Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D47CABE4097644325B48777B7C52FC2AD6DD922641D9E0145A8F23EB631EB1CC/0/34352e3138362e3133362e302f32322d3234203d3e20323639383133.roa
File: 34352e3138362e3133362e302f32322d3234203d3e20323639383133.roa (raw, json)
Hash identifier: 75K17PSTWMJrAfMRxohYK6aeZ39Uk+Aq8FXgIa8wy2Y=
Subject key identifier: 53:3C:D8:A6:F9:E6:2A:AF:69:10:41:77:D3:22:C8:4C:C5:DA:1C:73
Certificate issuer: /CN=1543ECDEE164252425B06E8AA0858149FE72AFA3
Certificate serial: 7D6A52466E0BDCE60F2D8FAC52C0B6B32D34A3F2
Authority key identifier: 15:43:EC:DE:E1:64:25:24:25:B0:6E:8A:A0:85:81:49:FE:72:AF:A3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1543ECDEE164252425B06E8AA0858149FE72AFA3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D47CABE4097644325B48777B7C52FC2AD6DD922641D9E0145A8F23EB631EB1CC/0/34352e3138362e3133362e302f32322d3234203d3e20323639383133.roa
Signing time: Tue 05 Mar 2024 17:52:49 +0000
ROA not before: Tue 05 Mar 2024 17:47:49 +0000
ROA not after: Tue 04 Mar 2025 17:52:49 +0000
asID: 269813
IP address blocks: 45.186.136.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 18:05:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:6a:52:46:6e:0b:dc:e6:0f:2d:8f:ac:52:c0:b6:b3:2d:34:a3:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1543ECDEE164252425B06E8AA0858149FE72AFA3
Validity
Not Before: Mar 5 17:47:49 2024 GMT
Not After : Mar 4 17:52:49 2025 GMT
Subject: CN=533CD8A6F9E62AAF69104177D322C84CC5DA1C73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b3:27:aa:f4:28:83:83:6e:f9:95:06:95:ee:
91:84:1e:2f:ef:a3:b4:90:3b:28:32:f1:af:1d:04:
d3:b2:09:88:5e:e7:44:2a:34:f3:09:89:ae:1b:43:
81:2a:10:71:7a:60:11:a0:2d:c3:6c:8f:11:a4:5b:
2e:5e:22:a9:1f:2d:9e:9e:82:e5:df:6e:0c:fb:a0:
36:78:5c:28:07:be:36:65:5c:bb:92:ff:12:ff:c8:
72:53:c3:26:d7:74:62:d7:90:50:cf:be:5b:8c:0d:
b6:92:59:c7:d0:db:5f:0f:3c:49:c4:9f:bd:bf:fa:
ce:fb:ac:b9:7b:85:cb:f6:c1:71:79:bc:1f:1e:0b:
18:26:8d:05:c0:42:99:f9:f3:25:96:3e:0e:eb:07:
6d:a1:c3:c2:9b:0d:2f:97:e3:ce:3e:4e:58:28:8f:
20:24:dc:0f:d8:a2:1f:a2:32:36:6c:07:f7:27:ae:
fa:93:54:9c:fc:44:cc:8e:4e:2c:c4:3c:b2:80:08:
e9:8a:57:df:6b:5a:75:5f:f4:a5:eb:ca:2c:e5:48:
ca:ef:b9:3f:e9:19:2c:e8:49:0d:9a:97:a7:59:05:
69:03:23:33:67:9e:af:73:a0:43:30:6f:85:ac:e7:
1c:55:c1:e4:4b:40:3d:0f:41:cb:34:bb:34:49:90:
38:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:3C:D8:A6:F9:E6:2A:AF:69:10:41:77:D3:22:C8:4C:C5:DA:1C:73
X509v3 Authority Key Identifier:
keyid:15:43:EC:DE:E1:64:25:24:25:B0:6E:8A:A0:85:81:49:FE:72:AF:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D47CABE4097644325B48777B7C52FC2AD6DD922641D9E0145A8F23EB631EB1CC/0/1543ECDEE164252425B06E8AA0858149FE72AFA3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1543ECDEE164252425B06E8AA0858149FE72AFA3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D47CABE4097644325B48777B7C52FC2AD6DD922641D9E0145A8F23EB631EB1CC/0/34352e3138362e3133362e302f32322d3234203d3e20323639383133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.186.136.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:b5:1f:c8:2f:bb:c2:c9:d9:ac:b9:65:8c:54:4e:47:20:9a:
75:f7:a5:47:2c:13:e9:b3:f8:3e:87:93:8e:64:d8:87:03:e4:
d8:33:02:cb:12:5a:b0:89:93:af:09:93:93:31:60:9a:2e:9c:
6a:2e:db:53:b7:02:78:6c:ee:e9:a0:80:31:f6:56:eb:3d:90:
60:74:d9:64:9e:13:52:fd:7b:94:8d:33:08:fb:9f:d0:e8:b7:
e2:ab:f5:e5:0d:c2:71:7b:d5:66:b9:1a:db:f5:ff:51:ed:24:
f9:82:32:a7:59:5d:9a:06:af:ab:9a:d9:54:0f:9a:17:f5:ec:
5e:4e:b1:2f:13:28:01:5a:62:47:d5:04:c9:7f:c4:bf:73:d2:
20:e2:3d:cb:6e:a0:10:cd:13:fd:49:67:73:90:ad:39:62:80:
ea:29:5a:0b:7d:30:b7:bc:27:c1:f1:36:07:78:12:44:04:cd:
9b:73:9d:fa:33:f3:d6:d2:09:1c:9d:b6:e2:04:65:77:28:0e:
0d:8a:64:1c:9f:9c:4e:c0:98:f5:46:32:ad:87:db:b5:2f:d3:
46:8e:62:5a:70:84:11:5e:24:5c:bd:e4:7b:2d:75:09:bc:82:
0d:1d:f8:55:1d:25:97:e9:dc:30:8f:e5:53:dd:5b:d2:82:09:
23:4b:c8:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 23:20:42 2024 by rpki-client on console-ams.rpki-client.org