Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/23E617E35A22CB3E302F33F7ED9CCEDE0BC22578206C8E67E93029652F51A7DC/0/3138312e3137342e3138342e302f32312d3233203d3e203630343538.roa
File: 3138312e3137342e3138342e302f32312d3233203d3e203630343538.roa (raw, json)
Hash identifier: FtosftIfYMD+5HgPjzCYQxikcMYY5ZT39uLQnq62qSc=
Subject key identifier: 02:3B:42:86:91:A5:8C:57:AB:8A:1D:CA:41:FB:BD:7C:88:AC:26:59
Certificate issuer: /CN=0F5F9A2CF444A9C495532D9BB5295457EA53D556
Certificate serial: 6D06E889B38EFB068B240215F0B5AC32C47B9B9A
Authority key identifier: 0F:5F:9A:2C:F4:44:A9:C4:95:53:2D:9B:B5:29:54:57:EA:53:D5:56
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0F5F9A2CF444A9C495532D9BB5295457EA53D556.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/23E617E35A22CB3E302F33F7ED9CCEDE0BC22578206C8E67E93029652F51A7DC/0/3138312e3137342e3138342e302f32312d3233203d3e203630343538.roa
Signing time: Tue 04 Feb 2025 18:53:28 +0000
ROA not before: Tue 04 Feb 2025 18:48:28 +0000
ROA not after: Tue 03 Feb 2026 18:53:28 +0000
asID: 60458
IP address blocks: 181.174.184.0/21 maxlen: 23
Validation: Failed, certificate revoked on Mon 17 Mar 2025 10:45:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:06:e8:89:b3:8e:fb:06:8b:24:02:15:f0:b5:ac:32:c4:7b:9b:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0F5F9A2CF444A9C495532D9BB5295457EA53D556
Validity
Not Before: Feb 4 18:48:28 2025 GMT
Not After : Feb 3 18:53:28 2026 GMT
Subject: CN=023B428691A58C57AB8A1DCA41FBBD7C88AC2659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f7:87:38:7d:e6:27:e5:d0:37:ba:03:f0:62:
79:ae:11:78:f4:41:5d:77:1a:dd:b6:1c:b6:2b:dd:
29:be:6d:0d:52:11:01:2e:36:79:f3:d4:22:22:46:
aa:28:bc:13:ee:6b:92:03:d5:67:b1:6b:fe:31:51:
02:5a:40:b9:66:c8:8a:59:37:79:7e:05:60:46:fe:
a9:fe:59:69:40:00:60:60:2b:8a:63:2d:73:30:6f:
35:11:9c:d5:21:05:16:f9:b7:59:09:57:e2:b1:d7:
d7:2d:9f:3d:00:e9:21:d1:f5:f3:99:a8:4a:ba:63:
32:6a:9b:fe:49:b7:a7:a4:4b:1b:41:23:87:54:72:
ca:d9:2b:8d:f2:74:df:b7:b9:73:94:ed:fd:a0:09:
4c:dd:c8:dd:2a:57:92:22:30:eb:d1:74:29:60:d7:
48:56:db:a0:ce:8f:c4:96:0a:09:2d:50:0a:31:d2:
56:7d:91:04:fb:32:f4:a3:c5:08:d3:a4:ba:35:48:
d8:dc:5a:c3:98:18:84:0a:db:db:0f:ec:5f:97:7b:
c6:22:61:a3:c2:1e:45:8a:65:e2:10:78:6e:0f:9f:
93:b7:7a:bb:77:0a:30:36:9c:57:56:cb:e1:57:3a:
ab:f3:e0:6f:78:b7:6e:89:b8:46:bd:64:8e:b7:87:
f9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:3B:42:86:91:A5:8C:57:AB:8A:1D:CA:41:FB:BD:7C:88:AC:26:59
X509v3 Authority Key Identifier:
keyid:0F:5F:9A:2C:F4:44:A9:C4:95:53:2D:9B:B5:29:54:57:EA:53:D5:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/23E617E35A22CB3E302F33F7ED9CCEDE0BC22578206C8E67E93029652F51A7DC/0/0F5F9A2CF444A9C495532D9BB5295457EA53D556.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0F5F9A2CF444A9C495532D9BB5295457EA53D556.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/23E617E35A22CB3E302F33F7ED9CCEDE0BC22578206C8E67E93029652F51A7DC/0/3138312e3137342e3138342e302f32312d3233203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.174.184.0/21
Signature Algorithm: sha256WithRSAEncryption
93:10:f0:73:96:85:bc:92:b5:d9:14:71:23:06:a7:7a:fb:e3:
71:8f:55:69:14:28:47:3d:9d:ef:43:d3:fc:d8:cc:0a:27:01:
f3:74:a4:21:c4:a8:97:87:04:9e:66:f6:c4:39:8a:ac:14:e2:
9c:61:3f:ff:58:82:cc:18:18:9a:5e:ac:b4:74:10:5b:54:a2:
5a:44:dc:72:8b:a2:ed:3f:59:82:92:7f:61:d7:1d:7d:26:f8:
74:ab:7a:da:58:62:11:43:6a:7d:ac:88:23:39:a1:37:44:72:
ca:74:ba:ca:a5:55:f9:b6:81:17:fd:21:93:16:7a:fe:14:b4:
0f:10:6a:03:0e:82:02:bd:59:0c:1c:03:9c:9a:ba:32:3b:66:
85:af:44:7b:fb:66:70:2e:bc:10:82:6c:d3:8f:26:b7:b7:e7:
4b:fc:ea:86:47:0e:38:4b:55:12:c0:be:63:9b:fe:42:0c:32:
e6:10:27:48:8e:4e:bf:fb:27:6d:e9:ea:1f:f7:3a:74:86:5b:
96:88:ac:82:33:44:db:1e:02:1b:87:6f:55:d8:89:9b:83:78:
3a:04:ca:ca:fd:83:2d:e2:ec:88:0f:74:24:06:c1:3a:70:ec:
97:ea:bf:3c:9c:6a:ba:cb:f8:fa:0f:3a:00:87:72:6b:31:ed:
74:1f:f5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:55:02 2025 by rpki-client