
51:76:22:f1:cd:52:23:7c:e3:ae:de:f3:f7:98:1e:c3:f7:54:
be:5a:b4:e1:8b:6f:34:8b:31:98:27:99:72:0a:50:10:9b:9e:
57:b3:16:45:e5:78:76:94:6d:fb:1c:20:73:00:f8:ab:ad:e5:
f7:af:dd:48:4b:04:d4:c0:c6:b9:13:86:11:ee:c2:8c:04:d9:
fc:9f:f7:b4:69:eb:86:f9:ce:06:8f:71:4a:af:d9:95:aa:7e:
5f:fc:52:48:cd:6b:95:51:44:54:57:bb:c8:99:15:55:55:3e:
35:f5:92:ba:53:1a:fc:04:29:fd:54:38:26:6b:4f:3a:44:91:
5a:8d:fd:ad:93:2b:a9:52:b3:1b:ce:30:a3:6b:08:ac:72:fa:
6b:cc:84:87:25:1b:a1:10:b6:a6:fd:7e:60:e7:ea:9d:0c:c1:
6e:b8:ff:ea:dd:e6:a4:e9:f4:3b:2b:11:c8:7b:6d:27:46:e9:
cb:19:29:bc:e5:dd:e5:be:99:4d:39:2e:d0:1d:97:ee:fb:ce:
45:2c:ae:a3:45:d4:a0:5e:57:76:f1:0c:4e:7b:fc:bb:0b:95:
17:17:c5:82:c1:d2:98:05:81:d4:76:34:8c:c3:a5:b7:a9:85:
62:33:2e:6b:3e:25:a7:af:c7:f7:fa:dc:75:44:58:e4:33:5d:
f7:52:07:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 5 21:23:34 2024 by rpki-client on console-fra.rpki-client.org