Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0F40A126CF82DF22205AC496FD742AAFAB2AE1BCA4729D3543BD598841370390/0/3230302e32352e3139322e302f32302d3234203d3e203233343837.roa
File:                     3230302e32352e3139322e302f32302d3234203d3e203233343837.roa (raw, json)
Hash identifier:          547bkygEwCrgbsUl8TowVJk1F+66eFynjhhOCTty3zQ=
Subject key identifier:   1A:39:5C:3A:85:F2:1D:71:4A:0F:09:DD:32:36:65:3D:21:6A:4B:86
Certificate issuer:       /CN=EBF9DA4E99FCBA97C1C50D8C0AB5C3B9B9D633A5
Certificate serial:       759F6AC0E92B326B0BD7AD5F380B7AEC052BD98D
Authority key identifier: EB:F9:DA:4E:99:FC:BA:97:C1:C5:0D:8C:0A:B5:C3:B9:B9:D6:33:A5
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EBF9DA4E99FCBA97C1C50D8C0AB5C3B9B9D633A5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/0F40A126CF82DF22205AC496FD742AAFAB2AE1BCA4729D3543BD598841370390/0/3230302e32352e3139322e302f32302d3234203d3e203233343837.roa
Signing time:             Tue 05 Mar 2024 18:16:22 +0000
ROA not before:           Tue 05 Mar 2024 18:11:22 +0000
ROA not after:            Tue 04 Mar 2025 18:16:22 +0000
asID:                     23487
IP address blocks:        200.25.192.0/20 maxlen: 24

Validation:               Failed, certificate revoked on Mon 26 Aug 2024 14:50:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            75:9f:6a:c0:e9:2b:32:6b:0b:d7:ad:5f:38:0b:7a:ec:05:2b:d9:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EBF9DA4E99FCBA97C1C50D8C0AB5C3B9B9D633A5
        Validity
            Not Before: Mar  5 18:11:22 2024 GMT
            Not After : Mar  4 18:16:22 2025 GMT
        Subject: CN=1A395C3A85F21D714A0F09DD3236653D216A4B86
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:51:3f:c0:01:1c:a0:bc:8f:b0:a7:14:61:54:
                    91:4f:f6:64:05:de:45:b0:eb:9f:bd:26:8b:64:30:
                    b2:7f:a4:f2:eb:15:1e:cb:d9:80:ea:e8:e7:24:79:
                    86:9e:0a:cd:f3:90:03:48:18:91:62:2e:9a:0a:89:
                    ca:eb:b3:e4:39:03:ba:19:5d:cf:50:2c:5d:bd:2b:
                    d4:ef:ab:38:38:79:03:6a:0b:01:e2:97:31:d5:5c:
                    e2:9e:43:6b:d5:90:89:d3:ad:f7:a8:48:79:6a:ba:
                    b0:ab:1b:e7:8c:7e:b3:b9:68:b4:d4:1a:4e:27:a8:
                    5c:e9:4e:c7:fb:87:5b:00:5b:48:3a:8a:62:77:37:
                    18:b6:aa:69:64:de:a1:94:d0:78:4f:80:93:94:be:
                    5f:c4:53:06:01:f1:e5:8e:6a:d4:b3:04:af:2d:13:
                    24:fd:7a:74:dd:8a:97:eb:9b:d6:60:b4:b3:34:38:
                    99:f5:5e:89:6c:3b:14:80:4d:f3:94:6a:88:a4:ab:
                    a2:f0:2c:71:2f:72:e6:76:ae:a1:fc:f4:3e:5b:40:
                    e2:c6:cd:31:5b:c3:95:8d:c4:f2:29:9c:2e:7d:b2:
                    eb:08:39:71:ef:a3:f0:79:f0:c1:69:c5:f7:90:0b:
                    de:4b:7c:e4:d1:cd:23:ce:98:e5:84:93:f9:f1:5b:
                    a9:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:39:5C:3A:85:F2:1D:71:4A:0F:09:DD:32:36:65:3D:21:6A:4B:86
            X509v3 Authority Key Identifier:
                keyid:EB:F9:DA:4E:99:FC:BA:97:C1:C5:0D:8C:0A:B5:C3:B9:B9:D6:33:A5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/0F40A126CF82DF22205AC496FD742AAFAB2AE1BCA4729D3543BD598841370390/0/EBF9DA4E99FCBA97C1C50D8C0AB5C3B9B9D633A5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EBF9DA4E99FCBA97C1C50D8C0AB5C3B9B9D633A5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0F40A126CF82DF22205AC496FD742AAFAB2AE1BCA4729D3543BD598841370390/0/3230302e32352e3139322e302f32302d3234203d3e203233343837.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.25.192.0/20

    Signature Algorithm: sha256WithRSAEncryption
         1d:f7:20:77:8c:4c:45:13:16:30:f4:c5:d1:e1:a1:d9:b4:9b:
         28:90:d2:9b:1d:c1:fc:e3:ba:03:cb:80:d0:a2:47:33:50:bb:
         e9:93:ee:fa:41:3f:d9:e0:5d:0d:f2:72:5d:1b:31:9b:92:d7:
         5e:bd:c4:3c:12:11:73:9d:fd:bd:68:a4:15:8c:08:d3:a7:ef:
         0e:65:23:d6:10:92:3d:18:55:fb:21:e7:36:d3:e6:98:cd:c6:
         20:0f:29:39:46:29:50:ca:de:8c:d6:8b:7c:d3:59:64:7f:ca:
         35:da:31:60:75:11:91:22:00:68:01:52:5b:6d:09:7b:7e:c2:
         97:b6:30:70:c4:75:19:00:d2:13:c9:4e:ee:82:a0:e1:c2:7e:
         02:f5:47:85:4c:7e:c4:03:57:2b:a3:12:4a:06:83:36:37:b3:
         57:e3:1a:ab:c5:d5:66:b8:fe:8c:5a:67:89:01:ea:65:24:75:
         c6:0e:c3:ed:6d:d6:eb:1a:d7:f7:c9:08:11:bc:f7:fe:11:70:
         35:60:25:76:f9:e3:4d:cd:d6:93:9f:ad:31:cb:12:68:84:83:
         d6:2f:72:39:d1:c6:46:cc:44:8f:db:46:a1:3a:61:61:9c:a8:
         f3:cd:a6:e8:17:34:c4:a5:ce:8f:97:5d:bb:b7:7e:91:4b:ea:
         b6:6c:02:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 16:54:14 2024 by rpki-client on console-fra.rpki-client.org