Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/517E31B11E9E1C7780B38638B236300BA0D24C0F749E8D819BC14D5DD686EC2A/0/34352e3137302e3235352e302f32342d3234203d3e20313339323335.roa
File: 34352e3137302e3235352e302f32342d3234203d3e20313339323335.roa (raw, json)
Hash identifier: fpGOaarjnCjhkDofi3/MFqTG14etc6ZxIHMi1ypPq0o=
Subject key identifier: 61:B4:B8:03:AF:77:A9:65:C1:CD:2D:C2:F4:68:55:44:EF:F5:C7:5C
Certificate issuer: /CN=6A86E783E5047079A17A5B8082BB89DADBE252A6
Certificate serial: 2C27D656A0A63A93D09C149CCF47D54A2B692A2B
Authority key identifier: 6A:86:E7:83:E5:04:70:79:A1:7A:5B:80:82:BB:89:DA:DB:E2:52:A6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6A86E783E5047079A17A5B8082BB89DADBE252A6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/517E31B11E9E1C7780B38638B236300BA0D24C0F749E8D819BC14D5DD686EC2A/0/34352e3137302e3235352e302f32342d3234203d3e20313339323335.roa
Signing time: Tue 05 Mar 2024 18:18:23 +0000
ROA not before: Tue 05 Mar 2024 18:13:23 +0000
ROA not after: Tue 04 Mar 2025 18:18:23 +0000
asID: 139235
IP address blocks: 45.170.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 20:55:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:27:d6:56:a0:a6:3a:93:d0:9c:14:9c:cf:47:d5:4a:2b:69:2a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A86E783E5047079A17A5B8082BB89DADBE252A6
Validity
Not Before: Mar 5 18:13:23 2024 GMT
Not After : Mar 4 18:18:23 2025 GMT
Subject: CN=61B4B803AF77A965C1CD2DC2F4685544EFF5C75C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:43:23:00:52:61:71:cb:8d:d8:eb:3b:e5:51:
7b:65:02:5a:ff:4d:1f:c2:18:32:46:c6:ac:53:a6:
b0:ba:54:42:c4:8a:ce:ce:21:54:de:2e:57:cf:ff:
c5:04:f5:79:4d:80:50:72:54:50:84:39:b9:32:4b:
83:76:71:7f:3a:32:92:1c:05:ad:4e:67:47:9b:18:
ae:0b:ed:ca:9c:61:90:c2:b4:b1:f8:ed:1c:1e:be:
e7:b2:03:ea:d8:83:84:9f:81:14:ae:62:3c:e0:23:
7d:95:b4:4c:ca:e9:6c:fa:8f:3b:53:8c:06:5c:a0:
9c:42:80:f5:d6:77:e5:3e:70:03:92:1d:82:3b:a6:
c6:5a:f5:cb:85:02:30:bc:74:c2:0b:93:0b:f2:62:
95:3d:a3:df:1d:88:ca:a1:a4:af:66:84:a6:c0:94:
b5:a2:91:6e:14:b3:91:73:e4:ba:6d:ea:8a:13:83:
8e:3f:51:50:41:e0:86:3c:62:7a:a5:da:33:80:a3:
54:b6:1f:c1:ff:e3:2d:e5:3e:32:a0:bf:e0:22:2b:
97:c3:88:ed:bc:da:8b:58:42:48:85:fc:66:3a:f1:
e5:f6:57:00:65:64:7e:b6:52:56:9f:3f:bb:9f:00:
a7:51:1d:b4:46:28:60:a0:f4:15:f5:63:6f:16:6b:
6a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B4:B8:03:AF:77:A9:65:C1:CD:2D:C2:F4:68:55:44:EF:F5:C7:5C
X509v3 Authority Key Identifier:
keyid:6A:86:E7:83:E5:04:70:79:A1:7A:5B:80:82:BB:89:DA:DB:E2:52:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/517E31B11E9E1C7780B38638B236300BA0D24C0F749E8D819BC14D5DD686EC2A/0/6A86E783E5047079A17A5B8082BB89DADBE252A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6A86E783E5047079A17A5B8082BB89DADBE252A6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/517E31B11E9E1C7780B38638B236300BA0D24C0F749E8D819BC14D5DD686EC2A/0/34352e3137302e3235352e302f32342d3234203d3e20313339323335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.170.255.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:86:ed:ad:0e:25:23:4a:f1:21:e6:74:6b:fa:fc:88:1c:25:
ea:85:34:5d:cc:f5:bd:00:a7:13:36:68:31:c3:b6:61:fe:6f:
dc:2e:6b:d4:cd:b6:bb:92:ce:15:36:d3:3a:ea:19:20:4f:19:
54:55:d6:c4:b1:4b:55:f6:df:60:ff:36:f3:65:99:c5:81:20:
95:fc:24:18:53:e4:42:b4:93:c5:ea:f7:a6:ca:bd:11:90:30:
bb:9d:7c:6a:f0:77:78:73:5b:6d:a0:3f:34:51:9b:4f:82:61:
e2:a5:d6:95:e5:c3:42:f0:4f:08:e4:f1:82:97:c8:4e:62:8a:
3c:94:90:46:30:80:9a:01:c1:34:20:8d:e3:ac:be:fe:28:21:
11:24:c3:ef:30:53:b8:6c:da:cc:0f:0a:1a:d2:ad:ea:d1:28:
c0:8d:0f:39:b1:08:d7:6d:3d:d2:d9:5c:47:a4:c8:95:42:05:
5a:da:52:b9:ae:dc:01:fc:c9:4b:c2:45:42:0a:0e:b4:38:f6:
47:f2:c6:4e:81:5f:6a:8c:df:a7:22:94:8e:17:7c:40:17:26:
c2:9a:c1:e8:20:bd:1f:68:76:26:5d:fa:86:3d:15:67:af:26:
7c:83:6a:59:ca:18:ff:45:d6:f9:ec:2e:b6:d1:00:66:2f:f3:
dc:77:fe:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 00:38:33 2024 by rpki-client on console-ams.rpki-client.org