Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a3a2f34342d3435203d3e203532323234.roa
File: 323830313a3136353a3a2f34342d3435203d3e203532323234.roa (raw, json)
Hash identifier: bO9kaWlBB501HcHbCLf+5QCpC3l6otDQQwyB3+llrpk=
Subject key identifier: 43:69:92:2F:1D:A5:28:E0:36:0D:D1:95:55:A7:12:0A:5C:68:B7:88
Certificate issuer: /CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
Certificate serial: 2692286487CEF6493B36163C9384AD3450A0124F
Authority key identifier: A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a3a2f34342d3435203d3e203532323234.roa
Signing time: Tue 08 Apr 2025 14:14:15 +0000
ROA not before: Tue 08 Apr 2025 14:09:15 +0000
ROA not after: Tue 07 Apr 2026 14:14:15 +0000
asID: 52224
IP address blocks: 2801:165::/44 maxlen: 45
Validation: Failed, certificate revoked on Mon 28 Apr 2025 20:35:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:92:28:64:87:ce:f6:49:3b:36:16:3c:93:84:ad:34:50:a0:12:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
Validity
Not Before: Apr 8 14:09:15 2025 GMT
Not After : Apr 7 14:14:15 2026 GMT
Subject: CN=4369922F1DA528E0360DD19555A7120A5C68B788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:50:9f:ad:cf:6c:00:7d:3e:01:84:47:d5:40:
61:ad:9e:f3:26:d6:cc:97:7a:b3:b8:8c:3d:c0:50:
23:c8:a1:21:5d:48:9d:c2:9f:f7:ff:77:0f:16:2e:
db:d8:c1:0d:77:96:ef:60:ba:f9:94:36:30:e3:1c:
4b:50:49:79:2e:97:da:44:9b:e3:b9:d0:c5:8a:31:
3d:97:8a:bc:84:5f:28:d3:7c:ae:d5:11:d9:69:f7:
b0:42:4b:12:7d:44:2d:ca:50:f5:e7:1d:94:31:0c:
f8:46:b9:ee:91:a3:85:4b:cd:74:18:a7:66:11:b7:
4c:79:ba:4c:75:bd:fb:8e:ea:c9:97:5b:37:99:2d:
be:11:15:bf:a7:88:d2:02:ff:db:69:b4:87:d9:6e:
c3:c1:a3:df:a0:d5:60:fd:de:e5:7c:9c:b0:de:04:
5d:2a:33:12:59:14:7b:2b:c2:4e:9d:ad:10:a1:f0:
c1:2f:36:da:ab:ae:c7:ac:75:79:86:97:69:7d:c7:
ed:d0:1e:43:30:52:87:c0:b7:bc:97:67:eb:11:6e:
11:ca:91:46:88:02:7d:bc:13:7e:67:b2:a0:0a:75:
0e:32:3d:b0:74:d7:ca:ad:9d:4d:f5:b9:08:3b:87:
88:a0:81:0d:72:a0:e0:ae:98:11:57:3e:83:d2:bc:
76:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:69:92:2F:1D:A5:28:E0:36:0D:D1:95:55:A7:12:0A:5C:68:B7:88
X509v3 Authority Key Identifier:
keyid:A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a3a2f34342d3435203d3e203532323234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:165::/44
Signature Algorithm: sha256WithRSAEncryption
c2:fe:63:a5:37:b4:32:1b:01:9d:86:6d:36:9c:9c:51:9f:e1:
33:06:f6:0a:35:f9:f4:72:ab:52:b7:e2:17:2b:19:bb:27:9a:
16:84:73:ff:21:f5:d7:34:bb:97:d4:61:ff:d2:9d:dd:25:72:
42:fe:1e:53:8e:ec:0f:b6:ea:89:39:35:a9:15:db:d5:48:1d:
a0:a7:3a:d2:17:08:f4:53:ad:57:ea:99:dd:bf:9a:cd:22:5c:
e8:0f:6b:89:da:95:78:d8:90:70:45:b1:2b:9a:62:a1:fa:83:
a7:fb:ef:14:da:da:3b:f1:db:47:7c:6d:6d:e1:e8:53:9b:9d:
c6:58:f2:e4:07:92:b2:18:13:46:ee:2a:91:81:0f:fb:c4:be:
be:f7:8f:24:e9:41:2d:a5:69:5f:32:c3:ec:7d:f0:aa:f4:b4:
6c:bb:e1:61:d0:c9:b2:10:c2:e9:8a:1b:55:d3:3c:32:f4:7e:
fa:c0:7d:d3:94:f4:dc:85:b8:ca:b9:57:56:5e:c9:81:c0:3c:
35:ce:10:89:ea:04:3d:56:40:ed:c2:6a:9b:a1:48:28:c3:69:
50:ee:dc:68:a1:81:9f:1d:92:cd:36:96:71:e3:0e:1c:95:12:
14:3d:f7:6a:8d:c0:2a:4e:21:e1:a3:93:ce:0a:d4:3e:dd:4f:
ba:af:c8:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:09:44 2025 by rpki-client on console.sobornost.net