Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e36382e3139302e302f32342d3234203d3e203238343033.roa
File: 3230302e36382e3139302e302f32342d3234203d3e203238343033.roa (raw, json)
Hash identifier: xrhuELeaWCNMUgaYRh3sHnG0cXatadTsEFAdcCo9UwA=
Subject key identifier: 8C:98:85:C4:E6:76:F8:AA:87:21:92:91:FD:E4:D0:E9:53:89:FF:19
Certificate issuer: /CN=A0A6C878C4FF92E87C217B2CFAA02D0A995D0496
Certificate serial: 574CE2C237333ADB0CAEF113447446B13FE51562
Authority key identifier: A0:A6:C8:78:C4:FF:92:E8:7C:21:7B:2C:FA:A0:2D:0A:99:5D:04:96
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e36382e3139302e302f32342d3234203d3e203238343033.roa
Signing time: Wed 09 Oct 2024 18:05:00 +0000
ROA not before: Wed 09 Oct 2024 18:00:00 +0000
ROA not after: Wed 08 Oct 2025 18:05:00 +0000
asID: 28403
IP address blocks: 200.68.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 20:40:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:4c:e2:c2:37:33:3a:db:0c:ae:f1:13:44:74:46:b1:3f:e5:15:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0A6C878C4FF92E87C217B2CFAA02D0A995D0496
Validity
Not Before: Oct 9 18:00:00 2024 GMT
Not After : Oct 8 18:05:00 2025 GMT
Subject: CN=8C9885C4E676F8AA87219291FDE4D0E95389FF19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:40:8a:62:63:45:48:c7:94:b4:77:0c:89:50:
73:a5:82:80:95:4c:78:fa:fd:33:4d:e0:66:f0:78:
58:47:3b:c7:da:e6:29:f7:a3:60:ea:2a:f2:7d:7f:
0e:16:ff:3c:47:56:ab:0f:71:64:09:97:be:48:bf:
81:f0:57:0c:82:88:b3:e6:e2:c3:66:80:85:48:b3:
44:3f:44:b0:c6:4b:23:5c:e2:b5:26:df:4d:f0:1c:
dc:5d:89:37:b4:be:04:e8:f7:d6:1a:f5:ab:bc:41:
42:be:69:3b:57:51:1f:f6:f8:b0:65:3f:7f:89:20:
38:d0:ea:41:9e:16:02:54:ce:cb:7b:2f:48:cb:f7:
07:3b:1e:53:64:de:8b:30:34:23:04:7a:a0:34:33:
ba:e4:4a:00:7f:c6:ae:a3:6e:12:58:4e:3a:a9:54:
7d:43:ed:55:53:5a:b4:15:62:1c:b9:0f:f1:de:7d:
99:a7:ea:ed:21:d8:ef:9c:f6:d6:bb:d9:7c:bf:57:
27:cc:bc:b0:59:71:d3:9a:8d:4e:2b:a3:5a:ee:12:
6c:fb:58:64:b1:17:fc:bc:fa:d9:17:0a:84:71:8c:
ae:0c:90:54:bd:1e:47:62:0c:2e:0d:09:5a:1a:6d:
fb:26:42:b1:5a:6b:66:1a:10:e5:f6:af:37:73:0e:
56:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:98:85:C4:E6:76:F8:AA:87:21:92:91:FD:E4:D0:E9:53:89:FF:19
X509v3 Authority Key Identifier:
keyid:A0:A6:C8:78:C4:FF:92:E8:7C:21:7B:2C:FA:A0:2D:0A:99:5D:04:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e36382e3139302e302f32342d3234203d3e203238343033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.68.190.0/24
Signature Algorithm: sha256WithRSAEncryption
55:0c:c4:e0:2b:7a:03:c0:cd:66:e6:24:3f:73:03:a0:cf:71:
12:fd:4e:f1:75:e8:dc:93:4a:63:7a:44:cd:88:45:da:2a:4d:
73:a3:4f:71:b2:30:e6:2f:83:88:4a:76:b1:32:ac:8f:61:f9:
8c:27:20:6c:10:0e:6f:43:55:1f:8b:75:2d:d7:77:a9:07:76:
36:e0:60:77:0e:3a:e0:88:38:93:85:9a:ff:19:22:8f:f6:ca:
d5:34:54:96:2a:ea:8f:b6:7b:f9:69:2a:c5:99:5b:57:bc:02:
d3:32:5f:af:95:fc:5e:37:65:30:f2:4b:44:93:09:aa:89:48:
12:8f:2f:db:fe:9d:83:c0:f3:47:5f:b8:8d:67:a8:7c:db:42:
10:a7:68:b2:b5:28:cc:88:43:b8:e0:d0:9e:d6:cd:7a:ea:b0:
a8:5c:8a:0b:ff:3c:78:09:39:64:e7:4b:98:09:0e:5b:d2:5a:
31:17:3e:22:f5:94:b6:b0:ba:e4:e6:e2:32:32:d8:76:0a:ba:
04:ec:1f:7d:28:cc:15:5e:7e:a1:92:fd:3d:8a:38:f6:ae:4a:
b1:79:e8:a6:01:37:f9:cb:4e:71:ad:6f:df:6a:75:79:ae:0d:
e7:d2:36:d3:0a:b7:94:21:c2:ed:a6:53:81:2e:6c:ca:7b:b9:
dc:19:2d:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 22:40:02 2024 by rpki-client on console-fra.rpki-client.org