Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e312e302f32342d3234203d3e203134373534.roa
File: 3136352e39382e312e302f32342d3234203d3e203134373534.roa (raw, json)
Hash identifier: pLSWQlS5SQz95LzONkdU2SvYkPGTNTFrHAfJZHGIFsU=
Subject key identifier: E7:F9:C6:57:4D:68:9D:05:E5:7E:1F:76:39:FA:6E:34:BD:87:0C:EA
Certificate issuer: /CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Certificate serial: 02586D8DECE0E98C6964C137CE132471C14A3E92
Authority key identifier: 1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e312e302f32342d3234203d3e203134373534.roa
Signing time: Thu 06 Feb 2025 23:10:00 +0000
ROA not before: Thu 06 Feb 2025 23:05:00 +0000
ROA not after: Thu 05 Feb 2026 23:10:00 +0000
asID: 14754
IP address blocks: 165.98.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Feb 2025 19:10:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:58:6d:8d:ec:e0:e9:8c:69:64:c1:37:ce:13:24:71:c1:4a:3e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Validity
Not Before: Feb 6 23:05:00 2025 GMT
Not After : Feb 5 23:10:00 2026 GMT
Subject: CN=E7F9C6574D689D05E57E1F7639FA6E34BD870CEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e9:12:f3:23:75:4a:bc:eb:ee:d9:a8:22:fc:
01:fb:a7:73:9b:08:3d:9c:0a:6d:82:3b:2c:be:04:
25:81:7c:85:02:46:63:fb:ce:df:35:dd:21:df:bb:
37:a4:6d:a9:5f:d3:47:cc:04:6f:19:fc:2e:6f:07:
9c:a0:42:78:4f:6b:75:8c:29:a0:4a:14:08:5f:11:
6f:00:97:4d:52:87:67:ec:47:66:14:26:b4:10:82:
f6:a1:d8:17:1a:2c:77:0e:3c:ac:46:f9:ce:a9:b9:
53:34:73:24:c7:11:81:0a:95:07:40:02:ee:0c:48:
a2:30:01:7d:a4:c5:cc:e9:72:4f:11:17:05:97:13:
e3:92:00:7a:8c:a0:40:7e:75:af:6f:cf:2b:60:71:
32:b5:ea:f1:d2:5c:df:1e:87:ee:4f:31:14:aa:98:
5e:9b:fe:03:ba:d4:96:e1:c1:f4:04:fd:c1:15:59:
c3:fb:4c:50:d4:d9:9d:e5:5b:fb:8e:f9:25:99:05:
c8:99:3c:0d:eb:4c:9c:bb:2d:2f:01:28:b6:a5:58:
d4:d3:8f:b8:5e:eb:b6:8f:4b:21:3f:ea:18:2f:e1:
23:89:10:e3:ac:1b:4e:d6:6a:4b:df:4f:f5:ac:99:
b9:02:f4:e1:b7:2c:1a:e8:59:3b:f1:6a:a1:0d:4f:
fb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F9:C6:57:4D:68:9D:05:E5:7E:1F:76:39:FA:6E:34:BD:87:0C:EA
X509v3 Authority Key Identifier:
keyid:1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e312e302f32342d3234203d3e203134373534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
165.98.1.0/24
Signature Algorithm: sha256WithRSAEncryption
87:2f:43:1f:01:44:ae:33:5f:62:b4:9c:af:81:bb:0d:0d:2c:
dc:91:01:d5:db:9a:a3:8b:7f:19:0a:b9:95:7a:2f:03:02:05:
d3:ac:ee:2f:c8:eb:e4:fa:58:0e:9b:82:8a:67:60:0f:06:07:
b0:21:42:b0:07:48:f8:c6:1f:9d:5f:c2:db:3d:6a:a3:12:33:
14:33:93:0b:3c:e4:0f:ce:6d:11:e0:79:6c:7a:72:10:a8:0b:
45:25:7e:97:c2:af:72:98:ec:9e:b9:2f:36:92:9d:94:06:b3:
b4:87:d8:5c:dc:8c:0b:39:dd:4c:63:20:55:17:6e:e2:cd:3d:
6e:c1:0f:0e:82:dc:24:67:d4:a6:ab:f5:07:bc:7a:d0:4b:48:
59:b6:00:81:29:78:dd:57:40:24:b2:d9:1f:93:a0:c4:58:dd:
ee:21:76:75:1b:41:c9:2d:92:c2:fe:1e:94:0c:a8:8f:f4:6b:
de:32:84:6e:51:a7:c3:59:d3:b1:9e:95:80:d5:97:48:fb:06:
83:74:72:84:2c:00:db:17:7b:e5:42:ac:d4:d8:d0:8c:1a:dd:
eb:f4:a0:c1:57:58:4f:5b:a1:19:99:c2:ca:b3:c6:09:a3:e7:
b6:ef:77:bc:90:60:67:c1:91:58:83:da:bb:c1:6e:56:d6:39:
3d:fb:58:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:47:40 2025 by rpki-client