Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/942b50e8-3602-4563-96d7-9bef100e5ce2/0dd3bbc8bc8bfdae1a92d99660316e6d5f94811e.roa
File: 0dd3bbc8bc8bfdae1a92d99660316e6d5f94811e.roa (raw, json)
Hash identifier: TIbBIQJ1un340McaV9a3mY8SwBOeI30qSVS3uraX3Ks=
Subject key identifier: E5:10:F4:7B:10:7B:E7:F9:C2:E7:42:AF:25:34:AB:AD:22:4A:2A:A4
Certificate issuer: /CN=70a411ce30f61f9ca94248ff3f614c66f75c5307
Certificate serial: 0504C7
Authority key identifier: 5D:99:9B:85:73:92:13:A1:C8:89:8E:3E:B0:28:74:32:5D:2B:74:34
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/70a411ce30f61f9ca94248ff3f614c66f75c5307.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/942b50e8-3602-4563-96d7-9bef100e5ce2/0dd3bbc8bc8bfdae1a92d99660316e6d5f94811e.roa
Signing time: Fri 04 Aug 2023 16:03:13 +0000
ROA not before: Thu 03 Aug 2023 16:03:13 +0000
ROA not after: Mon 04 Aug 2025 16:03:13 +0000
asID: 272854
IP address blocks: 2803:c290:200::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 18 Mar 2024 19:06:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 328903 (0x504c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a411ce30f61f9ca94248ff3f614c66f75c5307
Validity
Not Before: Aug 3 16:03:13 2023 GMT
Not After : Aug 4 16:03:13 2025 GMT
Subject: CN=0dd3bbc8bc8bfdae1a92d99660316e6d5f94811e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:65:69:56:2a:30:89:d5:20:71:2c:b6:c9:31:
7c:97:3b:33:84:ac:2a:91:a5:6b:0d:3e:22:41:ee:
20:a3:be:6a:26:8a:0c:ff:bc:78:83:ee:91:1c:45:
33:78:1f:8c:5d:3b:61:97:4c:d6:45:f1:6d:5c:69:
73:02:aa:fd:37:62:e7:33:3f:6a:56:fb:01:ae:05:
9f:02:05:b8:2a:15:87:29:74:ea:c6:9f:ed:e0:2e:
1e:7b:98:8f:3a:e1:8f:dc:dc:2e:d0:4f:1b:63:b4:
c7:6b:2e:2c:cd:07:3a:dc:fc:2d:f5:f2:20:bc:c4:
cb:05:9d:e4:d3:87:53:cd:e5:46:7d:32:04:10:b4:
63:b9:40:2d:96:29:30:35:9d:c7:fb:91:16:c2:c7:
23:83:18:da:f1:ff:4d:a9:fb:18:17:f3:c6:fe:a0:
8e:d3:2e:6b:c4:b4:4e:cc:34:fe:14:ad:37:20:8a:
ca:56:12:dd:c8:1f:c6:16:f6:bd:7c:d0:c4:d3:98:
a0:89:d8:12:81:8b:e6:31:a8:40:1f:4d:fe:3a:b7:
6a:69:45:6b:2d:7f:85:af:e0:b0:11:cc:c9:f3:ec:
1f:11:c1:b4:1d:5b:5c:76:0b:8e:5d:8d:85:46:5e:
31:e2:17:41:ed:bb:ca:34:19:28:a4:3f:53:50:da:
9e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:10:F4:7B:10:7B:E7:F9:C2:E7:42:AF:25:34:AB:AD:22:4A:2A:A4
X509v3 Authority Key Identifier:
keyid:5D:99:9B:85:73:92:13:A1:C8:89:8E:3E:B0:28:74:32:5D:2B:74:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/70a411ce30f61f9ca94248ff3f614c66f75c5307.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/942b50e8-3602-4563-96d7-9bef100e5ce2/0dd3bbc8bc8bfdae1a92d99660316e6d5f94811e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/942b50e8-3602-4563-96d7-9bef100e5ce2/70a411ce30f61f9ca94248ff3f614c66f75c5307.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:c290:200::/40
Signature Algorithm: sha256WithRSAEncryption
0c:9f:d8:bb:4c:de:20:68:0d:c0:50:5d:0d:34:7b:f0:75:ce:
35:c1:cb:00:27:1c:25:81:d3:48:89:b0:f3:8f:5e:61:60:22:
da:73:a2:f2:2a:d6:ce:01:fc:a4:e3:d4:0a:e9:1c:2d:10:86:
45:a4:1f:6b:98:17:19:0f:68:2c:2f:1d:7e:c9:fb:2d:87:b3:
97:8f:26:30:d1:86:2c:18:14:aa:b6:e0:9a:17:33:d1:62:28:
d0:8e:0e:de:a2:f4:42:01:ef:9c:77:2e:e7:75:f0:57:c2:42:
c4:9a:bf:6a:67:b3:7b:a6:7d:e5:75:3e:c8:2c:88:6e:c1:3b:
3f:69:ba:0e:58:b1:3a:ee:82:19:6d:20:29:b1:16:69:c6:ff:
1a:41:ec:f7:2e:31:64:cd:89:38:3a:b9:fb:c2:29:74:a2:15:
9c:b1:3c:38:b7:70:e2:a1:56:ef:ba:e2:e6:a8:b6:10:19:4f:
5e:43:d6:df:5c:93:71:76:52:c1:7e:c9:dd:19:90:a9:69:81:
c0:6d:68:73:ca:03:f9:b2:c2:ea:9d:87:1d:a3:7d:17:42:d8:
60:ad:63:dc:68:6e:f0:47:26:bf:c3:7b:43:df:bb:4a:53:b2:
c9:69:f6:8a:44:23:c8:1c:4a:d1:53:7c:2c:9e:30:1f:be:23:
a3:24:12:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 18 22:01:00 2024 by rpki-client on console-fra.rpki-client.org