Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/fc76530f81cf22b8830b4aec55a84c63d295eb1e.roa
File:                     fc76530f81cf22b8830b4aec55a84c63d295eb1e.roa (raw, json)
Hash identifier:          gA3s0WtltAuiTPMB5twuy9RagRY8sNqdDKoiA1gXalc=
Subject key identifier:   02:BA:74:9B:95:19:6D:78:5F:88:92:BA:5C:CC:B5:47:B0:4B:6E:7D
Certificate issuer:       /CN=4ac5ea16ad07d29d2d29db8fbd5b3893571bb631
Certificate serial:       077760
Authority key identifier: 3A:C6:E4:AF:88:56:EC:CF:11:EB:BE:CA:5C:8E:50:5A:5C:19:11:26
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4ac5ea16ad07d29d2d29db8fbd5b3893571bb631.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/fc76530f81cf22b8830b4aec55a84c63d295eb1e.roa
Signing time:             Fri 27 May 2022 00:24:41 +0000
ROA not before:           Wed 09 Feb 2022 03:00:00 +0000
ROA not after:            Fri 09 Feb 2024 03:00:00 +0000
asID:                     26617
IP address blocks:        190.104.113.0/24 maxlen: 24
                          190.104.117.0/24 maxlen: 24
                          200.12.33.0/24 maxlen: 24
                          200.12.34.0/24 maxlen: 24
                          200.12.37.0/24 maxlen: 24
                          200.12.36.0/24 maxlen: 24
                          200.12.38.0/24 maxlen: 24
                          200.12.39.0/24 maxlen: 24
                          200.12.40.0/24 maxlen: 24
                          200.12.41.0/24 maxlen: 24
                          200.12.44.0/24 maxlen: 24
                          200.12.45.0/24 maxlen: 24
                          200.12.46.0/24 maxlen: 24
                          200.12.56.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 489312 (0x77760)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ac5ea16ad07d29d2d29db8fbd5b3893571bb631
        Validity
            Not Before: Feb  9 03:00:00 2022 GMT
            Not After : Feb  9 03:00:00 2024 GMT
        Subject: CN=fc76530f81cf22b8830b4aec55a84c63d295eb1e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:60:36:7f:28:83:8c:a1:ee:eb:fa:c6:c2:51:
                    55:3e:a7:f9:b3:6e:f2:22:29:90:e0:c9:72:91:fd:
                    6b:49:43:cf:15:a5:43:72:e3:b2:a0:35:e8:1d:8e:
                    79:45:e3:9d:74:b9:96:57:e2:58:96:75:21:45:56:
                    1a:62:eb:68:9e:70:a4:82:87:79:ee:5f:2f:c0:6a:
                    42:c3:a1:1d:14:2c:92:25:21:05:0f:df:0d:b5:92:
                    05:fb:ea:c1:02:c1:65:6d:bd:79:d8:08:96:b1:7b:
                    0a:71:4d:44:4a:85:b0:68:48:1c:73:7b:4c:a2:67:
                    f4:e1:7f:21:79:4e:b2:26:18:e8:01:14:df:51:ef:
                    f4:e0:37:bd:04:7e:3b:6b:48:f6:58:37:bb:61:6a:
                    50:94:3f:26:dd:c8:7b:bf:a3:7a:00:41:00:e5:69:
                    02:60:a1:9f:16:f0:16:d0:ef:c3:47:f9:04:10:34:
                    6f:5f:87:b7:e6:ae:af:d8:1f:00:4d:42:f9:94:aa:
                    c6:10:ef:a9:82:51:91:ce:73:ec:51:75:d8:5c:55:
                    32:50:fb:61:c9:c2:ac:a4:fd:3e:3a:ed:92:77:c2:
                    e8:81:e1:45:f4:c5:83:e9:7a:37:38:39:5a:9a:e5:
                    93:53:d1:24:5d:ad:02:37:94:b1:10:5d:3b:97:2d:
                    90:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:BA:74:9B:95:19:6D:78:5F:88:92:BA:5C:CC:B5:47:B0:4B:6E:7D
            X509v3 Authority Key Identifier:
                keyid:3A:C6:E4:AF:88:56:EC:CF:11:EB:BE:CA:5C:8E:50:5A:5C:19:11:26

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4ac5ea16ad07d29d2d29db8fbd5b3893571bb631.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/fc76530f81cf22b8830b4aec55a84c63d295eb1e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/4ac5ea16ad07d29d2d29db8fbd5b3893571bb631.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.104.113.0/24
                  190.104.117.0/24
                  200.12.33.0-200.12.34.255
                  200.12.36.0-200.12.41.255
                  200.12.44.0-200.12.46.255
                  200.12.56.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4d:73:83:8f:6b:91:34:cb:dc:ac:14:94:a4:b0:53:04:f1:d5:
         8a:a2:4a:03:96:69:00:bc:9f:0e:31:90:dc:83:72:52:3c:e1:
         2c:c7:12:90:24:83:3e:05:ec:a9:48:0b:c2:bb:48:f3:ca:12:
         53:93:48:cb:43:35:b4:f6:18:8b:39:64:03:67:41:9c:be:59:
         29:ea:61:7f:fc:bc:50:3d:fd:1e:3d:41:db:b5:64:6b:66:b3:
         5d:4d:08:e3:d2:56:67:86:2e:4a:cb:f5:2e:4d:d1:de:75:29:
         18:d2:7d:a1:31:7f:de:5f:35:f4:b9:22:3e:9c:2b:2f:64:e0:
         60:cd:3c:64:e4:4d:ba:70:cf:0d:b6:47:a7:78:68:c1:fe:74:
         9e:45:3a:64:04:5a:81:e2:c8:b9:77:57:ec:3c:60:9c:ed:5b:
         a9:79:32:bc:8c:ff:b8:03:15:06:23:31:1a:8d:4d:9b:e6:cf:
         39:8b:84:2f:c0:cb:84:db:f3:5e:99:32:13:28:f8:4e:f4:13:
         80:7b:90:2a:7b:57:7f:63:26:80:55:f5:81:a2:0a:8c:71:a3:
         77:c6:82:cb:7a:ed:48:8c:13:bc:e3:a0:b5:66:bb:19:6e:0f:
         1d:d9:23:71:c3:ef:ef:ad:11:a8:b2:52:9e:ac:6f:90:49:65:
         dc:fd:58:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:09 2023 by rpki-client on console-fra.rpki-client.org