Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/278B39519F38D9CF4B886A90BEA8C666D8C3215F50353FC7D2121D5E936EAF17/0/3230302e35392e3234302e302f32302d3234203d3e203237373531.roa
File: 3230302e35392e3234302e302f32302d3234203d3e203237373531.roa (raw, json)
Hash identifier: BtUe7IWdoYBeJVFwzRTnCFPVKcGDiUdB0t4DfTyS0o8=
Subject key identifier: 57:65:7A:C4:E8:10:11:6D:2B:F4:A4:3D:51:A7:90:4B:7C:52:09:D1
Certificate issuer: /CN=49986AF9BE70C9F7A7BBDEB5E3E872038F597D4E
Certificate serial: 6E72455983BE4E091EB2532454492F33A9A2F1D1
Authority key identifier: 49:98:6A:F9:BE:70:C9:F7:A7:BB:DE:B5:E3:E8:72:03:8F:59:7D:4E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/49986AF9BE70C9F7A7BBDEB5E3E872038F597D4E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/278B39519F38D9CF4B886A90BEA8C666D8C3215F50353FC7D2121D5E936EAF17/0/3230302e35392e3234302e302f32302d3234203d3e203237373531.roa
Signing time: Tue 05 Mar 2024 18:02:54 +0000
ROA not before: Tue 05 Mar 2024 17:57:54 +0000
ROA not after: Tue 04 Mar 2025 18:02:54 +0000
asID: 27751
IP address blocks: 200.59.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 15:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:72:45:59:83:be:4e:09:1e:b2:53:24:54:49:2f:33:a9:a2:f1:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49986AF9BE70C9F7A7BBDEB5E3E872038F597D4E
Validity
Not Before: Mar 5 17:57:54 2024 GMT
Not After : Mar 4 18:02:54 2025 GMT
Subject: CN=57657AC4E810116D2BF4A43D51A7904B7C5209D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:cf:bb:02:61:fb:ae:6b:2f:96:0f:90:f9:
ef:8e:fb:bd:6f:6f:91:d5:2b:1f:40:49:51:c4:4a:
35:42:1c:b4:37:aa:85:e9:b8:8a:6c:13:76:b1:f7:
b9:52:74:1f:7f:39:93:be:23:69:61:e7:8c:36:ef:
1e:0b:b8:cc:04:10:15:9b:06:9d:9d:c1:55:0b:b3:
e3:8d:76:0d:17:11:5e:49:76:2c:f7:9b:17:39:66:
78:1b:d1:08:a1:a2:a6:c7:d8:d2:fd:5f:3d:1c:95:
af:a1:57:33:98:94:9e:6d:30:0f:45:1f:5d:bb:7f:
a8:3d:89:c0:83:e6:36:42:f8:71:11:29:3b:a9:b2:
ce:17:29:ce:4e:13:07:5d:42:1f:d5:91:9d:82:c0:
a0:23:f6:61:9d:79:69:4e:07:4b:44:7d:3a:2c:bc:
44:b4:35:d4:76:f9:5d:ef:4a:b2:7a:19:7a:f3:3c:
28:d8:ad:cb:fa:dc:c1:fe:74:4e:fc:59:58:5d:1f:
2e:5c:b1:86:81:4f:e7:ec:55:b8:c3:97:32:11:77:
30:27:27:1f:f1:4e:fc:1a:db:af:b9:9b:5d:f1:de:
9d:cd:99:e0:5c:74:16:a6:f1:b3:a1:1a:6a:de:f3:
cc:cd:17:fd:3b:42:a6:9a:06:49:d4:2a:df:72:82:
fd:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:65:7A:C4:E8:10:11:6D:2B:F4:A4:3D:51:A7:90:4B:7C:52:09:D1
X509v3 Authority Key Identifier:
keyid:49:98:6A:F9:BE:70:C9:F7:A7:BB:DE:B5:E3:E8:72:03:8F:59:7D:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/278B39519F38D9CF4B886A90BEA8C666D8C3215F50353FC7D2121D5E936EAF17/0/49986AF9BE70C9F7A7BBDEB5E3E872038F597D4E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/49986AF9BE70C9F7A7BBDEB5E3E872038F597D4E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/278B39519F38D9CF4B886A90BEA8C666D8C3215F50353FC7D2121D5E936EAF17/0/3230302e35392e3234302e302f32302d3234203d3e203237373531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.59.240.0/20
Signature Algorithm: sha256WithRSAEncryption
90:72:bd:37:c7:26:85:0b:06:2a:69:6c:72:78:eb:b3:4e:0e:
4e:76:70:9a:e0:83:de:8a:46:45:45:5c:c4:54:87:54:fd:f5:
72:12:b4:b7:c3:61:b7:e0:9e:0d:44:ee:67:7d:05:d7:b2:67:
c0:c3:d7:d7:b9:64:91:b4:88:55:98:78:0f:a5:c5:e9:c6:19:
90:cf:ad:7a:19:ad:80:cb:fb:ce:c4:3a:fb:40:b8:e5:e6:71:
fd:7e:8e:83:dd:70:ca:f6:6f:3a:85:44:77:27:4d:68:8f:5a:
59:d4:63:9a:b4:f1:96:10:15:15:df:55:2c:4c:c6:ea:ae:04:
c2:1e:01:51:b7:fb:9d:2d:67:a0:97:b8:42:bc:d9:f0:06:a7:
c2:92:e5:93:00:20:50:b7:84:e7:a4:39:8e:8f:e9:8b:da:bd:
43:c8:ec:1b:e0:10:55:73:4b:b5:6c:a3:cc:9a:59:e0:af:6b:
ce:3b:fe:15:09:0b:b3:00:c7:14:9d:48:78:44:24:d5:32:4e:
61:25:b0:52:6e:82:4e:01:8b:02:df:c5:cb:19:f6:93:81:89:
8e:61:cf:67:70:fb:89:08:9c:21:59:52:12:a9:03:30:02:61:
89:03:72:2c:98:a2:0a:14:64:f7:7f:90:25:bb:9b:a9:b1:69:
87:e8:13:2d
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUbnJFWYO+TgkeslMkVEkvM6mi8dEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDk5ODZBRjlCRTcwQzlGN0E3QkJERUI1RTNFODcyMDM4
RjU5N0Q0RTAeFw0yNDAzMDUxNzU3NTRaFw0yNTAzMDQxODAyNTRaMDMxMTAvBgNV
BAMTKDU3NjU3QUM0RTgxMDExNkQyQkY0QTQzRDUxQTc5MDRCN0M1MjA5RDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5cM+7AmH7rmsvlg+Q+e+O+71v
b5HVKx9ASVHESjVCHLQ3qoXpuIpsE3ax97lSdB9/OZO+I2lh54w27x4LuMwEEBWb
Bp2dwVULs+ONdg0XEV5Jdiz3mxc5Zngb0QihoqbH2NL9Xz0cla+hVzOYlJ5tMA9F
H127f6g9icCD5jZC+HERKTupss4XKc5OEwddQh/VkZ2CwKAj9mGdeWlOB0tEfTos
vES0NdR2+V3vSrJ6GXrzPCjYrcv63MH+dE78WVhdHy5csYaBT+fsVbjDlzIRdzAn
Jx/xTvwa26+5m13x3p3NmeBcdBam8bOhGmre88zNF/07QqaaBknUKt9ygv3FAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUV2V6xOgQEW0r9KQ9UaeQS3xSCdEwHwYDVR0j
BBgwFoAUSZhq+b5wyfenu9614+hyA49ZfU4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yNzhCMzk1MTlGMzhEOUNGNEI4ODZBOTBCRUE4QzY2NkQ4
QzMyMTVGNTAzNTNGQzdEMjEyMUQ1RTkzNkVBRjE3LzAvNDk5ODZBRjlCRTcwQzlG
N0E3QkJERUI1RTNFODcyMDM4RjU5N0Q0RS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80OTk4NkFGOUJFNzBDOUY3QTdC
QkRFQjVFM0U4NzIwMzhGNTk3RDRFLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMjc4QjM5NTE5RjM4RDlDRjRCODg2QTkwQkVBOEM2NjZEOEMzMjE1RjUw
MzUzRkM3RDIxMjFENUU5MzZFQUYxNy8wLzMyMzAzMDJlMzUzOTJlMzIzNDMwMmUz
MDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzNzM3MzUzMS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMg78DAN
BgkqhkiG9w0BAQsFAAOCAQEAkHK9N8cmhQsGKmlscnjrs04OTnZwmuCD3opGRUVc
xFSHVP31chK0t8Nht+CeDUTuZ30F17JnwMPX17lkkbSIVZh4D6XF6cYZkM+tehmt
gMv7zsQ6+0C45eZx/X6Og91wyvZvOoVEdydNaI9aWdRjmrTxlhAVFd9VLEzG6q4E
wh4BUbf7nS1noJe4QrzZ8AanwpLlkwAgULeE56Q5jo/pi9q9Q8jsG+AQVXNLtWyj
zJpZ4K9rzjv+FQkLswDHFJ1IeEQk1TJOYSWwUm6CTgGLAt/Fyxn2k4GJjmHPZ3D7
iQicIVlSEqkDMAJhiQNyLJiiChRk93+QJbubqbFph+gTLQ==
-----END CERTIFICATE-----
Generated at Mon Oct 28 20:14:20 2024 by rpki-client on console-ams.rpki-client.org