Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6CDC5DE2D7CD6AC9AF27F2C749BE2DB823BF4D531F23C0C35E1743B2D7F11C09/0/34352e3137332e3139392e302f32342d3234203d3e20323637383039.roa
File: 34352e3137332e3139392e302f32342d3234203d3e20323637383039.roa (raw, json)
Hash identifier: UJZIXnWfXxoLZCby9mC2q6S7dodcqYNnMrikLVVazaA=
Subject key identifier: E4:A5:6C:5F:61:D6:A3:BE:09:38:11:33:47:45:3C:A7:BA:B0:F8:60
Certificate issuer: /CN=95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA
Certificate serial: 44FEC5B195E69F9FB432CD3117C3022A61338FF1
Authority key identifier: 95:A8:CE:A1:F7:11:5C:0D:99:08:32:8A:0B:91:BA:4C:ED:D4:B6:DA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6CDC5DE2D7CD6AC9AF27F2C749BE2DB823BF4D531F23C0C35E1743B2D7F11C09/0/34352e3137332e3139392e302f32342d3234203d3e20323637383039.roa
Signing time: Tue 05 Mar 2024 18:15:12 +0000
ROA not before: Tue 05 Mar 2024 18:10:12 +0000
ROA not after: Tue 04 Mar 2025 18:15:12 +0000
asID: 267809
IP address blocks: 45.173.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Aug 2024 18:35:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:fe:c5:b1:95:e6:9f:9f:b4:32:cd:31:17:c3:02:2a:61:33:8f:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA
Validity
Not Before: Mar 5 18:10:12 2024 GMT
Not After : Mar 4 18:15:12 2025 GMT
Subject: CN=E4A56C5F61D6A3BE0938113347453CA7BAB0F860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a3:22:3a:8d:36:28:37:b5:f6:1c:f6:2c:8e:
99:12:79:93:79:57:de:6b:40:d2:b4:ed:b7:71:25:
61:bd:7c:27:2f:43:84:64:91:c3:4c:94:f1:94:a8:
7d:d5:0a:33:66:af:fa:24:34:95:f6:bd:cb:cf:68:
46:5b:9f:5c:0a:52:6b:c6:13:ba:ba:9b:aa:c3:ea:
24:05:d6:34:25:68:e0:85:21:d3:54:b3:85:89:39:
3a:85:5d:e3:93:66:a8:a2:a8:2c:f8:e0:27:d7:cd:
88:68:21:71:8a:b3:cf:0c:e3:c3:8f:79:da:bf:a9:
4c:94:5d:05:02:a9:88:d7:13:59:73:c0:3d:e5:98:
f3:4e:58:16:9b:dd:7c:b5:98:6d:73:98:d6:14:ff:
de:5d:ae:ea:06:d9:cc:e1:3a:ca:5d:42:56:28:b5:
8b:42:dd:59:29:06:a7:11:ec:a2:d5:04:c4:a2:7f:
a5:14:94:45:a3:85:52:8c:89:39:bc:d6:b8:0b:6e:
cc:db:7f:f3:92:7d:66:2c:80:92:d4:58:0e:5a:6e:
46:5d:dd:d8:8b:ed:67:94:59:4b:69:d1:cc:72:14:
31:ae:f3:c7:17:57:24:2c:71:4b:ae:21:0d:c5:86:
de:84:91:16:7d:b7:31:4d:25:a3:63:64:17:0c:6e:
e3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A5:6C:5F:61:D6:A3:BE:09:38:11:33:47:45:3C:A7:BA:B0:F8:60
X509v3 Authority Key Identifier:
keyid:95:A8:CE:A1:F7:11:5C:0D:99:08:32:8A:0B:91:BA:4C:ED:D4:B6:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6CDC5DE2D7CD6AC9AF27F2C749BE2DB823BF4D531F23C0C35E1743B2D7F11C09/0/95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/95A8CEA1F7115C0D9908328A0B91BA4CEDD4B6DA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6CDC5DE2D7CD6AC9AF27F2C749BE2DB823BF4D531F23C0C35E1743B2D7F11C09/0/34352e3137332e3139392e302f32342d3234203d3e20323637383039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.173.199.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:97:ff:06:5d:9b:13:29:66:cb:ce:fa:fc:4f:42:8c:81:d2:
e6:a4:cb:58:4f:f4:23:c1:36:cf:9a:76:02:8b:1e:30:93:f5:
64:40:bb:fc:f3:a5:1c:e9:70:78:cc:83:94:9e:d6:af:43:3e:
b4:22:e2:7a:0c:35:8a:9a:8b:3f:6a:12:ca:69:d2:be:98:d6:
9a:d1:d6:68:88:a1:42:ee:4c:e2:da:70:e8:44:6e:04:e5:c9:
ba:6f:4e:5e:0f:59:62:e8:8f:c7:6d:ff:47:bd:3f:30:30:16:
c5:aa:95:93:65:84:68:95:c6:ef:81:79:2b:8a:08:94:85:c7:
4f:f4:7c:4e:0c:48:36:0a:34:8e:d0:c1:a2:64:c0:25:e3:bc:
27:bf:3a:a6:bb:c1:c4:3b:19:9f:fe:f7:32:c9:82:7d:fa:99:
c2:08:9d:eb:ab:65:8f:27:86:5b:fe:c2:cb:07:98:20:e8:a7:
23:78:20:0f:42:74:a3:5e:d8:76:c7:5a:48:57:20:52:99:25:
0a:9b:1f:e8:ca:65:d9:67:b3:4a:fb:6f:3e:de:fc:b2:53:08:
d3:17:fb:16:70:1e:5e:7f:5d:e1:9f:06:ed:a0:a5:1e:fd:e8:
fc:15:92:a3:ee:c4:ec:55:e2:3a:e4:fb:fe:32:1f:49:d3:df:
47:91:8a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 5 20:09:35 2024 by rpki-client on console-fra.rpki-client.org