Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/3f3526e69e864d4c22b288a8cf0aee3d7c2784fd.roa
File: 3f3526e69e864d4c22b288a8cf0aee3d7c2784fd.roa (raw, json)
Hash identifier: 3a7zyD+HdkbfGWW5b+gaWDkXjdPeezoAazUxZ4JPPVU=
Subject key identifier: 02:D9:4C:19:80:E9:36:A2:4C:B2:C2:0E:E2:54:BB:C9:F2:B0:73:83
Certificate issuer: /CN=259c4fb25c604824d214cf7cbe588eab433a5691
Certificate serial: 28BC79
Authority key identifier: 3F:31:C8:54:2E:52:5E:69:30:FE:E3:42:F0:40:D8:8D:07:34:6E:D0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/259c4fb25c604824d214cf7cbe588eab433a5691.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/3f3526e69e864d4c22b288a8cf0aee3d7c2784fd.roa
Signing time: Thu 28 Mar 2024 17:10:49 +0000
ROA not before: Thu 28 Mar 2024 17:10:49 +0000
ROA not after: Sat 28 Mar 2026 17:10:49 +0000
asID: 273190
IP address blocks: 45.225.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 17:37:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2669689 (0x28bc79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259c4fb25c604824d214cf7cbe588eab433a5691
Validity
Not Before: Mar 28 17:10:49 2024 GMT
Not After : Mar 28 17:10:49 2026 GMT
Subject: CN=3f3526e69e864d4c22b288a8cf0aee3d7c2784fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:bb:18:44:ae:3f:7d:f3:c4:13:af:1c:f2:1c:
e8:f1:b5:90:32:01:e5:70:19:b4:1f:5f:73:23:ea:
5f:9c:57:8a:ae:2b:96:ac:19:72:29:7a:4d:ae:c9:
2b:1c:0d:92:7b:9b:21:85:9f:b6:69:68:8f:40:fc:
00:eb:e2:5b:27:c7:89:49:86:e7:83:0a:53:00:64:
37:8c:33:39:35:4d:8d:b2:44:b2:04:3a:79:f1:e1:
bb:5e:59:57:cb:2a:b3:72:58:26:ca:7b:d7:29:6a:
43:2a:22:69:48:ec:9d:2e:4b:2a:e3:7c:cf:10:2a:
15:bb:2f:37:49:2c:6c:3e:09:c0:67:4a:21:f6:87:
49:65:1f:a3:72:11:73:4b:5a:5f:bc:84:dd:96:f9:
8c:73:62:ae:4a:4d:70:a4:85:4a:21:01:f6:ae:6d:
57:eb:6d:e0:9e:c9:f0:96:bc:ab:fe:ba:ea:63:dd:
9e:ef:ef:b0:48:5c:38:96:6a:38:06:12:a8:27:12:
98:75:af:fa:a5:41:b6:e5:3e:c1:70:95:67:03:87:
53:61:7b:86:27:98:40:19:f9:5b:df:8a:d6:cb:d7:
8a:82:1a:82:3e:63:4c:47:eb:3d:70:bd:f6:47:dd:
54:8e:4f:26:8c:c9:0d:21:7f:1a:1d:71:b6:51:ad:
b4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D9:4C:19:80:E9:36:A2:4C:B2:C2:0E:E2:54:BB:C9:F2:B0:73:83
X509v3 Authority Key Identifier:
keyid:3F:31:C8:54:2E:52:5E:69:30:FE:E3:42:F0:40:D8:8D:07:34:6E:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/259c4fb25c604824d214cf7cbe588eab433a5691.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/3f3526e69e864d4c22b288a8cf0aee3d7c2784fd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/259c4fb25c604824d214cf7cbe588eab433a5691.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.225.89.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:93:92:9b:d8:72:92:f6:8c:c9:06:8b:f9:c0:d4:46:db:6e:
01:d8:73:7e:63:99:bd:9c:9d:57:66:32:7f:b4:70:24:e7:b6:
2e:77:ce:26:6d:db:15:fb:0f:d1:b7:aa:28:a8:ef:d6:45:fe:
85:a1:28:df:51:65:bf:cd:9e:0d:1b:23:f4:be:b8:32:80:e3:
c0:2c:88:6b:f8:ee:33:8b:9c:ff:c5:12:8c:54:40:b9:c1:02:
dc:e0:80:e7:64:e4:9e:15:ab:f4:30:ae:d0:07:aa:f7:de:d8:
41:e6:c8:24:7b:0a:05:d8:d2:f4:5d:22:12:20:97:bb:f4:5e:
14:97:92:ea:2f:87:e1:1e:e4:d5:22:5d:30:b7:ec:9b:4a:aa:
a4:c4:85:d6:08:8c:55:b5:5d:55:1b:50:90:db:28:b3:8a:f3:
d2:0d:d5:57:0d:2c:b6:44:09:7a:8c:df:ec:b5:93:f1:d1:e9:
32:ab:bf:00:03:ca:0d:29:09:a9:57:0a:73:f1:f5:33:4e:3b:
41:96:08:4e:5f:91:4a:6d:f8:05:53:33:ad:28:f8:f1:f4:03:
4c:f1:01:0c:bf:07:9a:2c:8d:d5:0a:5f:f4:05:b3:64:55:db:
13:9a:71:e6:a6:b7:4d:0a:a9:84:3e:68:d9:e3:8f:31:ed:a4:
15:ba:5f:2a
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDKLx5MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDI1
OWM0ZmIyNWM2MDQ4MjRkMjE0Y2Y3Y2JlNTg4ZWFiNDMzYTU2OTEwHhcNMjQwMzI4
MTcxMDQ5WhcNMjYwMzI4MTcxMDQ5WjAzMTEwLwYDVQQDEygzZjM1MjZlNjllODY0
ZDRjMjJiMjg4YThjZjBhZWUzZDdjMjc4NGZkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmLsYRK4/ffPEE68c8hzo8bWQMgHlcBm0H19zI+pfnFeKriuW
rBlyKXpNrskrHA2Se5shhZ+2aWiPQPwA6+JbJ8eJSYbngwpTAGQ3jDM5NU2NskSy
BDp58eG7XllXyyqzclgmynvXKWpDKiJpSOydLksq43zPECoVuy83SSxsPgnAZ0oh
9odJZR+jchFzS1pfvITdlvmMc2KuSk1wpIVKIQH2rm1X623gnsnwlryr/rrqY92e
7++wSFw4lmo4BhKoJxKYda/6pUG25T7BcJVnA4dTYXuGJ5hAGflb34rWy9eKghqC
PmNMR+s9cL32R91Ujk8mjMkNIX8aHXG2Ua20OQIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFALZTBmA6TaiTLLCDuJUu8nysHODMB8GA1UdIwQYMBaAFD8xyFQuUl5pMP7j
QvBA2I0HNG7QMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMjU5YzRm
YjI1YzYwNDgyNGQyMTRjZjdjYmU1ODhlYWI0MzNhNTY5MS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMmZjNDJmZGYtMmQ4Yi00NmE1LThmOWItNjhkNmUz
NDAzZTRlLzNmMzUyNmU2OWU4NjRkNGMyMmIyODhhOGNmMGFlZTNkN2MyNzg0ZmQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8yZmM0MmZkZi0yZDhiLTQ2YTUtOGY5Yi02OGQ2
ZTM0MDNlNGUvMjU5YzRmYjI1YzYwNDgyNGQyMTRjZjdjYmU1ODhlYWI0MzNhNTY5
MS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAC3hWTANBgkqhkiG9w0BAQsFAAOCAQEAfpOSm9hykvaMyQaL
+cDURttuAdhzfmOZvZydV2Yyf7RwJOe2LnfOJm3bFfsP0beqKKjv1kX+haEo31Fl
v82eDRsj9L64MoDjwCyIa/juM4uc/8USjFRAucEC3OCA52TknhWr9DCu0Aeq997Y
QebIJHsKBdjS9F0iEiCXu/ReFJeS6i+H4R7k1SJdMLfsm0qqpMSF1giMVbVdVRtQ
kNsos4rz0g3VVw0stkQJeozf7LWT8dHpMqu/AAPKDSkJqVcKc/H1M047QZYITl+R
Sm34BVMzrSj48fQDTPEBDL8HmiyN1Qpf9AWzZFXbE5px5qa3TQqphD5o2eOPMe2k
FbpfKg==
-----END CERTIFICATE-----
Generated at Thu Mar 28 22:13:22 2024 by rpki-client on console-ams.rpki-client.org