Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3137302e3233332e32382e302f32342d3234203d3e20323634373338.roa
File: 3137302e3233332e32382e302f32342d3234203d3e20323634373338.roa (raw, json)
Hash identifier: aLkMs8cisfxm8NJ+H8qxHPrpp7D2YmwJD+wzTyKdHMg=
Subject key identifier: 6B:99:7D:D8:D7:4B:75:D3:CB:1E:96:FE:33:72:81:41:0D:6F:A2:A0
Certificate issuer: /CN=D7EE67424E7FC3136531741689B53CDA16769DD7
Certificate serial: 6B47C41099A3B187DFA59EF5EEABA63C06FDD73A
Authority key identifier: D7:EE:67:42:4E:7F:C3:13:65:31:74:16:89:B5:3C:DA:16:76:9D:D7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7EE67424E7FC3136531741689B53CDA16769DD7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3137302e3233332e32382e302f32342d3234203d3e20323634373338.roa
Signing time: Tue 05 Mar 2024 18:19:56 +0000
ROA not before: Tue 05 Mar 2024 18:14:56 +0000
ROA not after: Tue 04 Mar 2025 18:19:56 +0000
asID: 264738
IP address blocks: 170.233.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 17:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:47:c4:10:99:a3:b1:87:df:a5:9e:f5:ee:ab:a6:3c:06:fd:d7:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D7EE67424E7FC3136531741689B53CDA16769DD7
Validity
Not Before: Mar 5 18:14:56 2024 GMT
Not After : Mar 4 18:19:56 2025 GMT
Subject: CN=6B997DD8D74B75D3CB1E96FE337281410D6FA2A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:21:0b:89:38:be:b5:fe:d1:2d:ed:0f:08:ac:
0b:3a:47:f5:a9:bb:bc:0f:e9:a2:ee:2f:c1:7d:2b:
06:33:f2:4b:28:1b:aa:d0:c0:f5:fd:8d:29:78:5f:
c2:09:f9:0e:fc:55:46:d8:06:7c:e9:72:f8:08:6f:
e6:18:22:07:b3:79:94:3b:84:7f:37:1b:00:c6:88:
12:0a:8a:66:20:c7:66:79:3b:71:28:7d:e2:bf:b2:
6c:50:d8:f5:88:e2:0b:98:6c:11:a3:66:46:bc:48:
0a:66:0d:71:a2:82:e1:f5:aa:0e:5f:aa:fc:dd:d1:
71:72:10:8f:8f:6c:9e:85:eb:58:56:85:29:58:3a:
b0:72:bc:94:33:0a:90:56:94:1c:0d:ce:c2:5b:ca:
35:d6:3e:2a:0d:34:52:3b:e4:22:0c:d2:51:87:85:
46:ba:40:44:a0:77:58:6f:9f:0a:99:41:f9:80:af:
61:c6:1e:d7:e2:22:98:76:c6:f6:b9:e0:b7:e7:77:
98:58:f2:fa:da:4a:10:6b:d4:86:21:9d:9a:24:0e:
ee:21:95:db:2c:99:db:55:a1:16:c8:28:96:e0:d6:
c5:3c:60:94:ef:ed:65:bf:6e:80:ee:97:5f:c3:b4:
4f:08:92:68:6f:a8:26:64:15:aa:a4:e1:31:70:45:
37:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:99:7D:D8:D7:4B:75:D3:CB:1E:96:FE:33:72:81:41:0D:6F:A2:A0
X509v3 Authority Key Identifier:
keyid:D7:EE:67:42:4E:7F:C3:13:65:31:74:16:89:B5:3C:DA:16:76:9D:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/D7EE67424E7FC3136531741689B53CDA16769DD7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7EE67424E7FC3136531741689B53CDA16769DD7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F79AB5BE66A9803D5219845A3724819995932FC9856663D47F42228B2EFEAA32/0/3137302e3233332e32382e302f32342d3234203d3e20323634373338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.28.0/24
Signature Algorithm: sha256WithRSAEncryption
85:29:4a:80:95:d7:8a:f9:28:46:d9:ec:0b:0e:20:dc:69:df:
67:c2:48:b7:07:0c:eb:db:4a:7f:f4:1e:11:c1:86:3f:bf:51:
d5:01:6a:31:0c:d6:eb:6a:8f:56:43:73:59:94:80:ae:4b:b7:
6b:83:1f:ad:5d:4c:d2:73:7e:b2:ca:f8:0a:7e:96:c8:39:4b:
2d:94:05:8e:d7:51:cc:f7:a4:4f:81:12:12:08:5f:e9:01:73:
78:00:3b:2c:e4:ba:94:e6:bf:44:c1:b7:43:fe:96:e8:71:da:
ff:95:06:b6:0b:92:c2:44:e1:ac:76:84:d1:12:9a:c5:f2:1a:
d0:7d:cb:1b:8e:c6:16:1d:04:8c:3c:3e:23:e4:d2:3f:71:45:
e5:c3:d1:9a:0b:18:59:ca:e9:05:a2:ee:b8:9d:76:62:80:23:
84:3d:66:24:82:c0:10:69:da:fc:8d:7b:be:20:1e:cd:7d:54:
27:c3:89:02:bc:70:18:62:38:7d:e1:76:e8:45:c6:00:3d:25:
03:46:e6:ef:78:99:6d:96:5c:40:f6:4e:39:13:c1:9f:80:09:
3e:4e:e9:b8:8c:1d:47:eb:4b:ae:2c:ce:a2:40:59:f3:53:1f:
49:54:6e:62:c1:31:6c:7c:f3:3f:49:7e:9e:d9:70:df:b6:b2:
6e:87:1f:f4
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUa0fEEJmjsYffpZ717qumPAb91zowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDdFRTY3NDI0RTdGQzMxMzY1MzE3NDE2ODlCNTNDREEx
Njc2OURENzAeFw0yNDAzMDUxODE0NTZaFw0yNTAzMDQxODE5NTZaMDMxMTAvBgNV
BAMTKDZCOTk3REQ4RDc0Qjc1RDNDQjFFOTZGRTMzNzI4MTQxMEQ2RkEyQTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKIQuJOL61/tEt7Q8IrAs6R/Wp
u7wP6aLuL8F9KwYz8ksoG6rQwPX9jSl4X8IJ+Q78VUbYBnzpcvgIb+YYIgezeZQ7
hH83GwDGiBIKimYgx2Z5O3EofeK/smxQ2PWI4guYbBGjZka8SApmDXGiguH1qg5f
qvzd0XFyEI+PbJ6F61hWhSlYOrByvJQzCpBWlBwNzsJbyjXWPioNNFI75CIM0lGH
hUa6QESgd1hvnwqZQfmAr2HGHtfiIph2xva54Lfnd5hY8vraShBr1IYhnZokDu4h
ldssmdtVoRbIKJbg1sU8YJTv7WW/boDul1/DtE8IkmhvqCZkFaqk4TFwRTefAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUa5l92NdLddPLHpb+M3KBQQ1voqAwHwYDVR0j
BBgwFoAU1+5nQk5/wxNlMXQWibU82hZ2ndcwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9GNzlBQjVCRTY2QTk4MDNENTIxOTg0NUEzNzI0ODE5OTk1
OTMyRkM5ODU2NjYzRDQ3RjQyMjI4QjJFRkVBQTMyLzAvRDdFRTY3NDI0RTdGQzMx
MzY1MzE3NDE2ODlCNTNDREExNjc2OURENy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EN0VFNjc0MjRFN0ZDMzEzNjUz
MTc0MTY4OUI1M0NEQTE2NzY5REQ3LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRjc5QUI1QkU2NkE5ODAzRDUyMTk4NDVBMzcyNDgxOTk5NTkzMkZDOTg1
NjY2M0Q0N0Y0MjIyOEIyRUZFQUEzMi8wLzMxMzczMDJlMzIzMzMzMmUzMjM4MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM0MzczMzM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqukc
MA0GCSqGSIb3DQEBCwUAA4IBAQCFKUqAldeK+ShG2ewLDiDcad9nwki3Bwzr20p/
9B4RwYY/v1HVAWoxDNbrao9WQ3NZlICuS7drgx+tXUzSc36yyvgKfpbIOUstlAWO
11HM96RPgRISCF/pAXN4ADss5LqU5r9EwbdD/pbocdr/lQa2C5LCROGsdoTREprF
8hrQfcsbjsYWHQSMPD4j5NI/cUXlw9GaCxhZyukFou64nXZigCOEPWYkgsAQadr8
jXu+IB7NfVQnw4kCvHAYYjh94XboRcYAPSUDRubveJltllxA9k45E8GfgAk+Tum4
jB1H60uuLM6iQFnzUx9JVG5iwTFsfPM/SX6e2XDftrJuhx/0
-----END CERTIFICATE-----
Generated at Wed Aug 21 22:37:03 2024 by rpki-client on console-fra.rpki-client.org