Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0985e667-da9f-4f15-acff-59a3666037be/0ce4520a26df23990dada74513ec14b0a782592e.roa
File: 0ce4520a26df23990dada74513ec14b0a782592e.roa (raw, json)
Hash identifier: ob2ADawpIqmPXbznMg5D5WfqloTIdUCKljzFMlYk9Lw=
Subject key identifier: AE:92:E5:85:65:FF:FD:68:77:80:58:BD:AE:71:8A:4F:84:56:0C:B5
Certificate issuer: /CN=374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c
Certificate serial: 1570A3
Authority key identifier: 61:EE:C6:FD:C2:CC:2F:CE:DC:E0:F7:2C:72:C7:54:2C:93:0D:F6:C5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0985e667-da9f-4f15-acff-59a3666037be/0ce4520a26df23990dada74513ec14b0a782592e.roa
Signing time: Sat 06 May 2023 14:52:40 +0000
ROA not before: Fri 05 May 2023 14:52:40 +0000
ROA not after: Tue 06 May 2025 14:52:40 +0000
asID: 262186
IP address blocks: 131.221.40.0/24 maxlen: 24
131.221.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 19:08:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1405091 (0x1570a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c
Validity
Not Before: May 5 14:52:40 2023 GMT
Not After : May 6 14:52:40 2025 GMT
Subject: CN=0ce4520a26df23990dada74513ec14b0a782592e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:56:fa:dd:aa:a2:e6:1a:c4:24:c2:70:51:f8:
19:1b:df:1c:f7:97:a3:f3:c0:ed:f4:3d:90:49:d2:
8a:71:fe:13:67:6f:eb:d9:64:d9:59:9d:1a:05:4f:
21:4f:38:3c:61:67:08:0b:98:dc:09:00:7c:f5:ac:
c8:d8:b0:9a:95:bd:9a:3c:2e:c5:a2:02:3c:2e:b6:
eb:c0:86:01:7d:4e:dc:6b:64:82:6c:8c:7b:a3:bc:
f1:cc:72:28:76:43:30:91:bd:e8:81:f1:c8:09:17:
82:c2:9f:83:af:cb:6a:ba:66:ee:8f:13:6d:73:a9:
df:53:da:f5:0d:e1:5f:a1:22:24:d8:2f:ea:9e:2e:
cd:68:4e:44:cf:b4:64:35:1a:2b:36:f2:0b:7e:32:
b5:a2:4c:bc:d4:11:4a:f4:13:2a:31:a6:44:93:5c:
3f:e7:95:b8:6e:b0:9d:63:e5:c0:23:2c:1e:60:09:
e1:ed:23:66:46:e9:1d:71:15:7a:35:58:37:0e:e9:
4b:ba:c8:89:9e:eb:24:10:59:ad:22:08:10:a1:ce:
ad:2d:d8:e6:05:c3:89:0d:5e:27:1a:58:75:d0:21:
da:e3:81:d5:ea:40:ae:e7:f2:0c:7c:76:22:7c:4a:
db:69:83:1c:f1:ef:fe:d0:f9:22:ea:cc:7f:fd:64:
ba:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:92:E5:85:65:FF:FD:68:77:80:58:BD:AE:71:8A:4F:84:56:0C:B5
X509v3 Authority Key Identifier:
keyid:61:EE:C6:FD:C2:CC:2F:CE:DC:E0:F7:2C:72:C7:54:2C:93:0D:F6:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0985e667-da9f-4f15-acff-59a3666037be/0ce4520a26df23990dada74513ec14b0a782592e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0985e667-da9f-4f15-acff-59a3666037be/374e0c7c10e3ca2e7d1945ead6a9ee4cd0458f6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.221.40.0/24
131.221.43.0/24
Signature Algorithm: sha256WithRSAEncryption
62:1e:e6:68:e6:33:81:3e:ec:ab:73:dc:e3:90:71:bd:71:4c:
25:45:ca:44:42:c3:58:57:ff:d2:2c:87:d8:b4:73:b7:fa:19:
5d:a6:9c:0d:4f:76:9b:54:42:9f:30:87:c7:c6:b5:80:89:52:
30:d4:23:ec:ce:39:2f:38:36:1c:ef:ea:d3:41:5d:c9:2b:ef:
9b:aa:60:cd:b3:18:6f:e4:63:f5:9f:47:0c:14:29:32:f6:9c:
2a:f9:be:68:29:63:ab:9f:8f:85:46:35:ae:de:6e:1d:26:fc:
85:1c:38:17:81:21:e7:49:78:35:23:58:dd:57:ea:2a:f0:a3:
8c:05:d7:38:3b:d1:77:33:dc:60:f0:6d:4f:23:98:74:e4:aa:
a9:39:15:8b:00:dd:96:75:33:46:f1:26:f3:97:8f:f9:2a:2b:
68:22:f9:a8:c7:32:67:d8:f8:dd:cc:96:ff:27:84:c1:34:2f:
10:8b:bf:2e:f8:d1:16:d1:e8:98:01:ca:7a:6a:83:bb:d3:04:
2f:f0:a3:7d:74:9c:2b:a9:fb:99:19:59:9f:de:16:3f:df:82:
37:85:77:b6:8d:23:5f:9c:a9:7b:75:86:3c:f5:9a:6d:2d:15:
5f:dd:3b:bd:1c:b9:66:23:45:51:c1:9d:31:c6:0e:38:e7:71:
8c:89:fe:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 01:26:40 2024 by rpki-client on console-ams.rpki-client.org