Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/3133312e3130382e38332e302f32342d3234203d3e203631343536.roa
File: 3133312e3130382e38332e302f32342d3234203d3e203631343536.roa (raw, json)
Hash identifier: 9r3lPPNbpPWE3Kp2TlDyS7N2/3N8aoT6pNAt+XMyy6Q=
Subject key identifier: 34:3F:87:E9:34:F8:C6:F6:35:6D:2E:B8:B9:29:18:5C:30:EC:90:0D
Certificate issuer: /CN=89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE
Certificate serial: 3ED86D87D98DE250012EBFA691C80A28EDE84E27
Authority key identifier: 89:C8:23:AD:60:CB:A4:B0:7B:90:92:FB:3D:0B:F1:A0:B8:C1:5A:BE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/3133312e3130382e38332e302f32342d3234203d3e203631343536.roa
Signing time: Tue 05 Mar 2024 17:59:09 +0000
ROA not before: Tue 05 Mar 2024 17:54:09 +0000
ROA not after: Tue 04 Mar 2025 17:59:09 +0000
asID: 61456
IP address blocks: 131.108.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 20:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:d8:6d:87:d9:8d:e2:50:01:2e:bf:a6:91:c8:0a:28:ed:e8:4e:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE
Validity
Not Before: Mar 5 17:54:09 2024 GMT
Not After : Mar 4 17:59:09 2025 GMT
Subject: CN=343F87E934F8C6F6356D2EB8B929185C30EC900D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ee:e3:2c:bc:a2:07:bb:92:0d:ef:42:81:00:
72:73:6d:9d:5f:4c:78:97:6b:1b:8c:ec:0a:ef:72:
2e:9b:d9:6f:ad:a1:51:2a:96:ba:21:dc:1c:83:24:
2a:44:b6:37:c4:6a:19:11:1d:6f:fe:b1:3f:b3:d5:
1b:16:a9:28:83:05:97:3e:6c:dc:03:f4:ae:be:ea:
61:57:e6:87:ad:21:a1:d1:0f:cc:ef:0d:b3:1b:43:
4a:e0:1d:fc:b2:ac:34:a7:ae:08:9b:01:31:3e:0a:
a7:85:5c:63:e7:9a:75:64:1e:fc:fa:11:56:a5:ef:
67:0f:7f:28:7f:37:ac:63:1b:ba:f6:da:d9:0f:ed:
1b:1a:53:11:27:35:fd:0a:cd:37:82:bf:f2:5d:da:
94:67:40:fa:fc:89:34:92:23:96:83:59:67:f2:82:
bd:b2:87:89:6b:8b:f0:7d:85:10:cc:b4:62:aa:ef:
2d:b8:66:ee:b9:ff:bf:52:96:8f:bf:4a:04:8d:c0:
78:24:3c:cc:fd:68:b1:0b:cd:85:fa:f1:b7:6f:d1:
33:ea:34:8b:8a:67:fc:d4:eb:77:a1:f9:64:ab:91:
68:71:4d:f9:63:05:da:c0:21:04:b3:6f:df:8a:ed:
e8:ff:17:1a:e8:8c:a0:33:a9:ae:de:70:7f:30:f8:
81:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3F:87:E9:34:F8:C6:F6:35:6D:2E:B8:B9:29:18:5C:30:EC:90:0D
X509v3 Authority Key Identifier:
keyid:89:C8:23:AD:60:CB:A4:B0:7B:90:92:FB:3D:0B:F1:A0:B8:C1:5A:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89C823AD60CBA4B07B9092FB3D0BF1A0B8C15ABE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/32172A23BE77A860A2249F55413A16450A59671EF9A2F812A942EC07D9D05C0F/0/3133312e3130382e38332e302f32342d3234203d3e203631343536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.108.83.0/24
Signature Algorithm: sha256WithRSAEncryption
24:c6:a2:51:74:3a:2b:6e:c7:ea:7a:8f:f4:d3:43:ad:a2:61:
7e:11:b4:b6:bd:95:61:4d:39:47:8a:d6:7e:d2:64:10:4e:5a:
c3:4b:d0:44:77:bc:1f:fa:92:25:c1:fc:6a:cf:8d:bf:a4:11:
0c:64:4e:2c:de:e1:bd:3c:40:4b:e7:cf:e2:9b:95:62:bf:69:
09:6e:f2:1d:e9:ae:b8:74:7e:1f:81:44:1a:fd:ff:97:49:41:
36:3c:cd:6e:c2:1d:c4:58:e2:91:94:30:b2:15:9e:cf:e2:3f:
3e:86:6e:e5:53:1d:e0:4e:bb:bc:ac:a0:62:38:0b:2c:ff:73:
ae:41:d1:46:bd:e2:dd:b0:ac:33:fd:f6:0c:86:5b:b9:cb:73:
a1:ec:78:03:ab:e6:d0:97:e5:a2:54:17:43:fd:e6:da:ac:37:
fa:52:25:d6:21:bb:3a:24:a2:e5:2d:1f:79:c3:79:99:fe:f9:
fc:96:08:ab:26:8d:24:86:c5:22:36:7f:83:6e:55:71:24:0b:
b4:d2:78:29:ab:43:c6:9e:2a:57:81:6b:12:55:66:60:e4:68:
ea:97:a9:a2:2f:f7:23:11:de:af:dc:a1:00:97:ae:12:89:95:
9c:b9:01:00:2f:c1:f1:85:11:0e:9b:a9:4f:ba:0c:2d:55:3f:
c7:65:02:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 23:31:38 2024 by rpki-client on console-ams.rpki-client.org