Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1700DC2BCC12F3D28D94114FFF1C807B757714EAAB2CC7F010ED0AB7205C14EF/0/323830333a626336303a3a2f33322d3332203d3e20323634373733.roa
File: 323830333a626336303a3a2f33322d3332203d3e20323634373733.roa (raw, json)
Hash identifier: gaxfmLTK1bF0pIM2dxfBmqCI6iUjJhSv6zVTuTzeUvk=
Subject key identifier: 21:FA:47:9B:89:08:2E:FF:24:44:CF:E8:09:95:94:AB:8E:B0:91:9A
Certificate issuer: /CN=2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0
Certificate serial: 7A42E12304497B956730EDD3E4E4536EBF11262D
Authority key identifier: 2F:DA:A3:AC:C9:CA:4B:FC:92:19:FB:65:CB:46:4C:9B:9C:4B:94:D0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1700DC2BCC12F3D28D94114FFF1C807B757714EAAB2CC7F010ED0AB7205C14EF/0/323830333a626336303a3a2f33322d3332203d3e20323634373733.roa
Signing time: Tue 05 Mar 2024 18:21:13 +0000
ROA not before: Tue 05 Mar 2024 18:16:13 +0000
ROA not after: Tue 04 Mar 2025 18:21:13 +0000
asID: 264773
IP address blocks: 2803:bc60::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 24 Jul 2024 21:40:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:42:e1:23:04:49:7b:95:67:30:ed:d3:e4:e4:53:6e:bf:11:26:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0
Validity
Not Before: Mar 5 18:16:13 2024 GMT
Not After : Mar 4 18:21:13 2025 GMT
Subject: CN=21FA479B89082EFF2444CFE8099594AB8EB0919A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:99:fa:af:58:c9:86:4d:84:81:d8:f3:87:70:
13:07:da:3d:75:40:11:d5:49:03:9a:a2:a7:c8:4e:
43:78:65:ce:5b:92:6d:d8:8d:90:e8:60:b4:97:4b:
d3:da:ff:4b:20:95:57:bc:fb:9b:ca:8c:9a:2c:da:
bc:a6:fb:c8:ef:a2:05:99:e7:c8:6e:0a:62:ca:bd:
34:8a:c0:da:59:0f:1d:0b:16:15:d6:f9:6f:7d:58:
c1:c4:0a:4e:50:0b:60:2f:43:4d:a4:39:af:cb:f2:
5c:f1:32:6f:88:6f:3c:a4:66:84:06:dd:ea:31:f3:
a2:07:db:1c:93:63:e3:c3:f5:bd:c6:a5:fc:e7:ee:
cc:f8:61:35:a0:e0:6f:28:7c:3b:89:44:d7:01:97:
1f:2c:55:0e:97:24:60:47:7d:fa:0f:74:90:4a:5f:
ce:6f:a8:db:ec:fc:19:6f:6b:46:69:60:af:9b:1d:
11:41:f5:72:96:9f:38:b6:10:93:43:4a:17:2d:ea:
f1:12:ec:2f:1e:a6:a3:1a:54:53:f0:34:69:c7:79:
02:55:dd:c5:c9:08:c5:6a:7f:99:f8:3b:1e:92:f1:
1b:93:f2:e5:43:2a:56:9f:78:8f:24:57:52:ff:c1:
07:49:07:55:54:f7:c5:8c:38:47:18:dd:6b:bc:7e:
22:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:FA:47:9B:89:08:2E:FF:24:44:CF:E8:09:95:94:AB:8E:B0:91:9A
X509v3 Authority Key Identifier:
keyid:2F:DA:A3:AC:C9:CA:4B:FC:92:19:FB:65:CB:46:4C:9B:9C:4B:94:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1700DC2BCC12F3D28D94114FFF1C807B757714EAAB2CC7F010ED0AB7205C14EF/0/2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1700DC2BCC12F3D28D94114FFF1C807B757714EAAB2CC7F010ED0AB7205C14EF/0/323830333a626336303a3a2f33322d3332203d3e20323634373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:bc60::/32
Signature Algorithm: sha256WithRSAEncryption
73:e0:4f:59:34:1b:92:dd:35:59:25:2d:f8:e3:6d:e8:47:f6:
1e:d9:91:af:5d:ab:c0:cc:24:18:f8:93:de:25:95:24:c2:d5:
8e:aa:9f:79:06:2f:0d:37:c3:ac:31:5a:41:7c:a3:13:4f:67:
c0:d7:bf:c3:f4:54:12:46:48:88:d7:5b:48:28:c8:9a:54:f6:
32:5b:f0:b2:c2:7c:74:d6:e9:25:20:2e:8c:c8:0e:c1:cd:60:
cf:78:fa:bd:2d:d3:57:5f:4b:4e:82:62:1b:78:48:ea:f6:af:
27:f8:1a:f2:08:00:10:64:26:ad:0a:74:b0:ae:16:0c:02:18:
56:42:06:a5:44:bb:01:66:dc:42:e1:21:14:3c:d6:67:30:ea:
98:80:15:ce:1f:e0:53:21:e5:d9:22:83:b2:a7:03:1a:d0:3f:
d5:e5:13:0d:df:91:de:ea:29:18:f2:60:c3:29:eb:26:df:2a:
8a:7c:9b:53:30:fc:5d:71:af:ee:52:8c:6c:b1:42:6b:6e:64:
cc:60:11:86:0e:90:f6:15:dd:45:ab:40:73:21:fe:09:89:0a:
43:a7:a0:12:e9:76:7b:fa:b2:54:49:e2:31:b5:44:8e:71:75:
55:02:b5:71:c9:67:d4:33:49:bd:f5:29:dc:63:fd:85:07:56:
ea:89:2d:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 00:10:03 2024 by rpki-client on console-fra.rpki-client.org