Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/05fce77f8a633e8c009bdcd0657aca3dd852660a.roa
File: 05fce77f8a633e8c009bdcd0657aca3dd852660a.roa (raw, json)
Hash identifier: Aji4CgsadQvo+I6+fICM4UR2lMqYL+LRTZyI30z6XSM=
Subject key identifier: 46:B0:0F:2D:FB:9A:92:DE:1F:1A:0D:AB:C6:08:CB:01:FA:DC:B7:1B
Certificate issuer: /CN=e9249d6078896379eaa31ec8630fd15d97793e5d
Certificate serial: 1F700B
Authority key identifier: 37:8A:05:D0:C7:20:08:96:73:1A:23:6E:D0:92:16:78:45:AC:CD:0F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e9249d6078896379eaa31ec8630fd15d97793e5d.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/05fce77f8a633e8c009bdcd0657aca3dd852660a.roa
Signing time: Wed 24 May 2023 08:30:00 +0000
ROA not before: Tue 23 May 2023 08:30:00 +0000
ROA not after: Thu 22 May 2025 08:30:00 +0000
asID: 267928
IP address blocks: 2801:1d:800::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 13 Apr 2024 00:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2060299 (0x1f700b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9249d6078896379eaa31ec8630fd15d97793e5d
Validity
Not Before: May 23 08:30:00 2023 GMT
Not After : May 22 08:30:00 2025 GMT
Subject: CN=05fce77f8a633e8c009bdcd0657aca3dd852660a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4d:b4:4e:11:a5:5c:6c:d1:2c:dc:b5:3d:8a:
0a:92:17:ee:8c:a3:da:c0:e6:ed:a8:c3:38:a4:f4:
c3:cf:0f:da:8a:ac:9b:6b:0a:96:89:de:d2:cb:b1:
db:d6:f3:62:3e:48:81:58:b5:3a:81:eb:6c:cc:6c:
21:22:7c:bc:83:0d:98:28:e9:23:60:0b:c0:e6:ae:
66:05:3b:2f:3c:c8:c6:a5:7c:8e:16:05:f8:c2:22:
99:07:6f:45:38:90:ff:c9:0d:66:74:4e:45:ce:0c:
69:d0:ea:36:16:b3:76:5c:da:2e:fc:1b:30:3e:84:
5b:6d:10:13:1a:03:22:6b:d1:4a:62:c5:73:bd:a4:
9d:fc:c5:63:85:41:3b:c7:b2:85:fb:0d:9f:37:bc:
17:1a:a4:2b:b6:63:00:63:2d:b3:5a:3d:68:41:45:
4d:74:d0:39:8d:f5:c3:26:f5:86:5d:2e:bd:04:1c:
9b:45:7d:4a:28:96:51:86:f2:12:81:f3:58:04:dc:
b9:d2:52:a1:be:76:f5:2e:0c:55:98:18:ec:f9:22:
0a:2f:de:7a:5c:9b:b5:2d:2a:60:6f:67:a6:a3:ca:
dd:53:88:b9:39:9c:3b:17:f3:93:b4:8b:40:8e:7f:
1b:b1:40:02:9c:d8:8f:2e:2d:9f:df:ce:66:2c:40:
d5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:B0:0F:2D:FB:9A:92:DE:1F:1A:0D:AB:C6:08:CB:01:FA:DC:B7:1B
X509v3 Authority Key Identifier:
keyid:37:8A:05:D0:C7:20:08:96:73:1A:23:6E:D0:92:16:78:45:AC:CD:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e9249d6078896379eaa31ec8630fd15d97793e5d.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/05fce77f8a633e8c009bdcd0657aca3dd852660a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/e9249d6078896379eaa31ec8630fd15d97793e5d.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1d:800::/48
Signature Algorithm: sha256WithRSAEncryption
04:6e:d1:f9:a4:44:31:ae:75:3e:c8:bc:e2:f6:b8:a8:25:ca:
76:0b:a0:15:32:b9:42:06:71:7c:5b:a8:e5:3f:d6:bb:80:a6:
6c:61:ef:0e:c1:8a:c4:07:32:f1:c1:75:7e:7d:99:d2:a7:54:
a5:65:0f:92:ec:9b:d7:d3:58:64:85:1e:ed:69:c1:38:ae:de:
19:fe:77:e6:98:82:82:0c:ec:2b:6a:dd:a1:cc:10:c5:63:ec:
5a:de:7d:f6:9e:93:32:53:5c:05:3e:80:a0:9f:96:75:10:92:
40:b8:bc:e5:24:94:b1:9d:61:b7:d9:19:02:92:bc:0c:6d:e3:
b7:37:bf:01:09:d6:b1:91:42:5a:92:04:64:10:6d:84:5a:34:
3e:a1:b8:8d:ef:e5:10:c6:e1:3d:55:17:45:68:c4:9d:b2:f3:
49:4f:e6:3e:e8:65:76:91:17:99:10:6f:28:7a:28:05:1d:48:
b2:44:6c:ff:16:3f:16:18:47:32:5c:3f:c9:3f:13:5c:03:e2:
a1:4a:95:ca:3f:c8:67:1d:43:f9:af:7a:70:b7:cf:17:4f:32:
1c:4b:42:56:f7:e1:41:3c:dd:30:25:52:08:e1:53:3f:8a:38:
cd:34:70:2b:c1:e6:be:a3:87:bf:c6:9c:80:ae:e2:ad:c9:26:
6a:98:e6:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 13 02:09:05 2024 by rpki-client on console-fra.rpki-client.org