Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/566149848928EB2A75AFD405A3B13A25A2BFF3EFB05D1AA8D0E7D869518DF8F8/0/34352e3136302e33302e302f32332d3233203d3e20323636383732.roa
File: 34352e3136302e33302e302f32332d3233203d3e20323636383732.roa (raw, json)
Hash identifier: m6eiPRw2VGJjorMQEsqxiXx3/mxPgJ7MF4eb8x5Wr1Q=
Subject key identifier: A7:8A:C6:CD:B3:22:05:FA:12:8E:A6:D3:FF:25:7D:FA:A1:9B:BE:50
Certificate issuer: /CN=900922D8B59AC326DD138FED51BC50D7590E1F0A
Certificate serial: 30927F0B5C18A53ED0CD47DCC55C1E176CB86487
Authority key identifier: 90:09:22:D8:B5:9A:C3:26:DD:13:8F:ED:51:BC:50:D7:59:0E:1F:0A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/900922D8B59AC326DD138FED51BC50D7590E1F0A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/566149848928EB2A75AFD405A3B13A25A2BFF3EFB05D1AA8D0E7D869518DF8F8/0/34352e3136302e33302e302f32332d3233203d3e20323636383732.roa
Signing time: Tue 04 Feb 2025 18:38:12 +0000
ROA not before: Tue 04 Feb 2025 18:33:12 +0000
ROA not after: Tue 03 Feb 2026 18:38:12 +0000
asID: 266872
IP address blocks: 45.160.30.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 21 Jun 2025 16:20:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:92:7f:0b:5c:18:a5:3e:d0:cd:47:dc:c5:5c:1e:17:6c:b8:64:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=900922D8B59AC326DD138FED51BC50D7590E1F0A
Validity
Not Before: Feb 4 18:33:12 2025 GMT
Not After : Feb 3 18:38:12 2026 GMT
Subject: CN=A78AC6CDB32205FA128EA6D3FF257DFAA19BBE50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5c:60:e4:ac:08:c1:ea:6c:09:62:e2:aa:26:
74:08:f2:cb:6b:7d:28:9a:e5:2d:31:59:90:18:11:
bc:bd:6d:9e:dd:49:b8:35:ed:d1:21:d0:86:ab:11:
d4:2b:af:1e:60:3d:47:89:af:df:89:c2:95:c5:18:
bf:fb:7e:e2:42:dd:04:a9:62:f9:04:46:1a:3e:85:
0b:a6:65:6f:5f:ba:51:49:ab:99:59:99:66:5a:f2:
54:fd:62:a9:6f:f3:25:17:67:e4:2f:dc:e4:71:96:
4b:e6:5d:24:e7:0c:db:03:b9:16:0f:3a:e9:ca:fc:
55:07:a7:6b:04:7b:0c:e9:b4:48:8e:52:57:52:7e:
a7:b9:72:0e:12:24:ca:73:53:e6:b1:c6:db:f6:eb:
58:bb:38:5f:3e:15:66:ad:0e:07:92:1a:bc:7a:4c:
73:89:3a:9c:6f:92:87:d9:2f:a6:f5:d7:e2:1a:93:
62:e0:2e:67:c1:50:a7:8e:19:b3:22:9f:01:ed:19:
df:8a:23:7c:eb:01:13:f5:3d:37:ab:ab:b9:64:4e:
94:18:86:57:36:d5:3a:85:23:65:18:a0:18:cb:1a:
79:0b:3e:7c:30:78:ba:a6:fe:30:be:23:66:44:62:
f9:92:64:34:65:fc:3f:42:ff:7b:74:63:64:9b:32:
07:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8A:C6:CD:B3:22:05:FA:12:8E:A6:D3:FF:25:7D:FA:A1:9B:BE:50
X509v3 Authority Key Identifier:
keyid:90:09:22:D8:B5:9A:C3:26:DD:13:8F:ED:51:BC:50:D7:59:0E:1F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/566149848928EB2A75AFD405A3B13A25A2BFF3EFB05D1AA8D0E7D869518DF8F8/0/900922D8B59AC326DD138FED51BC50D7590E1F0A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/900922D8B59AC326DD138FED51BC50D7590E1F0A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/566149848928EB2A75AFD405A3B13A25A2BFF3EFB05D1AA8D0E7D869518DF8F8/0/34352e3136302e33302e302f32332d3233203d3e20323636383732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.160.30.0/23
Signature Algorithm: sha256WithRSAEncryption
53:0a:01:32:88:92:fa:cc:fd:5e:5b:5c:13:b9:d1:5e:6a:49:
66:85:75:62:cb:17:22:f0:9c:40:21:86:c6:b9:ed:bf:60:9b:
45:ff:92:53:ac:73:08:05:58:f7:3a:73:9b:5a:cd:d9:3f:ba:
38:90:a5:a8:17:ec:ad:1b:59:92:49:4b:22:bc:c4:6c:cd:38:
ed:bc:37:ce:26:2a:c4:27:83:3b:56:bb:57:35:e3:b0:ad:f8:
32:51:4b:49:25:f3:17:95:6a:fa:21:a1:37:bc:32:39:41:d7:
61:d1:bd:2a:ca:16:e2:c5:b6:83:9a:54:10:e2:6c:6a:1d:6b:
10:b8:9b:18:a7:37:1b:6a:26:5c:65:9f:8b:3e:b9:51:96:65:
12:2a:71:98:39:70:23:e4:27:7f:a7:9e:38:5f:c2:2f:c7:30:
8a:55:24:05:96:15:d5:64:24:0d:e2:a2:cc:70:79:38:d0:f1:
b5:77:e5:05:23:8d:e4:4c:41:db:e3:35:44:96:44:f8:88:f5:
43:96:e9:3c:b8:a4:a6:14:a1:56:56:87:62:56:c5:71:cb:2a:
a2:e1:0e:2b:74:15:ec:c6:51:04:cd:36:bb:3d:fa:aa:00:c2:
b1:88:b5:60:83:f2:57:a7:ab:ee:d1:60:25:08:73:4c:a1:67:
bc:f0:66:a1
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUMJJ/C1wYpT7QzUfcxVweF2y4ZIcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTAwOTIyRDhCNTlBQzMyNkREMTM4RkVENTFCQzUwRDc1
OTBFMUYwQTAeFw0yNTAyMDQxODMzMTJaFw0yNjAyMDMxODM4MTJaMDMxMTAvBgNV
BAMTKEE3OEFDNkNEQjMyMjA1RkExMjhFQTZEM0ZGMjU3REZBQTE5QkJFNTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNXGDkrAjB6mwJYuKqJnQI8str
fSia5S0xWZAYEby9bZ7dSbg17dEh0IarEdQrrx5gPUeJr9+JwpXFGL/7fuJC3QSp
YvkERho+hQumZW9fulFJq5lZmWZa8lT9Yqlv8yUXZ+Qv3ORxlkvmXSTnDNsDuRYP
OunK/FUHp2sEewzptEiOUldSfqe5cg4SJMpzU+axxtv261i7OF8+FWatDgeSGrx6
THOJOpxvkofZL6b11+Iak2LgLmfBUKeOGbMinwHtGd+KI3zrARP1PTerq7lkTpQY
hlc21TqFI2UYoBjLGnkLPnwweLqm/jC+I2ZEYvmSZDRl/D9C/3t0Y2SbMgd3AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUp4rGzbMiBfoSjqbT/yV9+qGbvlAwHwYDVR0j
BBgwFoAUkAki2LWawybdE4/tUbxQ11kOHwowDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81NjYxNDk4NDg5MjhFQjJBNzVBRkQ0MDVBM0IxM0EyNUEy
QkZGM0VGQjA1RDFBQThEMEU3RDg2OTUxOERGOEY4LzAvOTAwOTIyRDhCNTlBQzMy
NkREMTM4RkVENTFCQzUwRDc1OTBFMUYwQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85MDA5MjJEOEI1OUFDMzI2REQx
MzhGRUQ1MUJDNTBENzU5MEUxRjBBLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTY2MTQ5ODQ4OTI4RUIyQTc1QUZENDA1QTNCMTNBMjVBMkJGRjNFRkIw
NUQxQUE4RDBFN0Q4Njk1MThERjhGOC8wLzM0MzUyZTMxMzYzMDJlMzMzMDJlMzAy
ZjMyMzMyZDMyMzMyMDNkM2UyMDMyMzYzNjM4MzczMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS2gHjAN
BgkqhkiG9w0BAQsFAAOCAQEAUwoBMoiS+sz9XltcE7nRXmpJZoV1YssXIvCcQCGG
xrntv2CbRf+SU6xzCAVY9zpzm1rN2T+6OJClqBfsrRtZkklLIrzEbM047bw3ziYq
xCeDO1a7VzXjsK34MlFLSSXzF5Vq+iGhN7wyOUHXYdG9KsoW4sW2g5pUEOJsah1r
ELibGKc3G2omXGWfiz65UZZlEipxmDlwI+Qnf6eeOF/CL8cwilUkBZYV1WQkDeKi
zHB5ONDxtXflBSON5ExB2+M1RJZE+Ij1Q5bpPLikphShVlaHYlbFccsqouEOK3QV
7MZRBM02uz36qgDCsYi1YIPyV6er7tFgJQhzTKFnvPBmoQ==
-----END CERTIFICATE-----
Generated at Thu Jul 31 00:01:35 2025 by rpki-client