Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/48576231-47ca-4b5e-8707-f93a6226b32f/8d0b65e7500fd1e93e5a118576dced367c2097e5.roa
File: 8d0b65e7500fd1e93e5a118576dced367c2097e5.roa (raw, json)
Hash identifier: Iyo+V/8X8a9ZtwOU8Rvvf2VltjHi73Zqv09AFF/6sk0=
Subject key identifier: 3A:58:85:10:A7:0C:9C:26:96:9A:85:8F:19:A6:C8:77:0B:84:DB:18
Certificate issuer: /CN=acba41ca66eb0e77192d2d22221e4fb662988a5d
Certificate serial: 141AA9
Authority key identifier: FB:8E:62:CE:DE:35:6D:C8:F4:D6:5D:57:65:1A:A2:F7:7C:D1:31:60
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/acba41ca66eb0e77192d2d22221e4fb662988a5d.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/48576231-47ca-4b5e-8707-f93a6226b32f/8d0b65e7500fd1e93e5a118576dced367c2097e5.roa
Signing time: Tue 13 Feb 2024 16:42:07 +0000
ROA not before: Tue 13 Feb 2024 16:42:07 +0000
ROA not after: Fri 13 Feb 2026 16:42:07 +0000
asID: 6471
IP address blocks: 164.77.0.0/17 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 16:57:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1317545 (0x141aa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acba41ca66eb0e77192d2d22221e4fb662988a5d
Validity
Not Before: Feb 13 16:42:07 2024 GMT
Not After : Feb 13 16:42:07 2026 GMT
Subject: CN=8d0b65e7500fd1e93e5a118576dced367c2097e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d8:4f:59:3e:26:ee:6e:13:16:b9:9f:ec:a9:
87:9d:dd:bd:fc:59:87:5d:a7:0a:70:50:c7:c5:15:
30:c7:6c:66:4e:3a:f4:a8:9f:5a:e7:42:c0:5f:80:
60:4d:ce:59:14:2c:4b:10:13:08:38:15:2a:84:01:
92:96:9f:a3:2f:d2:be:83:fd:8f:63:73:7b:c3:60:
42:a9:3f:54:01:0c:b1:3a:2b:f0:af:50:bb:e6:cc:
87:48:24:a6:4f:ba:57:38:76:c7:6f:57:14:00:4b:
7b:91:be:5e:f2:aa:df:2b:4d:80:b9:15:64:6d:34:
f1:4a:a0:de:32:16:52:5a:96:66:01:ab:5a:b0:27:
76:5f:bc:66:a9:f0:e7:d6:45:4d:9e:b8:a2:11:c0:
d5:69:0c:66:ef:fb:d8:cd:3c:a1:26:c0:4c:45:5f:
00:c9:4a:c0:18:49:1b:e4:9b:07:f3:79:82:1e:b9:
8d:4e:f6:1a:f2:ad:30:21:6c:ea:e0:90:f0:82:3e:
45:7a:29:09:45:7c:d0:e7:d7:7e:0e:a2:df:a6:e2:
79:a1:42:01:d0:cb:e5:c2:d6:56:1b:52:e0:fd:67:
5a:83:80:50:2c:e6:b6:ee:46:fb:07:c9:ce:3b:9d:
5b:0a:1a:e3:26:1c:cd:2a:0c:48:01:10:4a:1c:17:
78:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:58:85:10:A7:0C:9C:26:96:9A:85:8F:19:A6:C8:77:0B:84:DB:18
X509v3 Authority Key Identifier:
keyid:FB:8E:62:CE:DE:35:6D:C8:F4:D6:5D:57:65:1A:A2:F7:7C:D1:31:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/acba41ca66eb0e77192d2d22221e4fb662988a5d.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/48576231-47ca-4b5e-8707-f93a6226b32f/8d0b65e7500fd1e93e5a118576dced367c2097e5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/48576231-47ca-4b5e-8707-f93a6226b32f/acba41ca66eb0e77192d2d22221e4fb662988a5d.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.77.0.0/17
Signature Algorithm: sha256WithRSAEncryption
54:d7:3f:ab:db:fb:eb:5b:8e:4a:88:ac:c1:e3:2f:11:45:11:
dd:71:df:5f:44:6c:3e:07:77:8a:7d:ed:6d:a9:55:84:e3:fe:
23:cb:ae:d1:c0:94:9e:ae:db:ee:03:aa:11:a8:3d:b1:f8:ee:
76:64:d0:c1:22:d6:40:3b:b9:6d:d5:80:c5:bb:49:b1:44:95:
6d:2c:86:70:76:6f:ce:af:4d:cf:7b:4a:fa:77:a6:25:54:43:
fa:89:d0:9b:c6:3e:06:02:19:da:db:03:cc:22:d1:e9:64:bb:
f9:12:8d:c3:da:1a:95:a4:eb:89:dc:44:16:06:53:26:f0:db:
30:cc:e5:62:e8:6d:2f:db:67:2b:87:17:cd:ae:82:80:ff:88:
02:b2:a9:df:2f:bd:cc:bd:fa:38:46:f5:e2:7f:1b:50:9b:c4:
d5:cb:5e:37:6f:d7:5e:60:98:b5:fb:d9:42:1c:2d:cd:9e:df:
2e:3f:97:aa:5b:e1:dc:d3:2d:63:af:66:cc:64:c4:91:3b:33:
e3:b5:50:98:fe:43:e2:65:4e:f0:a4:19:08:76:c0:6f:da:1c:
3e:0a:14:fa:10:6b:1f:a8:25:37:6f:ba:5f:fa:ff:29:ae:88:
8e:64:75:73:5f:75:66:96:a0:5e:d2:ab:85:8a:cb:54:a6:4c:
ee:e5:44:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 8 19:35:27 2024 by rpki-client on console-fra.rpki-client.org