Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6d26b71a-ea69-4ab9-b972-634f6cb6bdec/3382610465d0cbd006fadf100f5cc57503ef6a12.roa
File: 3382610465d0cbd006fadf100f5cc57503ef6a12.roa (raw, json)
Hash identifier: xdOt1YsV/bj3K2QbgQr5M2Ku3N2Yx3EAn6OHhzjk3uQ=
Subject key identifier: 69:5A:B6:34:10:D5:6B:D0:92:79:33:13:BC:DA:BD:F0:F2:61:BE:B3
Certificate issuer: /CN=b3089555a2ff274cc3f3d658901d3ac99e4a448d
Certificate serial: 1D73F3
Authority key identifier: 03:5B:49:76:39:53:8C:71:71:AC:A4:D7:F4:6C:03:80:19:6E:DF:65
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3089555a2ff274cc3f3d658901d3ac99e4a448d.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6d26b71a-ea69-4ab9-b972-634f6cb6bdec/3382610465d0cbd006fadf100f5cc57503ef6a12.roa
Signing time: Tue 01 Aug 2023 02:18:57 +0000
ROA not before: Mon 31 Jul 2023 02:18:57 +0000
ROA not after: Fri 01 Aug 2025 02:18:57 +0000
asID: 269989
IP address blocks: 138.117.228.0/24 maxlen: 24
138.117.229.0/24 maxlen: 24
138.117.230.0/24 maxlen: 24
138.117.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 16:48:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1930227 (0x1d73f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3089555a2ff274cc3f3d658901d3ac99e4a448d
Validity
Not Before: Jul 31 02:18:57 2023 GMT
Not After : Aug 1 02:18:57 2025 GMT
Subject: CN=3382610465d0cbd006fadf100f5cc57503ef6a12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:44:10:41:4b:b8:75:d0:f0:0e:d6:02:93:bb:
09:53:9d:a7:54:32:a8:ca:4b:d1:b6:e9:d9:4d:fb:
76:40:4f:63:b8:d0:fd:52:e7:dd:5a:a6:f4:5a:17:
93:d1:59:36:c6:e7:e1:43:34:e6:c9:a3:5e:33:a9:
74:a7:bd:9a:ca:a4:86:7e:22:b9:02:3a:f6:b2:a2:
79:9e:92:35:7c:2e:32:a1:91:da:59:57:6f:8c:30:
f4:ae:6c:75:6d:42:5a:57:62:cb:a5:8e:e6:d0:27:
b0:ba:a6:0c:08:67:80:1c:e1:73:d1:ec:0f:a4:5d:
84:df:5a:d0:11:bf:90:54:f8:e8:93:11:f2:72:c5:
5d:01:8c:e9:31:bc:9c:9a:73:cf:7d:c9:56:32:8c:
45:10:d8:df:79:4c:1b:ab:fd:17:c7:b5:25:ca:94:
fe:a9:72:f2:74:e5:18:9c:4c:65:0b:2f:c8:71:c3:
40:8b:5e:af:1c:fa:73:28:8f:ca:2c:c9:38:3b:c6:
35:b1:d3:ae:05:69:08:03:2f:98:40:0c:c9:b7:e3:
32:54:9c:e6:1b:37:2f:c0:d5:aa:a0:99:61:95:80:
65:10:22:26:72:60:e9:5a:a0:ef:90:09:9a:25:3e:
b8:26:10:7d:61:9a:ef:ba:ce:d3:05:67:96:7d:7a:
7b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5A:B6:34:10:D5:6B:D0:92:79:33:13:BC:DA:BD:F0:F2:61:BE:B3
X509v3 Authority Key Identifier:
keyid:03:5B:49:76:39:53:8C:71:71:AC:A4:D7:F4:6C:03:80:19:6E:DF:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3089555a2ff274cc3f3d658901d3ac99e4a448d.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6d26b71a-ea69-4ab9-b972-634f6cb6bdec/3382610465d0cbd006fadf100f5cc57503ef6a12.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6d26b71a-ea69-4ab9-b972-634f6cb6bdec/b3089555a2ff274cc3f3d658901d3ac99e4a448d.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.228.0/22
Signature Algorithm: sha256WithRSAEncryption
40:3f:eb:09:e7:e8:22:ad:be:d1:9b:37:6a:2e:3f:0f:74:cb:
5e:7a:b2:f1:30:39:ce:58:29:fd:5e:78:97:5e:fe:d2:4f:aa:
c6:2e:da:df:ae:6b:fe:2c:e6:9b:fc:39:25:c3:77:8d:6e:69:
72:10:c5:ac:21:ef:a6:49:9b:08:a0:65:0a:b2:c9:58:0a:77:
15:7a:53:e4:76:6a:c2:0a:31:33:6b:c7:06:c9:07:4f:04:07:
31:2a:93:34:f3:16:8b:e1:7f:4c:25:67:9e:9b:29:3f:63:b0:
1a:ef:ca:b7:3a:c5:3e:e5:dd:8e:8e:ff:49:a2:1d:e7:12:aa:
3b:e9:a9:b3:86:0f:ce:56:f3:14:03:58:88:9b:6c:7d:d1:f3:
7d:9e:b2:7f:c5:ea:c7:69:1a:3d:3a:8b:50:ac:87:68:25:42:
af:52:45:2f:d0:83:4a:ff:1c:8a:91:3c:d5:23:c1:33:59:28:
07:00:b6:44:a5:b9:6a:58:34:d1:7b:e2:5c:a1:01:09:16:6a:
58:53:7e:c5:a3:35:d4:49:73:16:06:12:57:95:bb:0d:11:47:
6c:a8:b7:3f:73:ff:90:03:64:dd:05:94:ff:ab:40:f7:e8:bc:
2b:be:51:ad:79:65:4a:be:cf:c7:2e:f1:e6:41:75:6c:69:4b:
c8:a1:45:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 25 20:37:34 2024 by rpki-client on console-ams.rpki-client.org