Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/3139312e39372e31362e302f32342d3234203d3e20323634383434.roa
File: 3139312e39372e31362e302f32342d3234203d3e20323634383434.roa (raw, json)
Hash identifier: zIik+XHhh+13FOU1xHX9nlvUp6iTleL0yMc6Em0biQM=
Subject key identifier: D0:61:12:45:A8:47:27:6F:E2:3C:C8:73:DB:5A:1E:74:14:EB:23:2E
Certificate issuer: /CN=CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC
Certificate serial: 6FC6EE6C9902D69D1B8673459C3CF9F292123CC7
Authority key identifier: CE:FF:58:50:7A:F1:A0:6A:EF:DA:67:DD:8D:65:12:5C:36:4A:4D:EC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/3139312e39372e31362e302f32342d3234203d3e20323634383434.roa
Signing time: Tue 05 Mar 2024 18:23:36 +0000
ROA not before: Tue 05 Mar 2024 18:18:36 +0000
ROA not after: Tue 04 Mar 2025 18:23:36 +0000
asID: 264844
IP address blocks: 191.97.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 18:25:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:c6:ee:6c:99:02:d6:9d:1b:86:73:45:9c:3c:f9:f2:92:12:3c:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC
Validity
Not Before: Mar 5 18:18:36 2024 GMT
Not After : Mar 4 18:23:36 2025 GMT
Subject: CN=D0611245A847276FE23CC873DB5A1E7414EB232E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:33:76:84:4d:72:a4:34:ac:72:b2:e2:be:bd:
52:cd:ae:6a:8c:e6:3c:8a:6a:02:10:2e:e8:87:c9:
5f:a1:13:39:4f:b7:ed:20:5b:46:dc:18:44:9b:0e:
c8:f9:cf:64:a5:ac:39:0e:f8:76:44:e2:19:f1:08:
e2:7d:22:0e:5b:cf:1d:f1:8a:a9:91:ca:ec:19:a8:
79:ef:ef:3d:2d:6f:7d:ff:e0:01:ea:55:07:19:65:
9f:21:1a:ca:07:12:04:68:ca:ae:a8:8e:da:16:20:
55:99:15:21:1e:f8:74:23:71:e4:75:4d:5d:d9:0d:
f5:1b:f5:89:e2:ae:85:80:40:5f:cd:2d:36:cd:fc:
c2:fa:03:b3:9b:0d:d1:13:64:48:fc:64:75:3d:5d:
2d:f4:1e:de:f4:44:46:ad:59:f7:90:d4:2b:67:ce:
8e:d3:00:34:39:79:d8:f4:db:1a:54:f4:06:fa:ee:
46:2c:32:fb:df:4e:ce:c1:65:0d:98:c5:1a:05:e7:
49:ff:18:bb:5e:38:58:3b:0f:b3:08:5d:ad:41:9e:
77:18:22:0e:30:81:3c:02:fc:ee:93:7c:a3:4a:a2:
85:bc:a2:20:f3:ac:25:df:01:47:e0:5b:8a:9f:be:
1c:13:bc:34:15:fa:2c:81:48:b4:85:8d:8b:e5:70:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:61:12:45:A8:47:27:6F:E2:3C:C8:73:DB:5A:1E:74:14:EB:23:2E
X509v3 Authority Key Identifier:
keyid:CE:FF:58:50:7A:F1:A0:6A:EF:DA:67:DD:8D:65:12:5C:36:4A:4D:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/3139312e39372e31362e302f32342d3234203d3e20323634383434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.97.16.0/24
Signature Algorithm: sha256WithRSAEncryption
18:aa:28:a8:34:41:20:ff:de:b4:4c:8f:50:81:df:a9:3a:6c:
6b:c1:61:21:c9:6b:4f:38:0d:f4:f4:a7:b0:6d:b2:d2:2e:18:
14:7b:3d:2c:ad:49:fa:68:90:29:00:fc:04:ec:1b:f2:c4:a1:
1f:f2:2c:9c:e8:d9:05:52:c7:74:b8:1c:76:99:c3:23:8e:b9:
82:82:99:4d:70:6b:fd:cf:fc:99:0e:2e:85:5d:8d:b9:7e:cd:
78:95:a9:10:c2:90:1f:37:d6:df:d2:8c:5b:3d:d1:db:20:21:
f0:d4:89:81:07:a3:56:4a:51:0b:7b:84:ba:f9:7e:e2:61:bd:
c6:6b:66:40:f0:43:c0:bd:f6:42:55:e0:ee:6a:ac:3b:86:7d:
82:71:a3:be:ca:71:1c:44:9e:9f:e0:22:c1:2a:bf:36:2b:04:
c2:a8:51:2c:87:4e:82:13:6b:08:19:75:4a:04:e7:97:7e:2f:
1a:cf:57:e7:fe:23:48:a8:b4:00:29:b7:77:44:32:a0:44:ed:
1d:8e:df:8f:40:49:c4:91:ae:4b:87:fe:e7:c5:f6:f7:eb:59:
a5:51:a9:8e:ef:20:48:fb:ec:26:ef:e1:44:55:75:33:22:65:
b0:aa:09:de:c5:74:55:d5:b3:0c:0b:54:37:ce:e7:fe:df:73:
30:95:59:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:18 2024 by rpki-client on console-ams.rpki-client.org