Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7383ebd6-fd3e-4d63-a822-e8cd9fa2c29e/c3af73b64624d7838f102649fb0d1e6077a5e616.roa
File: c3af73b64624d7838f102649fb0d1e6077a5e616.roa (raw, json)
Hash identifier: pECJVpJ88/hjRD2b4buZkKp//vHHiZmTPymfy7ITGvU=
Subject key identifier: F5:BD:23:C3:09:0E:5E:0D:D3:07:8E:41:4C:C7:91:A9:79:5A:9E:91
Certificate issuer: /CN=30415e525ae2a6911d8229a69de6df7b5716b468
Certificate serial: 251236
Authority key identifier: AF:60:BD:49:A3:A8:C1:3E:E3:F8:AC:3C:DE:F7:D3:F4:87:71:B1:AA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/30415e525ae2a6911d8229a69de6df7b5716b468.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7383ebd6-fd3e-4d63-a822-e8cd9fa2c29e/c3af73b64624d7838f102649fb0d1e6077a5e616.roa
Signing time: Fri 13 Oct 2023 08:30:03 +0000
ROA not before: Thu 12 Oct 2023 08:30:03 +0000
ROA not after: Sat 11 Oct 2025 08:30:03 +0000
asID: 264668
IP address blocks: 128.201.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 00:16:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2429494 (0x251236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30415e525ae2a6911d8229a69de6df7b5716b468
Validity
Not Before: Oct 12 08:30:03 2023 GMT
Not After : Oct 11 08:30:03 2025 GMT
Subject: CN=c3af73b64624d7838f102649fb0d1e6077a5e616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a9:4a:7d:db:f5:98:0a:8c:e4:7c:63:54:a4:
0c:4e:08:2b:9d:0d:e6:dc:a6:b2:32:f3:d2:8a:20:
cb:f4:5e:1e:d7:8d:73:2d:d3:f8:e3:fb:6c:94:cc:
dd:7c:02:97:d9:c6:11:b4:23:a5:af:dd:44:fd:3e:
c5:7a:f6:49:4d:ac:cd:21:85:18:25:04:d7:dd:85:
dc:40:b1:ff:62:4e:c5:7d:f1:6a:08:a3:77:6c:c4:
41:07:12:d5:88:24:64:04:b8:3a:74:d5:c4:af:ff:
b9:62:67:21:68:5f:72:c7:39:1c:9f:4a:ea:27:7e:
67:fa:fe:12:48:3a:0d:7e:b8:37:25:1a:63:45:14:
fa:d2:3f:9c:64:ee:0b:14:97:7f:7d:3c:37:75:55:
32:f8:7c:97:97:c8:26:06:bd:c2:0f:5a:13:0d:d2:
c5:e9:2c:ab:23:83:ac:e0:98:1b:1d:7e:4e:d1:a2:
a4:a4:e2:1b:6f:a9:ed:d5:83:fc:1b:fe:c4:ad:ff:
83:fa:9b:af:02:08:ed:22:1f:39:84:f8:e0:bf:52:
e5:79:57:31:f8:ae:91:57:06:e1:7f:0f:7c:bb:a7:
d3:46:07:a9:ae:a0:40:80:17:0a:00:f5:d4:62:70:
b0:48:38:e8:a7:27:ea:b0:30:42:69:59:68:ad:bb:
9f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BD:23:C3:09:0E:5E:0D:D3:07:8E:41:4C:C7:91:A9:79:5A:9E:91
X509v3 Authority Key Identifier:
keyid:AF:60:BD:49:A3:A8:C1:3E:E3:F8:AC:3C:DE:F7:D3:F4:87:71:B1:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/30415e525ae2a6911d8229a69de6df7b5716b468.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7383ebd6-fd3e-4d63-a822-e8cd9fa2c29e/c3af73b64624d7838f102649fb0d1e6077a5e616.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7383ebd6-fd3e-4d63-a822-e8cd9fa2c29e/30415e525ae2a6911d8229a69de6df7b5716b468.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.201.163.0/24
Signature Algorithm: sha256WithRSAEncryption
61:39:03:f1:bc:8b:df:9d:88:c8:f3:9b:4d:96:7a:57:15:81:
9a:a8:95:49:55:7c:d2:c7:9c:60:9c:bc:11:57:f9:c5:5c:7d:
69:03:51:68:89:22:86:3d:b8:47:f2:39:7e:9c:b7:05:15:90:
9c:0f:f6:bd:77:8b:82:5c:25:76:d9:bf:bc:fa:92:96:71:f2:
35:ce:5c:3a:3e:2e:61:19:38:6c:99:c7:e7:fe:16:60:76:0a:
d4:46:64:83:5f:7e:36:f4:d0:70:de:01:d7:83:ee:cc:fb:f7:
3a:2e:8d:0e:11:02:d2:52:d8:43:3c:4b:2a:e8:0e:45:ec:1f:
f1:37:80:4c:f1:0c:58:67:eb:24:3a:05:38:f6:66:c9:43:a7:
99:b9:1f:0a:0e:9d:45:2d:63:f7:85:5d:66:09:a6:46:e4:0c:
dd:fc:49:93:d3:2f:ba:68:fa:7b:30:3e:1c:d0:98:f6:a9:f5:
d4:ae:f1:70:17:28:53:0e:c2:db:0d:2e:04:8e:06:ee:9b:f0:
62:7e:b0:fa:90:ec:21:15:df:80:01:13:2f:51:09:d8:44:f3:
60:d4:23:28:32:60:8c:d1:d1:92:f2:16:68:08:e3:66:8f:9e:
33:ca:00:94:0e:61:0d:2f:02:7d:b6:bd:13:8a:2e:74:0a:b3:
ae:d7:77:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 03:37:34 2024 by rpki-client on console-fra.rpki-client.org