Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/3137302e302e382e302f32342d3234203d3e20323730303838.roa
File: 3137302e302e382e302f32342d3234203d3e20323730303838.roa (raw, json)
Hash identifier: kBAkDJOmTTEKWoKMF0Qxipjl+apv5Rg60zfMzW9v03c=
Subject key identifier: B2:12:C4:F4:14:4B:1E:20:97:58:43:32:43:88:AB:9A:9E:2C:81:8C
Certificate issuer: /CN=08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D
Certificate serial: 2A949071A8A2E71D6C3EEFA34882E98C25C890FC
Authority key identifier: 08:AA:2E:4D:3C:7C:DF:96:26:D3:31:AC:D3:8D:17:19:F3:D4:A7:2D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/3137302e302e382e302f32342d3234203d3e20323730303838.roa
Signing time: Sat 31 May 2025 14:25:00 +0000
ROA not before: Sat 31 May 2025 14:20:00 +0000
ROA not after: Sat 30 May 2026 14:25:00 +0000
asID: 270088
IP address blocks: 170.0.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Jun 2025 16:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:94:90:71:a8:a2:e7:1d:6c:3e:ef:a3:48:82:e9:8c:25:c8:90:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D
Validity
Not Before: May 31 14:20:00 2025 GMT
Not After : May 30 14:25:00 2026 GMT
Subject: CN=B212C4F4144B1E20975843324388AB9A9E2C818C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:be:f0:72:0e:c8:6e:c5:8b:f0:e6:8b:dd:43:
64:7e:69:b8:b8:e1:b4:eb:5e:67:cd:f5:9b:87:5d:
8e:68:a8:79:e1:f8:65:e8:e0:00:0c:25:c8:31:a0:
6d:59:19:45:47:1c:f1:ea:5e:d8:a3:f5:86:ad:c6:
72:69:0c:fb:98:90:f7:b1:9b:03:f5:76:b6:e0:19:
a9:f5:fb:a2:9c:02:3b:5c:ee:39:65:a9:c6:cd:62:
e1:86:09:3f:13:ea:50:8b:d3:f4:66:8c:22:9a:06:
87:b9:1d:be:c2:29:92:a3:4c:0c:bd:05:a5:b5:db:
99:b5:26:21:ef:14:59:23:54:86:a0:b7:83:25:a8:
2c:d5:bf:cb:e7:91:7a:94:8c:fb:4e:5e:7e:db:ef:
e4:ae:ef:c5:84:15:44:b2:9e:9f:9e:67:af:2a:6e:
aa:8d:7c:60:86:46:c2:2a:94:8d:47:a7:5a:53:8f:
8a:ce:10:a1:f5:16:f2:dc:82:ae:a5:b6:3d:44:1d:
ce:81:da:77:24:4e:06:2a:b3:62:3a:64:a4:76:0e:
ed:5d:08:fa:5a:cb:a3:bd:de:9b:f0:52:9e:d9:5e:
66:63:1a:e2:a6:89:7f:b2:e9:ff:dd:65:d9:26:cc:
cb:84:73:fb:ea:e2:3c:c4:cc:d4:ef:f2:3a:11:28:
14:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:12:C4:F4:14:4B:1E:20:97:58:43:32:43:88:AB:9A:9E:2C:81:8C
X509v3 Authority Key Identifier:
keyid:08:AA:2E:4D:3C:7C:DF:96:26:D3:31:AC:D3:8D:17:19:F3:D4:A7:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AA2E4D3C7CDF9626D331ACD38D1719F3D4A72D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8D4BB2421C24D19F3123B0C681B01AD82A92941582C9DABB9493E097F3F2F893/0/3137302e302e382e302f32342d3234203d3e20323730303838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.0.8.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:2f:66:54:50:19:d3:0d:96:7b:c5:d6:2a:5b:60:9e:d8:25:
be:ec:9b:6b:51:33:64:7b:1b:9d:83:46:a2:04:16:fa:fc:c3:
67:4e:23:20:cc:ec:4b:82:cc:a1:21:d9:0d:7d:57:fe:35:a8:
c1:fc:87:05:9f:1a:20:4c:07:0a:34:d1:14:d8:cc:11:63:fb:
1d:e5:bb:8a:a6:70:ed:82:ad:15:1f:97:4d:03:ea:35:d6:ad:
1a:eb:0d:f6:8a:37:1a:38:e7:3a:40:37:3a:36:90:9f:d1:13:
87:ab:84:57:af:ad:6d:cd:52:97:e3:f0:cc:72:e7:2f:b3:e0:
0b:4d:0b:91:82:35:4f:12:02:56:03:4f:37:28:78:78:9b:93:
70:c1:83:dc:c0:e8:88:7e:f8:fc:3e:c2:d4:34:36:33:5b:b2:
34:1f:6e:58:b7:3f:15:43:66:12:2d:73:4a:51:dd:86:b1:cc:
79:e1:a6:14:a6:c9:c7:37:58:dd:97:c8:10:49:de:97:30:27:
e8:43:23:23:26:98:22:f2:37:c4:58:95:74:1e:f9:79:7e:93:
4c:81:e6:0f:26:b9:30:b0:b9:44:68:43:b6:d2:b1:c3:cc:89:
69:fe:03:5f:a8:35:46:56:b3:96:78:32:f6:fb:35:49:91:1d:
2d:d9:70:1b
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIUKpSQcaii5x1sPu+jSILpjCXIkPwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhBQTJFNEQzQzdDREY5NjI2RDMzMUFDRDM4RDE3MTlG
M0Q0QTcyRDAeFw0yNTA1MzExNDIwMDBaFw0yNjA1MzAxNDI1MDBaMDMxMTAvBgNV
BAMTKEIyMTJDNEY0MTQ0QjFFMjA5NzU4NDMzMjQzODhBQjlBOUUyQzgxOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOvvByDshuxYvw5ovdQ2R+abi4
4bTrXmfN9ZuHXY5oqHnh+GXo4AAMJcgxoG1ZGUVHHPHqXtij9YatxnJpDPuYkPex
mwP1drbgGan1+6KcAjtc7jllqcbNYuGGCT8T6lCL0/RmjCKaBoe5Hb7CKZKjTAy9
BaW125m1JiHvFFkjVIagt4MlqCzVv8vnkXqUjPtOXn7b7+Su78WEFUSynp+eZ68q
bqqNfGCGRsIqlI1Hp1pTj4rOEKH1FvLcgq6ltj1EHc6B2nckTgYqs2I6ZKR2Du1d
CPpay6O93pvwUp7ZXmZjGuKmiX+y6f/dZdkmzMuEc/vq4jzEzNTv8joRKBRlAgMB
AAGjggLEMIICwDAdBgNVHQ4EFgQUshLE9BRLHiCXWEMyQ4irmp4sgYwwHwYDVR0j
BBgwFoAUCKouTTx835Ym0zGs040XGfPUpy0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy84RDRCQjI0MjFDMjREMTlGMzEyM0IwQzY4MUIwMUFEODJB
OTI5NDE1ODJDOURBQkI5NDkzRTA5N0YzRjJGODkzLzAvMDhBQTJFNEQzQzdDREY5
NjI2RDMzMUFDRDM4RDE3MTlGM0Q0QTcyRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wOEFBMkU0RDNDN0NERjk2MjZE
MzMxQUNEMzhEMTcxOUYzRDRBNzJELmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOEQ0QkIyNDIxQzI0RDE5RjMxMjNCMEM2ODFCMDFBRDgyQTkyOTQxNTgy
QzlEQUJCOTQ5M0UwOTdGM0YyRjg5My8wLzMxMzczMDJlMzAyZTM4MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNzMwMzAzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqgAIMA0GCSqG
SIb3DQEBCwUAA4IBAQCPL2ZUUBnTDZZ7xdYqW2Ce2CW+7JtrUTNkexudg0aiBBb6
/MNnTiMgzOxLgsyhIdkNfVf+NajB/IcFnxogTAcKNNEU2MwRY/sd5buKpnDtgq0V
H5dNA+o11q0a6w32ijcaOOc6QDc6NpCf0ROHq4RXr61tzVKX4/DMcucvs+ALTQuR
gjVPEgJWA083KHh4m5NwwYPcwOiIfvj8PsLUNDYzW7I0H25Ytz8VQ2YSLXNKUd2G
scx54aYUpsnHN1jdl8gQSd6XMCfoQyMjJpgi8jfEWJV0Hvl5fpNMgeYPJrkwsLlE
aEO20rHDzIlp/gNfqDVGVrOWeDL2+zVJkR0t2XAb
-----END CERTIFICATE-----
Generated at Sat Jun 7 07:10:37 2025 by rpki-client