Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0328B18C5676A937ACD46D1956506C1A9DD781F270D2992C529B17585C065B59/0/323830333a646438303a3a2f33322d3332203d3e20323639393138.roa
File:                     323830333a646438303a3a2f33322d3332203d3e20323639393138.roa (raw, json)
Hash identifier:          mnuy/r5kkuyjyiGJNwbrNPbByrX2rHt2GOBuyxLf4Hs=
Subject key identifier:   87:F7:FC:52:7E:DA:06:41:4B:4D:05:B6:F0:EF:CF:51:0D:D7:BC:7A
Certificate issuer:       /CN=009F5D7F1385A8FAC494CA7B348BE4F0C680E66F
Certificate serial:       133BB2ADAAE628F0F5B84A74D611D5B86B338B52
Authority key identifier: 00:9F:5D:7F:13:85:A8:FA:C4:94:CA:7B:34:8B:E4:F0:C6:80:E6:6F
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/009F5D7F1385A8FAC494CA7B348BE4F0C680E66F.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/0328B18C5676A937ACD46D1956506C1A9DD781F270D2992C529B17585C065B59/0/323830333a646438303a3a2f33322d3332203d3e20323639393138.roa
Signing time:             Tue 17 Sep 2024 15:05:02 +0000
ROA not before:           Tue 17 Sep 2024 15:00:02 +0000
ROA not after:            Tue 16 Sep 2025 15:05:02 +0000
asID:                     269918
IP address blocks:        2803:dd80::/32 maxlen: 32

Validation:               Failed, certificate revoked on Fri 04 Oct 2024 21:40:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            13:3b:b2:ad:aa:e6:28:f0:f5:b8:4a:74:d6:11:d5:b8:6b:33:8b:52
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=009F5D7F1385A8FAC494CA7B348BE4F0C680E66F
        Validity
            Not Before: Sep 17 15:00:02 2024 GMT
            Not After : Sep 16 15:05:02 2025 GMT
        Subject: CN=87F7FC527EDA06414B4D05B6F0EFCF510DD7BC7A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:c4:2e:2d:74:18:e9:aa:b7:47:fe:1b:23:d0:
                    84:33:72:5c:0d:86:5a:28:26:7e:af:65:7c:23:d8:
                    01:b9:97:4d:7b:a2:d9:87:6e:81:28:5f:19:c9:c9:
                    42:05:78:90:34:5d:df:03:cd:3a:3a:a5:42:46:f7:
                    da:d8:bd:9f:1e:84:1f:63:69:05:6e:8d:39:46:36:
                    b8:de:38:a3:19:d8:7f:15:ee:57:60:88:60:89:86:
                    c5:cf:25:40:3d:26:90:f7:46:aa:2a:8b:97:c5:35:
                    d1:61:a2:eb:8e:3e:b7:53:0d:e0:25:f8:f8:ac:9f:
                    d5:86:7b:af:59:fb:c3:a4:e5:f0:95:d7:3c:07:90:
                    23:55:4e:13:d6:b3:df:51:b4:2d:c1:6d:e5:1b:a6:
                    9f:fb:93:b8:f5:09:4d:8f:b2:cc:90:a3:a8:38:4d:
                    db:ee:86:3d:b7:7d:a4:56:58:6a:65:23:f3:c8:f3:
                    6d:ca:1d:ee:56:7c:ae:0f:ea:cc:f4:e4:a7:c9:cf:
                    58:cb:5e:16:ae:d1:fc:e7:47:9d:e6:bc:d3:af:5d:
                    41:9e:0e:57:da:7a:53:2a:da:ee:92:d3:b5:1f:ce:
                    05:29:47:5c:9d:49:5b:64:7d:a8:e0:ec:95:bd:49:
                    17:cd:85:03:50:bd:81:f3:a1:cb:bd:73:8e:d5:1c:
                    8c:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:F7:FC:52:7E:DA:06:41:4B:4D:05:B6:F0:EF:CF:51:0D:D7:BC:7A
            X509v3 Authority Key Identifier:
                keyid:00:9F:5D:7F:13:85:A8:FA:C4:94:CA:7B:34:8B:E4:F0:C6:80:E6:6F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/0328B18C5676A937ACD46D1956506C1A9DD781F270D2992C529B17585C065B59/0/009F5D7F1385A8FAC494CA7B348BE4F0C680E66F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/009F5D7F1385A8FAC494CA7B348BE4F0C680E66F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0328B18C5676A937ACD46D1956506C1A9DD781F270D2992C529B17585C065B59/0/323830333a646438303a3a2f33322d3332203d3e20323639393138.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:dd80::/32

    Signature Algorithm: sha256WithRSAEncryption
         33:d3:61:6a:80:28:88:e2:ab:4f:8c:fc:52:c6:d7:1e:b0:5d:
         46:a3:a5:13:ac:14:d6:46:45:5a:42:85:9e:70:4e:27:b0:4f:
         a6:79:ff:9e:06:01:03:dd:9a:ae:88:ad:36:f5:24:c1:0c:c9:
         3f:49:71:5e:71:d5:6b:21:74:8d:70:8a:c2:db:e3:3f:95:a3:
         de:e2:76:96:ae:cc:6b:fa:ea:59:04:5c:fb:9a:0c:af:8a:b6:
         eb:51:8b:ac:49:5a:d7:3a:38:8e:39:16:b8:cb:8b:8e:b7:46:
         c0:27:14:0a:30:25:83:a1:ba:40:46:9d:8d:6f:ae:4f:58:a2:
         02:f1:31:a3:88:63:b2:7e:d7:72:c1:ec:23:48:47:aa:53:ec:
         a9:b4:8e:c3:2d:45:9c:a4:30:be:be:3e:f7:42:11:31:42:8f:
         3c:bc:59:8b:98:f2:4f:c8:84:3e:6f:21:cb:8e:31:87:3f:c9:
         61:52:d8:f6:c0:ed:68:07:2f:30:50:7e:34:f5:a7:42:88:14:
         15:a3:a0:ee:e0:e4:39:ea:42:9c:00:84:af:6a:f9:90:fa:bc:
         ae:93:bb:54:e8:ca:63:a2:fc:6a:21:6a:cf:2b:2a:8e:50:12:
         b8:c6:bc:b8:26:f7:48:ba:31:1e:dd:e1:1a:1f:ec:0c:3d:c8:
         c2:49:eb:b2
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUEzuyrarmKPD1uEp01hHVuGszi1IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDA5RjVEN0YxMzg1QThGQUM0OTRDQTdCMzQ4QkU0RjBD
NjgwRTY2RjAeFw0yNDA5MTcxNTAwMDJaFw0yNTA5MTYxNTA1MDJaMDMxMTAvBgNV
BAMTKDg3RjdGQzUyN0VEQTA2NDE0QjREMDVCNkYwRUZDRjUxMEREN0JDN0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVxC4tdBjpqrdH/hsj0IQzclwN
hlooJn6vZXwj2AG5l017otmHboEoXxnJyUIFeJA0Xd8DzTo6pUJG99rYvZ8ehB9j
aQVujTlGNrjeOKMZ2H8V7ldgiGCJhsXPJUA9JpD3Rqoqi5fFNdFhouuOPrdTDeAl
+Pisn9WGe69Z+8Ok5fCV1zwHkCNVThPWs99RtC3BbeUbpp/7k7j1CU2PssyQo6g4
Tdvuhj23faRWWGplI/PI823KHe5WfK4P6sz05KfJz1jLXhau0fznR53mvNOvXUGe
DlfaelMq2u6S07UfzgUpR1ydSVtkfajg7JW9SRfNhQNQvYHzocu9c47VHIyRAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQUh/f8Un7aBkFLTQW28O/PUQ3XvHowHwYDVR0j
BBgwFoAUAJ9dfxOFqPrElMp7NIvk8MaA5m8wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wMzI4QjE4QzU2NzZBOTM3QUNENDZEMTk1NjUwNkMxQTlE
RDc4MUYyNzBEMjk5MkM1MjlCMTc1ODVDMDY1QjU5LzAvMDA5RjVEN0YxMzg1QThG
QUM0OTRDQTdCMzQ4QkU0RjBDNjgwRTY2Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wMDlGNUQ3RjEzODVBOEZBQzQ5
NENBN0IzNDhCRTRGMEM2ODBFNjZGLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMDMyOEIxOEM1Njc2QTkzN0FDRDQ2RDE5NTY1MDZDMUE5REQ3ODFGMjcw
RDI5OTJDNTI5QjE3NTg1QzA2NUI1OS8wLzMyMzgzMDMzM2E2NDY0MzgzMDNhM2Ey
ZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzYzOTM5MzEzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgD3YAw
DQYJKoZIhvcNAQELBQADggEBADPTYWqAKIjiq0+M/FLG1x6wXUajpROsFNZGRVpC
hZ5wTiewT6Z5/54GAQPdmq6IrTb1JMEMyT9JcV5x1WshdI1wisLb4z+Vo97idpau
zGv66lkEXPuaDK+KtutRi6xJWtc6OI45FrjLi463RsAnFAowJYOhukBGnY1vrk9Y
ogLxMaOIY7J+13LB7CNIR6pT7Km0jsMtRZykML6+PvdCETFCjzy8WYuY8k/IhD5v
IcuOMYc/yWFS2PbA7WgHLzBQfjT1p0KIFBWjoO7g5DnqQpwAhK9q+ZD6vK6Tu1To
ymOi/Gohas8rKo5QErjGvLgm90i6MR7d4Rof7Aw9yMJJ67I=
-----END CERTIFICATE-----
Generated at Fri Oct 4 22:38:43 2024 by rpki-client on console-ams.rpki-client.org