Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0328B18C5676A937ACD46D1956506C1A9DD781F270D2992C529B17585C065B59/0/323830333a646438303a383030303a3a2f33362d3336203d3e20323639393138.roa
File:                     323830333a646438303a383030303a3a2f33362d3336203d3e20323639393138.roa (raw, json)
Hash identifier:          QgD8OFcBLo9SwMw0QZ4QoWhSDqwDlkP/7hHaot0p6WQ=
Subject key identifier:   EA:66:9F:34:29:2E:FB:6E:44:0B:01:A7:4F:ED:61:78:B8:31:17:56
Certificate issuer:       /CN=009F5D7F1385A8FAC494CA7B348BE4F0C680E66F
Certificate serial:       11F3611F26C627026376355CFE9E7B13A572D137
Authority key identifier: 00:9F:5D:7F:13:85:A8:FA:C4:94:CA:7B:34:8B:E4:F0:C6:80:E6:6F
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/009F5D7F1385A8FAC494CA7B348BE4F0C680E66F.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/0328B18C5676A937ACD46D1956506C1A9DD781F270D2992C529B17585C065B59/0/323830333a646438303a383030303a3a2f33362d3336203d3e20323639393138.roa
Signing time:             Tue 17 Sep 2024 15:05:06 +0000
ROA not before:           Tue 17 Sep 2024 15:00:06 +0000
ROA not after:            Tue 16 Sep 2025 15:05:06 +0000
asID:                     269918
IP address blocks:        2803:dd80:8000::/36 maxlen: 36

Validation:               Failed, certificate revoked on Fri 04 Oct 2024 02:50:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            11:f3:61:1f:26:c6:27:02:63:76:35:5c:fe:9e:7b:13:a5:72:d1:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=009F5D7F1385A8FAC494CA7B348BE4F0C680E66F
        Validity
            Not Before: Sep 17 15:00:06 2024 GMT
            Not After : Sep 16 15:05:06 2025 GMT
        Subject: CN=EA669F34292EFB6E440B01A74FED6178B8311756
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:27:95:59:35:ae:61:47:eb:65:b4:68:3f:82:
                    d9:b6:07:c3:cd:eb:e1:64:6e:03:68:3c:96:a9:85:
                    dc:41:46:fc:42:9b:8c:9c:25:e1:70:01:c4:c5:ee:
                    c5:a2:c3:22:26:0f:2e:96:80:97:92:d7:59:df:a2:
                    52:aa:52:59:99:60:fe:fe:4a:a4:29:3c:a5:38:64:
                    40:fc:31:63:f5:db:2a:58:4a:1f:09:aa:3d:98:df:
                    d1:cd:82:01:21:03:7e:06:ba:db:6f:50:d0:82:3a:
                    4d:f7:71:88:ad:b5:96:b6:f3:fb:81:c7:b9:63:88:
                    fa:74:9d:f0:58:cf:9d:fb:4e:db:77:e9:21:e5:bf:
                    75:08:da:11:e4:c7:8c:fd:1d:2f:69:fb:df:eb:af:
                    df:5d:81:f7:1e:f5:07:03:24:d6:ea:1b:98:f5:40:
                    97:9c:4f:1d:6b:11:d6:ca:21:2c:28:9d:e6:2a:b0:
                    cb:86:bc:88:c9:a8:34:76:26:61:05:82:80:7b:cf:
                    7b:db:a9:4c:a9:d5:32:c9:f9:5c:f8:99:15:92:5a:
                    16:6f:9d:5b:15:1f:66:fd:77:af:de:59:55:d0:a7:
                    82:df:c4:99:61:75:fb:93:2a:a0:66:0e:e4:a8:91:
                    3a:99:2c:bc:f3:cf:f7:28:9c:39:43:43:cc:12:d1:
                    d2:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:66:9F:34:29:2E:FB:6E:44:0B:01:A7:4F:ED:61:78:B8:31:17:56
            X509v3 Authority Key Identifier:
                keyid:00:9F:5D:7F:13:85:A8:FA:C4:94:CA:7B:34:8B:E4:F0:C6:80:E6:6F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/0328B18C5676A937ACD46D1956506C1A9DD781F270D2992C529B17585C065B59/0/009F5D7F1385A8FAC494CA7B348BE4F0C680E66F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/009F5D7F1385A8FAC494CA7B348BE4F0C680E66F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0328B18C5676A937ACD46D1956506C1A9DD781F270D2992C529B17585C065B59/0/323830333a646438303a383030303a3a2f33362d3336203d3e20323639393138.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:dd80:8000::/36

    Signature Algorithm: sha256WithRSAEncryption
         74:64:7e:78:75:1a:7c:fe:86:52:d9:94:13:91:21:fc:79:63:
         bc:e7:03:87:32:94:e0:1a:c9:ba:99:13:3d:fb:54:8f:f0:df:
         bb:db:d9:52:82:41:8b:c8:32:34:9d:bf:d3:6b:60:e4:7e:90:
         29:d7:99:39:45:ea:1a:c0:8b:23:de:23:68:fa:32:80:7c:e0:
         f1:06:3e:60:92:25:6a:c2:9f:8c:0e:12:69:83:b5:56:f1:30:
         29:7b:71:32:c4:70:34:f8:3b:76:77:65:2c:e3:ae:38:97:c8:
         32:04:18:ad:b0:76:1d:bf:66:73:a9:f3:9c:ae:f2:fc:b7:42:
         10:2c:c7:80:e1:81:95:37:13:53:17:73:2c:c0:6b:a1:ba:05:
         0d:7b:7f:d1:0c:ae:7f:b0:b2:07:1b:fb:e0:61:a1:97:ca:2b:
         c8:48:d8:fb:2c:59:33:91:4d:22:fa:19:fb:9b:7d:b7:cd:7f:
         3f:e2:e3:ae:05:63:59:06:b7:2c:d5:80:61:3b:c9:70:5b:66:
         76:5a:a4:cf:99:5a:fc:4d:65:ac:1a:e2:99:42:78:1d:3e:7a:
         33:59:34:5b:07:fe:f2:69:7b:81:28:66:0a:f9:7f:bb:a1:f7:
         cd:31:54:a7:ba:3e:7e:ae:9b:e9:11:16:e1:cc:23:04:2e:d1:
         7c:c8:49:c2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----