Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AE73F2FB1CCB08B1465B8247B36E4D64F965319B0F5FC6E150A7F95FAB2782DE/0/3230302e3231392e34342e302f32322d3233203d3e203238343331.roa
File: 3230302e3231392e34342e302f32322d3233203d3e203238343331.roa (raw, json)
Hash identifier: HMBE1m81uSDkWJ5NO+2xCR2SjrCfbWlCEtcu+NE++lg=
Subject key identifier: 78:54:14:54:9E:56:35:4D:6F:72:AD:10:10:8C:10:BD:14:AF:BB:BB
Certificate issuer: /CN=FD7177B44A015753B2E74CCE6E5FFC8438D4F4AD
Certificate serial: 749034E40C1274D26D3B2147F11C0BD6B733B946
Authority key identifier: FD:71:77:B4:4A:01:57:53:B2:E7:4C:CE:6E:5F:FC:84:38:D4:F4:AD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FD7177B44A015753B2E74CCE6E5FFC8438D4F4AD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AE73F2FB1CCB08B1465B8247B36E4D64F965319B0F5FC6E150A7F95FAB2782DE/0/3230302e3231392e34342e302f32322d3233203d3e203238343331.roa
Signing time: Tue 31 Dec 2024 20:20:00 +0000
ROA not before: Tue 31 Dec 2024 20:15:00 +0000
ROA not after: Tue 30 Dec 2025 20:20:00 +0000
asID: 28431
IP address blocks: 200.219.44.0/22 maxlen: 23
Validation: Failed, certificate revoked on Tue 31 Dec 2024 23:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:90:34:e4:0c:12:74:d2:6d:3b:21:47:f1:1c:0b:d6:b7:33:b9:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FD7177B44A015753B2E74CCE6E5FFC8438D4F4AD
Validity
Not Before: Dec 31 20:15:00 2024 GMT
Not After : Dec 30 20:20:00 2025 GMT
Subject: CN=785414549E56354D6F72AD10108C10BD14AFBBBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a9:83:31:c0:86:2d:dd:75:66:32:28:bc:c5:
3d:73:a2:79:f2:8e:d9:1c:97:3b:3a:4f:61:45:93:
f3:1e:c2:b4:36:cb:d4:c1:cb:5e:26:3f:8e:28:f6:
d4:e5:f5:c4:14:93:89:55:c4:16:60:d2:75:35:89:
c0:f6:f4:3e:b4:b9:72:2d:34:a6:2f:0b:f0:64:ac:
47:a4:e7:3d:59:66:9d:fb:0f:36:a3:e8:87:c0:9f:
9a:40:1a:0f:aa:32:7c:b0:54:01:57:20:17:37:7c:
74:39:b2:f3:ef:64:72:24:bd:ab:c0:8f:12:a0:4d:
0f:b5:7f:0b:5b:1c:fd:9c:9c:9a:78:83:a1:8b:b3:
0b:8f:63:6b:90:6c:ff:02:60:f8:ce:4c:e1:69:6f:
d3:31:9b:7b:1b:af:81:18:86:cb:77:1e:c1:76:9a:
27:e4:f3:0b:89:4e:af:11:c8:01:66:d4:02:81:d1:
38:34:a8:a5:b4:13:be:08:8f:fd:3d:9f:2a:c7:ee:
b1:79:ec:f8:c7:a0:f5:1b:82:34:b5:44:fa:e8:a3:
d8:c4:bb:67:c1:39:9e:01:80:a7:e4:97:20:dd:a3:
d4:b5:10:56:f7:ca:0a:cc:55:b4:b1:32:df:fb:09:
1b:a2:a2:c3:c0:55:7a:9e:c7:e0:38:ec:80:f3:36:
d0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:54:14:54:9E:56:35:4D:6F:72:AD:10:10:8C:10:BD:14:AF:BB:BB
X509v3 Authority Key Identifier:
keyid:FD:71:77:B4:4A:01:57:53:B2:E7:4C:CE:6E:5F:FC:84:38:D4:F4:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AE73F2FB1CCB08B1465B8247B36E4D64F965319B0F5FC6E150A7F95FAB2782DE/0/FD7177B44A015753B2E74CCE6E5FFC8438D4F4AD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FD7177B44A015753B2E74CCE6E5FFC8438D4F4AD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AE73F2FB1CCB08B1465B8247B36E4D64F965319B0F5FC6E150A7F95FAB2782DE/0/3230302e3231392e34342e302f32322d3233203d3e203238343331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.219.44.0/22
Signature Algorithm: sha256WithRSAEncryption
04:54:5d:77:81:2d:9d:de:17:69:bc:dc:44:d9:a4:04:1e:01:
21:74:87:c9:1d:88:7c:23:61:d8:c1:cd:5e:88:41:ce:09:3a:
f9:50:79:74:2f:ba:f8:12:0a:af:1f:5e:8f:48:79:6c:98:27:
23:e4:0f:ec:29:25:a2:d3:5d:a7:cf:95:8c:17:df:14:f2:c5:
5c:8c:4b:79:b0:05:ff:8f:0d:85:82:4f:e9:be:2c:f3:0e:c7:
10:16:2b:d5:f0:2a:40:ec:e2:9a:18:8f:f6:e3:ad:4b:82:8b:
67:3f:62:cb:4e:5f:e6:08:ab:69:30:5a:cd:6a:06:02:d4:c4:
4c:69:70:64:d7:bc:cd:9d:8a:80:d9:3a:35:ca:56:fb:c4:07:
fe:20:b1:8f:d4:cc:38:69:28:52:96:f3:70:1e:ba:15:1f:f7:
00:e1:c2:21:10:68:f4:3a:b5:09:4a:c9:a8:87:a8:3a:b4:66:
22:1e:56:0c:49:44:cd:f3:f3:76:c9:50:b5:8f:6e:07:83:e0:
70:45:e0:71:be:15:96:b4:6d:d6:10:cc:62:48:e4:04:d6:cf:
c8:7d:b2:01:84:8a:13:80:50:fe:ef:2f:e4:56:02:70:0e:5c:
ae:ca:cc:cd:3b:d7:11:94:2e:db:ee:26:af:e6:fc:d4:83:d9:
1a:a4:95:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:38:17 2025 by rpki-client