Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1060357C31A405E0A4A10F8FCAE921E580538CCACB07E0DA88A16D4B734B7DF8/0/3230302e34392e3234302e302f32322d3239203d3e203634313230.roa
File: 3230302e34392e3234302e302f32322d3239203d3e203634313230.roa (raw, json)
Hash identifier: Y0NPR2rpVISgEGQpA7tZ+iCfVfOKNG6XFSt6ue06+Yo=
Subject key identifier: 96:CD:D3:9D:75:6B:06:2B:DC:E1:4C:B0:0A:35:5D:26:86:E8:8F:F5
Certificate issuer: /CN=C4BCFC6E8AD3BA74023CB2EBAF7B65995ACD4BBA
Certificate serial: 4CB5EADE2E20901897F088729B491CA278B038C2
Authority key identifier: C4:BC:FC:6E:8A:D3:BA:74:02:3C:B2:EB:AF:7B:65:99:5A:CD:4B:BA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C4BCFC6E8AD3BA74023CB2EBAF7B65995ACD4BBA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1060357C31A405E0A4A10F8FCAE921E580538CCACB07E0DA88A16D4B734B7DF8/0/3230302e34392e3234302e302f32322d3239203d3e203634313230.roa
Signing time: Tue 05 Mar 2024 18:01:54 +0000
ROA not before: Tue 05 Mar 2024 17:56:54 +0000
ROA not after: Tue 04 Mar 2025 18:01:54 +0000
asID: 64120
IP address blocks: 200.49.240.0/22 maxlen: 29
Validation: Failed, certificate revoked on Fri 09 Aug 2024 23:45:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:b5:ea:de:2e:20:90:18:97:f0:88:72:9b:49:1c:a2:78:b0:38:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C4BCFC6E8AD3BA74023CB2EBAF7B65995ACD4BBA
Validity
Not Before: Mar 5 17:56:54 2024 GMT
Not After : Mar 4 18:01:54 2025 GMT
Subject: CN=96CDD39D756B062BDCE14CB00A355D2686E88FF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bf:4f:51:20:c7:a5:8e:72:e9:25:dc:5c:cc:
c4:8d:f4:06:ac:d3:66:cd:60:da:fd:d2:89:49:bc:
32:d1:9a:8e:55:f1:69:a2:67:50:12:f9:3a:cd:74:
83:c9:e9:50:34:80:1f:74:b5:c3:17:d7:4c:1d:5e:
32:44:1e:09:57:b9:6e:a8:8c:21:6c:e0:d2:70:18:
1b:ac:2f:62:9f:fc:a2:1f:83:83:85:91:7f:75:87:
94:ef:8c:68:fa:cc:64:b0:73:6d:cf:ae:07:83:1e:
f4:40:a8:0b:0b:87:44:2b:65:12:5e:09:8a:3e:de:
44:fe:1a:a9:56:97:32:61:fb:fc:37:6c:39:02:3a:
88:d6:51:51:4c:cd:07:a4:25:0a:1a:d4:59:67:28:
5a:48:2d:88:1a:b0:26:f4:1f:af:53:8c:db:65:08:
98:7b:d7:2f:2e:3f:d4:8f:6a:46:ac:a8:da:c9:a6:
06:59:5e:c9:4d:be:48:65:23:8b:1b:38:97:b2:4f:
a3:36:33:5f:2b:2c:7a:a7:78:04:06:53:3b:77:54:
19:78:04:3f:76:32:43:72:4f:f4:c3:4b:c1:eb:e5:
cc:33:a5:a4:b7:e3:e2:21:89:99:94:5e:b4:0e:34:
f4:67:13:26:04:92:14:50:84:b6:2c:cf:61:93:98:
dd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:CD:D3:9D:75:6B:06:2B:DC:E1:4C:B0:0A:35:5D:26:86:E8:8F:F5
X509v3 Authority Key Identifier:
keyid:C4:BC:FC:6E:8A:D3:BA:74:02:3C:B2:EB:AF:7B:65:99:5A:CD:4B:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1060357C31A405E0A4A10F8FCAE921E580538CCACB07E0DA88A16D4B734B7DF8/0/C4BCFC6E8AD3BA74023CB2EBAF7B65995ACD4BBA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C4BCFC6E8AD3BA74023CB2EBAF7B65995ACD4BBA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1060357C31A405E0A4A10F8FCAE921E580538CCACB07E0DA88A16D4B734B7DF8/0/3230302e34392e3234302e302f32322d3239203d3e203634313230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.49.240.0/22
Signature Algorithm: sha256WithRSAEncryption
33:3b:cc:66:50:d7:6f:5c:1d:bc:db:48:98:1f:b7:01:2d:9d:
da:fe:1b:1a:12:80:ca:52:7e:ac:c0:6b:83:6d:d3:e1:1b:e1:
b2:be:bc:c8:4a:a7:10:2b:04:52:1c:e6:19:cc:73:7f:b6:dc:
a8:97:67:4e:2b:87:aa:aa:c2:bd:35:3e:3a:16:1a:de:5d:4b:
7d:4f:a0:4d:76:50:1b:71:70:75:b7:8e:5c:d8:67:b7:e9:90:
58:ac:57:c8:4e:d3:68:2e:82:a5:95:ce:54:a8:5e:7b:b5:60:
77:02:29:26:ab:44:0c:14:f5:0a:c2:79:90:14:2d:ef:87:b0:
c5:b5:fd:b4:ef:fe:46:30:78:14:fd:64:7e:21:c7:45:a7:d7:
d1:e2:d5:81:f9:de:92:e4:80:21:45:f1:93:fe:7b:be:7b:17:
27:03:0e:ce:e8:0e:d1:f3:bd:c3:78:b8:36:5b:1e:dd:a6:c2:
45:81:fd:95:4e:b8:8e:2d:33:3e:5b:d2:e2:5a:76:91:a7:40:
b9:06:77:e4:5f:fa:f5:15:97:7d:e0:f3:ee:f5:80:f1:33:cb:
75:fa:1c:39:c5:0c:87:94:3b:95:22:f3:42:4a:04:a5:27:b2:
b7:82:a2:bd:1e:4d:74:48:1e:41:45:eb:6d:d1:b6:1e:e3:a6:
81:1f:eb:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 10 02:18:22 2024 by rpki-client on console-fra.rpki-client.org