Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e39352e3137312e302f32342d3234203d3e203238343033.roa
File: 3230302e39352e3137312e302f32342d3234203d3e203238343033.roa (raw, json)
Hash identifier: 0WxJc/851NxH+5pQ/UOLrl+yB+y2fXYorwL55qEdYpY=
Subject key identifier: 03:75:54:78:C2:DC:EA:1D:4B:31:14:1A:30:0A:3B:0B:4A:ED:4F:FA
Certificate issuer: /CN=A0A6C878C4FF92E87C217B2CFAA02D0A995D0496
Certificate serial: 163C98118726C89EFFAF100D7B2B25C7906E8FCA
Authority key identifier: A0:A6:C8:78:C4:FF:92:E8:7C:21:7B:2C:FA:A0:2D:0A:99:5D:04:96
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e39352e3137312e302f32342d3234203d3e203238343033.roa
Signing time: Wed 09 Oct 2024 18:10:00 +0000
ROA not before: Wed 09 Oct 2024 18:05:00 +0000
ROA not after: Wed 08 Oct 2025 18:10:00 +0000
asID: 28403
IP address blocks: 200.95.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 19:55:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:3c:98:11:87:26:c8:9e:ff:af:10:0d:7b:2b:25:c7:90:6e:8f:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0A6C878C4FF92E87C217B2CFAA02D0A995D0496
Validity
Not Before: Oct 9 18:05:00 2024 GMT
Not After : Oct 8 18:10:00 2025 GMT
Subject: CN=03755478C2DCEA1D4B31141A300A3B0B4AED4FFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:53:f7:79:f1:f8:6e:9c:ae:a1:8c:6e:bf:35:
47:cd:67:43:1c:fc:5c:39:00:4e:8c:5b:e5:b2:48:
b1:e5:66:21:90:19:d9:b8:88:9d:cc:f2:b0:44:31:
53:df:d1:58:1b:a2:5c:59:c5:d8:f0:2a:c8:dd:94:
02:e3:c8:92:2c:e2:bf:04:90:72:13:3e:e0:df:a9:
02:fb:0f:41:1e:a3:ff:f1:03:42:c2:3d:9c:bc:bf:
53:bf:7d:d0:5e:cb:48:83:03:da:e7:fc:ce:11:03:
c6:48:59:ad:9f:f8:1d:52:ea:92:57:3a:24:7e:6d:
97:81:0d:dd:0c:82:f3:4d:73:b0:4e:25:c5:11:b8:
96:84:50:5d:c0:ae:6b:82:7f:25:e2:f5:0c:d7:a5:
34:f2:1a:ce:ec:ad:e1:7b:64:10:2d:7f:59:30:4b:
7c:ea:d0:6e:ee:66:de:97:c7:12:86:cd:bb:d4:3c:
21:06:2c:7f:bd:90:4f:2c:5d:77:81:7f:06:65:7c:
1e:6c:72:bc:0a:91:5b:fe:cf:fe:fd:d8:02:d6:a1:
9b:44:34:bd:3f:2e:cb:71:f4:1b:51:ac:aa:f6:e3:
ff:cd:cc:0f:a5:c9:4e:52:e2:17:5a:b3:0e:cc:3f:
45:37:54:86:c8:0f:b7:bf:e9:44:81:42:42:e5:41:
75:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:75:54:78:C2:DC:EA:1D:4B:31:14:1A:30:0A:3B:0B:4A:ED:4F:FA
X509v3 Authority Key Identifier:
keyid:A0:A6:C8:78:C4:FF:92:E8:7C:21:7B:2C:FA:A0:2D:0A:99:5D:04:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e39352e3137312e302f32342d3234203d3e203238343033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.95.171.0/24
Signature Algorithm: sha256WithRSAEncryption
10:0c:eb:89:1b:1c:eb:68:2e:e7:2f:ef:a8:b0:6e:0b:e9:ba:
4a:3d:51:64:df:69:50:65:b5:60:e4:63:74:04:78:36:dc:d4:
5f:bf:17:cd:a3:ed:67:24:ab:52:06:32:76:cc:df:d1:06:ec:
ef:bf:03:c9:fe:72:79:66:6a:de:fb:05:81:7f:8d:16:15:88:
0a:a5:f8:39:a0:7a:2b:a5:22:24:50:f5:ce:1a:07:b4:eb:6e:
8f:3a:24:9d:1b:20:6e:c1:4e:57:17:fa:eb:7b:ac:f0:69:8d:
fa:37:c2:9d:2d:5c:42:ba:34:2e:ac:00:6e:2a:6d:6e:f5:7f:
0e:c0:c0:2a:b7:e9:25:ea:c5:c2:5e:fd:6b:d3:62:b4:84:0c:
66:7e:fa:9b:80:97:52:e5:ee:ee:0b:56:2b:56:50:5e:e9:6c:
3c:db:12:c6:ca:6e:d9:a2:3b:5f:4c:f1:28:8a:a5:aa:b5:1f:
96:9a:6a:d5:ee:2d:31:e8:c2:33:12:2b:71:26:d8:1b:61:b5:
4d:81:f2:69:98:9b:6a:d7:1e:fa:b7:85:3b:cb:f8:92:3e:ec:
69:fb:c4:a1:ca:74:0d:5e:11:2b:d8:85:b6:f3:73:b7:58:c0:
59:fe:f7:ea:86:f5:7e:05:e3:31:56:ed:76:0e:b2:8b:80:df:
9c:69:f7:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 21:18:41 2024 by rpki-client on console-fra.rpki-client.org