Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4959E52195AB77942D3818718838B5682BF0C3A84185DEA593C25CB2EB5723CE/0/3136342e3136332e3132302e302f32342d3234203d3e20323635383334.roa
File: 3136342e3136332e3132302e302f32342d3234203d3e20323635383334.roa (raw, json)
Hash identifier: 0UJkT/ypkcw2waq6qufoXwe1ggiRSdVegtM6n8rdMg4=
Subject key identifier: 03:E9:C9:E1:65:6D:0F:65:CE:03:25:80:6F:56:7B:D8:C1:1C:17:B4
Certificate issuer: /CN=CDC0198CD4C656C4ADCEC7370D69F61C4ABEDB1C
Certificate serial: 4B7001653C24E70A8CEA3984D357DC347B8E3845
Authority key identifier: CD:C0:19:8C:D4:C6:56:C4:AD:CE:C7:37:0D:69:F6:1C:4A:BE:DB:1C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CDC0198CD4C656C4ADCEC7370D69F61C4ABEDB1C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4959E52195AB77942D3818718838B5682BF0C3A84185DEA593C25CB2EB5723CE/0/3136342e3136332e3132302e302f32342d3234203d3e20323635383334.roa
Signing time: Tue 05 Mar 2024 18:10:08 +0000
ROA not before: Tue 05 Mar 2024 18:05:08 +0000
ROA not after: Tue 04 Mar 2025 18:10:08 +0000
asID: 265834
IP address blocks: 164.163.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 17:40:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:70:01:65:3c:24:e7:0a:8c:ea:39:84:d3:57:dc:34:7b:8e:38:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CDC0198CD4C656C4ADCEC7370D69F61C4ABEDB1C
Validity
Not Before: Mar 5 18:05:08 2024 GMT
Not After : Mar 4 18:10:08 2025 GMT
Subject: CN=03E9C9E1656D0F65CE0325806F567BD8C11C17B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0f:0f:ba:85:96:d2:62:5d:fd:a1:bd:c3:5c:
f2:ce:f4:f5:4f:89:a5:7e:84:03:11:cb:39:d4:91:
10:3c:38:fd:64:4e:6a:47:f0:68:aa:3a:47:9b:76:
66:e0:2d:65:29:2d:dd:0a:4e:51:c9:eb:6c:bd:04:
6d:fe:32:5d:a2:be:70:67:9c:dd:e9:95:e6:2e:83:
27:46:ba:c4:70:71:cf:5a:8c:8b:01:96:06:da:7d:
39:ee:13:d6:af:91:2b:ed:30:14:43:81:f2:83:58:
f7:1b:ca:a5:ad:42:d0:e9:0d:0b:6f:f4:50:d4:f4:
02:80:e1:3f:18:86:f6:89:0d:13:c0:1c:5c:ca:73:
f9:f7:00:c3:f8:68:b1:4f:cf:b1:57:63:95:0d:da:
03:c1:de:43:a8:88:a5:5b:93:28:91:f1:05:9f:a1:
e2:33:71:b9:01:30:68:04:7e:95:fb:fc:87:1a:af:
35:47:9b:c2:bb:68:36:08:18:f5:19:a1:3b:14:9e:
64:0a:c5:15:0c:70:ff:06:88:cb:6c:6b:39:1a:67:
32:3f:57:e6:8a:3f:d0:3b:b3:60:eb:c9:53:d8:50:
cf:d7:7d:9a:f3:93:cf:db:06:03:9c:70:8b:38:63:
61:fc:a1:88:2b:7d:9f:4e:2d:72:69:c2:c8:20:f8:
14:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E9:C9:E1:65:6D:0F:65:CE:03:25:80:6F:56:7B:D8:C1:1C:17:B4
X509v3 Authority Key Identifier:
keyid:CD:C0:19:8C:D4:C6:56:C4:AD:CE:C7:37:0D:69:F6:1C:4A:BE:DB:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4959E52195AB77942D3818718838B5682BF0C3A84185DEA593C25CB2EB5723CE/0/CDC0198CD4C656C4ADCEC7370D69F61C4ABEDB1C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CDC0198CD4C656C4ADCEC7370D69F61C4ABEDB1C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4959E52195AB77942D3818718838B5682BF0C3A84185DEA593C25CB2EB5723CE/0/3136342e3136332e3132302e302f32342d3234203d3e20323635383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.163.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:cd:60:ff:24:0a:08:26:48:80:be:ab:dd:c3:8f:ea:3c:85:
fb:d1:93:e4:62:35:41:74:b7:58:f5:db:ba:f3:b0:cf:3d:ff:
f8:51:dc:2f:bb:52:ad:2c:25:62:41:f0:ef:4e:f2:14:ee:b7:
e2:52:e6:38:66:f8:b2:8d:d9:c8:ea:7d:af:08:9a:3a:e8:8f:
73:5b:6c:60:3f:61:52:8f:16:d7:99:55:96:e8:f8:d8:06:8a:
55:bd:a5:39:4b:7a:cd:12:60:70:bd:43:f7:b1:d4:1d:b3:d4:
7a:57:1a:91:55:7d:68:0a:80:04:36:e5:6f:5e:9b:33:c0:be:
10:5e:2d:80:9e:20:53:2a:aa:a2:b3:72:74:59:b1:0d:ef:1d:
25:a5:64:23:6e:6f:34:bc:2b:14:9e:55:63:44:fe:cc:a5:25:
27:52:64:f5:36:3c:65:f2:4d:cd:1f:e0:1b:09:36:41:a1:d8:
a2:28:48:72:9b:b1:f1:5d:1e:9f:5e:a5:15:85:f9:ba:79:31:
dd:d7:c6:d6:d9:eb:cc:f2:64:b7:04:03:a9:33:83:3d:ae:55:
ea:62:d0:ee:85:27:80:b8:87:0f:81:36:c2:40:81:b6:aa:d6:
b5:55:2a:ac:d9:9b:0d:ed:b8:42:dd:e7:10:ec:10:37:31:e4:
ee:1a:06:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 21:31:15 2024 by rpki-client on console-ams.rpki-client.org