Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/c59e3e3046669106031d14ce323326eab50a7285.roa
File: c59e3e3046669106031d14ce323326eab50a7285.roa (raw, json)
Hash identifier: G/Ml81TM9GefzmxgaPKA/m0n1ns2Nu0d8en4bqnA2bk=
Subject key identifier: 4B:35:66:87:34:16:32:6D:AE:44:72:18:5A:F8:BC:33:9D:E6:A5:1A
Certificate issuer: /CN=bfbb4d3a6dd5e649a6554c4817ce0ed277429136
Certificate serial: 12407F
Authority key identifier: 76:7F:42:4D:48:34:06:C4:20:E5:DF:19:BE:BE:99:3F:72:5A:F7:B6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/c59e3e3046669106031d14ce323326eab50a7285.roa
Signing time: Wed 29 Nov 2023 15:42:49 +0000
ROA not before: Wed 29 Nov 2023 15:42:49 +0000
ROA not after: Sat 29 Nov 2025 15:42:49 +0000
asID: 272945
IP address blocks: 201.251.250.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jan 2024 18:48:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1196159 (0x12407f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbb4d3a6dd5e649a6554c4817ce0ed277429136
Validity
Not Before: Nov 29 15:42:49 2023 GMT
Not After : Nov 29 15:42:49 2025 GMT
Subject: CN=c59e3e3046669106031d14ce323326eab50a7285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:20:17:af:77:85:14:60:40:ee:ab:91:4b:68:
f9:cb:ae:93:49:a6:95:a2:95:0c:53:79:21:91:0d:
c2:48:3c:27:49:92:fd:d5:ac:16:f9:95:f9:52:34:
a3:54:7b:c6:d1:99:fb:85:b2:9c:ad:4c:53:b5:fa:
43:ed:9e:16:3d:77:ca:b8:29:cf:76:2f:c4:66:74:
05:d8:66:9d:93:46:06:d0:de:b5:f7:a5:83:fe:22:
c1:f9:b8:88:8c:4e:9c:22:48:7d:71:db:16:6a:99:
d1:9e:4f:ab:9c:94:8f:82:55:8e:09:e2:37:c3:1f:
b0:ef:49:72:f0:a4:07:79:64:e7:c7:4f:99:be:47:
88:f1:55:c6:5a:70:9c:51:43:30:c8:d3:c0:15:f3:
f5:da:1c:ad:5f:13:e5:71:52:92:7a:af:58:d7:21:
18:af:aa:cb:9c:36:4c:a9:19:75:36:91:be:ab:e2:
c2:92:f1:9f:71:b8:12:92:03:c0:25:a4:f0:60:5a:
73:a8:db:02:a2:2b:bb:d9:8e:02:04:37:7e:75:bf:
63:7e:c2:c7:26:d6:0b:60:43:2a:a7:05:22:09:77:
b9:33:ca:98:eb:16:78:1f:af:0d:f6:33:07:b4:20:
67:c6:67:7b:4f:50:2c:65:8a:7f:09:54:a8:95:05:
ce:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:35:66:87:34:16:32:6D:AE:44:72:18:5A:F8:BC:33:9D:E6:A5:1A
X509v3 Authority Key Identifier:
keyid:76:7F:42:4D:48:34:06:C4:20:E5:DF:19:BE:BE:99:3F:72:5A:F7:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/c59e3e3046669106031d14ce323326eab50a7285.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.251.250.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:48:0a:ba:21:5e:09:a2:e7:01:e1:3f:a2:b1:eb:40:7a:a0:
60:63:5c:cf:11:eb:03:3a:ca:05:68:61:21:7f:cd:b9:86:26:
4d:b3:fb:d4:d6:a2:3b:e7:87:e5:91:03:ae:71:32:31:e4:ff:
a6:3e:ae:50:a1:28:78:c3:42:e3:3c:ae:de:87:fa:5c:68:1c:
7e:12:a0:20:0b:e4:99:29:5f:eb:b1:0f:5d:14:67:eb:c3:54:
fa:9b:61:b4:1a:08:7f:ab:f7:b5:05:0c:85:05:70:41:a6:25:
28:de:94:93:a9:f2:1b:19:c4:2a:df:b6:92:09:73:b4:26:81:
46:05:55:19:99:43:dd:95:41:f4:bc:ae:13:cf:1b:e9:87:4a:
32:0c:22:ea:60:8e:66:6e:79:e3:f6:00:06:ac:eb:d3:be:e2:
ed:e4:fd:63:1a:6f:a3:30:f1:f3:10:dc:31:14:0b:ad:9a:98:
cb:ed:b0:50:52:6b:26:85:7f:1c:bd:45:70:0e:7d:fb:50:f7:
74:c8:80:80:ac:00:98:90:5e:58:83:39:1e:c5:36:f3:5f:54:
e4:48:89:38:a0:5c:19:f6:26:96:d4:c6:cb:fa:fa:37:37:00:
09:42:aa:ad:53:3a:23:82:5f:6e:6c:4c:9a:2c:2d:ca:c1:a3:
4c:89:28:b9
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDEkB/MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJm
YmI0ZDNhNmRkNWU2NDlhNjU1NGM0ODE3Y2UwZWQyNzc0MjkxMzYwHhcNMjMxMTI5
MTU0MjQ5WhcNMjUxMTI5MTU0MjQ5WjAzMTEwLwYDVQQDEyhjNTllM2UzMDQ2NjY5
MTA2MDMxZDE0Y2UzMjMzMjZlYWI1MGE3Mjg1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAyiAXr3eFFGBA7quRS2j5y66TSaaVopUMU3khkQ3CSDwnSZL9
1awW+ZX5UjSjVHvG0Zn7hbKcrUxTtfpD7Z4WPXfKuCnPdi/EZnQF2Gadk0YG0N61
96WD/iLB+biIjE6cIkh9cdsWapnRnk+rnJSPglWOCeI3wx+w70ly8KQHeWTnx0+Z
vkeI8VXGWnCcUUMwyNPAFfP12hytXxPlcVKSeq9Y1yEYr6rLnDZMqRl1NpG+q+LC
kvGfcbgSkgPAJaTwYFpzqNsCoiu72Y4CBDd+db9jfsLHJtYLYEMqpwUiCXe5M8qY
6xZ4H68N9jMHtCBnxmd7T1AsZYp/CVSolQXOIwIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFEs1Zoc0FjJtrkRyGFr4vDOd5qUaMB8GA1UdIwQYMBaAFHZ/Qk1INAbEIOXf
Gb6+mT9yWve2MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYmZiYjRk
M2E2ZGQ1ZTY0OWE2NTU0YzQ4MTdjZTBlZDI3NzQyOTEzNi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNTM3NWJjZmMtOGI4Ni00NTJlLTg1MGQtODNjZmUz
YjUwZjA2L2M1OWUzZTMwNDY2NjkxMDYwMzFkMTRjZTMyMzMyNmVhYjUwYTcyODUu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy81Mzc1YmNmYy04Yjg2LTQ1MmUtODUwZC04M2Nm
ZTNiNTBmMDYvYmZiYjRkM2E2ZGQ1ZTY0OWE2NTU0YzQ4MTdjZTBlZDI3NzQyOTEz
Ni5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAcn7+jANBgkqhkiG9w0BAQsFAAOCAQEAe0gKuiFeCaLnAeE/
orHrQHqgYGNczxHrAzrKBWhhIX/NuYYmTbP71NaiO+eH5ZEDrnEyMeT/pj6uUKEo
eMNC4zyu3of6XGgcfhKgIAvkmSlf67EPXRRn68NU+pthtBoIf6v3tQUMhQVwQaYl
KN6Uk6nyGxnEKt+2kglztCaBRgVVGZlD3ZVB9LyuE88b6YdKMgwi6mCOZm554/YA
Bqzr077i7eT9YxpvozDx8xDcMRQLrZqYy+2wUFJrJoV/HL1FcA59+1D3dMiAgKwA
mJBeWIM5HsU2819U5EiJOKBcGfYmltTGy/r6NzcACUKqrVM6I4JfbmxMmiwtysGj
TIkouQ==
-----END CERTIFICATE-----
Generated at Thu Jan 25 23:38:11 2024 by rpki-client on console-fra.rpki-client.org