Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A3AC98FA47F74BD00F265D7632F821E02769F5D7999E920CC01F5B29CFF7A0FB/0/3139322e3134312e3136382e302f32342d3234203d3e2036343731.roa
File: 3139322e3134312e3136382e302f32342d3234203d3e2036343731.roa (raw, json)
Hash identifier: qDaC+W2CjqHuFNuPoLJjSpNKSTl42s/LwobPMyfOOcQ=
Subject key identifier: 2C:3D:64:65:19:8F:70:4F:E0:48:D0:1F:7F:45:64:80:59:D8:AF:4C
Certificate issuer: /CN=42BD8D878C8243543F08F06EB92269CCF4FF46C9
Certificate serial: 5C44FFAC7515DB7840DE4309295FC97174CBDCA3
Authority key identifier: 42:BD:8D:87:8C:82:43:54:3F:08:F0:6E:B9:22:69:CC:F4:FF:46:C9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/42BD8D878C8243543F08F06EB92269CCF4FF46C9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A3AC98FA47F74BD00F265D7632F821E02769F5D7999E920CC01F5B29CFF7A0FB/0/3139322e3134312e3136382e302f32342d3234203d3e2036343731.roa
Signing time: Tue 16 Apr 2024 15:00:01 +0000
ROA not before: Tue 16 Apr 2024 14:55:01 +0000
ROA not after: Tue 15 Apr 2025 15:00:01 +0000
asID: 6471
IP address blocks: 192.141.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:44:ff:ac:75:15:db:78:40:de:43:09:29:5f:c9:71:74:cb:dc:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42BD8D878C8243543F08F06EB92269CCF4FF46C9
Validity
Not Before: Apr 16 14:55:01 2024 GMT
Not After : Apr 15 15:00:01 2025 GMT
Subject: CN=2C3D6465198F704FE048D01F7F45648059D8AF4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:66:2d:be:29:14:f8:f7:6f:65:26:0e:ab:18:
ec:e6:5b:c1:7c:70:02:c0:da:a8:82:98:f1:9c:fe:
32:b8:04:68:1a:df:fb:f2:80:1c:fb:8e:dd:ad:08:
1f:aa:24:50:bb:f0:46:81:3c:78:9d:11:a9:84:1a:
a4:ab:37:49:f5:1e:cf:55:aa:09:8c:26:97:ee:e1:
9e:3d:8d:68:8b:9f:4a:53:93:fd:89:05:6f:bf:13:
a4:19:31:b8:65:47:90:04:20:d8:32:9c:08:4a:10:
85:d7:3a:46:17:7e:33:60:f1:65:4d:1b:03:9a:1b:
a1:41:aa:cb:dc:58:dc:71:c5:34:45:2b:a5:20:40:
79:f9:36:bd:11:9a:d6:0b:12:22:e9:62:1f:a0:03:
45:9a:0b:df:05:09:08:13:40:2e:96:08:b6:a6:f1:
b5:59:a2:17:16:b9:f0:75:c0:b0:59:16:56:16:46:
39:04:35:1f:de:8b:8c:2d:cb:30:16:d3:17:a5:09:
a1:aa:63:cc:af:35:bd:c2:9d:da:a4:a7:c6:d9:f9:
1a:07:a2:29:56:57:dd:18:e2:28:1c:39:01:3d:b5:
c9:e5:bd:31:19:b5:24:e6:55:63:98:5b:75:99:5b:
07:29:71:53:85:48:7b:99:8b:fa:ff:c0:0d:39:73:
5b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:3D:64:65:19:8F:70:4F:E0:48:D0:1F:7F:45:64:80:59:D8:AF:4C
X509v3 Authority Key Identifier:
keyid:42:BD:8D:87:8C:82:43:54:3F:08:F0:6E:B9:22:69:CC:F4:FF:46:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A3AC98FA47F74BD00F265D7632F821E02769F5D7999E920CC01F5B29CFF7A0FB/0/42BD8D878C8243543F08F06EB92269CCF4FF46C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/42BD8D878C8243543F08F06EB92269CCF4FF46C9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A3AC98FA47F74BD00F265D7632F821E02769F5D7999E920CC01F5B29CFF7A0FB/0/3139322e3134312e3136382e302f32342d3234203d3e2036343731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.141.168.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:7a:42:d2:95:ed:05:ee:d0:8d:70:cd:6c:8a:7c:2a:80:93:
f8:c9:27:16:5b:7b:90:34:41:41:6e:ef:4f:bf:c7:13:4f:11:
04:33:ff:f6:3d:fc:e8:9b:ac:7b:31:79:77:16:9d:99:37:9d:
66:8d:ff:ff:50:c6:99:99:08:aa:eb:9c:0e:77:39:c1:e6:fe:
79:42:70:42:ca:ec:bf:a2:12:e4:31:63:27:89:4b:13:97:73:
0a:0d:f3:45:a6:39:76:06:6b:d3:f3:cc:de:29:d1:82:09:53:
5a:f4:17:40:c4:41:0f:e8:24:08:ba:37:fa:b4:d0:c5:37:6b:
b7:7a:ad:82:29:3c:7c:b5:bc:a4:b9:9e:a5:3f:4c:08:86:f3:
9a:7a:23:f0:b7:f6:ef:97:8e:ed:03:ff:b8:2b:2b:c4:2c:ad:
bc:00:fd:eb:6c:2c:bd:5c:c1:4e:e9:3a:58:82:b8:0f:e2:94:
c3:d8:33:15:89:a3:bd:54:b0:50:c6:fb:e1:98:ff:3d:94:5e:
17:3a:64:8f:38:c5:e7:ad:82:ae:74:f3:08:4c:d7:07:8b:a0:
61:88:ee:0b:03:09:49:6d:0a:0e:06:fe:e6:ec:d7:c1:9d:9e:
4a:01:0d:44:9f:ea:31:df:b3:07:b4:55:13:1a:ff:0b:78:62:
41:b5:e8:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:45:11 2025 by rpki-client