Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/29DB7344B82C38AD35114D1906578EABE7484BC2497FC09F1ADBB0C9E51474AB/0/323830303a3534303a3a2f33322d3332203d3e203237393935.roa
File: 323830303a3534303a3a2f33322d3332203d3e203237393935.roa (raw, json)
Hash identifier: QdG1QbDVy2dVVdTyJTYbhh3oNMsw2Ik5ygTkhEdVc00=
Subject key identifier: 85:8C:8D:E9:0D:DF:DD:64:05:1C:FB:2F:83:71:AB:C7:6C:C1:4D:EF
Certificate issuer: /CN=516A0BAEF13F646C61E3AB03846DBFAD78DD7E99
Certificate serial: 60FC7C7696641C29C2B618C356B913A05348C122
Authority key identifier: 51:6A:0B:AE:F1:3F:64:6C:61:E3:AB:03:84:6D:BF:AD:78:DD:7E:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/516A0BAEF13F646C61E3AB03846DBFAD78DD7E99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/29DB7344B82C38AD35114D1906578EABE7484BC2497FC09F1ADBB0C9E51474AB/0/323830303a3534303a3a2f33322d3332203d3e203237393935.roa
Signing time: Tue 04 Feb 2025 18:12:09 +0000
ROA not before: Tue 04 Feb 2025 18:07:09 +0000
ROA not after: Tue 03 Feb 2026 18:12:09 +0000
asID: 27995
IP address blocks: 2800:540::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 19 Mar 2025 06:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:fc:7c:76:96:64:1c:29:c2:b6:18:c3:56:b9:13:a0:53:48:c1:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=516A0BAEF13F646C61E3AB03846DBFAD78DD7E99
Validity
Not Before: Feb 4 18:07:09 2025 GMT
Not After : Feb 3 18:12:09 2026 GMT
Subject: CN=858C8DE90DDFDD64051CFB2F8371ABC76CC14DEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6d:b6:98:30:72:e3:a5:0c:f4:59:54:5a:0a:
ee:89:af:6d:dc:c0:c3:b3:95:ef:65:94:8a:e3:ce:
ae:69:ae:c3:5c:67:51:6e:ed:3b:5c:c8:48:5a:2e:
b3:68:60:96:7b:de:4e:e7:e7:d8:af:62:f6:db:8b:
30:c6:8c:5c:ce:d4:52:0d:c3:f3:52:79:22:37:f4:
a9:76:62:c1:64:d0:08:89:6f:a8:2a:3e:b2:a2:da:
3c:6d:2d:78:28:70:c4:a6:c1:11:04:90:4a:45:f7:
f4:12:cb:e8:a8:ab:f1:a8:13:3b:1a:2c:73:8e:d0:
79:68:75:64:2c:81:ce:80:c4:35:69:ec:ec:05:fe:
f6:5d:fe:ed:64:66:f9:2c:0a:02:b0:4c:22:bb:03:
5b:15:08:e7:9e:cd:86:dd:ef:0a:c2:a5:5d:32:ca:
b8:46:1c:82:1e:6a:c8:7d:2f:d1:49:2a:89:12:59:
9f:fd:73:1f:77:75:04:ef:ec:44:5c:29:a9:1a:2c:
34:fd:bd:2d:0b:d8:7f:7b:a7:d1:8c:4d:be:e0:c1:
d6:5c:11:c5:65:5f:d8:87:bf:25:f6:96:e0:64:27:
cf:48:2e:d3:15:55:01:ac:90:c6:c8:2f:ed:e1:4d:
f4:a6:10:50:64:e3:c5:cb:4e:11:6e:6b:b0:a6:36:
e6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8C:8D:E9:0D:DF:DD:64:05:1C:FB:2F:83:71:AB:C7:6C:C1:4D:EF
X509v3 Authority Key Identifier:
keyid:51:6A:0B:AE:F1:3F:64:6C:61:E3:AB:03:84:6D:BF:AD:78:DD:7E:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/29DB7344B82C38AD35114D1906578EABE7484BC2497FC09F1ADBB0C9E51474AB/0/516A0BAEF13F646C61E3AB03846DBFAD78DD7E99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/516A0BAEF13F646C61E3AB03846DBFAD78DD7E99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/29DB7344B82C38AD35114D1906578EABE7484BC2497FC09F1ADBB0C9E51474AB/0/323830303a3534303a3a2f33322d3332203d3e203237393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:540::/32
Signature Algorithm: sha256WithRSAEncryption
00:93:70:0b:73:18:6a:d0:3e:64:7d:9e:5d:13:81:d6:b5:51:
0d:01:98:a4:6d:dd:30:28:ac:a0:dd:fb:08:86:f1:26:3e:65:
a4:d8:00:b1:98:f0:dc:07:bd:0e:81:ab:8e:eb:15:ae:8b:3b:
59:6a:40:f9:30:89:2d:b4:e2:18:fe:83:59:24:1c:10:5d:37:
a9:f8:7a:d0:03:08:cc:f0:84:b4:e1:db:e2:ec:7d:72:78:0a:
db:96:72:cb:d3:63:bb:83:f9:b0:7f:8b:f3:cf:6b:37:4b:7d:
4d:b2:23:05:a8:1f:54:9f:e5:12:46:10:bf:dd:1f:36:24:80:
95:ea:56:06:3e:6e:a6:05:2a:1e:dd:12:21:7a:bd:19:1f:82:
3b:9f:de:11:96:56:00:73:8b:b3:e8:2e:a8:ce:6f:0a:7f:d1:
0e:a6:63:32:9a:1e:9f:5b:99:af:3a:23:c1:c3:06:6f:ae:ab:
45:73:bb:00:16:b4:80:d1:8f:f8:4c:e6:8c:7c:de:9e:42:c9:
b8:fc:e2:c3:50:88:f6:b6:2c:c5:71:c7:5e:86:0f:19:81:c5:
c5:5a:72:1f:f9:84:ad:2a:52:5e:1c:d0:e6:e7:91:4b:c6:ad:
ec:35:05:1f:a6:01:d8:e7:95:52:f5:42:a2:08:16:bf:a6:c5:
62:f7:86:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:38:26 2025 by rpki-client