Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6CDC5DE2D7CD6AC9AF27F2C749BE2DB823BF4D531F23C0C35E1743B2D7F11C09/0/34352e3137332e3139382e302f32342d3234203d3e20323637383039.roa
File: 34352e3137332e3139382e302f32342d3234203d3e20323637383039.roa (raw, json)
Hash identifier: KLnxyI8o+Mh2jxd9Sm6wHu4Fy3bfGGW19v6wYPtKlJM=
Subject key identifier: 40:30:BC:F5:E6:92:AD:C3:72:37:6F:1E:ED:C5:67:2C:7B:04:9D:68
Certificate issuer: /CN=95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA
Certificate serial: 1F52A1AEC79229C49FEE285A780DDAAA9DE0ACB2
Authority key identifier: 95:A8:CE:A1:F7:11:5C:0D:99:08:32:8A:0B:91:BA:4C:ED:D4:B6:DA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6CDC5DE2D7CD6AC9AF27F2C749BE2DB823BF4D531F23C0C35E1743B2D7F11C09/0/34352e3137332e3139382e302f32342d3234203d3e20323637383039.roa
Signing time: Tue 05 Mar 2024 18:15:12 +0000
ROA not before: Tue 05 Mar 2024 18:10:12 +0000
ROA not after: Tue 04 Mar 2025 18:15:12 +0000
asID: 267809
IP address blocks: 45.173.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Aug 2024 18:35:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:52:a1:ae:c7:92:29:c4:9f:ee:28:5a:78:0d:da:aa:9d:e0:ac:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA
Validity
Not Before: Mar 5 18:10:12 2024 GMT
Not After : Mar 4 18:15:12 2025 GMT
Subject: CN=4030BCF5E692ADC372376F1EEDC5672C7B049D68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9d:b8:88:26:ef:b9:71:20:f3:ce:67:36:53:
76:cc:4e:8b:18:6b:5d:f6:7b:a6:7c:24:21:5f:b0:
ab:bc:47:1f:17:ce:ec:8d:15:f9:b7:f6:cf:d9:a3:
68:6f:81:af:4a:36:f6:25:16:3c:1a:0a:7c:1c:2e:
55:d3:e3:b8:83:02:40:13:19:67:02:0c:9b:aa:fc:
ce:04:63:90:fd:45:1b:fc:27:fd:b7:61:c9:46:c6:
fb:b8:ca:83:c5:89:19:32:71:b7:a5:9c:51:97:2e:
53:1b:ef:56:6f:68:cc:68:9c:59:af:9b:07:09:ec:
80:2c:fc:13:37:93:68:a5:00:1c:2e:5d:e9:36:54:
bc:51:aa:90:f8:78:9a:9b:8e:74:fb:2f:4c:67:35:
b1:6c:00:e6:4c:95:05:50:6b:10:61:1b:60:49:fa:
49:19:9c:9f:ea:17:07:b9:7e:58:60:d0:83:64:10:
07:ec:0d:ac:78:d5:18:28:85:30:49:ff:fc:7a:55:
49:26:5d:a1:ad:40:58:a7:70:10:07:60:68:92:d0:
17:12:2f:af:ca:f5:81:c5:27:65:7f:ef:a2:b9:f5:
e4:60:e9:85:30:e4:24:f5:81:88:45:42:7a:02:30:
6e:4b:d6:da:c9:54:ca:a9:9c:20:ba:18:12:d9:bb:
74:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:30:BC:F5:E6:92:AD:C3:72:37:6F:1E:ED:C5:67:2C:7B:04:9D:68
X509v3 Authority Key Identifier:
keyid:95:A8:CE:A1:F7:11:5C:0D:99:08:32:8A:0B:91:BA:4C:ED:D4:B6:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6CDC5DE2D7CD6AC9AF27F2C749BE2DB823BF4D531F23C0C35E1743B2D7F11C09/0/95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6CDC5DE2D7CD6AC9AF27F2C749BE2DB823BF4D531F23C0C35E1743B2D7F11C09/0/34352e3137332e3139382e302f32342d3234203d3e20323637383039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.173.198.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:4b:f4:a7:d6:b3:de:a7:49:a3:d0:ef:6a:97:9b:87:44:b8:
25:20:39:d4:28:fe:e8:f7:b2:4c:8e:42:31:d8:f2:3d:84:bb:
78:fd:95:9d:0f:f4:20:78:0e:a3:0c:4e:81:e6:9f:01:63:b8:
51:d6:e7:f1:0d:8c:0e:e5:3c:78:ef:c7:d8:f6:84:87:d6:44:
60:db:60:13:7b:1c:6b:bd:c9:42:0d:d8:d1:54:7d:53:31:60:
ab:9b:ab:8f:3a:72:04:2e:b1:65:25:85:b6:d6:2e:cf:00:ff:
db:35:8e:2c:db:38:70:11:82:09:a5:9c:af:d6:99:a8:28:b9:
b4:cc:29:2b:19:7d:ae:22:28:9b:82:b2:50:62:de:c2:84:9b:
80:4a:de:17:48:2b:a4:89:1c:5c:ed:9f:3e:a3:a4:de:30:7f:
04:aa:8c:6e:f7:93:ef:10:f6:22:9d:40:d9:31:62:6a:25:bb:
2e:45:44:b5:bf:42:90:33:58:79:e8:2c:7c:54:8b:9b:74:dd:
c2:2d:a9:c3:b4:57:bd:14:83:54:35:6f:a8:fb:89:b7:bd:dc:
b5:18:26:5f:71:f9:d6:f5:e1:64:52:18:0c:9f:a0:83:77:90:
2f:51:6b:4a:02:0c:9c:53:f5:0b:1a:37:df:47:6f:28:a2:6d:
6e:37:fe:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 5 20:10:20 2024 by rpki-client on console-ams.rpki-client.org