Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B7EBCF407F62BAF133DCE080C31AE7D4F2CEF8A603A472BCE4A78EBCA932C84E/0/34352e3233352e39382e302f32332d3233203d3e203634313233.roa
File: 34352e3233352e39382e302f32332d3233203d3e203634313233.roa (raw, json)
Hash identifier: ugxr54qmPOGGEwAL5NH6M6J7q3RseuId1+RFVwHexio=
Subject key identifier: D0:C1:02:AF:68:88:B9:61:A6:78:EC:34:E2:AC:61:D0:0A:E2:EC:9B
Certificate issuer: /CN=E99008F3C333627E9F8C6939370696F7049C22EB
Certificate serial: 29F74DE79BE929E0270B8957CB168D925CDB6DA1
Authority key identifier: E9:90:08:F3:C3:33:62:7E:9F:8C:69:39:37:06:96:F7:04:9C:22:EB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E99008F3C333627E9F8C6939370696F7049C22EB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B7EBCF407F62BAF133DCE080C31AE7D4F2CEF8A603A472BCE4A78EBCA932C84E/0/34352e3233352e39382e302f32332d3233203d3e203634313233.roa
Signing time: Wed 02 Oct 2024 16:35:00 +0000
ROA not before: Wed 02 Oct 2024 16:30:00 +0000
ROA not after: Wed 01 Oct 2025 16:35:00 +0000
asID: 64123
IP address blocks: 45.235.98.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 19 Nov 2024 01:35:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:f7:4d:e7:9b:e9:29:e0:27:0b:89:57:cb:16:8d:92:5c:db:6d:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E99008F3C333627E9F8C6939370696F7049C22EB
Validity
Not Before: Oct 2 16:30:00 2024 GMT
Not After : Oct 1 16:35:00 2025 GMT
Subject: CN=D0C102AF6888B961A678EC34E2AC61D00AE2EC9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:74:ea:e3:70:3d:51:e7:0a:27:84:83:33:5f:
62:3c:bc:a7:83:1b:ab:d1:d8:26:66:f1:a4:3e:7e:
e2:42:ee:21:a4:a7:61:a2:41:a6:6f:ab:45:8a:78:
53:7e:10:58:c7:68:42:9a:39:12:4b:76:b4:67:cd:
21:2e:76:ef:f8:a0:8f:8c:c1:19:17:9b:fa:94:49:
1a:4b:6d:1d:1a:ef:b0:36:a6:a2:2b:25:dd:b6:24:
5c:47:d7:ff:23:e9:56:63:e8:bf:0f:3a:37:24:96:
cf:d1:f5:82:02:87:59:77:2b:57:fb:44:82:06:75:
88:09:90:2f:93:00:64:fa:9e:88:44:ff:d8:24:91:
07:52:46:6d:c5:52:be:1c:28:e2:4c:41:9f:ae:bc:
92:ee:a6:07:22:45:f6:b1:94:18:61:aa:e3:1a:52:
94:e1:f3:23:4c:d8:80:37:43:cd:d9:de:a5:fc:0a:
e6:c5:f6:8f:cf:e4:8c:c7:13:c2:a7:12:44:fc:55:
e8:0c:55:ed:b3:46:28:e1:69:b1:64:21:1d:50:9d:
2d:c4:4c:f1:89:ba:e4:64:7d:6a:48:98:79:3b:b7:
c4:cf:f3:ab:e4:f3:01:11:54:2b:96:3a:32:1f:4a:
a9:0e:60:5d:62:10:f6:42:05:3a:64:ca:73:6b:e0:
28:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C1:02:AF:68:88:B9:61:A6:78:EC:34:E2:AC:61:D0:0A:E2:EC:9B
X509v3 Authority Key Identifier:
keyid:E9:90:08:F3:C3:33:62:7E:9F:8C:69:39:37:06:96:F7:04:9C:22:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B7EBCF407F62BAF133DCE080C31AE7D4F2CEF8A603A472BCE4A78EBCA932C84E/0/E99008F3C333627E9F8C6939370696F7049C22EB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E99008F3C333627E9F8C6939370696F7049C22EB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B7EBCF407F62BAF133DCE080C31AE7D4F2CEF8A603A472BCE4A78EBCA932C84E/0/34352e3233352e39382e302f32332d3233203d3e203634313233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.235.98.0/23
Signature Algorithm: sha256WithRSAEncryption
27:af:36:74:73:98:b3:b7:06:5f:7b:c1:4b:d4:ed:db:e0:0e:
07:6a:75:6c:86:d8:12:a6:ba:ac:ff:44:54:e7:31:f1:da:ad:
46:a3:ed:d6:1d:18:63:de:62:60:e8:86:92:44:03:41:42:77:
0e:79:3a:6c:fe:4e:1f:35:42:df:21:ce:e7:7d:d0:52:f2:23:
b8:b3:6f:5c:b1:3d:a2:13:c2:12:47:ad:95:75:cc:a7:a5:ac:
b8:19:3a:87:87:8b:b1:e2:5c:43:f3:23:f7:0b:9e:78:91:3c:
7a:a2:34:83:c6:2b:1b:fd:a0:84:e8:92:6b:f5:4c:71:8b:3a:
91:07:99:ef:e8:da:6b:e9:39:f3:c1:14:1a:e3:7e:79:e1:02:
4d:fe:e3:d8:38:52:c5:f6:b4:1b:da:67:17:f6:2d:7e:79:4f:
dd:6e:8a:44:fc:da:77:90:eb:e9:7f:bf:5f:25:ac:d5:11:a6:
4d:a3:d8:2d:24:5b:62:f8:7c:af:b5:2c:12:77:6a:8b:fd:30:
57:a1:59:5e:aa:11:c1:88:61:c4:a7:90:c6:5f:89:6e:97:0e:
84:aa:6f:b7:eb:96:17:29:fb:c8:59:e2:8a:a2:52:da:a9:c0:
62:80:1c:c2:cb:90:40:ba:9e:49:55:37:88:ce:ff:06:b2:4c:
27:3f:0c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 05:22:19 2024 by rpki-client on console-ams.rpki-client.org