Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3133382e3131372e31362e302f32342d3234203d3e20323633373933.roa
File: 3133382e3131372e31362e302f32342d3234203d3e20323633373933.roa (raw, json)
Hash identifier: boITWv/0dBIswRBSOvo1P8ApVYKGdtLDDhqTjP6s/+c=
Subject key identifier: 38:2D:87:7A:CA:4E:DE:EE:DC:8A:F0:A3:7F:A9:D1:A9:A4:72:DE:8B
Certificate issuer: /CN=D7EE67424E7FC3136531741689B53CDA16769DD7
Certificate serial: 4E64F294CDE368170153F6E129C43146B404425F
Authority key identifier: D7:EE:67:42:4E:7F:C3:13:65:31:74:16:89:B5:3C:DA:16:76:9D:D7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7EE67424E7FC3136531741689B53CDA16769DD7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3133382e3131372e31362e302f32342d3234203d3e20323633373933.roa
Signing time: Tue 05 Mar 2024 18:19:53 +0000
ROA not before: Tue 05 Mar 2024 18:14:53 +0000
ROA not after: Tue 04 Mar 2025 18:19:53 +0000
asID: 263793
IP address blocks: 138.117.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 17:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:64:f2:94:cd:e3:68:17:01:53:f6:e1:29:c4:31:46:b4:04:42:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D7EE67424E7FC3136531741689B53CDA16769DD7
Validity
Not Before: Mar 5 18:14:53 2024 GMT
Not After : Mar 4 18:19:53 2025 GMT
Subject: CN=382D877ACA4EDEEEDC8AF0A37FA9D1A9A472DE8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d1:3c:e6:d4:0d:f1:5d:cd:04:64:e8:2e:9c:
ae:03:08:8c:d7:f0:2b:91:9d:88:8b:ee:b3:76:78:
58:82:4c:7e:32:9f:44:5a:0d:a4:ea:cc:45:a5:b1:
46:29:af:23:f3:ff:58:f7:03:c6:a7:06:fa:c0:04:
27:54:19:f8:19:41:26:3b:99:ef:82:83:2a:ab:c3:
2b:0a:5a:f7:b0:05:56:06:0d:91:dd:7c:ce:06:92:
41:46:dc:c7:5c:81:32:57:ff:c5:8e:78:50:7a:56:
a8:fe:e3:96:51:1d:8d:4a:10:f5:00:86:56:e7:59:
45:6d:f3:0b:af:18:2f:0b:47:ff:cb:ad:28:8b:6d:
90:32:25:18:44:22:c5:98:7f:cc:71:e4:22:45:9d:
5d:48:1b:60:f4:c9:c2:90:07:12:9b:1b:da:70:b8:
f4:6f:83:a4:ee:6f:e6:ae:4b:14:de:95:24:56:28:
a4:00:d0:90:aa:db:ef:ce:83:96:e2:2b:43:83:22:
50:7b:1e:a0:ef:ef:b1:06:90:a3:7c:fe:38:b3:70:
25:b4:4b:63:73:6d:47:e2:75:0c:7b:c2:e9:87:db:
1c:02:e2:88:69:bc:4a:77:b1:37:02:96:61:b9:54:
dd:ee:b3:45:20:5f:11:ef:68:7f:be:ca:5b:a0:fe:
2a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:2D:87:7A:CA:4E:DE:EE:DC:8A:F0:A3:7F:A9:D1:A9:A4:72:DE:8B
X509v3 Authority Key Identifier:
keyid:D7:EE:67:42:4E:7F:C3:13:65:31:74:16:89:B5:3C:DA:16:76:9D:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/D7EE67424E7FC3136531741689B53CDA16769DD7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7EE67424E7FC3136531741689B53CDA16769DD7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3133382e3131372e31362e302f32342d3234203d3e20323633373933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:59:a7:43:fd:02:53:ba:27:8a:16:15:9a:25:db:9e:1f:92:
2a:d5:49:b3:f5:96:76:7e:42:1a:c7:51:7a:05:15:ca:46:af:
ed:e8:76:d0:01:d5:20:7d:eb:1a:a7:ea:bd:25:7a:be:f9:94:
f8:00:a4:b9:aa:f2:8f:ad:d9:a1:67:9d:44:2e:95:6b:47:6e:
b3:48:58:a6:53:cb:bf:68:c4:c8:02:da:a6:ab:ff:e5:63:0c:
4c:dc:2b:60:10:e2:50:12:df:64:dd:62:1d:9c:0b:e2:2d:8a:
7a:38:27:76:b1:2d:b9:9d:03:fe:ee:24:35:21:07:d6:d1:9d:
46:ae:78:c0:a4:e4:5b:a6:13:65:b7:73:16:11:55:fe:5a:0f:
9f:fa:e3:00:66:6c:6d:6b:17:31:10:a6:45:46:b7:af:bc:62:
cc:61:0d:b1:87:ab:96:73:5e:3d:51:0e:9d:3c:2d:cf:0a:60:
d0:9c:aa:8f:60:ba:fa:94:19:b5:87:c4:82:96:bc:a2:03:e8:
2f:5b:21:a4:c6:cb:c1:e9:f4:ed:60:e7:53:59:ce:57:c7:be:
39:f0:38:b3:99:68:b2:8f:8d:7d:3c:1a:1c:c3:18:2e:ba:d3:
af:cf:06:fa:9e:e2:0d:7d:fd:93:31:52:57:3c:f9:da:8a:9d:
41:8d:b3:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 23:31:38 2024 by rpki-client on console-ams.rpki-client.org