Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/3136382e3132312e3230382e302f32322d3235203d3e20323632313936.roa
File: 3136382e3132312e3230382e302f32322d3235203d3e20323632313936.roa (raw, json)
Hash identifier: 5XXKocP2vRqc3qtBYRGZNCh0MEI1CywrbekSaSSMl30=
Subject key identifier: 58:36:E9:3E:61:B4:1A:0C:6C:DB:7F:1A:AB:8A:4D:FB:3A:10:50:22
Certificate issuer: /CN=236265F485589146D372FF70F0BD7364753EFBD3
Certificate serial: 40FBC89FEDA775F7672871B14241B9326F3D5157
Authority key identifier: 23:62:65:F4:85:58:91:46:D3:72:FF:70:F0:BD:73:64:75:3E:FB:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/236265F485589146D372FF70F0BD7364753EFBD3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/3136382e3132312e3230382e302f32322d3235203d3e20323632313936.roa
Signing time: Tue 05 Mar 2024 17:53:37 +0000
ROA not before: Tue 05 Mar 2024 17:48:37 +0000
ROA not after: Tue 04 Mar 2025 17:53:37 +0000
asID: 262196
IP address blocks: 168.121.208.0/22 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:fb:c8:9f:ed:a7:75:f7:67:28:71:b1:42:41:b9:32:6f:3d:51:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=236265F485589146D372FF70F0BD7364753EFBD3
Validity
Not Before: Mar 5 17:48:37 2024 GMT
Not After : Mar 4 17:53:37 2025 GMT
Subject: CN=5836E93E61B41A0C6CDB7F1AAB8A4DFB3A105022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9c:bb:11:c7:e8:95:bd:0b:be:95:65:d9:34:
96:2f:af:1d:77:f9:e1:01:c9:a7:94:60:c3:a2:0b:
10:e0:64:79:f9:ae:5d:33:3b:4f:8b:c3:89:08:05:
31:57:d5:2b:2f:5e:b1:a7:77:6f:68:24:00:af:30:
ef:12:9d:b2:3e:d6:39:18:5b:ec:bc:e5:f6:73:8b:
fe:4a:e1:f7:c1:6f:3b:00:91:5b:17:78:3d:49:ef:
9b:50:97:70:65:49:6c:52:fd:c3:f0:a1:04:80:73:
d4:c9:61:38:5c:40:70:7a:77:17:97:0a:df:cf:4b:
89:3d:1b:89:6a:7b:ec:0c:08:f2:59:81:e7:2c:c2:
19:6d:8d:97:64:3e:7d:e5:3f:99:c5:d9:4e:b6:ad:
6f:6c:ab:59:d4:95:e1:12:1c:e2:49:92:f2:16:cc:
19:fe:0a:1c:31:ac:a6:95:ee:a8:90:42:00:5f:ee:
ab:ad:ce:80:53:bd:ba:4a:65:5f:88:63:4e:fd:03:
9b:65:f8:97:3f:8e:a3:85:5d:de:c0:9e:30:65:29:
8f:98:54:d9:4f:37:c2:96:a4:d1:20:76:6e:33:c5:
32:bb:04:ea:a9:84:d4:39:46:ad:d6:27:78:cb:79:
a9:20:6f:bb:53:d2:21:a2:57:7b:50:f8:ca:e3:e1:
55:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:36:E9:3E:61:B4:1A:0C:6C:DB:7F:1A:AB:8A:4D:FB:3A:10:50:22
X509v3 Authority Key Identifier:
keyid:23:62:65:F4:85:58:91:46:D3:72:FF:70:F0:BD:73:64:75:3E:FB:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/236265F485589146D372FF70F0BD7364753EFBD3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/236265F485589146D372FF70F0BD7364753EFBD3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8899E7FA6BC08BE40F2B5F59D0A9C8ABE185D0DC13B8307E0971E96439A2E6AA/0/3136382e3132312e3230382e302f32322d3235203d3e20323632313936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.121.208.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:b7:eb:1f:12:4d:08:d7:5c:d8:c4:eb:e7:3a:7b:a3:f0:ad:
f9:cb:ea:7f:f8:0e:93:f5:23:3f:80:b8:42:e8:c0:02:29:35:
0f:1b:7b:4a:0a:45:f8:70:1c:6b:d1:89:6e:b2:ca:1a:97:5f:
b1:76:d1:ab:b0:ad:57:23:d0:c6:d3:b4:58:c6:0e:25:f2:ac:
a9:ba:62:b1:da:e0:03:0f:7f:aa:04:31:d6:d4:bc:d2:0c:f1:
f3:65:89:96:28:77:af:5d:8d:02:bb:c3:9e:f6:4a:9e:9d:fa:
2b:56:32:43:9a:c6:fa:c1:c9:f0:c5:e4:1d:55:ca:92:57:57:
42:89:cd:15:1e:84:4d:c9:95:74:87:a6:a0:50:f1:7d:c2:87:
dc:2f:7b:09:5d:4a:aa:48:bb:77:50:90:26:a5:82:e0:77:4c:
9e:0a:8f:80:11:23:d8:b8:4a:ea:eb:6b:60:cc:34:d0:cc:99:
f8:88:0b:7f:19:37:d4:a2:0e:28:57:5c:c6:96:ea:0e:9d:a5:
8f:e9:aa:1b:ba:52:cf:c0:e1:13:d4:96:59:f6:2a:ce:93:03:
f7:74:ad:6b:ec:50:d9:99:6f:b9:b5:9e:b4:7b:58:e0:65:ea:
2d:32:aa:2d:6c:a0:c6:01:ce:47:d6:78:7b:ec:a2:d8:4e:98:
a7:7f:9c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 20:48:18 2025 by rpki-client