Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/968E0ACB76CBF36C95DF5D96E80D200EF6E74615658B4932191E5F1827E4DAF7/0/36362e3132382e34302e302f32322d3234203d3e20323633323336.roa
File: 36362e3132382e34302e302f32322d3234203d3e20323633323336.roa (raw, json)
Hash identifier: Tr98Y8M1OXFiPgqdTqT1Xms269ARVSqhNTx+jCXfm7k=
Subject key identifier: 85:DF:5E:4A:06:8E:82:29:26:8A:D7:13:13:CE:D6:66:D7:41:78:15
Certificate issuer: /CN=160B7951E0606756250A049D4BCA8B87E03112C2
Certificate serial: 27DCAFD67F857BD0D1CBCF10865A6F5715D858C1
Authority key identifier: 16:0B:79:51:E0:60:67:56:25:0A:04:9D:4B:CA:8B:87:E0:31:12:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/160B7951E0606756250A049D4BCA8B87E03112C2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/968E0ACB76CBF36C95DF5D96E80D200EF6E74615658B4932191E5F1827E4DAF7/0/36362e3132382e34302e302f32322d3234203d3e20323633323336.roa
Signing time: Thu 11 Jul 2024 21:55:00 +0000
ROA not before: Thu 11 Jul 2024 21:50:00 +0000
ROA not after: Thu 10 Jul 2025 21:55:00 +0000
asID: 263236
IP address blocks: 66.128.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 13:55:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:dc:af:d6:7f:85:7b:d0:d1:cb:cf:10:86:5a:6f:57:15:d8:58:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=160B7951E0606756250A049D4BCA8B87E03112C2
Validity
Not Before: Jul 11 21:50:00 2024 GMT
Not After : Jul 10 21:55:00 2025 GMT
Subject: CN=85DF5E4A068E8229268AD71313CED666D7417815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d2:e1:56:b0:ed:c5:5a:1f:82:f9:ec:58:12:
be:33:fe:cb:01:97:32:b0:0e:af:6d:a5:82:fe:50:
e0:c5:0e:05:35:2b:27:1d:89:2a:76:d0:4f:b4:76:
fd:2b:9c:ff:2a:f0:fb:85:21:28:b7:51:1f:a3:36:
36:8d:57:e1:4d:df:41:38:9c:bf:71:1e:8d:0b:87:
55:c4:49:d1:6c:c3:7c:1b:10:d1:50:c3:c2:86:38:
9a:ad:8a:94:ee:37:f1:80:90:f1:32:84:c5:0b:d6:
1b:6d:7f:6a:4f:03:74:22:54:2f:db:86:9d:a4:b6:
80:b3:c5:a2:58:79:e4:29:62:6e:54:52:f8:32:58:
bc:87:00:ba:65:a6:13:54:1f:14:bc:1f:8d:9c:76:
b0:a0:49:3d:38:b4:dd:35:a9:87:28:5b:8d:3d:66:
c5:ba:19:ce:44:36:92:51:d3:f4:50:2b:5f:a4:75:
1b:e2:f7:55:1d:7c:d8:95:b4:e1:05:5f:88:a9:49:
f2:80:f6:62:a0:24:7d:db:9d:9b:7b:a3:5e:ce:8d:
05:e9:76:61:81:87:fc:be:e3:e0:78:fe:50:9d:83:
fc:fe:89:ad:26:be:b9:51:a4:61:41:8c:69:7f:b0:
e4:9c:4d:3e:38:9c:b0:21:bb:73:ef:1f:f5:23:b3:
10:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DF:5E:4A:06:8E:82:29:26:8A:D7:13:13:CE:D6:66:D7:41:78:15
X509v3 Authority Key Identifier:
keyid:16:0B:79:51:E0:60:67:56:25:0A:04:9D:4B:CA:8B:87:E0:31:12:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/968E0ACB76CBF36C95DF5D96E80D200EF6E74615658B4932191E5F1827E4DAF7/0/160B7951E0606756250A049D4BCA8B87E03112C2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/160B7951E0606756250A049D4BCA8B87E03112C2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/968E0ACB76CBF36C95DF5D96E80D200EF6E74615658B4932191E5F1827E4DAF7/0/36362e3132382e34302e302f32322d3234203d3e20323633323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.128.40.0/22
Signature Algorithm: sha256WithRSAEncryption
79:92:1e:64:d5:32:82:b7:40:3c:4e:bc:7e:f0:75:b0:e9:5b:
7a:d9:a0:0a:12:f8:d0:85:39:9f:94:a7:15:5a:48:82:cc:78:
97:7d:50:88:11:36:e5:6d:8a:4a:33:08:98:40:3e:0f:63:31:
63:d4:68:7c:2d:71:ed:6e:a9:92:b5:27:f4:0a:c4:d6:31:6f:
bf:7e:f5:60:82:b7:12:1a:8a:c9:17:eb:96:38:f5:86:6e:b1:
14:0f:66:5a:30:7e:a0:19:60:3b:64:f9:51:de:e5:51:93:bc:
9c:56:95:61:88:6e:53:9b:74:26:bf:a8:a0:e8:b6:6a:31:cf:
b8:a3:e6:bd:ef:c7:c0:94:d2:dd:fa:bc:e7:4a:aa:89:6d:08:
be:ea:5c:0f:99:84:79:6b:a6:11:46:c4:43:da:dd:79:f2:12:
ec:f9:da:a5:d5:97:78:76:42:29:32:e3:8c:2d:6f:d2:93:c6:
6d:f5:ba:cf:c4:99:47:60:83:ad:4b:a3:17:bd:81:5e:bc:7b:
7f:3a:57:0e:49:7b:ff:1c:d2:bf:c0:bc:d9:87:f9:97:ba:0c:
fe:c2:4d:6b:7e:37:03:a0:44:dd:5b:bb:e4:44:0d:67:28:51:
f9:4b:b3:8f:52:41:4b:66:69:f5:b0:a3:16:eb:78:ad:00:91:
0a:23:61:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 16:01:17 2024 by rpki-client on console-fra.rpki-client.org