Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0D1F4438B683413F798C1D702F449F2637FD855D3B5B084FC60D9F975A89A109/0/323830333a623935303a32303a3a2f34352d3438203d3e20323733383433.roa
File: 323830333a623935303a32303a3a2f34352d3438203d3e20323733383433.roa (raw, json)
Hash identifier: egi3Ddm577cdCHlFaP3ZrH0b8jSWOSMqkOrZblCXAPc=
Subject key identifier: 18:59:6A:69:0E:48:49:14:45:7A:CC:94:58:E7:43:AE:09:A1:08:E3
Certificate issuer: /CN=6A7C2E8A3457845BDAC3CDC5F346F0D6BA4E7D9B
Certificate serial: 213BE6235BE655856899FBFD744BFFDEFE181B65
Authority key identifier: 6A:7C:2E:8A:34:57:84:5B:DA:C3:CD:C5:F3:46:F0:D6:BA:4E:7D:9B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6A7C2E8A3457845BDAC3CDC5F346F0D6BA4E7D9B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0D1F4438B683413F798C1D702F449F2637FD855D3B5B084FC60D9F975A89A109/0/323830333a623935303a32303a3a2f34352d3438203d3e20323733383433.roa
Signing time: Fri 21 Jun 2024 18:05:00 +0000
ROA not before: Fri 21 Jun 2024 18:00:00 +0000
ROA not after: Fri 20 Jun 2025 18:05:00 +0000
asID: 273843
IP address blocks: 2803:b950:20::/45 maxlen: 48
Validation: Failed, certificate revoked on Fri 21 Mar 2025 13:10:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:3b:e6:23:5b:e6:55:85:68:99:fb:fd:74:4b:ff:de:fe:18:1b:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A7C2E8A3457845BDAC3CDC5F346F0D6BA4E7D9B
Validity
Not Before: Jun 21 18:00:00 2024 GMT
Not After : Jun 20 18:05:00 2025 GMT
Subject: CN=18596A690E484914457ACC9458E743AE09A108E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ca:c5:9f:f3:88:aa:f6:40:d5:00:61:cd:dc:
45:42:10:26:93:62:b8:a2:fb:2c:8d:05:0d:be:c1:
0d:10:eb:72:33:87:3e:75:36:80:4b:f8:3a:88:9d:
06:a9:bb:37:56:02:85:c1:28:be:60:41:f1:39:32:
2a:51:16:39:3c:22:cd:6a:1e:cf:61:bc:00:39:77:
21:c7:c6:1d:03:9f:9c:01:ea:99:48:9c:cd:66:67:
6b:fb:5c:e5:67:38:26:34:e3:d0:03:12:6f:a6:58:
5c:3e:d8:ce:b4:41:69:b1:70:13:31:e4:8a:14:01:
56:00:89:42:9b:90:c8:0b:74:72:14:2d:8b:f6:a9:
c5:26:5d:69:b7:61:73:02:00:58:9c:4f:94:d5:eb:
2d:6e:bf:38:b1:57:62:3d:3f:4e:22:ec:ac:89:6b:
af:e5:1b:0b:fc:35:b5:25:49:36:1e:0c:a1:b3:eb:
4d:b2:49:08:f2:3d:96:2d:76:a0:01:25:3b:b2:af:
31:95:d6:1c:be:b1:12:c3:60:80:c3:e6:a8:b3:05:
bc:d7:68:21:ed:8c:32:98:1e:85:96:a5:e5:bb:ef:
c2:91:3d:cf:a5:1c:cb:1e:9e:47:a5:96:e9:78:e1:
7e:6e:36:9c:4d:bb:24:63:fc:22:be:6a:86:98:ad:
19:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:59:6A:69:0E:48:49:14:45:7A:CC:94:58:E7:43:AE:09:A1:08:E3
X509v3 Authority Key Identifier:
keyid:6A:7C:2E:8A:34:57:84:5B:DA:C3:CD:C5:F3:46:F0:D6:BA:4E:7D:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0D1F4438B683413F798C1D702F449F2637FD855D3B5B084FC60D9F975A89A109/0/6A7C2E8A3457845BDAC3CDC5F346F0D6BA4E7D9B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6A7C2E8A3457845BDAC3CDC5F346F0D6BA4E7D9B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0D1F4438B683413F798C1D702F449F2637FD855D3B5B084FC60D9F975A89A109/0/323830333a623935303a32303a3a2f34352d3438203d3e20323733383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:b950:20::/45
Signature Algorithm: sha256WithRSAEncryption
12:55:52:ea:88:bf:20:31:7d:33:a4:71:0c:ca:9d:bf:5c:1b:
0d:11:09:ab:b1:43:12:e9:60:97:20:b5:83:97:e7:f5:f1:66:
8a:d2:1e:a1:f6:63:8c:34:3f:24:1d:58:56:31:cf:7c:cb:52:
7c:e8:66:2a:3a:ff:cf:25:10:ab:33:4d:09:81:09:2d:4f:84:
e4:3c:e4:a9:61:fc:03:4c:e5:77:e3:30:59:d0:da:b8:68:61:
b0:91:da:03:b1:21:63:c7:37:79:14:3a:85:7b:61:14:86:40:
24:b0:81:84:80:e1:41:96:df:06:1f:fa:04:15:2b:a4:3b:3b:
cf:b6:27:1a:40:29:a7:2d:b5:e7:31:35:bd:08:1d:30:4a:51:
b4:8f:7c:e8:23:48:b0:c3:be:0b:9e:c3:f4:69:2b:98:74:5f:
b8:2a:de:cd:14:be:84:75:3e:50:e3:40:28:e9:07:b0:ef:ff:
c3:71:2d:eb:9b:84:f4:b1:17:23:0d:70:88:ed:15:78:28:91:
c6:90:36:0c:f8:66:a1:f8:c9:02:b9:dd:8a:7c:75:a4:21:00:
b3:39:ad:2d:95:6e:d6:3d:4a:4f:61:43:c3:73:13:d7:17:f7:
a6:3a:2e:8d:f5:b1:48:7d:d1:54:1e:e1:54:2d:94:a6:81:95:
eb:5b:ed:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 16:20:39 2025 by rpki-client