Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/3136382e3139362e3230392e302f32342d3234203d3e20323730313031.roa
File: 3136382e3139362e3230392e302f32342d3234203d3e20323730313031.roa (raw, json)
Hash identifier: 8sxh5mVZAXhz72oTahUGvUmOtqFZ3XNnL/azb6UBRZw=
Subject key identifier: 69:C2:20:D4:31:8D:91:A5:A7:47:32:4A:5B:E2:E8:8F:B4:53:A0:31
Certificate issuer: /CN=BD94D9821F379D20EA36D36736038ACA527A9932
Certificate serial: 20B8618A174B436349EC65C57EEA9F465A7A2080
Authority key identifier: BD:94:D9:82:1F:37:9D:20:EA:36:D3:67:36:03:8A:CA:52:7A:99:32
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD94D9821F379D20EA36D36736038ACA527A9932.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/3136382e3139362e3230392e302f32342d3234203d3e20323730313031.roa
Signing time: Tue 05 Mar 2024 17:43:48 +0000
ROA not before: Tue 05 Mar 2024 17:38:48 +0000
ROA not after: Tue 04 Mar 2025 17:43:48 +0000
asID: 270101
IP address blocks: 168.196.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Jun 2024 14:50:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:b8:61:8a:17:4b:43:63:49:ec:65:c5:7e:ea:9f:46:5a:7a:20:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD94D9821F379D20EA36D36736038ACA527A9932
Validity
Not Before: Mar 5 17:38:48 2024 GMT
Not After : Mar 4 17:43:48 2025 GMT
Subject: CN=69C220D4318D91A5A747324A5BE2E88FB453A031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bc:bd:a3:69:87:79:54:99:c9:02:80:89:7a:
c0:1b:74:89:c6:62:11:97:8f:53:ef:a1:a3:16:31:
b6:bc:2b:46:f4:02:ad:f1:4b:fe:44:41:b6:91:f3:
fd:13:3f:cc:10:b8:f6:4f:0f:66:4e:12:6f:09:9c:
7c:27:0c:60:4f:3b:33:8e:67:c1:e2:d7:de:a1:52:
e8:bd:73:68:ef:90:e2:4c:38:03:7a:a5:d2:bd:47:
45:92:f9:d4:f3:31:98:3d:71:a0:82:a1:ba:40:0f:
0d:41:7c:17:07:b4:23:7e:e0:5f:87:07:d0:78:c0:
3f:df:6f:33:fe:9f:23:dd:90:e5:b5:c9:94:88:41:
f2:79:13:a9:f2:59:48:91:52:80:80:f8:8d:08:34:
df:b1:f9:7e:6f:9a:7b:75:4d:30:0f:3e:91:e1:57:
d9:ab:d4:ba:67:42:f5:5f:ad:d8:d4:a3:28:8c:ac:
97:1c:02:69:a5:74:2e:65:a2:ad:19:56:f8:d6:fe:
c6:03:95:a0:03:74:7e:17:dd:4d:7d:ba:b4:0e:ae:
93:5a:1f:e7:81:73:e4:87:94:53:f7:1a:c4:a1:97:
f0:df:43:81:83:b9:12:a5:47:6f:12:c2:43:65:25:
65:8c:71:76:e1:ac:c4:bf:1c:f5:13:0a:85:08:81:
0f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C2:20:D4:31:8D:91:A5:A7:47:32:4A:5B:E2:E8:8F:B4:53:A0:31
X509v3 Authority Key Identifier:
keyid:BD:94:D9:82:1F:37:9D:20:EA:36:D3:67:36:03:8A:CA:52:7A:99:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/BD94D9821F379D20EA36D36736038ACA527A9932.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD94D9821F379D20EA36D36736038ACA527A9932.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/3136382e3139362e3230392e302f32342d3234203d3e20323730313031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.196.209.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d9:1e:50:48:48:89:88:eb:25:3d:20:e4:2a:be:2d:6c:6b:
94:f6:06:e9:2e:68:2d:f1:c3:32:a1:35:74:74:e2:6b:cf:02:
77:a9:3f:a2:1c:bf:23:47:40:28:5c:14:61:8d:d2:71:1c:31:
d6:f4:10:90:3b:5f:3c:e8:09:33:62:dc:a8:7d:bf:2a:af:04:
9e:b1:73:b3:0c:83:dd:ac:20:99:12:11:71:12:60:0d:09:47:
49:21:81:a0:5b:b5:85:ae:44:40:20:6f:c9:f1:86:f0:39:a7:
54:7c:f4:4b:12:e1:de:35:00:f0:31:10:b6:7a:10:39:e1:2d:
3c:69:0a:52:8b:c9:56:df:8b:66:17:03:3a:39:f6:39:6c:8f:
a4:7c:a1:25:d9:75:16:46:72:f4:0f:e9:04:ea:16:29:fc:fa:
ae:45:6a:bf:65:33:ae:33:ad:42:02:ff:a4:0a:a3:ac:3d:f1:
fa:80:e2:b9:f1:ea:f0:92:6e:86:f9:ab:a2:84:42:ad:9e:c9:
3b:dd:42:34:0b:de:2d:91:54:e6:b4:bc:d6:39:04:43:20:07:
8e:da:f4:2b:ee:fd:31:f1:fb:c7:a2:fd:36:b1:60:1b:c3:ff:
b1:67:fc:33:6e:da:36:72:8b:6e:fd:fe:f2:b6:45:ef:c2:d3:
99:7d:a2:2c
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUILhhihdLQ2NJ7GXFfuqfRlp6IIAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkQ5NEQ5ODIxRjM3OUQyMEVBMzZEMzY3MzYwMzhBQ0E1
MjdBOTkzMjAeFw0yNDAzMDUxNzM4NDhaFw0yNTAzMDQxNzQzNDhaMDMxMTAvBgNV
BAMTKDY5QzIyMEQ0MzE4RDkxQTVBNzQ3MzI0QTVCRTJFODhGQjQ1M0EwMzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsvL2jaYd5VJnJAoCJesAbdInG
YhGXj1PvoaMWMba8K0b0Aq3xS/5EQbaR8/0TP8wQuPZPD2ZOEm8JnHwnDGBPOzOO
Z8Hi196hUui9c2jvkOJMOAN6pdK9R0WS+dTzMZg9caCCobpADw1BfBcHtCN+4F+H
B9B4wD/fbzP+nyPdkOW1yZSIQfJ5E6nyWUiRUoCA+I0INN+x+X5vmnt1TTAPPpHh
V9mr1LpnQvVfrdjUoyiMrJccAmmldC5loq0ZVvjW/sYDlaADdH4X3U19urQOrpNa
H+eBc+SHlFP3GsShl/DfQ4GDuRKlR28SwkNlJWWMcXbhrMS/HPUTCoUIgQ/LAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUacIg1DGNkaWnRzJKW+Loj7RToDEwHwYDVR0j
BBgwFoAUvZTZgh83nSDqNtNnNgOKylJ6mTIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81MzU5N0IwRTcxQjkxMDZBOTdGRTA3MzE4MjFGOTc0RTJB
MzlFNUYxNUY0MjQ0QUVBMUQwOUFCMTU2QzY1MDQyLzAvQkQ5NEQ5ODIxRjM3OUQy
MEVBMzZEMzY3MzYwMzhBQ0E1MjdBOTkzMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CRDk0RDk4MjFGMzc5RDIwRUEz
NkQzNjczNjAzOEFDQTUyN0E5OTMyLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTM1OTdCMEU3MUI5MTA2QTk3RkUwNzMxODIxRjk3NEUyQTM5RTVGMTVG
NDI0NEFFQTFEMDlBQjE1NkM2NTA0Mi8wLzMxMzYzODJlMzEzOTM2MmUzMjMwMzky
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3MzAzMTMwMzEucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACo
xNEwDQYJKoZIhvcNAQELBQADggEBAFDZHlBISImI6yU9IOQqvi1sa5T2BukuaC3x
wzKhNXR04mvPAnepP6IcvyNHQChcFGGN0nEcMdb0EJA7XzzoCTNi3Kh9vyqvBJ6x
c7MMg92sIJkSEXESYA0JR0khgaBbtYWuREAgb8nxhvA5p1R89EsS4d41APAxELZ6
EDnhLTxpClKLyVbfi2YXAzo59jlsj6R8oSXZdRZGcvQP6QTqFin8+q5Far9lM64z
rUIC/6QKo6w98fqA4rnx6vCSbob5q6KEQq2eyTvdQjQL3i2RVOa0vNY5BEMgB47a
9Cvu/THx+8ei/TaxYBvD/7Fn/DNu2jZyi279/vK2Re/C05l9oiw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:42 2024 by rpki-client on console-ams.rpki-client.org