Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/3139302e39302e3138322e302f32332d3234203d3e203236363139.roa
File:                     3139302e39302e3138322e302f32332d3234203d3e203236363139.roa (raw, json)
Hash identifier:          YsTieNXCvR0vLTztNDhHZoP6bfpYGfQfKF6Pu/5gquE=
Subject key identifier:   6F:9F:D6:33:86:49:89:07:91:53:5C:89:D0:F6:FF:4F:52:36:38:A4
Certificate issuer:       /CN=CBDE88C65320D3EBD8ED2F568D896F3935E87CC5
Certificate serial:       4CBFB4A927E79319FFA573F31A1630D194C72A
Authority key identifier: CB:DE:88:C6:53:20:D3:EB:D8:ED:2F:56:8D:89:6F:39:35:E8:7C:C5
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBDE88C65320D3EBD8ED2F568D896F3935E87CC5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/3139302e39302e3138322e302f32332d3234203d3e203236363139.roa
Signing time:             Tue 04 Feb 2025 18:17:17 +0000
ROA not before:           Tue 04 Feb 2025 18:12:17 +0000
ROA not after:            Tue 03 Feb 2026 18:17:17 +0000
asID:                     26619
IP address blocks:        190.90.182.0/23 maxlen: 24
Validation:               Failed, certificate revoked on Wed 05 Mar 2025 15:30:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4c:bf:b4:a9:27:e7:93:19:ff:a5:73:f3:1a:16:30:d1:94:c7:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CBDE88C65320D3EBD8ED2F568D896F3935E87CC5
        Validity
            Not Before: Feb  4 18:12:17 2025 GMT
            Not After : Feb  3 18:17:17 2026 GMT
        Subject: CN=6F9FD6338649890791535C89D0F6FF4F523638A4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:45:a9:24:b2:37:b7:fd:41:43:81:99:23:f2:
                    8d:e3:00:f0:8e:73:f8:4d:73:53:74:61:43:64:10:
                    7a:ac:a0:8b:eb:4f:47:b5:94:3b:99:8b:9a:a8:5e:
                    3c:5f:e7:0c:90:4c:26:3c:12:9c:df:1c:17:aa:76:
                    de:7b:0d:92:64:04:74:1e:cb:bc:59:3f:6d:4d:2a:
                    bd:50:90:50:62:98:fa:e2:b9:2c:a6:de:e0:30:ff:
                    2d:67:fb:7b:8a:b6:7d:d5:8c:ab:a4:46:5f:ec:46:
                    66:4e:01:e5:09:ce:c3:c1:66:00:b4:aa:e1:1d:dd:
                    c1:22:d1:1e:6f:d5:6a:4d:a2:7a:85:ee:62:e9:1d:
                    0b:ab:29:c7:02:c7:b5:7c:f2:96:10:42:09:67:50:
                    9d:10:e4:d4:5e:35:69:73:27:fa:a5:94:98:5e:16:
                    8e:c8:cb:3b:fc:6a:62:18:46:ca:ff:5b:03:a2:ef:
                    99:16:84:26:f1:29:22:5b:ec:78:ee:fc:d8:58:4a:
                    98:19:64:c8:81:1a:35:13:8e:e0:03:f3:9b:6c:5b:
                    43:86:db:90:b0:d2:32:fa:32:9e:de:89:ad:73:cb:
                    64:21:ad:f3:25:47:ee:d6:c3:97:f2:56:55:0e:de:
                    21:33:59:2f:fa:c6:97:78:8d:31:73:7a:f8:14:b5:
                    1c:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:9F:D6:33:86:49:89:07:91:53:5C:89:D0:F6:FF:4F:52:36:38:A4
            X509v3 Authority Key Identifier:
                keyid:CB:DE:88:C6:53:20:D3:EB:D8:ED:2F:56:8D:89:6F:39:35:E8:7C:C5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/CBDE88C65320D3EBD8ED2F568D896F3935E87CC5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBDE88C65320D3EBD8ED2F568D896F3935E87CC5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/3139302e39302e3138322e302f32332d3234203d3e203236363139.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.90.182.0/23

    Signature Algorithm: sha256WithRSAEncryption
         76:34:33:d9:d4:82:0b:a0:c4:b9:ac:fc:1a:68:8f:6f:f4:d3:
         fc:a6:6e:7d:e2:d2:7b:63:40:48:7a:94:ac:3a:79:f7:a6:77:
         62:90:34:eb:09:7d:a8:8d:09:fc:e6:88:7f:f6:51:7b:82:1f:
         fc:ea:ae:b6:7b:5f:1f:3e:f2:29:fc:67:ef:b6:93:0f:96:a5:
         ac:da:5c:ec:6a:2d:f0:be:2a:7f:0c:92:1c:a1:64:15:77:32:
         d1:3a:9e:49:60:f6:4a:0f:1b:fb:68:bf:42:eb:49:71:79:3e:
         0a:28:e5:19:db:cb:70:d2:79:75:e2:bb:1d:52:20:23:fe:64:
         02:7a:13:f9:fc:55:6d:b3:0c:59:ae:93:ac:74:63:49:dc:cd:
         e4:db:db:c0:73:a5:f1:10:bd:fd:1b:61:2b:ba:df:ce:27:a0:
         2c:0f:8c:80:6c:ae:da:c4:b7:85:65:64:81:2f:6f:50:97:01:
         5d:26:e9:5d:39:26:51:6d:32:df:15:f3:21:08:f1:86:5c:75:
         8b:73:52:24:2f:6e:52:e4:df:c3:3a:e2:f2:a4:b9:4a:85:f1:
         2b:01:15:28:7b:f1:02:d5:e6:d0:c5:dc:6a:64:8a:47:d8:ee:
         ff:96:21:b0:c6:2d:10:e0:8c:75:1d:f6:d9:35:a7:30:3b:70:
         08:88:fb:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----