Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/29CCEC70C1DA8253E769D8930647ADE90D845C1DFC34D23C16D7798DC79939EE/0/323830333a386335303a376630303a3a2f34302d3438203d3e20323733303739.roa
File: 323830333a386335303a376630303a3a2f34302d3438203d3e20323733303739.roa (raw, json)
Hash identifier: 7mugIVy0rhhh1itAgORjKZTpQ34/mznXfA//dGLksyI=
Subject key identifier: C5:0B:8D:A4:D5:82:4E:58:63:67:AA:FD:DF:C0:31:BB:48:42:B3:23
Certificate issuer: /CN=C8585F69732D336320CC1588DC6B16D9F54DDE9B
Certificate serial: 20BD30CF527985529714510A280E36D47AFA92CB
Authority key identifier: C8:58:5F:69:73:2D:33:63:20:CC:15:88:DC:6B:16:D9:F5:4D:DE:9B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C8585F69732D336320CC1588DC6B16D9F54DDE9B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/29CCEC70C1DA8253E769D8930647ADE90D845C1DFC34D23C16D7798DC79939EE/0/323830333a386335303a376630303a3a2f34302d3438203d3e20323733303739.roa
Signing time: Tue 04 Feb 2025 18:23:27 +0000
ROA not before: Tue 04 Feb 2025 18:18:27 +0000
ROA not after: Tue 03 Feb 2026 18:23:27 +0000
asID: 273079
IP address blocks: 2803:8c50:7f00::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 13 Feb 2025 20:40:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:bd:30:cf:52:79:85:52:97:14:51:0a:28:0e:36:d4:7a:fa:92:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C8585F69732D336320CC1588DC6B16D9F54DDE9B
Validity
Not Before: Feb 4 18:18:27 2025 GMT
Not After : Feb 3 18:23:27 2026 GMT
Subject: CN=C50B8DA4D5824E586367AAFDDFC031BB4842B323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2f:fb:00:c6:d0:b8:d5:bd:d4:db:0b:0f:d4:
fd:42:55:2a:06:f4:6a:17:16:30:d5:2e:e0:25:fb:
34:28:69:32:86:5f:b3:bc:a1:b1:49:7b:22:b9:58:
c1:f3:c6:f0:06:4c:f3:9d:ce:84:cf:20:10:35:e8:
e9:c0:5c:c9:fb:a5:5e:fe:b4:3f:93:55:96:8b:5e:
b1:42:d1:60:72:ce:fd:35:8d:4f:29:ee:57:6b:9d:
0c:1e:c3:46:34:92:ef:08:45:8b:aa:f6:2f:5d:0b:
8c:5a:69:e3:f3:a1:ea:3f:40:92:b6:fe:0a:50:b9:
86:fc:2a:7b:f3:e0:e8:e1:d5:8d:36:29:7d:c9:9f:
ee:a1:2a:6f:69:33:e0:0e:9c:51:c1:f3:53:74:13:
ff:c8:e6:fd:70:a7:26:11:8c:c3:8d:dd:0c:c2:0f:
fe:84:65:83:ff:eb:9f:2c:2e:6f:17:30:ca:0d:7f:
5b:e7:cb:b3:50:c2:6f:60:12:03:53:4e:6d:1b:3c:
18:99:4a:73:c5:39:4d:dd:f4:8f:cf:25:53:42:78:
21:02:99:04:81:d2:22:e2:0e:79:7a:8f:01:20:a3:
1c:de:91:80:0a:6c:1f:7e:25:34:c7:84:47:c7:74:
81:8b:ef:a8:e4:7e:50:04:1b:82:b4:24:df:a4:fd:
e1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:0B:8D:A4:D5:82:4E:58:63:67:AA:FD:DF:C0:31:BB:48:42:B3:23
X509v3 Authority Key Identifier:
keyid:C8:58:5F:69:73:2D:33:63:20:CC:15:88:DC:6B:16:D9:F5:4D:DE:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/29CCEC70C1DA8253E769D8930647ADE90D845C1DFC34D23C16D7798DC79939EE/0/C8585F69732D336320CC1588DC6B16D9F54DDE9B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C8585F69732D336320CC1588DC6B16D9F54DDE9B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/29CCEC70C1DA8253E769D8930647ADE90D845C1DFC34D23C16D7798DC79939EE/0/323830333a386335303a376630303a3a2f34302d3438203d3e20323733303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8c50:7f00::/40
Signature Algorithm: sha256WithRSAEncryption
2a:fd:b0:e8:39:ea:10:00:20:2c:fa:38:37:4e:df:41:c4:ca:
b6:8e:9e:0d:d8:db:d9:02:40:b2:d0:43:87:0d:2f:cc:34:43:
c6:6b:05:d5:35:fa:9f:5d:8c:7a:3e:33:ce:3c:68:97:cb:31:
62:4a:c3:c5:68:b4:b5:e8:ce:c6:8e:d2:2b:8d:91:3d:73:01:
c4:4a:39:e2:0f:7b:e3:97:68:42:23:3f:d5:20:6d:3c:d9:6d:
ba:c4:ea:a5:8d:50:84:6f:a5:e6:a8:25:a6:85:16:df:8d:29:
7d:c3:b7:dc:4d:b2:db:f4:f3:e5:8e:62:f5:aa:74:5c:fb:ae:
93:06:d5:e4:57:71:97:cb:8a:a4:df:3c:aa:fd:c7:48:4b:57:
7a:2e:2b:02:5d:b3:17:a5:59:6e:c9:02:b6:07:bd:54:ee:fe:
68:c4:49:ae:10:6f:3f:f9:de:06:be:29:98:ac:0e:7d:87:9e:
47:07:35:8b:63:ff:eb:ee:7a:df:47:44:da:ad:08:c3:a5:2b:
3d:7e:12:ec:2c:0a:23:c3:8e:89:26:6c:ed:97:58:99:f1:ec:
3f:52:1e:3b:84:ce:2c:15:ec:88:9b:c9:cd:08:a3:52:c0:84:
f9:e8:5a:7f:ba:88:a8:52:01:a1:71:69:00:7c:db:c6:7f:c6:
ca:f4:3c:d6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:59:49 2025 by rpki-client