Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ae7164a8-f366-4d63-9629-f5b8596a55aa/4e6d431788033efa913a84a139affa5c9fef5f42.roa
File: 4e6d431788033efa913a84a139affa5c9fef5f42.roa (raw, json)
Hash identifier: Ad7EbzFVLhushv/RFdEq2hjjUZgl6yuys9RYS4UtyWk=
Subject key identifier: 18:D7:14:38:20:E9:1B:24:D2:2E:AC:91:34:72:62:A7:3A:B6:EC:B9
Certificate issuer: /CN=14dd9710595884a6cdc2418a4de21b5c2b40042b
Certificate serial: 207D99
Authority key identifier: 82:98:69:10:AA:69:1C:81:21:C9:B9:7D:04:26:26:63:24:2D:09:A9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/14dd9710595884a6cdc2418a4de21b5c2b40042b.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ae7164a8-f366-4d63-9629-f5b8596a55aa/4e6d431788033efa913a84a139affa5c9fef5f42.roa
Signing time: Tue 11 Jul 2023 02:09:35 +0000
ROA not before: Mon 10 Jul 2023 02:09:35 +0000
ROA not after: Fri 11 Jul 2025 02:09:35 +0000
asID: 23470
IP address blocks: 45.170.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Feb 2024 01:12:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2129305 (0x207d99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14dd9710595884a6cdc2418a4de21b5c2b40042b
Validity
Not Before: Jul 10 02:09:35 2023 GMT
Not After : Jul 11 02:09:35 2025 GMT
Subject: CN=4e6d431788033efa913a84a139affa5c9fef5f42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6f:f4:ed:2d:64:b9:bb:0a:12:e2:c2:23:27:
e7:42:e8:db:bd:70:af:d0:a7:62:6c:a1:9b:a8:d8:
d8:38:ed:a3:b2:34:10:93:a8:98:9b:65:ad:8d:c9:
84:d3:ed:a0:f2:cb:3e:5b:60:d0:1f:87:ce:38:c8:
21:18:ba:3d:01:60:bd:ef:ce:a9:01:4d:51:b9:ad:
31:d5:4e:cd:fd:c2:2c:ab:08:1f:54:eb:4d:2b:30:
2e:a2:a2:5d:73:4c:8e:b2:59:9d:ec:bd:3d:f8:cb:
81:55:40:60:37:89:fb:74:eb:83:2e:b6:bb:3d:df:
be:d7:4e:e9:dc:46:d4:08:f5:54:f6:3b:e2:61:91:
cb:ea:88:df:0e:ed:41:d8:bb:fd:9d:15:fb:20:2e:
18:fe:59:76:f7:ba:62:66:4d:c0:fe:40:d0:65:0d:
8f:77:03:f1:21:4c:a9:48:2c:7a:0e:94:62:99:01:
14:7c:99:8f:62:39:57:d7:f3:d5:b2:b4:e0:a0:9e:
d7:58:72:aa:18:d6:e3:51:e8:74:b9:0a:75:58:d2:
b1:10:68:72:3f:0d:8e:bf:98:09:b0:83:e3:e9:78:
da:5c:36:00:21:dd:fb:75:f1:b6:c6:97:a4:f0:6e:
de:77:6d:51:d4:62:56:e8:ae:6a:b2:d4:73:28:63:
b6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D7:14:38:20:E9:1B:24:D2:2E:AC:91:34:72:62:A7:3A:B6:EC:B9
X509v3 Authority Key Identifier:
keyid:82:98:69:10:AA:69:1C:81:21:C9:B9:7D:04:26:26:63:24:2D:09:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/14dd9710595884a6cdc2418a4de21b5c2b40042b.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ae7164a8-f366-4d63-9629-f5b8596a55aa/4e6d431788033efa913a84a139affa5c9fef5f42.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/ae7164a8-f366-4d63-9629-f5b8596a55aa/14dd9710595884a6cdc2418a4de21b5c2b40042b.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.170.248.0/22
Signature Algorithm: sha256WithRSAEncryption
53:8a:83:c6:de:0a:8c:a6:dc:b5:96:a5:a0:84:92:63:1b:d4:
f1:02:86:99:21:79:e8:bb:1f:a7:fe:1c:fb:8b:8a:0c:e6:f7:
7f:d5:60:2e:34:8c:e8:2f:68:22:f5:f7:3f:dd:e7:d0:cd:3c:
92:7f:a4:50:49:fc:15:e0:91:30:cc:40:77:07:0e:ff:dc:ea:
09:13:e3:06:05:a3:9b:17:7a:bc:14:14:55:c9:91:91:7d:0d:
fc:8c:0b:7f:4a:b4:ae:91:e0:ce:56:ef:81:00:17:d5:4e:24:
17:33:93:70:5f:a8:90:a7:0c:7b:a0:c8:33:7f:8f:39:2f:4e:
c4:6d:09:58:76:b7:b6:1f:95:90:c7:2e:5b:4f:59:9b:a4:c1:
c3:23:a4:7d:5a:c6:3f:7d:d7:d8:b9:b7:33:d0:d2:b9:e1:12:
de:ef:46:e3:04:c1:4f:bd:ae:f8:85:72:65:e6:c7:0c:f0:60:
dd:dd:4c:2c:cb:91:a2:11:a0:b8:aa:9e:6b:e1:6f:5f:68:12:
5c:bf:4c:83:4d:ce:95:59:7f:55:f5:e7:59:ef:7e:9c:c6:85:
02:bf:85:6f:c7:dc:83:b2:db:8d:72:d1:c2:a9:62:a2:71:f0:
76:e5:1d:17:8f:1f:35:f7:2f:7b:07:c1:68:13:59:e0:7a:08:
16:9b:80:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 17 02:01:29 2024 by rpki-client on console-fra.rpki-client.org