Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5042DB5CF7D3C40B803088BE38572D9D50D857C5883AE22EAD906FCF37468959/0/3138312e3130332e36342e302f32302d3332203d3e20323733383534.roa
File: 3138312e3130332e36342e302f32302d3332203d3e20323733383534.roa (raw, json)
Hash identifier: PF7pDrkCoXUWKgAi4QAnlA1aAyQv1QTE6L83ZcXX5Vo=
Subject key identifier: 98:54:9B:DC:0E:82:BF:3B:CD:41:6A:88:6E:FF:60:D8:F1:0E:B7:62
Certificate issuer: /CN=C428A3D0575F8E3DCFAE1AA3CC79392247C87FDB
Certificate serial: 62AFA16AE68D82C88FC5739AE90184642DF59814
Authority key identifier: C4:28:A3:D0:57:5F:8E:3D:CF:AE:1A:A3:CC:79:39:22:47:C8:7F:DB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C428A3D0575F8E3DCFAE1AA3CC79392247C87FDB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5042DB5CF7D3C40B803088BE38572D9D50D857C5883AE22EAD906FCF37468959/0/3138312e3130332e36342e302f32302d3332203d3e20323733383534.roa
Signing time: Tue 03 Dec 2024 15:15:00 +0000
ROA not before: Tue 03 Dec 2024 15:10:00 +0000
ROA not after: Tue 02 Dec 2025 15:15:00 +0000
asID: 273854
IP address blocks: 181.103.64.0/20 maxlen: 32
Validation: Failed, certificate revoked on Mon 09 Dec 2024 14:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:af:a1:6a:e6:8d:82:c8:8f:c5:73:9a:e9:01:84:64:2d:f5:98:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C428A3D0575F8E3DCFAE1AA3CC79392247C87FDB
Validity
Not Before: Dec 3 15:10:00 2024 GMT
Not After : Dec 2 15:15:00 2025 GMT
Subject: CN=98549BDC0E82BF3BCD416A886EFF60D8F10EB762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:97:40:d7:05:2b:a5:89:93:b3:65:b9:01:04:
de:17:ef:de:ff:ee:b4:eb:26:dd:22:ca:e3:0e:d3:
46:4f:51:82:30:33:4d:95:49:d0:9a:39:94:50:6d:
90:20:7f:eb:da:6e:e5:ac:0d:04:46:20:78:f8:c2:
ac:dd:b9:3f:95:a4:68:03:6e:ea:4b:e6:4a:68:dd:
44:4c:cb:3a:31:4c:50:48:c3:85:53:24:0d:3f:87:
bd:8b:d3:95:1d:5a:4d:d2:ab:76:29:b4:8a:ef:98:
3d:2b:bb:95:7c:15:8e:93:42:a8:41:13:a6:43:11:
25:1e:a6:c2:92:11:b5:e8:5b:9f:49:90:9f:0f:dd:
f3:44:6a:46:b6:57:25:40:5e:e5:ae:66:c0:7b:70:
41:83:93:16:4f:77:09:d2:58:19:47:ef:9d:c8:7f:
fa:17:98:0a:93:ab:e8:27:c3:bc:bd:6e:65:97:c1:
89:31:10:f0:ce:9e:f9:bf:ee:31:2e:0b:c4:eb:58:
4d:bc:e7:4c:5f:a7:9b:b3:74:ba:4b:16:98:4c:b1:
54:d6:dd:7d:75:f0:b9:2f:c9:18:f8:4c:1a:4b:66:
77:d4:d3:91:3f:9d:ee:11:36:97:5a:31:39:ec:37:
d2:63:db:17:45:85:f7:0f:db:d5:8d:3e:30:96:26:
1e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:54:9B:DC:0E:82:BF:3B:CD:41:6A:88:6E:FF:60:D8:F1:0E:B7:62
X509v3 Authority Key Identifier:
keyid:C4:28:A3:D0:57:5F:8E:3D:CF:AE:1A:A3:CC:79:39:22:47:C8:7F:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5042DB5CF7D3C40B803088BE38572D9D50D857C5883AE22EAD906FCF37468959/0/C428A3D0575F8E3DCFAE1AA3CC79392247C87FDB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C428A3D0575F8E3DCFAE1AA3CC79392247C87FDB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5042DB5CF7D3C40B803088BE38572D9D50D857C5883AE22EAD906FCF37468959/0/3138312e3130332e36342e302f32302d3332203d3e20323733383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.103.64.0/20
Signature Algorithm: sha256WithRSAEncryption
a9:42:bf:70:94:11:e9:fb:92:f2:f1:22:17:ed:11:9c:8f:9f:
8f:ba:41:ac:5d:fc:26:13:98:68:79:f5:fb:59:d1:4a:52:8a:
f4:5d:8e:7d:fb:62:56:67:be:f4:7b:e5:95:f9:5b:14:e7:85:
b5:ae:de:10:0e:a4:d7:4f:21:d6:0e:cc:b5:b9:08:7f:27:0d:
75:f0:aa:cf:d0:e9:f9:17:d5:a4:0d:e4:35:7b:fe:19:eb:7c:
7c:bc:0c:ba:d2:3b:f9:f4:74:94:7a:01:13:31:bd:51:d8:2d:
08:f5:ab:8e:8b:ff:d9:22:83:2e:2f:15:f0:3f:53:2b:e1:da:
10:d0:c9:8f:07:16:0d:cb:5a:f7:36:41:e5:61:64:a2:38:ff:
86:11:fe:4e:4b:66:5c:b7:53:fb:9d:78:65:26:cd:47:17:dd:
18:fe:0c:aa:98:c4:c6:a8:53:4c:c1:29:cb:bb:8d:e8:55:83:
15:23:e6:f2:ec:9d:e0:74:f7:cb:f5:0e:1a:6c:46:7d:4c:cb:
75:06:4a:a2:9f:90:2c:f5:13:fd:53:08:50:1c:d1:bd:39:e2:
e8:a5:b6:94:83:49:8b:be:41:9a:68:2c:e9:fc:a3:99:e8:61:
e2:28:00:2a:3e:5c:0c:e0:0c:7e:a9:9f:e5:4c:4f:64:c4:e2:
c6:f3:4d:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:32:33 2025 by rpki-client