Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0ef5686d-fc66-4c8e-be4f-da69fbc2bfb5/a83b340c1f82528c71af70ba07acc4c79180308b.roa
File:                     a83b340c1f82528c71af70ba07acc4c79180308b.roa (raw, json)
Hash identifier:          UVpQiOFT5nHh/You9R8I2wzA/EmvT7rb0x8mCxqplew=
Subject key identifier:   40:1C:7E:3A:8D:59:9A:5C:76:E0:1F:EB:DD:C2:8C:BF:97:B7:D4:30
Certificate issuer:       /CN=c2cfc3212455464cd8f856a348b2d5caf73dcd73
Certificate serial:       1B9DFD
Authority key identifier: ED:97:60:23:07:66:80:76:63:22:9F:6D:41:28:05:07:EF:9D:C2:29
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c2cfc3212455464cd8f856a348b2d5caf73dcd73.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/0ef5686d-fc66-4c8e-be4f-da69fbc2bfb5/a83b340c1f82528c71af70ba07acc4c79180308b.roa
Signing time:             Thu 01 Dec 2022 13:35:37 +0000
ROA not before:           Mon 22 Mar 2021 03:00:00 +0000
ROA not after:            Fri 24 Mar 2023 03:00:00 +0000
asID:                     18747
IP address blocks:        181.78.128.0/18 maxlen: 18
                          181.78.128.0/19 maxlen: 19
                          181.78.160.0/21 maxlen: 21
                          181.78.192.0/18 maxlen: 18
                          181.78.192.0/19 maxlen: 19
                          181.78.224.0/21 maxlen: 21
                          181.78.64.0/18 maxlen: 18
                          181.78.64.0/19 maxlen: 19
                          181.78.96.0/21 maxlen: 21
                          181.78.160.0/19 maxlen: 24
                          181.78.160.0/24 maxlen: 24
                          181.78.161.0/24 maxlen: 24
                          181.78.162.0/24 maxlen: 24
                          181.78.163.0/24 maxlen: 24
                          181.78.164.0/24 maxlen: 24
                          181.79.64.0/21 maxlen: 21
                          181.79.72.0/23 maxlen: 23
                          181.79.220.0/22 maxlen: 22

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1809917 (0x1b9dfd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c2cfc3212455464cd8f856a348b2d5caf73dcd73
        Validity
            Not Before: Mar 22 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2023 GMT
        Subject: CN=a83b340c1f82528c71af70ba07acc4c79180308b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:95:32:ba:93:65:9a:43:e1:5e:e2:96:91:09:
                    91:fe:f7:dc:d2:d7:05:f8:c8:75:98:85:50:e5:a0:
                    fd:c3:cd:c8:9b:a7:e8:33:46:05:ca:6a:94:b8:4b:
                    9a:62:54:0d:4e:28:b5:c8:63:a5:60:5e:df:04:d0:
                    ac:84:f6:00:b8:e3:fa:6d:0d:34:46:dc:80:55:fe:
                    15:7f:c0:e7:c8:95:87:05:b5:be:d7:d0:4a:91:0d:
                    f5:b2:b5:bd:59:4a:cf:21:72:78:9f:be:f5:3f:6b:
                    97:62:d0:c6:ab:3d:64:2e:10:64:0b:10:b6:e1:0f:
                    71:da:79:31:e6:39:36:75:96:ae:a8:59:14:eb:dd:
                    51:a0:86:b4:eb:84:52:7c:17:ec:0b:71:ba:6a:75:
                    3b:2c:e0:25:c3:53:b0:6b:95:aa:af:e4:8b:5c:de:
                    d2:39:30:1a:42:62:fa:ce:62:c4:d6:3a:42:4b:bf:
                    aa:fe:d4:97:e4:50:46:b3:09:62:2e:2d:d9:42:0f:
                    4c:70:ea:c3:c4:4e:d0:c5:37:d7:ea:ec:ca:6e:0e:
                    f8:5c:f7:c4:cc:c6:1d:a2:51:f7:3c:53:ed:92:3e:
                    1c:4a:a8:31:6b:21:02:fa:b0:34:b6:08:6a:bc:38:
                    44:64:cb:79:95:0a:b9:29:db:53:fc:da:c0:18:97:
                    89:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:1C:7E:3A:8D:59:9A:5C:76:E0:1F:EB:DD:C2:8C:BF:97:B7:D4:30
            X509v3 Authority Key Identifier:
                keyid:ED:97:60:23:07:66:80:76:63:22:9F:6D:41:28:05:07:EF:9D:C2:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c2cfc3212455464cd8f856a348b2d5caf73dcd73.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0ef5686d-fc66-4c8e-be4f-da69fbc2bfb5/a83b340c1f82528c71af70ba07acc4c79180308b.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/0ef5686d-fc66-4c8e-be4f-da69fbc2bfb5/c2cfc3212455464cd8f856a348b2d5caf73dcd73.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  181.78.64.0-181.78.255.255
                  181.79.64.0-181.79.73.255
                  181.79.220.0/22

    Signature Algorithm: sha256WithRSAEncryption
         41:d0:a9:6e:61:dc:a4:9f:3a:39:cf:1d:a6:f8:b6:36:56:26:
         97:06:97:22:72:d6:e4:67:4d:76:7b:53:5a:c8:5b:0e:7c:3b:
         ea:c5:d7:44:1b:57:d0:78:eb:d2:23:22:f2:67:7b:41:77:0d:
         fb:b2:23:ad:75:c5:da:1b:ff:af:f1:b3:47:47:64:9b:3a:eb:
         e0:b3:b8:e2:ba:ef:2b:dd:4c:8d:ef:09:6b:13:e3:9a:da:c9:
         7b:53:62:9f:81:f8:c4:4f:f1:da:70:ec:d0:c1:71:85:f5:1d:
         65:36:28:92:de:51:b2:b8:00:23:ef:e7:a4:c3:28:f3:9f:ac:
         8c:e7:b9:fc:07:f5:17:ba:f0:52:1f:27:eb:0a:42:ed:d0:82:
         2f:e9:a4:58:00:c2:76:8f:38:57:da:d3:72:ad:2b:c1:5c:f1:
         43:30:a0:97:fa:2e:3c:f4:a2:8e:74:b9:f0:7f:39:44:b2:0e:
         9b:b9:96:49:e9:4a:31:b7:8b:1b:23:66:24:70:df:b8:5b:45:
         56:b8:df:23:ee:db:4c:78:10:8d:bc:9e:84:4a:dc:63:d2:3e:
         2d:ee:18:a1:36:ca:27:52:b8:d0:ed:9a:13:fa:bf:28:54:08:
         0a:ad:2f:9a:7a:88:88:47:da:f7:4d:9c:ed:59:d7:67:01:9a:
         d3:49:02:5f
-----BEGIN CERTIFICATE-----
MIIFWzCCBEOgAwIBAgIDG539MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMy
Y2ZjMzIxMjQ1NTQ2NGNkOGY4NTZhMzQ4YjJkNWNhZjczZGNkNzMwHhcNMjEwMzIy
MDMwMDAwWhcNMjMwMzI0MDMwMDAwWjAzMTEwLwYDVQQDEyhhODNiMzQwYzFmODI1
MjhjNzFhZjcwYmEwN2FjYzRjNzkxODAzMDhiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAnpUyupNlmkPhXuKWkQmR/vfc0tcF+Mh1mIVQ5aD9w83Im6fo
M0YFymqUuEuaYlQNTii1yGOlYF7fBNCshPYAuOP6bQ00RtyAVf4Vf8DnyJWHBbW+
19BKkQ31srW9WUrPIXJ4n771P2uXYtDGqz1kLhBkCxC24Q9x2nkx5jk2dZauqFkU
691RoIa064RSfBfsC3G6anU7LOAlw1Owa5Wqr+SLXN7SOTAaQmL6zmLE1jpCS7+q
/tSX5FBGswliLi3ZQg9McOrDxE7QxTfX6uzKbg74XPfEzMYdolH3PFPtkj4cSqgx
ayEC+rA0tghqvDhEZMt5lQq5KdtT/NrAGJeJXwIDAQABo4ICdjCCAnIwHQYDVR0O
BBYEFEAcfjqNWZpcduAf693CjL+Xt9QwMB8GA1UdIwQYMBaAFO2XYCMHZoB2YyKf
bUEoBQfvncIpMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYzJjZmMz
MjEyNDU1NDY0Y2Q4Zjg1NmEzNDhiMmQ1Y2FmNzNkY2Q3My5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMGVmNTY4NmQtZmM2Ni00YzhlLWJlNGYtZGE2OWZi
YzJiZmI1L2E4M2IzNDBjMWY4MjUyOGM3MWFmNzBiYTA3YWNjNGM3OTE4MDMwOGIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8wZWY1Njg2ZC1mYzY2LTRjOGUtYmU0Zi1kYTY5
ZmJjMmJmYjUvYzJjZmMzMjEyNDU1NDY0Y2Q4Zjg1NmEzNDhiMmQ1Y2FmNzNkY2Q3
My5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6BggrBgEFBQcBBwEB/wQr
MCkwJwQCAAEwITALAwQGtU5AAwMAtU4wDAMEBrVPQAMEAbVPSAMEArVP3DANBgkq
hkiG9w0BAQsFAAOCAQEAQdCpbmHcpJ86Oc8dpvi2NlYmlwaXInLW5GdNdntTWshb
Dnw76sXXRBtX0Hjr0iMi8md7QXcN+7IjrXXF2hv/r/GzR0dkmzrr4LO44rrvK91M
je8JaxPjmtrJe1Nin4H4xE/x2nDs0MFxhfUdZTYokt5RsrgAI+/npMMo85+sjOe5
/Af1F7rwUh8n6wpC7dCCL+mkWADCdo84V9rTcq0rwVzxQzCgl/ouPPSijnS58H85
RLIOm7mWSelKMbeLGyNmJHDfuFtFVrjfI+7bTHgQjbyehErcY9I+Le4YoTbKJ1K4
0O2aE/q/KFQICq0vmnqIiEfa902c7VnXZwGa00kCXw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:09 2023 by rpki-client on console-fra.rpki-client.org