Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2FDE7FF9C3A66561AFE3B8D77A6F3D0600826CFAF42B1A0DADA0592B9E1D2E95/0/323830313a3133353a3a2f34382d3438203d3e20323733313635.roa
File: 323830313a3133353a3a2f34382d3438203d3e20323733313635.roa (raw, json)
Hash identifier: 5IsSSOJkAHoCNM+Vr0U+20Uoc+h37eD++JM5S8L5neg=
Subject key identifier: C4:C4:63:1D:B8:A7:B9:5F:07:E4:AB:08:C0:C4:23:31:EF:0F:55:0C
Certificate issuer: /CN=F4F8147BF99626D17AFEE91E12422301459D2C55
Certificate serial: 5821E04053090F3726AD10F62F83058BC8A09AE1
Authority key identifier: F4:F8:14:7B:F9:96:26:D1:7A:FE:E9:1E:12:42:23:01:45:9D:2C:55
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F4F8147BF99626D17AFEE91E12422301459D2C55.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2FDE7FF9C3A66561AFE3B8D77A6F3D0600826CFAF42B1A0DADA0592B9E1D2E95/0/323830313a3133353a3a2f34382d3438203d3e20323733313635.roa
Signing time: Thu 11 Apr 2024 11:30:00 +0000
ROA not before: Thu 11 Apr 2024 11:25:00 +0000
ROA not after: Thu 10 Apr 2025 11:30:00 +0000
asID: 273165
IP address blocks: 2801:135::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Jun 2024 12:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:21:e0:40:53:09:0f:37:26:ad:10:f6:2f:83:05:8b:c8:a0:9a:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F4F8147BF99626D17AFEE91E12422301459D2C55
Validity
Not Before: Apr 11 11:25:00 2024 GMT
Not After : Apr 10 11:30:00 2025 GMT
Subject: CN=C4C4631DB8A7B95F07E4AB08C0C42331EF0F550C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:a7:73:ec:ef:63:b4:d1:40:73:3b:26:80:
f8:8c:67:60:2e:20:f9:ce:12:dc:24:04:cc:5c:ad:
8c:23:ea:3e:dd:9c:a0:f7:9e:6d:90:76:ef:35:6a:
d5:ba:28:53:c9:47:8a:09:a5:b0:e6:b0:0b:86:94:
b6:cd:75:36:8b:53:6e:72:67:65:a6:17:fe:bd:e1:
48:ac:bd:4a:f4:52:11:48:d9:25:a2:75:52:d5:9f:
f5:4a:a4:97:99:3f:48:c7:5c:ba:fd:46:8c:eb:98:
ec:4b:d5:ec:40:aa:a1:c9:88:34:92:33:28:bc:51:
90:da:6b:c9:1a:f9:ff:e2:26:da:99:59:2e:7b:cb:
2b:86:c4:e9:63:93:63:69:0a:4f:c2:38:04:a8:c8:
e1:97:f4:fd:ff:ab:95:00:4b:23:26:6f:f5:ff:91:
0d:63:c0:89:97:34:c6:4d:64:7b:f8:e7:92:86:e6:
80:57:b9:32:a2:e9:b3:06:a9:61:ce:f6:e6:e5:d6:
d4:81:62:a4:af:f1:86:a7:fc:2b:22:65:c3:87:b5:
45:35:36:97:bf:89:09:7e:61:e0:ce:9b:11:14:fd:
f5:2b:ea:62:c9:c2:71:51:68:ff:8c:5f:87:bc:a9:
12:48:fb:f6:62:6f:11:0e:5d:6f:f6:d7:68:88:65:
e2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C4:63:1D:B8:A7:B9:5F:07:E4:AB:08:C0:C4:23:31:EF:0F:55:0C
X509v3 Authority Key Identifier:
keyid:F4:F8:14:7B:F9:96:26:D1:7A:FE:E9:1E:12:42:23:01:45:9D:2C:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2FDE7FF9C3A66561AFE3B8D77A6F3D0600826CFAF42B1A0DADA0592B9E1D2E95/0/F4F8147BF99626D17AFEE91E12422301459D2C55.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F4F8147BF99626D17AFEE91E12422301459D2C55.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2FDE7FF9C3A66561AFE3B8D77A6F3D0600826CFAF42B1A0DADA0592B9E1D2E95/0/323830313a3133353a3a2f34382d3438203d3e20323733313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:135::/48
Signature Algorithm: sha256WithRSAEncryption
a5:a7:1a:cf:55:05:8f:b8:bc:60:98:1c:1a:19:8c:11:43:05:
c0:2a:99:98:53:b5:67:98:a9:d0:f3:a5:c0:bf:8e:72:ec:b7:
aa:e4:f6:30:ca:80:77:d7:47:76:28:3e:67:cd:5a:4f:39:23:
af:b9:f5:27:2a:1f:29:b0:cb:03:e9:69:1e:7a:ad:ee:e7:4f:
d6:24:dc:1c:a4:cb:11:f5:9b:8d:ee:ff:a2:40:84:0f:46:37:
b3:9d:fa:87:41:a9:96:b6:8c:3a:73:9a:66:a6:2c:fa:7e:9f:
c5:85:59:8c:e6:3b:53:de:32:c6:bb:12:b5:8a:a4:c0:6a:81:
5f:0a:3c:8a:7c:86:6d:e0:54:13:71:c0:6a:fb:bc:f8:11:65:
bc:cc:7f:66:73:98:c0:db:d4:07:af:a8:ef:e9:9f:17:97:fc:
ac:e1:91:ae:e6:bf:d1:d3:74:c4:cb:f4:f4:14:13:23:90:64:
85:4d:f9:eb:f6:74:c0:78:ad:80:6d:c6:52:22:79:ae:53:76:
b7:a9:57:2c:ce:df:08:b5:9b:e1:ba:8a:20:26:05:e2:59:af:
99:f1:79:88:c4:aa:52:82:8e:8a:63:78:7c:f6:5c:a6:35:1d:
b3:4f:8c:a9:05:00:a5:23:7b:96:64:6a:b1:1e:ee:3c:17:da:
f8:da:4b:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 17:03:46 2024 by rpki-client on console-fra.rpki-client.org