Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/28F749D15A239E7711C5BBFCD179E0221928BA4F3EBBC75B0E08C12A7EF28E69/0/34352e3232342e39362e302f32322d3234203d3e20323634363638.roa
File: 34352e3232342e39362e302f32322d3234203d3e20323634363638.roa (raw, json)
Hash identifier: vuBDWtIGxnMbbRJnoJXeqRIShYXjtZKJEGXBfeSGwdo=
Subject key identifier: 48:D9:C6:CA:26:2C:F1:FA:F8:D2:76:09:48:A6:6F:69:6A:F2:CC:77
Certificate issuer: /CN=87170FE663930DA5DB9475CEAC8B0600B2C02832
Certificate serial: 34905FB48001B1162166BD9BD08A5E6C48BE6C74
Authority key identifier: 87:17:0F:E6:63:93:0D:A5:DB:94:75:CE:AC:8B:06:00:B2:C0:28:32
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/87170FE663930DA5DB9475CEAC8B0600B2C02832.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/28F749D15A239E7711C5BBFCD179E0221928BA4F3EBBC75B0E08C12A7EF28E69/0/34352e3232342e39362e302f32322d3234203d3e20323634363638.roa
Signing time: Tue 04 Feb 2025 18:06:19 +0000
ROA not before: Tue 04 Feb 2025 18:01:19 +0000
ROA not after: Tue 03 Feb 2026 18:06:19 +0000
asID: 264668
IP address blocks: 45.224.96.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Feb 2025 19:55:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:90:5f:b4:80:01:b1:16:21:66:bd:9b:d0:8a:5e:6c:48:be:6c:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87170FE663930DA5DB9475CEAC8B0600B2C02832
Validity
Not Before: Feb 4 18:01:19 2025 GMT
Not After : Feb 3 18:06:19 2026 GMT
Subject: CN=48D9C6CA262CF1FAF8D2760948A66F696AF2CC77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:44:d7:d0:d7:93:fd:48:fd:e7:d2:31:a4:bb:
e5:65:3f:1f:1c:61:c4:eb:d8:2a:b2:ec:8a:6b:b3:
f7:02:2c:44:bd:f8:21:f3:f7:be:74:95:dc:9a:8e:
3b:4f:ac:c2:97:3e:0c:0c:6a:77:7e:b0:c0:5c:b9:
c7:02:60:46:08:0b:47:3a:19:6c:32:2c:4a:5e:5b:
e8:a5:51:c0:f5:6e:a4:8b:2d:93:32:23:ac:43:0c:
d0:35:57:81:4b:a5:af:62:ae:fc:52:b8:33:67:df:
7b:e4:f3:d3:21:f2:43:62:37:76:56:5c:2a:b5:d2:
33:f2:84:a9:2a:94:ef:69:eb:1a:76:a4:7e:d8:f2:
cd:c8:84:8d:8b:92:6f:ef:5e:16:d2:0a:c3:b8:d7:
a4:e2:5a:9a:7d:7f:72:1a:b2:f8:a1:1c:10:e7:a8:
9d:1e:f4:76:a4:1f:ed:68:a7:91:14:ac:5d:1e:80:
61:1d:d6:cf:4b:6e:26:f0:84:b9:fa:ab:d6:34:8d:
03:89:59:50:f8:ea:0e:36:37:c2:0f:90:39:b8:89:
cf:77:26:f9:bc:49:5d:b6:8f:96:4e:02:51:5e:d4:
51:98:af:c5:3c:d4:21:c0:b4:55:5e:49:e8:c4:69:
b5:bc:03:56:74:fe:1e:b8:de:07:fc:1c:d9:77:9b:
61:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D9:C6:CA:26:2C:F1:FA:F8:D2:76:09:48:A6:6F:69:6A:F2:CC:77
X509v3 Authority Key Identifier:
keyid:87:17:0F:E6:63:93:0D:A5:DB:94:75:CE:AC:8B:06:00:B2:C0:28:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/28F749D15A239E7711C5BBFCD179E0221928BA4F3EBBC75B0E08C12A7EF28E69/0/87170FE663930DA5DB9475CEAC8B0600B2C02832.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/87170FE663930DA5DB9475CEAC8B0600B2C02832.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/28F749D15A239E7711C5BBFCD179E0221928BA4F3EBBC75B0E08C12A7EF28E69/0/34352e3232342e39362e302f32322d3234203d3e20323634363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.224.96.0/22
Signature Algorithm: sha256WithRSAEncryption
63:bd:ce:27:19:b5:36:1e:6d:36:1b:3c:5e:75:1a:4a:34:61:
1d:4a:fe:ee:04:f9:cb:70:86:dd:19:d7:6c:39:7f:b8:03:7e:
fd:9b:12:90:3c:c5:03:5f:be:fd:5b:13:34:26:34:87:a4:4c:
d7:a1:bb:21:c0:ae:79:ad:76:bb:de:2e:dc:6b:dd:df:97:98:
39:17:9d:eb:02:f1:d1:4d:30:05:cd:6a:3e:b4:e3:7c:4c:30:
0e:b6:85:c8:84:e7:85:22:ee:7b:af:95:c7:c1:2a:54:6b:ab:
56:22:b3:7f:83:6a:ac:78:a5:cf:5f:ce:e4:c8:be:2c:4c:be:
ac:6a:dc:a7:aa:72:87:62:ff:bd:2e:58:84:77:d4:a0:47:7c:
b8:07:ac:8d:a8:da:cd:8a:bc:55:72:2c:f2:9a:a4:88:14:12:
10:4e:87:44:f1:0c:fe:5a:ee:63:47:5f:c1:c2:12:86:4d:af:
0c:6d:c6:95:f6:5d:2d:76:39:14:b7:2a:0e:b9:27:d4:0a:53:
ff:a0:f3:f8:a3:39:50:40:44:b8:4f:23:1c:86:4c:05:ad:13:
a1:dc:66:a2:a6:dd:7d:ca:59:3a:0d:89:3b:9f:a2:dd:20:31:
26:db:8d:a5:b6:b2:71:2d:b7:cb:68:25:25:f8:06:ba:21:de:
bc:50:6d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:37:55 2025 by rpki-client