Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/323830333a623930303a3a2f33322d3336203d3e203532343336.roa
File: 323830333a623930303a3a2f33322d3336203d3e203532343336.roa (raw, json)
Hash identifier: vPqY2jNQq51dLF5mqzg3bxG5e0Y4deIx9iem4rKPZAQ=
Subject key identifier: 5E:91:60:0E:E1:CA:AF:D9:E9:7D:5C:EE:2C:02:73:6C:28:27:2A:A1
Certificate issuer: /CN=0DD8C886E7D641E553703DC5E196957F1368902C
Certificate serial: 37E3B502082306BAE7BBD851E955FD73C6DD131F
Authority key identifier: 0D:D8:C8:86:E7:D6:41:E5:53:70:3D:C5:E1:96:95:7F:13:68:90:2C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0DD8C886E7D641E553703DC5E196957F1368902C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/323830333a623930303a3a2f33322d3336203d3e203532343336.roa
Signing time: Tue 05 Mar 2024 18:00:14 +0000
ROA not before: Tue 05 Mar 2024 17:55:14 +0000
ROA not after: Tue 04 Mar 2025 18:00:14 +0000
asID: 52436
IP address blocks: 2803:b900::/32 maxlen: 36
Validation: Failed, certificate revoked on Thu 16 May 2024 13:15:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:e3:b5:02:08:23:06:ba:e7:bb:d8:51:e9:55:fd:73:c6:dd:13:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DD8C886E7D641E553703DC5E196957F1368902C
Validity
Not Before: Mar 5 17:55:14 2024 GMT
Not After : Mar 4 18:00:14 2025 GMT
Subject: CN=5E91600EE1CAAFD9E97D5CEE2C02736C28272AA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ca:b1:4b:b7:cf:17:78:ac:02:cf:3a:5a:fb:
85:6f:14:7d:92:0e:4f:08:bf:34:39:1f:dd:96:d4:
68:66:d4:f2:bb:3a:fc:12:e9:6c:e9:bc:61:49:9c:
93:95:59:b6:84:05:7f:6e:1c:8d:12:84:2d:09:37:
2e:69:a9:f4:d1:6e:37:f7:19:9f:73:a2:1d:a3:fc:
58:c5:5c:9b:79:2e:fa:1a:6d:f6:d2:da:61:ca:6d:
da:90:5a:1f:e8:15:43:db:fb:d8:73:9c:0a:95:a7:
de:86:ca:e7:02:dd:ff:e5:16:d8:dd:e1:53:78:6c:
2f:95:4b:1e:e2:5b:93:a5:1a:13:b4:c8:18:89:e0:
c7:52:77:07:a1:e7:ec:a7:2f:0f:0c:7e:e0:60:67:
e6:cc:99:c8:17:5f:ef:95:f5:15:06:07:a9:a9:b5:
6f:80:d0:17:38:9f:c3:5b:ab:c3:dc:b2:af:9d:a0:
fa:79:7f:e4:94:71:00:bd:3b:3a:84:b5:65:3e:28:
f2:9e:f4:ca:62:34:e1:b9:4c:4e:26:2d:1e:73:12:
fa:06:95:82:de:6e:e0:f2:4b:91:65:f2:7a:d4:cc:
83:c2:e2:00:be:ad:3f:d9:96:5d:ac:55:71:4d:f8:
c5:e7:c8:dc:bd:f8:c1:41:c5:f8:05:e5:81:a7:ea:
04:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:91:60:0E:E1:CA:AF:D9:E9:7D:5C:EE:2C:02:73:6C:28:27:2A:A1
X509v3 Authority Key Identifier:
keyid:0D:D8:C8:86:E7:D6:41:E5:53:70:3D:C5:E1:96:95:7F:13:68:90:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/0DD8C886E7D641E553703DC5E196957F1368902C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0DD8C886E7D641E553703DC5E196957F1368902C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/323830333a623930303a3a2f33322d3336203d3e203532343336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:b900::/32
Signature Algorithm: sha256WithRSAEncryption
7c:4f:e1:37:c7:46:3c:5d:9b:0c:5c:d9:48:0c:bc:52:05:57:
56:1a:b4:89:29:87:96:27:19:47:0a:ca:d5:29:46:1e:d4:19:
f8:41:ea:c9:85:3c:4f:be:75:61:d3:47:8c:fc:1a:53:eb:1b:
39:14:e1:0b:bb:e1:6a:a8:f0:b6:f6:a2:60:ac:53:f9:04:95:
08:97:12:64:3a:5e:53:1c:0f:50:25:46:7a:af:ff:a1:29:e7:
45:56:b9:77:f5:67:f8:f5:85:df:bd:14:0f:17:05:2f:d2:22:
54:c6:00:36:85:69:8f:97:9c:4b:9f:7b:13:ff:b7:25:e5:7e:
64:d8:cf:0a:49:3d:1f:f6:16:f2:32:01:74:5c:10:3f:ed:62:
3f:f8:3e:53:9b:74:f5:72:4e:f4:e9:f5:95:99:30:96:ee:f3:
ac:d6:14:87:71:2d:52:5b:9a:4e:49:dd:49:c1:ac:43:63:6c:
fb:cd:d9:30:17:7f:b7:cc:a9:03:9c:a7:78:ee:3f:89:91:17:
2b:12:53:8f:0b:33:d1:7f:be:08:69:2c:fe:57:f1:2c:a2:a9:
af:6c:45:f2:00:df:6e:2c:fb:c4:73:1f:f0:95:c5:c8:f9:97:
a4:b3:c7:ac:f6:02:21:8f:11:49:9e:24:19:4e:79:a8:05:1a:
49:aa:f6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:18 2024 by rpki-client on console-ams.rpki-client.org