Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C93A405E251909F45EA913549566D13AC5D5174516056919C96013F4AF65E4FC/0/323830333a616638303a3a2f33322d3332203d3e20323633373332.roa
File: 323830333a616638303a3a2f33322d3332203d3e20323633373332.roa (raw, json)
Hash identifier: tWQK/AgQbxd5CPLhWf1zPyQDwmBSZUL87YDwwEioHqY=
Subject key identifier: 4B:B1:BF:59:EE:53:11:7C:49:9E:44:C1:66:62:C8:B8:F0:35:AE:B8
Certificate issuer: /CN=D65CF4F69AC888255A41BFC6B6F0E71DA81E954B
Certificate serial: 0AC6C1D3C56C87987E3569003EF08ADD59BD00E2
Authority key identifier: D6:5C:F4:F6:9A:C8:88:25:5A:41:BF:C6:B6:F0:E7:1D:A8:1E:95:4B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D65CF4F69AC888255A41BFC6B6F0E71DA81E954B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C93A405E251909F45EA913549566D13AC5D5174516056919C96013F4AF65E4FC/0/323830333a616638303a3a2f33322d3332203d3e20323633373332.roa
Signing time: Tue 05 Mar 2024 18:11:29 +0000
ROA not before: Tue 05 Mar 2024 18:06:29 +0000
ROA not after: Tue 04 Mar 2025 18:11:29 +0000
asID: 263732
IP address blocks: 2803:af80::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 25 Oct 2024 19:10:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:c6:c1:d3:c5:6c:87:98:7e:35:69:00:3e:f0:8a:dd:59:bd:00:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D65CF4F69AC888255A41BFC6B6F0E71DA81E954B
Validity
Not Before: Mar 5 18:06:29 2024 GMT
Not After : Mar 4 18:11:29 2025 GMT
Subject: CN=4BB1BF59EE53117C499E44C16662C8B8F035AEB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3b:ca:8e:b2:ed:7e:16:36:19:bc:6c:12:bf:
c2:df:34:6c:66:0a:67:17:de:88:27:80:e7:b1:1a:
c2:c1:5f:7b:b1:93:bf:56:49:29:d1:d4:f8:0e:7c:
ac:0a:5b:e5:23:e0:35:4b:f9:87:5d:b9:c0:92:75:
52:4c:83:9b:ca:ab:4f:f6:62:04:bc:b8:e8:98:32:
41:4e:f7:86:8b:29:98:e6:5c:d7:c6:26:79:b5:30:
c8:ce:9e:1e:a8:95:18:c5:d0:25:b0:10:f1:fa:dc:
ec:14:0b:35:41:a0:88:38:b6:a3:69:2f:b0:ce:5c:
a4:90:52:0e:73:b6:20:29:18:61:37:e0:20:bd:53:
b4:f8:5d:c8:4e:6d:f3:16:c9:ac:13:34:84:09:fc:
ca:8c:0a:8d:60:1a:f3:d1:9b:ed:26:72:53:75:7d:
ca:85:88:2f:31:d5:61:12:b3:92:fc:4d:2f:26:ec:
b7:80:44:fb:51:0f:2b:0f:fa:d6:dc:ff:7a:10:30:
11:55:e1:88:5a:1f:d4:a0:75:ec:9d:97:71:c7:d5:
15:fd:9d:65:eb:f4:6d:c0:f2:b0:b5:2d:a5:b8:33:
14:44:fe:03:97:3d:05:94:c9:df:7b:f1:57:3c:66:
66:d7:12:0a:d0:d4:8a:05:93:f6:33:5d:be:45:c8:
d7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B1:BF:59:EE:53:11:7C:49:9E:44:C1:66:62:C8:B8:F0:35:AE:B8
X509v3 Authority Key Identifier:
keyid:D6:5C:F4:F6:9A:C8:88:25:5A:41:BF:C6:B6:F0:E7:1D:A8:1E:95:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C93A405E251909F45EA913549566D13AC5D5174516056919C96013F4AF65E4FC/0/D65CF4F69AC888255A41BFC6B6F0E71DA81E954B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D65CF4F69AC888255A41BFC6B6F0E71DA81E954B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C93A405E251909F45EA913549566D13AC5D5174516056919C96013F4AF65E4FC/0/323830333a616638303a3a2f33322d3332203d3e20323633373332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:af80::/32
Signature Algorithm: sha256WithRSAEncryption
1b:c8:6a:fb:77:b2:59:0f:e1:6a:18:01:dc:5e:89:f9:29:13:
b8:cc:a7:5d:93:4f:11:50:c9:48:cc:19:b6:82:3d:77:e5:90:
1e:ed:45:87:95:18:22:cf:f6:3c:93:b6:2e:ad:1a:3f:88:a0:
16:92:da:1c:b4:30:a6:41:9b:12:d3:b6:97:e0:b9:63:9e:92:
47:e6:5d:a7:3e:6a:4e:53:db:55:3b:0d:54:e4:2f:79:a3:47:
0f:24:91:13:d5:4a:50:4a:a9:8b:d7:ed:c1:4f:75:1f:84:35:
93:19:13:51:05:6e:36:09:b6:60:a4:5d:e2:eb:5a:35:8d:8b:
a1:7e:5f:11:e5:b5:62:2c:5a:e4:6f:aa:2e:0e:d5:27:9d:31:
7f:d2:6f:cb:c6:57:e4:6f:d6:cd:09:5e:0b:48:16:d6:fe:37:
be:58:a1:8d:7c:7d:86:d8:94:a1:43:0a:bb:d0:7d:93:54:ff:
3d:be:2f:de:bf:f2:11:0a:fa:07:38:64:fe:19:39:b6:94:b0:
7f:68:a5:b0:38:e2:5d:a5:d8:09:2b:26:d4:52:d8:6d:4d:f9:
0b:eb:29:e7:f6:26:b4:ef:ee:bc:69:71:fb:57:d0:d4:a5:75:
bb:fd:e5:2f:ac:c0:43:61:da:6c:ff:bb:01:24:c7:7a:f3:4c:
e2:d6:fe:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 25 20:57:55 2024 by rpki-client on console-fra.rpki-client.org