Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e32382e302f32322d3232203d3e203236363137.roa
File: 3136382e3234332e32382e302f32322d3232203d3e203236363137.roa (raw, json)
Hash identifier: 9bbqAOcUyxDjgur+c74cRsHR8e2F/3KGVZ+z4kB/2J0=
Subject key identifier: 03:9C:3D:71:20:17:0B:1F:60:5E:B4:D9:4F:86:79:F3:06:A4:56:2B
Certificate issuer: /CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA
Certificate serial: 144C75D008642264DABA78C5DEEE28B3D567E902
Authority key identifier: D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e32382e302f32322d3232203d3e203236363137.roa
Signing time: Sat 30 Nov 2024 20:45:00 +0000
ROA not before: Sat 30 Nov 2024 20:40:00 +0000
ROA not after: Sat 29 Nov 2025 20:45:00 +0000
asID: 26617
IP address blocks: 168.243.28.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 17 Dec 2024 18:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:4c:75:d0:08:64:22:64:da:ba:78:c5:de:ee:28:b3:d5:67:e9:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA
Validity
Not Before: Nov 30 20:40:00 2024 GMT
Not After : Nov 29 20:45:00 2025 GMT
Subject: CN=039C3D7120170B1F605EB4D94F8679F306A4562B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:df:c7:78:ac:6d:6c:c5:b9:33:cb:23:ae:72:
b6:9c:c8:90:bb:2f:62:c4:9d:7e:be:3f:00:da:6f:
0a:20:f5:be:4c:71:2d:5a:b2:2c:49:3d:88:61:8f:
d7:3a:0d:48:c9:85:7f:d0:96:67:5f:c5:99:a0:c8:
ed:ac:c3:01:82:8d:e5:88:0e:6d:0b:22:e1:f9:d5:
a6:e6:34:1a:d7:ec:6f:74:ae:ec:30:5f:d4:d1:4a:
9e:42:9d:50:b9:e0:c6:24:0f:c2:68:2d:d2:8d:80:
1a:3b:41:b5:d6:3c:bc:ab:cd:d0:d4:a1:aa:c4:d3:
9d:9c:8e:8c:51:ae:9d:59:d0:94:42:90:c1:d7:be:
96:ae:30:ad:0f:23:48:be:a9:2a:02:eb:70:ec:9d:
7e:5f:d8:87:b5:91:50:aa:76:cc:a7:0c:8d:d0:83:
99:03:fc:d0:60:6d:c0:c0:c3:96:6c:1f:a3:19:db:
30:de:d2:8e:74:52:cf:95:f9:58:9a:f7:cc:97:74:
a5:a0:d1:7f:12:66:77:f7:97:56:a9:32:92:a8:e9:
39:27:75:3f:a6:ee:2d:5b:03:40:53:35:3e:5b:30:
02:e0:1f:a0:50:c9:ec:8a:50:4e:d1:f9:3b:04:d5:
af:0b:f9:31:63:01:04:2c:da:ac:fe:e0:40:7a:e5:
44:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:9C:3D:71:20:17:0B:1F:60:5E:B4:D9:4F:86:79:F3:06:A4:56:2B
X509v3 Authority Key Identifier:
keyid:D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e32382e302f32322d3232203d3e203236363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.243.28.0/22
Signature Algorithm: sha256WithRSAEncryption
17:41:8f:d8:11:d4:df:74:63:97:81:31:95:78:53:2d:43:f8:
06:35:5b:16:e1:50:96:aa:f2:45:2b:96:9a:b3:d8:65:d2:8b:
02:5a:89:4b:55:bc:48:95:8e:70:9a:89:c2:e9:1e:60:01:e3:
80:64:1f:96:86:98:6e:7a:dd:66:ef:27:74:a2:c4:86:68:6a:
99:ee:68:2e:3c:8b:a6:d5:24:ea:78:bf:f0:de:b0:43:cf:05:
13:54:c1:88:82:75:68:c9:4c:bc:c5:01:ba:26:d4:2c:ed:12:
0a:e8:d0:c3:53:53:18:db:2a:76:29:6b:f3:ed:07:be:88:e9:
36:58:b4:95:7f:c4:49:6f:54:5a:1a:f1:d3:51:54:97:9a:9f:
d4:54:15:ab:45:c9:96:49:fc:84:a2:19:82:02:02:21:db:16:
f1:4b:cf:d4:73:b1:cd:a7:c1:ce:ef:61:47:cb:1d:8b:bd:40:
cc:60:a1:3c:e2:89:f7:b0:bd:9f:83:bc:2f:0b:f4:ac:61:6f:
40:01:d9:aa:87:bb:92:20:c6:83:e3:b4:bc:eb:1d:b5:18:0e:
17:00:11:d0:f6:53:f3:57:69:c5:fa:b1:42:d0:da:f3:6e:72:
96:30:53:c8:ea:b7:32:a9:60:81:21:c9:91:bc:f7:cc:20:d1:
7d:0e:15:28
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUFEx10AhkImTaunjF3u4os9Vn6QIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM1MDNEMDNFM0Q0REZBMDc2N0Y2REZGM0JBNzFERDdC
NjIzNkFGQTAeFw0yNDExMzAyMDQwMDBaFw0yNTExMjkyMDQ1MDBaMDMxMTAvBgNV
BAMTKDAzOUMzRDcxMjAxNzBCMUY2MDVFQjREOTRGODY3OUYzMDZBNDU2MkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC738d4rG1sxbkzyyOucracyJC7
L2LEnX6+PwDabwog9b5McS1asixJPYhhj9c6DUjJhX/QlmdfxZmgyO2swwGCjeWI
Dm0LIuH51abmNBrX7G90ruwwX9TRSp5CnVC54MYkD8JoLdKNgBo7QbXWPLyrzdDU
oarE052cjoxRrp1Z0JRCkMHXvpauMK0PI0i+qSoC63DsnX5f2Ie1kVCqdsynDI3Q
g5kD/NBgbcDAw5ZsH6MZ2zDe0o50Us+V+Via98yXdKWg0X8SZnf3l1apMpKo6Tkn
dT+m7i1bA0BTNT5bMALgH6BQyeyKUE7R+TsE1a8L+TFjAQQs2qz+4EB65USlAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUA5w9cSAXCx9gXrTZT4Z58wakViswHwYDVR0j
BBgwFoAU01A9A+PU36B2f23/O6cd17YjavowDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wQkIwNzFEOTZEOEZCRTJBODY5OTA5MDVEQzE3RTE5OTM3
MEE1NzA1MjM2QTAwMDY1RDY4NTYzRkFBREI4NUU2LzAvRDM1MDNEMDNFM0Q0REZB
MDc2N0Y2REZGM0JBNzFERDdCNjIzNkFGQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EMzUwM0QwM0UzRDRERkEwNzY3
RjZERkYzQkE3MUREN0I2MjM2QUZBLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMEJCMDcxRDk2RDhGQkUyQTg2OTkwOTA1REMxN0UxOTkzNzBBNTcwNTIz
NkEwMDA2NUQ2ODU2M0ZBQURCODVFNi8wLzMxMzYzODJlMzIzNDMzMmUzMjM4MmUz
MDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjM2MzEzNy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAqjzHDAN
BgkqhkiG9w0BAQsFAAOCAQEAF0GP2BHU33Rjl4ExlXhTLUP4BjVbFuFQlqryRSuW
mrPYZdKLAlqJS1W8SJWOcJqJwukeYAHjgGQfloaYbnrdZu8ndKLEhmhqme5oLjyL
ptUk6ni/8N6wQ88FE1TBiIJ1aMlMvMUBuibULO0SCujQw1NTGNsqdilr8+0Hvojp
Nli0lX/ESW9UWhrx01FUl5qf1FQVq0XJlkn8hKIZggICIdsW8UvP1HOxzafBzu9h
R8sdi71AzGChPOKJ97C9n4O8Lwv0rGFvQAHZqoe7kiDGg+O0vOsdtRgOFwAR0PZT
81dpxfqxQtDa825yljBTyOq3MqlggSHJkbz3zCDRfQ4VKA==
-----END CERTIFICATE-----
Generated at Wed Apr 16 05:16:37 2025 by rpki-client