Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8C5A7D5CFA59F52E6659DFF137630D20E6DD547F715E5C04A4D23E492C204212/0/3137302e3235342e3136342e302f32322d3232203d3e203532333732.roa
File: 3137302e3235342e3136342e302f32322d3232203d3e203532333732.roa (raw, json)
Hash identifier: U01uaB2yNToN+rxuFTDDP8GznqwQ2DMPQ0t/nDXlEUA=
Subject key identifier: 32:BF:B5:F8:AC:F7:15:C5:D0:32:DE:76:D6:DF:02:43:99:B8:69:5A
Certificate issuer: /CN=665B62B0D0F1D058A69B30EDFDD50B808A3A91EE
Certificate serial: 797A086C26761D7B65ECB827D77F55A4AC18DCBA
Authority key identifier: 66:5B:62:B0:D0:F1:D0:58:A6:9B:30:ED:FD:D5:0B:80:8A:3A:91:EE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/665B62B0D0F1D058A69B30EDFDD50B808A3A91EE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8C5A7D5CFA59F52E6659DFF137630D20E6DD547F715E5C04A4D23E492C204212/0/3137302e3235342e3136342e302f32322d3232203d3e203532333732.roa
Signing time: Tue 05 Mar 2024 17:57:53 +0000
ROA not before: Tue 05 Mar 2024 17:52:53 +0000
ROA not after: Tue 04 Mar 2025 17:57:53 +0000
asID: 52372
IP address blocks: 170.254.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 24 Jul 2024 15:15:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:7a:08:6c:26:76:1d:7b:65:ec:b8:27:d7:7f:55:a4:ac:18:dc:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=665B62B0D0F1D058A69B30EDFDD50B808A3A91EE
Validity
Not Before: Mar 5 17:52:53 2024 GMT
Not After : Mar 4 17:57:53 2025 GMT
Subject: CN=32BFB5F8ACF715C5D032DE76D6DF024399B8695A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c7:88:d3:b2:6b:b1:f5:56:28:a8:27:a8:c0:
36:9c:27:74:4d:c1:8a:20:88:98:d9:9f:55:a2:5c:
fb:40:8a:02:fa:f8:d7:a8:d0:44:98:e8:00:55:72:
7c:70:78:6d:25:e9:b1:8b:1f:cc:0f:88:7f:e2:d8:
27:e5:cc:0b:ea:bf:88:5f:b8:49:b7:4f:19:a2:1d:
e5:17:f7:17:3d:16:64:e3:98:6d:ce:f5:55:33:2f:
b3:3c:45:00:59:dc:ab:2c:d2:63:74:29:0f:4c:f8:
27:92:b9:d9:c0:0c:04:be:2f:f3:d3:cc:ed:5d:31:
a5:70:d7:f6:e0:b3:58:e4:44:d2:93:e2:43:7e:79:
a4:da:1c:d9:42:16:b4:13:e1:a8:aa:0c:54:92:a6:
80:f7:50:a1:07:4c:ad:9a:57:54:fa:3e:0e:ec:ac:
dc:a4:eb:bc:54:05:ca:86:c5:93:60:5b:10:c8:19:
99:81:67:e2:bb:07:14:c1:25:b3:7e:26:04:eb:ed:
28:04:12:45:11:bf:02:49:51:95:95:35:f6:74:46:
c2:a3:49:42:77:f4:33:f7:db:c6:89:96:02:73:ad:
9b:10:f7:ec:9c:ec:dc:b7:43:a6:79:d4:3e:c3:71:
ef:42:cd:cf:07:9b:78:d8:94:bb:35:e9:c9:e2:22:
31:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BF:B5:F8:AC:F7:15:C5:D0:32:DE:76:D6:DF:02:43:99:B8:69:5A
X509v3 Authority Key Identifier:
keyid:66:5B:62:B0:D0:F1:D0:58:A6:9B:30:ED:FD:D5:0B:80:8A:3A:91:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8C5A7D5CFA59F52E6659DFF137630D20E6DD547F715E5C04A4D23E492C204212/0/665B62B0D0F1D058A69B30EDFDD50B808A3A91EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/665B62B0D0F1D058A69B30EDFDD50B808A3A91EE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8C5A7D5CFA59F52E6659DFF137630D20E6DD547F715E5C04A4D23E492C204212/0/3137302e3235342e3136342e302f32322d3232203d3e203532333732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.254.164.0/22
Signature Algorithm: sha256WithRSAEncryption
98:da:ef:4b:a0:47:9d:c6:5a:a8:f8:38:cd:cc:76:67:61:83:
11:06:e5:6f:74:40:e7:45:96:33:78:15:07:c7:01:c7:20:12:
83:e1:91:8c:4b:c0:e4:93:26:41:ba:eb:c8:8b:6e:92:ae:93:
3e:a6:f4:bc:68:9a:8c:06:e9:e0:b8:62:65:de:95:51:6f:df:
69:2b:6b:1a:9d:fd:8e:5c:a4:e3:59:b1:ef:d4:a5:a4:f6:e6:
47:cc:99:9f:a0:9e:16:79:6b:f5:c7:9a:b5:b2:68:18:59:cc:
ac:62:dd:3f:61:82:84:49:78:09:a4:68:75:1d:2f:73:f5:45:
67:a0:56:03:bf:a8:6c:fc:c5:31:3b:21:0e:fe:1f:8d:6b:fe:
62:64:ee:13:55:5b:9b:af:98:ba:5d:f8:23:99:48:13:39:98:
7c:db:18:09:f3:2b:92:e6:df:01:4d:98:b1:69:cd:23:15:03:
1a:56:03:80:b7:30:25:21:42:fb:ca:2f:54:13:26:cc:36:67:
ad:d0:32:26:8f:9a:93:b7:7d:ad:85:cd:b7:c5:dc:8c:56:d1:
af:d3:7b:ca:1f:df:e6:c4:a2:4a:91:61:2f:c9:4b:40:72:90:
04:81:24:b8:23:45:98:48:8e:99:07:0d:af:75:7e:96:ba:e8:
85:db:ed:c3
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUeXoIbCZ2HXtl7Lgn139VpKwY3LowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjY1QjYyQjBEMEYxRDA1OEE2OUIzMEVERkRENTBCODA4
QTNBOTFFRTAeFw0yNDAzMDUxNzUyNTNaFw0yNTAzMDQxNzU3NTNaMDMxMTAvBgNV
BAMTKDMyQkZCNUY4QUNGNzE1QzVEMDMyREU3NkQ2REYwMjQzOTlCODY5NUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYx4jTsmux9VYoqCeowDacJ3RN
wYogiJjZn1WiXPtAigL6+Neo0ESY6ABVcnxweG0l6bGLH8wPiH/i2CflzAvqv4hf
uEm3TxmiHeUX9xc9FmTjmG3O9VUzL7M8RQBZ3Kss0mN0KQ9M+CeSudnADAS+L/PT
zO1dMaVw1/bgs1jkRNKT4kN+eaTaHNlCFrQT4aiqDFSSpoD3UKEHTK2aV1T6Pg7s
rNyk67xUBcqGxZNgWxDIGZmBZ+K7BxTBJbN+JgTr7SgEEkURvwJJUZWVNfZ0RsKj
SUJ39DP328aJlgJzrZsQ9+yc7Ny3Q6Z51D7Dce9Czc8Hm3jYlLs16cniIjFBAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUMr+1+Kz3FcXQMt521t8CQ5m4aVowHwYDVR0j
BBgwFoAUZltisNDx0FimmzDt/dULgIo6ke4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy84QzVBN0Q1Q0ZBNTlGNTJFNjY1OURGRjEzNzYzMEQyMEU2
REQ1NDdGNzE1RTVDMDRBNEQyM0U0OTJDMjA0MjEyLzAvNjY1QjYyQjBEMEYxRDA1
OEE2OUIzMEVERkRENTBCODA4QTNBOTFFRS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC82NjVCNjJCMEQwRjFEMDU4QTY5
QjMwRURGREQ1MEI4MDhBM0E5MUVFLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOEM1QTdENUNGQTU5RjUyRTY2NTlERkYxMzc2MzBEMjBFNkRENTQ3Rjcx
NUU1QzA0QTREMjNFNDkyQzIwNDIxMi8wLzMxMzczMDJlMzIzNTM0MmUzMTM2MzQy
ZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNTMyMzMzNzMyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqv6k
MA0GCSqGSIb3DQEBCwUAA4IBAQCY2u9LoEedxlqo+DjNzHZnYYMRBuVvdEDnRZYz
eBUHxwHHIBKD4ZGMS8DkkyZBuuvIi26SrpM+pvS8aJqMBunguGJl3pVRb99pK2sa
nf2OXKTjWbHv1KWk9uZHzJmfoJ4WeWv1x5q1smgYWcysYt0/YYKESXgJpGh1HS9z
9UVnoFYDv6hs/MUxOyEO/h+Na/5iZO4TVVubr5i6XfgjmUgTOZh82xgJ8yuS5t8B
TZixac0jFQMaVgOAtzAlIUL7yi9UEybMNmet0DImj5qTt32thc23xdyMVtGv03vK
H9/mxKJKkWEvyUtAcpAEgSS4I0WYSI6ZBw2vdX6WuuiF2+3D
-----END CERTIFICATE-----
Generated at Wed Jul 24 19:37:41 2024 by rpki-client on console-ams.rpki-client.org