Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e36382e3134372e302f32342d3234203d3e203238343033.roa
File: 3230302e36382e3134372e302f32342d3234203d3e203238343033.roa (raw, json)
Hash identifier: yogxJKAA+B02FSUbJUfrIfII7gWNEUPsEPeIzT5/Fd8=
Subject key identifier: 8D:34:F8:E4:E6:98:D0:C8:53:5D:2B:AC:F5:F4:95:63:63:99:38:D4
Certificate issuer: /CN=A0A6C878C4FF92E87C217B2CFAA02D0A995D0496
Certificate serial: 0ECFD6AC642016771968EFE83099EA936B9F128B
Authority key identifier: A0:A6:C8:78:C4:FF:92:E8:7C:21:7B:2C:FA:A0:2D:0A:99:5D:04:96
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e36382e3134372e302f32342d3234203d3e203238343033.roa
Signing time: Wed 09 Oct 2024 18:00:00 +0000
ROA not before: Wed 09 Oct 2024 17:55:00 +0000
ROA not after: Wed 08 Oct 2025 18:00:00 +0000
asID: 28403
IP address blocks: 200.68.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 20:40:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:cf:d6:ac:64:20:16:77:19:68:ef:e8:30:99:ea:93:6b:9f:12:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0A6C878C4FF92E87C217B2CFAA02D0A995D0496
Validity
Not Before: Oct 9 17:55:00 2024 GMT
Not After : Oct 8 18:00:00 2025 GMT
Subject: CN=8D34F8E4E698D0C8535D2BACF5F49563639938D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ed:6a:c4:d9:8e:7b:03:d8:ad:72:fa:6c:0e:
0f:3b:f8:a9:65:db:1e:4a:f9:6a:63:fb:79:1b:4b:
ee:4f:a5:6d:30:a1:64:15:ab:3f:1e:2d:5b:e7:cd:
27:32:2c:20:f4:79:80:70:05:45:67:97:82:f6:87:
5f:5d:30:bd:eb:8c:22:e4:29:1b:91:f2:6e:2b:13:
2d:68:71:4b:af:0a:aa:10:fd:ba:54:74:02:1b:18:
dd:c3:69:de:c1:b4:6f:8c:f2:56:a1:d8:7c:e3:2f:
74:25:03:8d:a6:3e:da:aa:e3:65:9a:b0:02:8d:df:
79:bb:41:5b:c5:a3:09:43:73:93:cd:70:67:c5:0c:
f8:df:3a:1e:67:5e:ee:5c:17:a0:86:19:a8:68:3e:
66:72:d6:85:24:18:52:a8:41:06:9f:10:f0:d8:ef:
59:28:c6:9b:1a:7e:86:dd:3c:10:4e:42:e1:96:e8:
9c:d8:6d:97:dc:99:9a:25:31:23:87:3d:bb:d6:54:
70:28:c6:db:f5:6a:f2:f7:f0:78:5c:d5:10:75:c9:
a7:ee:32:03:7a:c9:b0:b8:8d:e5:c4:d7:28:67:46:
77:5b:db:e9:be:aa:4c:9f:35:ba:da:b5:68:7e:1a:
8f:27:cd:15:62:4f:ab:34:f1:57:41:bd:bd:1d:d0:
6f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:34:F8:E4:E6:98:D0:C8:53:5D:2B:AC:F5:F4:95:63:63:99:38:D4
X509v3 Authority Key Identifier:
keyid:A0:A6:C8:78:C4:FF:92:E8:7C:21:7B:2C:FA:A0:2D:0A:99:5D:04:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e36382e3134372e302f32342d3234203d3e203238343033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.68.147.0/24
Signature Algorithm: sha256WithRSAEncryption
02:56:68:ce:43:e0:66:90:f4:d5:c4:66:17:5a:c8:7c:25:b7:
8b:d8:87:d8:f6:34:a7:7a:0a:b6:ef:5b:0f:9d:38:92:a4:2f:
9f:10:df:94:d8:a2:fe:24:b3:78:89:4a:8f:78:66:00:ae:c9:
5e:ea:1a:da:dc:80:61:88:ca:61:ef:6a:d5:62:fe:07:34:79:
02:d5:c4:83:df:a8:7f:f9:ed:bd:a7:79:30:a6:e7:2d:6f:d2:
0c:16:11:d0:4a:b9:05:d8:4a:74:37:4f:d8:28:6c:7d:f5:d1:
42:d6:70:42:0d:0b:de:49:89:6c:44:2e:b1:59:d8:4d:1f:1e:
c9:0f:5e:62:cf:52:a3:38:ef:14:63:f4:03:06:f9:b2:15:4d:
50:78:cf:b9:56:c1:2a:e5:ef:d5:85:cd:c7:57:9e:f7:c9:b8:
3e:b9:b4:c8:82:1b:54:4d:43:35:77:8c:7c:e6:2f:75:ac:65:
2d:c1:e3:18:e0:52:35:2c:60:85:10:2e:10:92:66:af:d2:7b:
67:83:36:29:bc:bc:a3:11:81:82:c6:60:0f:be:2d:4d:39:65:
41:dc:43:43:fc:70:2f:66:a8:17:b6:4b:1d:da:e2:74:ea:bd:
3f:20:f2:42:ed:c3:e3:55:9f:d7:1c:c4:43:53:e8:f3:ae:06:
58:4e:43:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 22:40:02 2024 by rpki-client on console-fra.rpki-client.org