Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3133382e3131372e31382e302f32332d3233203d3e20323633373933.roa
File: 3133382e3131372e31382e302f32332d3233203d3e20323633373933.roa (raw, json)
Hash identifier: YiXGNYEiLuAzMixOBY40cuM/i56q6bQYbHd0jJuow2o=
Subject key identifier: 3B:AD:C5:CA:23:72:D6:24:0A:C1:88:7A:76:0F:D1:AB:06:11:B7:61
Certificate issuer: /CN=D7EE67424E7FC3136531741689B53CDA16769DD7
Certificate serial: 20D3C54A1F7EB9EC25E2A0BF3364E758D7613ADA
Authority key identifier: D7:EE:67:42:4E:7F:C3:13:65:31:74:16:89:B5:3C:DA:16:76:9D:D7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7EE67424E7FC3136531741689B53CDA16769DD7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3133382e3131372e31382e302f32332d3233203d3e20323633373933.roa
Signing time: Tue 05 Mar 2024 18:19:55 +0000
ROA not before: Tue 05 Mar 2024 18:14:55 +0000
ROA not after: Tue 04 Mar 2025 18:19:55 +0000
asID: 263793
IP address blocks: 138.117.18.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 21 Aug 2024 17:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:d3:c5:4a:1f:7e:b9:ec:25:e2:a0:bf:33:64:e7:58:d7:61:3a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D7EE67424E7FC3136531741689B53CDA16769DD7
Validity
Not Before: Mar 5 18:14:55 2024 GMT
Not After : Mar 4 18:19:55 2025 GMT
Subject: CN=3BADC5CA2372D6240AC1887A760FD1AB0611B761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c4:19:70:ae:dd:88:c3:58:a1:01:da:f7:23:
db:a6:81:15:db:8b:63:68:f2:fb:61:f9:67:7c:99:
5a:0f:ba:dd:27:d9:a2:43:c5:de:5b:d3:b4:43:b5:
a6:c4:fe:c5:60:42:00:ae:8e:1d:fe:5e:9e:28:7c:
f2:f9:6a:4f:55:09:3e:95:7e:48:a5:00:01:5c:1e:
7a:65:d9:92:b4:a8:57:41:fe:f4:bb:49:83:d8:64:
a0:63:ce:f8:d7:df:89:96:96:1a:3a:3c:3b:06:4a:
c2:f8:70:42:f0:cf:ee:bd:96:59:47:73:f8:e9:25:
7a:07:02:cf:c5:e3:f0:dd:74:f2:6f:8c:7b:1e:4e:
b9:bb:34:6d:a9:5d:cc:c7:38:bb:3a:cb:02:f3:d9:
1d:d0:51:e8:78:e7:81:35:19:08:d0:dc:c8:38:aa:
88:7c:e7:da:59:e6:ae:5e:da:01:f6:82:d1:b9:98:
6b:8f:c1:03:40:b1:5e:8f:68:eb:64:3b:96:df:66:
10:af:27:e5:fe:28:5b:93:bf:f6:76:83:24:d7:0f:
52:fa:d1:2a:bd:61:21:2e:38:95:44:d4:e9:6d:a1:
91:4c:af:30:18:42:6e:71:96:f9:13:61:06:9a:36:
5a:10:8c:56:ff:9e:ec:d9:46:51:73:24:3f:15:b9:
95:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:AD:C5:CA:23:72:D6:24:0A:C1:88:7A:76:0F:D1:AB:06:11:B7:61
X509v3 Authority Key Identifier:
keyid:D7:EE:67:42:4E:7F:C3:13:65:31:74:16:89:B5:3C:DA:16:76:9D:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/D7EE67424E7FC3136531741689B53CDA16769DD7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7EE67424E7FC3136531741689B53CDA16769DD7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3133382e3131372e31382e302f32332d3233203d3e20323633373933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.18.0/23
Signature Algorithm: sha256WithRSAEncryption
be:61:c0:61:82:79:31:6c:23:20:97:4e:2a:10:f6:41:c2:00:
40:1a:00:12:97:40:11:76:35:05:31:83:56:31:a6:14:09:ac:
4f:dc:0f:7e:b2:3f:bb:3a:3e:94:dd:0d:11:b2:43:0c:89:50:
4f:70:fe:9f:a8:69:29:c2:75:10:42:4e:ef:96:c3:b0:4f:c9:
5b:af:4d:08:f7:d9:aa:c1:e7:83:a2:42:f1:79:36:28:59:8a:
ad:48:68:f3:ee:88:89:f8:5b:2d:37:90:0e:cd:cd:ec:8e:d4:
b5:12:b5:49:af:10:7d:3a:67:35:e0:f9:d1:af:d3:2a:d3:6b:
9b:89:2a:e2:79:ba:67:d7:48:ca:27:0b:2f:86:74:7b:0d:18:
e8:52:70:b0:17:27:70:3f:e8:8f:07:2d:80:06:ca:ca:38:69:
52:9a:2b:e8:cb:b5:d4:4f:88:9b:11:b7:dd:65:ed:0a:2c:d8:
2c:79:14:fe:3a:be:68:4f:53:8c:0d:29:b0:1d:81:1a:24:05:
47:0b:48:b8:58:cc:02:6c:fd:09:82:9a:18:72:c3:07:04:5c:
61:ad:97:12:78:67:e6:77:e0:8d:44:6b:b0:74:51:27:17:1a:
f4:c0:80:d8:ce:e9:c7:88:eb:e6:73:ae:b0:dd:de:53:a9:6b:
2c:26:fe:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 23:31:38 2024 by rpki-client on console-ams.rpki-client.org