Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7DCDB5A680D4F8ECB74DA17E05A8671B343B411D9977CADEB12C4191E4F28E03/0/323830303a3538303a3a2f33322d3332203d3e203237363935.roa
File: 323830303a3538303a3a2f33322d3332203d3e203237363935.roa (raw, json)
Hash identifier: sgtez1jOveNdDmA4KV6tJFdeFAp//hsN3nhFU+1CGvE=
Subject key identifier: AE:B2:E9:EF:A4:20:59:7F:81:9F:0A:82:4F:0A:89:A1:03:C0:B4:AF
Certificate issuer: /CN=29144D8070C44852403F550F31DEC53EBF48A61F
Certificate serial: 1B83304B7455D95E6ADA11651F3A0CDCEBB8A1BD
Authority key identifier: 29:14:4D:80:70:C4:48:52:40:3F:55:0F:31:DE:C5:3E:BF:48:A6:1F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/29144D8070C44852403F550F31DEC53EBF48A61F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7DCDB5A680D4F8ECB74DA17E05A8671B343B411D9977CADEB12C4191E4F28E03/0/323830303a3538303a3a2f33322d3332203d3e203237363935.roa
Signing time: Tue 05 Mar 2024 18:02:56 +0000
ROA not before: Tue 05 Mar 2024 17:57:56 +0000
ROA not after: Tue 04 Mar 2025 18:02:56 +0000
asID: 27695
IP address blocks: 2800:580::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 30 Sep 2024 22:10:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:83:30:4b:74:55:d9:5e:6a:da:11:65:1f:3a:0c:dc:eb:b8:a1:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29144D8070C44852403F550F31DEC53EBF48A61F
Validity
Not Before: Mar 5 17:57:56 2024 GMT
Not After : Mar 4 18:02:56 2025 GMT
Subject: CN=AEB2E9EFA420597F819F0A824F0A89A103C0B4AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e4:76:9f:e9:00:6d:8f:2e:04:0f:72:60:96:
a1:28:7a:5f:9e:b3:39:d2:eb:67:29:5e:f7:d5:3f:
b0:93:8b:b4:e4:bd:b5:7b:eb:fb:82:cc:8a:14:7d:
68:e6:8e:24:00:c7:6d:93:30:1e:e3:9f:1e:ad:ac:
b2:a6:8e:5d:eb:58:5f:54:fb:7c:81:be:1b:a6:32:
c8:b2:f7:90:65:62:3f:f6:2d:e8:cd:f4:d6:62:39:
d0:65:aa:e5:c3:99:08:7d:51:1e:88:7c:e5:0e:bb:
82:65:15:6f:8b:17:0a:31:6e:be:49:e4:9f:8d:bc:
07:fa:b8:a1:a7:29:67:1c:41:51:64:05:f2:ac:64:
cc:d5:33:61:e4:b5:24:2e:87:51:f5:31:12:ef:a9:
b5:a4:da:76:48:ec:19:d4:99:ce:00:23:f3:41:6d:
f4:06:60:93:2e:6d:5f:59:a6:a0:93:e2:e8:8b:80:
6b:f2:a3:2f:f4:16:54:97:d5:e9:dc:06:22:ca:8a:
38:be:aa:23:d2:40:5a:a8:6c:c0:3b:fe:12:d9:ca:
53:29:7d:95:30:d4:b4:d7:78:83:e8:9c:c7:1f:55:
ef:e4:07:b4:0a:a8:f1:81:ec:06:bf:6d:f3:4f:48:
e9:6b:9e:15:6b:c1:73:8a:32:d4:46:7c:2f:62:c1:
2f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:B2:E9:EF:A4:20:59:7F:81:9F:0A:82:4F:0A:89:A1:03:C0:B4:AF
X509v3 Authority Key Identifier:
keyid:29:14:4D:80:70:C4:48:52:40:3F:55:0F:31:DE:C5:3E:BF:48:A6:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7DCDB5A680D4F8ECB74DA17E05A8671B343B411D9977CADEB12C4191E4F28E03/0/29144D8070C44852403F550F31DEC53EBF48A61F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/29144D8070C44852403F550F31DEC53EBF48A61F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7DCDB5A680D4F8ECB74DA17E05A8671B343B411D9977CADEB12C4191E4F28E03/0/323830303a3538303a3a2f33322d3332203d3e203237363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:580::/32
Signature Algorithm: sha256WithRSAEncryption
89:bb:95:78:c6:7f:6b:30:9f:35:89:db:c0:3a:8c:06:63:92:
9e:89:9a:b0:fc:c8:73:a8:ab:25:6f:1f:7a:0c:a4:80:45:1c:
e9:45:1b:4a:b6:19:8b:ab:23:3e:92:94:a0:07:81:81:a4:c2:
cb:68:7b:33:3d:28:dd:fd:d0:74:52:b3:b5:9a:73:58:70:1c:
fc:64:0a:57:f9:bf:19:a6:05:cc:12:7a:c0:69:06:86:d1:2d:
e6:c3:71:49:50:ac:0b:52:6b:e4:2d:f4:aa:d5:fa:47:3e:8a:
ad:47:d5:6d:39:4b:87:f6:27:ec:0f:58:4b:74:14:49:fd:57:
59:53:8d:6a:da:77:e6:21:24:5b:51:2e:63:fa:51:a9:2a:e7:
04:4d:82:a0:45:53:e7:d5:84:65:e1:ff:36:d5:6c:8c:a9:08:
ba:bc:ca:e0:94:b7:91:35:09:86:53:b8:75:02:80:62:0b:36:
b1:66:ed:54:00:cc:93:15:46:7c:90:e0:52:52:c3:1f:c3:a3:
a8:49:6f:6d:7c:fe:3e:8e:25:40:3e:01:5c:d6:c0:0e:f4:27:
a3:62:06:ce:04:f1:ac:03:35:b6:59:1f:62:8d:48:c5:2b:58:
84:ea:f0:22:ed:c3:43:8c:af:f3:87:6f:7b:a8:f5:e0:7a:5b:
b9:37:e5:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 23:14:55 2024 by rpki-client on console-fra.rpki-client.org