Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1A3C227E19AA3716C777D495C59E5752560AD1D24ED9D2B6745C6DA5FB7FC311/0/3230302e32362e3138352e302f32342d3234203d3e20383334.roa
File: 3230302e32362e3138352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: hvVTIVoj2TVeUFYxd/KUan9UXKnL3SIsPDHi64zmxB0=
Subject key identifier: 8A:59:00:18:56:4D:87:7C:CA:76:5D:7B:7E:28:DA:40:44:5F:4B:1E
Certificate issuer: /CN=CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994
Certificate serial: 59D48AFA146F7595D52691E381423BBF91B7CABC
Authority key identifier: CE:C7:9B:D3:D4:AC:E7:89:58:36:B5:E4:2E:6E:5B:5F:6C:A5:59:94
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1A3C227E19AA3716C777D495C59E5752560AD1D24ED9D2B6745C6DA5FB7FC311/0/3230302e32362e3138352e302f32342d3234203d3e20383334.roa
Signing time: Mon 16 Sep 2024 11:15:00 +0000
ROA not before: Mon 16 Sep 2024 11:10:00 +0000
ROA not after: Mon 15 Sep 2025 11:15:00 +0000
asID: 834
IP address blocks: 200.26.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 12:25:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:d4:8a:fa:14:6f:75:95:d5:26:91:e3:81:42:3b:bf:91:b7:ca:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994
Validity
Not Before: Sep 16 11:10:00 2024 GMT
Not After : Sep 15 11:15:00 2025 GMT
Subject: CN=8A590018564D877CCA765D7B7E28DA40445F4B1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8e:54:4f:75:a9:12:9b:de:8a:0b:70:88:b3:
55:ce:c9:75:44:53:bb:82:e3:1a:45:58:1b:14:94:
4c:8a:8f:33:1d:c4:9c:37:50:7a:e3:cc:9c:48:a5:
94:cd:29:06:a7:c1:e5:cc:4b:20:0a:f7:5d:2e:82:
4f:64:6f:bf:2c:ef:31:f6:04:9c:71:f4:9a:1c:29:
cf:f2:9d:30:54:7a:7e:c0:78:22:c4:40:a2:d7:0e:
0d:04:36:01:e0:a5:93:04:2b:7c:51:a2:31:25:8f:
77:8e:29:86:f2:45:8b:8c:36:39:3b:ba:5f:57:3f:
fd:a8:31:85:e3:5a:eb:8d:6b:37:50:36:e6:bf:b5:
cb:6d:10:0f:da:b1:16:ac:f3:54:4e:aa:c4:4c:d2:
cf:9a:22:dc:71:93:a0:1b:03:36:13:41:3c:ff:36:
ec:08:e7:d4:85:4a:74:8f:7e:68:86:49:27:50:d8:
ca:2f:86:31:9c:df:6f:22:dd:b1:be:9e:38:a5:ea:
3a:51:2a:45:db:d2:9b:1b:54:37:06:d7:7b:34:de:
57:b4:ff:26:12:87:dc:57:9d:f4:46:ee:ef:b6:05:
5e:ac:ab:9e:8d:dd:c5:f3:d0:67:2f:e3:d8:3c:c8:
73:97:2b:cb:69:aa:46:ce:2a:70:a2:f8:eb:45:e1:
2a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:59:00:18:56:4D:87:7C:CA:76:5D:7B:7E:28:DA:40:44:5F:4B:1E
X509v3 Authority Key Identifier:
keyid:CE:C7:9B:D3:D4:AC:E7:89:58:36:B5:E4:2E:6E:5B:5F:6C:A5:59:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1A3C227E19AA3716C777D495C59E5752560AD1D24ED9D2B6745C6DA5FB7FC311/0/CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1A3C227E19AA3716C777D495C59E5752560AD1D24ED9D2B6745C6DA5FB7FC311/0/3230302e32362e3138352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.26.185.0/24
Signature Algorithm: sha256WithRSAEncryption
47:fd:28:03:ea:16:8c:0b:74:7c:7e:93:c6:85:0f:5e:03:7b:
74:2d:8d:79:37:61:83:60:4a:f1:17:b2:08:48:93:ca:86:8e:
b7:71:d0:cf:40:c7:c2:ea:e8:50:87:d6:ee:12:3d:fb:43:eb:
48:16:15:f5:f5:ce:b7:b4:83:36:18:91:d4:3d:c0:a2:42:f2:
23:31:12:a2:58:a8:87:eb:2c:d1:06:ec:92:34:43:c1:69:e3:
0c:da:22:07:36:4a:14:9b:a7:04:83:92:b6:51:fb:94:ce:cc:
45:6a:bf:c2:dc:9e:5f:c4:d8:5d:b1:d3:58:dc:b0:12:29:2d:
0a:14:b3:a5:a1:18:c7:c4:dd:f5:71:c0:92:d6:ba:82:4b:04:
c6:2d:9d:da:0a:cb:39:3f:0c:60:55:3f:c1:53:88:34:7e:63:
dc:77:59:fc:10:84:7c:91:3d:c9:6a:cb:19:fd:94:94:c7:e7:
0f:60:1e:65:f6:a5:a1:5d:8d:1f:cf:59:91:a0:d8:ca:27:51:
d5:9d:14:20:04:3b:d7:38:99:55:4c:ea:db:d7:f2:7f:d6:3c:
0c:46:ca:55:a7:f8:48:51:85:e8:a2:c0:e6:34:e7:ef:25:9e:
34:f6:07:ca:66:4f:22:cc:f8:d0:45:15:8e:ac:de:fd:e4:e9:
c6:7c:61:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:07:29 2024 by rpki-client on console-ams.rpki-client.org