Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/3133312e3130382e38312e302f32342d3234203d3e203631343536.roa
File: 3133312e3130382e38312e302f32342d3234203d3e203631343536.roa (raw, json)
Hash identifier: Iwkn/OLQW1HxFyGlPA0uwnRh9GiyhfLTO11yr+26/Yo=
Subject key identifier: 33:56:0E:B7:8A:AC:21:3A:7B:C9:4B:BF:FB:76:10:D2:A1:57:B5:0F
Certificate issuer: /CN=89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE
Certificate serial: 017E3918DA459EE4A646524407D2466C554A4A96
Authority key identifier: 89:C8:23:AD:60:CB:A4:B0:7B:90:92:FB:3D:0B:F1:A0:B8:C1:5A:BE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/3133312e3130382e38312e302f32342d3234203d3e203631343536.roa
Signing time: Tue 05 Mar 2024 17:59:10 +0000
ROA not before: Tue 05 Mar 2024 17:54:10 +0000
ROA not after: Tue 04 Mar 2025 17:59:10 +0000
asID: 61456
IP address blocks: 131.108.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 20:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:7e:39:18:da:45:9e:e4:a6:46:52:44:07:d2:46:6c:55:4a:4a:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE
Validity
Not Before: Mar 5 17:54:10 2024 GMT
Not After : Mar 4 17:59:10 2025 GMT
Subject: CN=33560EB78AAC213A7BC94BBFFB7610D2A157B50F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f5:e9:e8:1f:77:57:c3:21:37:9c:f7:34:6b:
11:92:de:52:7d:97:63:f0:95:1f:ea:d9:df:1e:1e:
bc:41:17:3f:39:6e:d1:ff:dd:40:c1:d5:c5:66:3f:
a1:1f:86:d0:fc:9b:50:4d:92:a9:58:4d:8e:8d:5f:
56:8c:c6:8d:19:d1:a0:5d:94:aa:5b:65:3c:d5:cb:
c9:da:52:bd:ef:15:81:91:0f:42:0b:7f:8f:ef:d0:
81:81:5b:56:a2:72:cb:00:2e:1e:fb:77:0a:89:43:
0e:1c:6d:19:a0:0d:a9:c1:59:ba:65:64:c9:fe:65:
38:b9:00:2c:42:1d:98:6d:b4:05:7e:fb:78:0d:e6:
94:32:e2:2b:4c:4f:8a:95:8a:e8:b8:75:ad:49:55:
36:83:ad:06:be:ee:ef:9d:3f:86:94:dd:51:81:e0:
52:37:ab:c5:f6:56:04:58:16:a5:6d:4f:c2:49:12:
a7:03:b6:3f:0e:d0:8b:67:f0:de:40:04:4e:46:00:
c0:a7:07:75:07:e2:30:02:b7:44:be:b1:4b:cb:f0:
91:4b:fc:9c:56:82:c7:20:15:fe:83:d1:46:32:7c:
48:5f:fd:1c:c1:84:30:c4:35:f7:8d:58:7e:01:65:
76:c7:67:c7:60:5b:0c:d8:4d:d3:83:ad:9b:2b:d7:
ad:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:56:0E:B7:8A:AC:21:3A:7B:C9:4B:BF:FB:76:10:D2:A1:57:B5:0F
X509v3 Authority Key Identifier:
keyid:89:C8:23:AD:60:CB:A4:B0:7B:90:92:FB:3D:0B:F1:A0:B8:C1:5A:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/3133312e3130382e38312e302f32342d3234203d3e203631343536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.108.81.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:c3:4b:cb:13:f5:54:56:fc:60:bb:19:5e:ab:90:fc:ec:95:
06:aa:89:87:64:3d:2c:93:e6:c0:89:71:be:78:b7:2b:0a:a6:
57:09:f1:78:4c:f3:f6:92:e4:49:25:a4:f1:66:e6:db:b9:95:
af:08:f5:36:04:6d:d4:82:e5:3d:6c:6c:4e:e1:b5:2d:90:2a:
82:91:f6:66:1a:b4:5a:fe:cc:2e:0e:33:ca:7e:90:3e:d7:cb:
68:48:51:cf:98:a5:d7:43:f6:cf:b8:43:76:b1:2f:45:5f:6f:
ca:61:70:ea:92:0e:35:bb:13:d7:ef:aa:4d:f0:c1:1c:da:7b:
a6:09:de:12:94:3d:3c:c5:86:61:1c:db:71:34:e8:98:d1:7a:
74:ae:37:62:45:d2:06:41:1f:34:e0:18:d6:ae:64:4f:ae:06:
09:07:47:09:3e:b9:10:fd:3e:59:80:68:02:64:59:0a:02:03:
a2:42:0e:03:4f:a2:0f:37:bc:e5:a7:9f:cf:e9:1d:dd:aa:0d:
36:94:fc:eb:da:2b:13:0c:02:85:05:e1:a9:ca:a8:89:a7:4f:
3f:8d:ca:07:49:74:88:2e:0f:5a:28:9f:72:a1:8e:2c:47:eb:
c1:69:de:f6:84:f6:de:9e:8e:94:86:9b:ad:42:37:47:03:55:
e1:b7:e9:b9
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUAX45GNpFnuSmRlJEB9JGbFVKSpYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODlDODIzQUQ2MENCQTRCMDdCOTA5MkZCM0QwQkYxQTBC
OEMxNUFCRTAeFw0yNDAzMDUxNzU0MTBaFw0yNTAzMDQxNzU5MTBaMDMxMTAvBgNV
BAMTKDMzNTYwRUI3OEFBQzIxM0E3QkM5NEJCRkZCNzYxMEQyQTE1N0I1MEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK9enoH3dXwyE3nPc0axGS3lJ9
l2PwlR/q2d8eHrxBFz85btH/3UDB1cVmP6EfhtD8m1BNkqlYTY6NX1aMxo0Z0aBd
lKpbZTzVy8naUr3vFYGRD0ILf4/v0IGBW1aicssALh77dwqJQw4cbRmgDanBWbpl
ZMn+ZTi5ACxCHZhttAV++3gN5pQy4itMT4qViui4da1JVTaDrQa+7u+dP4aU3VGB
4FI3q8X2VgRYFqVtT8JJEqcDtj8O0Itn8N5ABE5GAMCnB3UH4jACt0S+sUvL8JFL
/JxWgscgFf6D0UYyfEhf/RzBhDDENfeNWH4BZXbHZ8dgWwzYTdODrZsr160/AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUM1YOt4qsITp7yUu/+3YQ0qFXtQ8wHwYDVR0j
BBgwFoAUicgjrWDLpLB7kJL7PQvxoLjBWr4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zMjE3MkEyM0JFNzdBODYwQTIyNDlGNTU0MTNBMTY0NTBB
NTk2NzFFRjlBMkY4MTJBOTQyRUMwN0Q5RDA1QzBGLzAvODlDODIzQUQ2MENCQTRC
MDdCOTA5MkZCM0QwQkYxQTBCOEMxNUFCRS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84OUM4MjNBRDYwQ0JBNEIwN0I5
MDkyRkIzRDBCRjFBMEI4QzE1QUJFLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzIxNzJBMjNCRTc3QTg2MEEyMjQ5RjU1NDEzQTE2NDUwQTU5NjcxRUY5
QTJGODEyQTk0MkVDMDdEOUQwNUMwRi8wLzMxMzMzMTJlMzEzMDM4MmUzODMxMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMTM0MzUzNi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAINsUTAN
BgkqhkiG9w0BAQsFAAOCAQEADMNLyxP1VFb8YLsZXquQ/OyVBqqJh2Q9LJPmwIlx
vni3KwqmVwnxeEzz9pLkSSWk8Wbm27mVrwj1NgRt1ILlPWxsTuG1LZAqgpH2Zhq0
Wv7MLg4zyn6QPtfLaEhRz5il10P2z7hDdrEvRV9vymFw6pIONbsT1++qTfDBHNp7
pgneEpQ9PMWGYRzbcTTomNF6dK43YkXSBkEfNOAY1q5kT64GCQdHCT65EP0+WYBo
AmRZCgIDokIOA0+iDze85aefz+kd3aoNNpT869orEwwChQXhqcqoiadPP43KB0l0
iC4PWiifcqGOLEfrwWne9oT23p6OlIabrUI3RwNV4bfpuQ==
-----END CERTIFICATE-----
Generated at Wed Aug 21 22:37:03 2024 by rpki-client on console-fra.rpki-client.org