Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D5BD664924FA57D53C5230ECFE47FD483FD20B9B48B71FBB7A739531EDD88FB/0/323830333a356439303a3a2f33322d3332203d3e20323733303030.roa
File: 323830333a356439303a3a2f33322d3332203d3e20323733303030.roa (raw, json)
Hash identifier: ldvYdYmswBT5EFz8RN/TgZakFqOKrnFuNFdCKry1A+8=
Subject key identifier: 91:D3:CD:1C:15:74:C6:C6:26:5E:DD:C1:D6:AE:6C:32:F4:19:00:F5
Certificate issuer: /CN=3432C50FEBB6FB57D8AC4ED4C05DF20C89FE6D70
Certificate serial: 4DD8B06F90B61451692E1B1BCABD398D1041F395
Authority key identifier: 34:32:C5:0F:EB:B6:FB:57:D8:AC:4E:D4:C0:5D:F2:0C:89:FE:6D:70
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3432C50FEBB6FB57D8AC4ED4C05DF20C89FE6D70.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D5BD664924FA57D53C5230ECFE47FD483FD20B9B48B71FBB7A739531EDD88FB/0/323830333a356439303a3a2f33322d3332203d3e20323733303030.roa
Signing time: Tue 04 Feb 2025 18:32:21 +0000
ROA not before: Tue 04 Feb 2025 18:27:21 +0000
ROA not after: Tue 03 Feb 2026 18:32:21 +0000
asID: 273000
IP address blocks: 2803:5d90::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 11 Mar 2025 00:40:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:d8:b0:6f:90:b6:14:51:69:2e:1b:1b:ca:bd:39:8d:10:41:f3:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3432C50FEBB6FB57D8AC4ED4C05DF20C89FE6D70
Validity
Not Before: Feb 4 18:27:21 2025 GMT
Not After : Feb 3 18:32:21 2026 GMT
Subject: CN=91D3CD1C1574C6C6265EDDC1D6AE6C32F41900F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b1:12:b8:74:99:dc:91:d0:b3:a3:18:12:3a:
ec:06:3c:8f:3e:8b:9e:19:5e:be:55:91:3a:56:f4:
ec:a5:0e:07:23:44:85:93:27:d9:9d:c1:0c:0c:13:
6e:3d:b8:cf:c2:18:01:40:a2:6f:61:90:41:e5:0a:
ae:e6:0d:d6:37:f8:6b:80:b5:ef:84:89:8f:63:b1:
ba:cc:01:29:58:b6:e6:99:93:40:87:18:75:3e:65:
f5:1a:ef:87:9d:5b:bf:08:8f:be:97:ea:f4:f2:e0:
86:9e:41:de:db:63:92:ce:72:52:1e:e7:96:b6:f7:
fe:a3:11:71:c9:3e:95:a1:53:ac:8c:c9:54:ce:6a:
d5:fd:6a:78:78:7b:f6:39:64:a0:7f:be:b5:87:62:
6c:75:76:4d:9d:ef:11:cd:a0:a9:29:ed:e4:b9:17:
11:fd:ca:a7:99:86:fd:4a:81:e3:a7:3c:71:89:ef:
65:38:a0:a2:07:ed:0b:e2:a3:86:64:8b:71:e8:13:
c2:4f:09:18:03:48:fb:42:a2:e0:7f:68:c4:13:b9:
a8:09:08:8e:8d:5a:7f:26:cd:6b:dd:29:90:a9:6c:
88:d1:ed:d2:94:8f:ed:ef:21:09:20:63:c5:18:5f:
b1:08:38:3d:09:01:3d:88:08:a2:ea:23:20:36:86:
63:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D3:CD:1C:15:74:C6:C6:26:5E:DD:C1:D6:AE:6C:32:F4:19:00:F5
X509v3 Authority Key Identifier:
keyid:34:32:C5:0F:EB:B6:FB:57:D8:AC:4E:D4:C0:5D:F2:0C:89:FE:6D:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D5BD664924FA57D53C5230ECFE47FD483FD20B9B48B71FBB7A739531EDD88FB/0/3432C50FEBB6FB57D8AC4ED4C05DF20C89FE6D70.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3432C50FEBB6FB57D8AC4ED4C05DF20C89FE6D70.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D5BD664924FA57D53C5230ECFE47FD483FD20B9B48B71FBB7A739531EDD88FB/0/323830333a356439303a3a2f33322d3332203d3e20323733303030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:5d90::/32
Signature Algorithm: sha256WithRSAEncryption
84:6e:7b:c3:7c:48:8c:d5:40:4f:69:01:97:33:5f:ee:7d:2f:
8f:1a:5c:5b:11:d2:21:99:b4:ee:cc:e0:ec:d0:ee:45:d7:00:
df:b1:d0:49:b8:70:87:bb:b4:97:91:8c:84:07:87:39:e5:22:
e1:e0:b8:4f:b5:7e:3e:13:26:26:d9:ec:4e:58:56:9c:e0:14:
1e:26:5e:62:65:f9:1c:fd:8e:df:b6:4b:93:29:d9:3b:ff:a9:
43:d7:9a:c2:3f:f6:7d:21:21:be:be:d7:35:2a:5b:d1:81:48:
99:cb:ab:ae:ee:5b:65:de:ca:4b:1d:a1:56:60:7e:d5:dd:56:
e0:c3:3c:7e:93:35:f6:5e:23:33:51:08:4c:7d:8c:94:4a:81:
d9:04:47:6d:6a:fa:02:af:52:54:a8:a0:12:df:b0:43:cc:5c:
52:2d:b7:d3:f6:f3:8d:7b:7e:38:2c:68:14:34:57:19:82:87:
d0:18:45:47:f9:54:81:a6:30:39:f3:44:eb:cd:7d:79:72:18:
a0:b2:f1:09:cc:42:fe:d4:e7:6c:fd:f0:3b:1f:80:dd:53:66:
e9:66:8b:78:b4:50:f9:c9:05:89:16:22:8b:96:07:e3:cc:95:
6a:6e:8e:02:d4:3b:5f:b4:e6:55:ad:5c:92:7c:95:af:6f:ef:
0b:5a:67:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:59:15 2025 by rpki-client