Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e37302e302f32342d3234203d3e20323636393034.roa
File: 36362e3233312e37302e302f32342d3234203d3e20323636393034.roa (raw, json)
Hash identifier: P+Uub8BduxT44vLbtJ6xhdi3OnODp8w3rU1+FcFPv50=
Subject key identifier: EF:9E:6E:40:1F:F4:DB:AA:ED:AA:49:00:F2:C6:68:0B:8A:DC:9B:64
Certificate issuer: /CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
Certificate serial: 12240A399AED2733CA7E7F032B34DE0D27AF103D
Authority key identifier: C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e37302e302f32342d3234203d3e20323636393034.roa
Signing time: Tue 05 Mar 2024 18:06:22 +0000
ROA not before: Tue 05 Mar 2024 18:01:22 +0000
ROA not after: Tue 04 Mar 2025 18:06:22 +0000
asID: 266904
IP address blocks: 66.231.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 11:50:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:24:0a:39:9a:ed:27:33:ca:7e:7f:03:2b:34:de:0d:27:af:10:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
Validity
Not Before: Mar 5 18:01:22 2024 GMT
Not After : Mar 4 18:06:22 2025 GMT
Subject: CN=EF9E6E401FF4DBAAEDAA4900F2C6680B8ADC9B64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4e:76:1f:96:52:d5:b3:cb:f9:64:33:55:a8:
5d:b7:9f:15:e9:36:53:a1:55:0b:58:18:1e:38:b9:
62:23:1b:91:90:53:36:eb:58:e4:3b:aa:64:3e:bf:
9c:e1:64:d5:b8:f0:61:b6:c0:ea:a9:80:3b:23:e7:
c0:db:65:66:1b:71:f7:16:65:f7:ea:c0:c0:b0:83:
6d:e5:a9:1b:a4:7e:f4:7c:a2:48:65:24:99:d3:70:
61:6d:cb:c6:06:9c:40:16:9a:93:e2:aa:67:21:e7:
72:29:90:63:95:bb:81:e5:63:4c:ce:f6:92:78:26:
67:bb:b5:f0:52:97:b7:68:6d:8d:6a:96:a3:2a:b1:
e8:89:e4:2f:97:17:a0:d5:9d:e7:c0:3f:6e:77:5b:
68:67:cb:a5:d6:54:46:32:31:c7:72:e2:32:97:4d:
67:85:0e:94:2d:a7:7d:b5:14:b7:2f:e2:20:3d:af:
a4:71:5e:05:83:b1:68:b6:a1:f1:50:cf:c3:b6:80:
fe:12:0f:ce:f4:27:d8:ac:98:dd:e8:54:bd:95:9e:
21:6a:2d:91:45:84:f8:cb:69:ee:9a:f4:7d:67:71:
a1:78:f9:91:b3:da:ff:5c:87:cb:4e:29:c4:28:24:
a1:92:58:60:3d:8c:a7:17:65:92:7d:92:cc:0f:fa:
88:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9E:6E:40:1F:F4:DB:AA:ED:AA:49:00:F2:C6:68:0B:8A:DC:9B:64
X509v3 Authority Key Identifier:
keyid:C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e37302e302f32342d3234203d3e20323636393034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.231.70.0/24
Signature Algorithm: sha256WithRSAEncryption
35:50:d8:4c:76:c8:e1:fa:4c:17:80:1b:3c:30:10:f1:a2:77:
ea:d6:30:ca:a8:f2:ab:15:a8:c4:92:54:c2:04:31:55:8d:33:
a7:9f:e9:eb:91:46:13:83:b0:40:13:9c:33:43:f0:f7:52:dd:
9c:20:25:3d:df:94:4f:e0:d1:e4:31:04:c5:b0:83:1e:60:d0:
82:c0:23:cf:79:d5:6d:ab:06:c0:00:2e:bc:a8:e0:a9:2e:46:
9d:9c:aa:c0:f9:02:a8:21:97:51:7f:d8:95:6c:6c:8d:2b:fe:
70:6e:2d:66:97:63:16:7b:a3:11:0d:dc:c5:78:b9:7c:a1:78:
28:78:22:dc:c1:69:67:20:3f:ab:0d:15:eb:3e:03:46:cf:50:
70:a3:ad:ee:6c:5f:2f:9b:79:76:6f:28:cd:93:a6:fe:c0:6f:
39:20:6d:b2:c2:5a:d4:5f:e5:ff:99:dd:e2:5b:b9:e5:f5:e9:
e8:f5:e3:96:01:73:7f:ec:5a:2e:20:d9:d8:7f:8c:44:73:b2:
d0:b9:ee:0a:38:87:00:58:89:1a:7d:23:dc:4d:08:e6:d9:49:
bb:be:7d:e5:f6:3a:cf:61:31:3d:59:33:cc:e7:7f:ce:10:94:
75:77:75:1d:3b:a4:ef:e5:02:3b:e4:a2:aa:f1:93:b4:a0:bd:
bb:8a:67:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 14:56:07 2024 by rpki-client on console-fra.rpki-client.org