Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/AS28403.roa
File: AS28403.roa (raw, json)
Hash identifier: UBWlJlNH46sh3qm2CgFwJWH87qW8U9tczSUySpnhkZ4=
Subject key identifier: 60:1C:2D:D2:74:F1:6A:16:5F:6F:90:AB:A4:6C:C3:19:EA:9E:64:E5
Certificate issuer: /CN=C868DC422443FA70E7761C0304061EB998BF7378
Certificate serial: 65395EBB6474A64622CCAE0FED417A29BFBA478F
Authority key identifier: C8:68:DC:42:24:43:FA:70:E7:76:1C:03:04:06:1E:B9:98:BF:73:78
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C868DC422443FA70E7761C0304061EB998BF7378.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/AS28403.roa
Signing time: Thu 15 Aug 2024 06:20:00 +0000
ROA not before: Thu 15 Aug 2024 06:15:00 +0000
ROA not after: Thu 14 Aug 2025 06:20:00 +0000
asID: 28403
IP address blocks: 200.95.0.0/17 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 07:20:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:39:5e:bb:64:74:a6:46:22:cc:ae:0f:ed:41:7a:29:bf:ba:47:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C868DC422443FA70E7761C0304061EB998BF7378
Validity
Not Before: Aug 15 06:15:00 2024 GMT
Not After : Aug 14 06:20:00 2025 GMT
Subject: CN=601C2DD274F16A165F6F90ABA46CC319EA9E64E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6e:e9:b6:e3:59:de:3f:e9:4b:e0:3e:ba:1f:
cd:37:b6:df:38:ef:de:92:fa:aa:0d:da:c7:82:56:
a2:ec:80:0c:ff:dd:0a:17:08:4e:c3:75:f0:7b:bf:
fd:59:db:4c:de:ab:33:66:6a:3c:82:34:ce:cf:ec:
63:f9:ca:01:b7:f3:a5:1d:17:20:85:23:88:13:ac:
d0:e9:16:a3:7d:9d:b9:20:4e:0a:4d:1c:3e:97:dd:
6d:4d:2c:36:b2:63:0c:87:d7:01:6c:ea:46:da:b4:
b6:d1:fc:be:12:06:dc:b2:ec:65:4f:3e:80:8e:8f:
70:31:05:fd:35:4b:cc:8d:17:68:c9:56:b2:15:30:
20:ef:71:9e:7f:39:ed:0b:86:61:9e:58:40:16:44:
0e:7a:2e:45:f9:12:d2:d3:24:51:4a:ac:45:ae:d8:
11:37:48:db:b8:0a:db:d5:ff:3a:27:c2:23:99:a3:
b0:50:b5:32:8c:75:3c:e2:95:d7:a6:e4:ec:5b:c7:
f6:ea:1f:e6:d7:ea:2a:91:b2:23:57:b0:2b:ea:cd:
04:45:7c:6c:a2:54:7d:e2:32:dd:82:f6:e1:f8:71:
d6:3a:ef:68:a9:c7:7b:23:b5:80:06:cf:26:75:ae:
35:f9:e9:6e:a6:2b:ac:68:96:95:ab:c8:3e:02:f1:
7f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:1C:2D:D2:74:F1:6A:16:5F:6F:90:AB:A4:6C:C3:19:EA:9E:64:E5
X509v3 Authority Key Identifier:
keyid:C8:68:DC:42:24:43:FA:70:E7:76:1C:03:04:06:1E:B9:98:BF:73:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/C868DC422443FA70E7761C0304061EB998BF7378.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C868DC422443FA70E7761C0304061EB998BF7378.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3B87C93929EA1BE951549B8B74A3800C64833E85BE9D523BBA8EC24E94339AED/0/AS28403.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.95.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a2:16:b5:39:8f:1d:53:e5:4d:ce:72:0c:e5:0a:43:7c:c3:63:
0a:a7:c1:d5:9b:07:c0:73:89:af:39:b7:0f:cd:7b:e6:d3:d7:
d3:aa:12:88:15:12:3a:69:4d:df:8d:dd:b5:98:db:35:2c:f0:
bf:56:0c:26:6e:32:27:95:10:be:63:c4:d9:d7:33:0a:4e:83:
de:38:90:eb:65:10:8a:37:0b:91:5e:3a:31:3e:cb:04:95:b7:
c0:ad:20:c8:93:18:f2:23:cb:cf:9d:5a:0b:8c:5f:53:86:f7:
a1:93:a8:6d:ca:e0:1a:66:5e:08:89:f6:87:e5:de:da:e5:d0:
3d:81:3b:c1:fa:c5:64:cb:af:47:51:c6:24:4c:f7:79:4c:83:
50:46:5a:ea:f5:24:1c:08:88:10:c7:f7:91:f9:62:d5:a4:68:
bc:54:57:26:d4:60:63:a4:5c:03:1c:05:b5:ba:ca:9c:7a:ef:
c4:73:00:3f:63:e4:9c:47:c2:5f:05:e7:3b:26:a2:36:a1:38:
3a:af:f9:4f:2d:2c:8c:a3:45:d9:91:f2:8d:fc:6f:4e:e2:70:
7d:d2:4b:e0:ce:9b:aa:6e:77:d6:99:62:70:fd:7d:27:e1:0c:
34:26:52:01:91:a3:fd:53:84:d4:9f:1c:9b:1e:21:33:f1:ae:
88:cb:c5:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 09:51:35 2024 by rpki-client on console-fra.rpki-client.org