Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/85fc2657-9dd5-4e18-a043-c1ed96730bf8/2c15027374eb90029151c96bf31ca6c36aea2bd2.roa
File: 2c15027374eb90029151c96bf31ca6c36aea2bd2.roa (raw, json)
Hash identifier: 61x1ySM3aNqxH1TgaX4FmmPL9g7UwFphd0D70JxcGeY=
Subject key identifier: F8:B2:11:74:A8:B5:98:C5:8A:33:C1:59:03:FC:9F:80:A5:04:70:F3
Certificate issuer: /CN=f58e9ace5695e188fe50f2a761d818e79976c086
Certificate serial: 1FE57B
Authority key identifier: 3B:44:B4:FF:F3:2A:0D:D1:04:80:2C:2B:B3:16:B8:95:8B:E1:4E:CF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f58e9ace5695e188fe50f2a761d818e79976c086.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/85fc2657-9dd5-4e18-a043-c1ed96730bf8/2c15027374eb90029151c96bf31ca6c36aea2bd2.roa
Signing time: Tue 30 Jan 2024 17:38:36 +0000
ROA not before: Tue 30 Jan 2024 17:38:36 +0000
ROA not after: Fri 30 Jan 2026 17:38:36 +0000
asID: 264758
IP address blocks: 45.228.220.0/24 maxlen: 24
45.228.221.0/24 maxlen: 24
45.228.222.0/24 maxlen: 24
45.228.223.0/24 maxlen: 24
45.228.220.0/23 maxlen: 23
45.228.222.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 07 Feb 2024 17:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2090363 (0x1fe57b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f58e9ace5695e188fe50f2a761d818e79976c086
Validity
Not Before: Jan 30 17:38:36 2024 GMT
Not After : Jan 30 17:38:36 2026 GMT
Subject: CN=2c15027374eb90029151c96bf31ca6c36aea2bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:32:49:b3:2f:15:c4:fe:ba:74:b6:66:f5:6e:
27:c8:5f:0f:2c:3c:b3:8c:ee:f1:8d:88:da:7b:a7:
06:4b:e2:f1:c3:ec:62:ae:cf:87:51:bb:d7:d6:11:
2b:c4:2f:87:99:90:b7:74:09:30:99:6d:47:94:bd:
7f:56:19:49:d1:2c:12:db:12:00:fa:ed:1a:3d:b4:
0c:6c:6e:a7:c1:83:69:cd:22:1c:dd:ae:54:c9:54:
18:8f:2a:d1:0e:04:41:76:76:73:3f:1e:a0:37:08:
ca:9b:81:a0:3e:da:c2:95:c8:b9:2b:02:b8:f5:ac:
4a:31:b2:4c:31:18:28:23:e3:03:6d:e7:34:60:74:
34:2a:9f:ca:22:e1:f6:88:12:0c:f0:87:9b:2c:ec:
40:fc:6c:28:fe:4f:06:74:30:60:8b:fd:64:34:97:
00:a6:a9:8d:e7:b8:a8:26:49:46:7e:c8:34:23:6b:
58:2f:ee:a5:b0:33:0c:45:ec:53:89:ee:b7:da:c7:
e1:ce:65:d8:38:39:5d:95:5f:a5:3e:4f:85:b5:bc:
4a:a9:0d:4e:fb:9d:c5:d5:44:83:e9:78:98:d3:f5:
6b:08:0a:5d:0e:45:b0:59:db:3d:78:58:f2:81:1f:
66:a8:07:98:fd:da:25:28:bf:b2:7f:12:a5:cb:10:
63:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B2:11:74:A8:B5:98:C5:8A:33:C1:59:03:FC:9F:80:A5:04:70:F3
X509v3 Authority Key Identifier:
keyid:3B:44:B4:FF:F3:2A:0D:D1:04:80:2C:2B:B3:16:B8:95:8B:E1:4E:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f58e9ace5695e188fe50f2a761d818e79976c086.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/85fc2657-9dd5-4e18-a043-c1ed96730bf8/2c15027374eb90029151c96bf31ca6c36aea2bd2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/85fc2657-9dd5-4e18-a043-c1ed96730bf8/f58e9ace5695e188fe50f2a761d818e79976c086.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.228.220.0/22
Signature Algorithm: sha256WithRSAEncryption
60:42:7c:04:32:bc:d4:0c:6f:fa:37:c1:5b:a0:38:61:21:a0:
8e:3b:84:07:86:b9:b2:6d:c9:75:f6:ee:69:c4:20:89:61:f0:
66:ee:e8:7d:e9:79:9d:6f:38:b4:ae:00:e6:d3:73:5c:77:08:
25:c5:ea:13:fc:8f:1d:27:5f:2e:37:e8:1c:27:ee:23:19:0a:
05:af:26:ff:ac:e3:51:e1:f8:09:5e:79:fc:c6:26:19:a1:16:
65:e9:a6:c5:07:07:a9:20:73:69:bc:f4:10:c4:aa:b1:d6:f1:
3f:65:f0:77:e7:b2:46:04:37:b7:19:b0:6a:07:d7:cd:14:26:
34:d2:de:6d:ce:51:22:a9:51:6f:6d:a3:41:00:93:12:e9:da:
f6:a4:6a:05:dd:c7:07:44:a6:d6:49:98:bf:33:77:ea:80:ce:
72:63:15:6a:8f:d5:40:01:1c:68:e5:f6:bc:29:1b:b6:0c:b1:
05:fe:a7:3d:c1:db:ea:2e:52:44:cc:45:98:2e:26:c7:89:3b:
f9:0e:6e:66:d5:f7:73:6f:d6:91:62:be:d0:0a:e5:c8:25:28:
18:66:3a:4d:8e:db:11:71:1b:e8:fe:2d:ab:15:a9:3c:0b:3c:
ec:54:7e:7d:f7:b0:9a:8f:0e:ac:8d:af:7d:97:fc:78:06:61:
e7:44:28:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 7 20:26:33 2024 by rpki-client on console-fra.rpki-client.org