Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/317E94E3ECFEA74BED41FBB306A71B3CA8E717FF7BAB86F4CB4B3A5CF709964C/0/3230302e3131322e3230302e302f32322d3232203d3e20323635353534.roa
File:                     3230302e3131322e3230302e302f32322d3232203d3e20323635353534.roa (raw, json)
Hash identifier:          FGZHEx2eMUuRkwS/gb8jQVmBoEiT+Z+CYdaB4WkyunI=
Subject key identifier:   CF:F0:5C:22:26:A9:AA:F9:E4:CA:28:20:E5:52:47:EE:DE:CC:D0:07
Certificate issuer:       /CN=85B7D9685BA8DA2D6F481C323611ED64944F6273
Certificate serial:       2AAC4B37A79FAE85020E5CAEA5207E8702CE2E2E
Authority key identifier: 85:B7:D9:68:5B:A8:DA:2D:6F:48:1C:32:36:11:ED:64:94:4F:62:73
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85B7D9685BA8DA2D6F481C323611ED64944F6273.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/317E94E3ECFEA74BED41FBB306A71B3CA8E717FF7BAB86F4CB4B3A5CF709964C/0/3230302e3131322e3230302e302f32322d3232203d3e20323635353534.roa
Signing time:             Tue 05 Mar 2024 17:54:07 +0000
ROA not before:           Tue 05 Mar 2024 17:49:07 +0000
ROA not after:            Tue 04 Mar 2025 17:54:07 +0000
asID:                     265554
IP address blocks:        200.112.200.0/22 maxlen: 22

Validation:               Failed, certificate revoked on Tue 23 Jul 2024 21:50:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2a:ac:4b:37:a7:9f:ae:85:02:0e:5c:ae:a5:20:7e:87:02:ce:2e:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85B7D9685BA8DA2D6F481C323611ED64944F6273
        Validity
            Not Before: Mar  5 17:49:07 2024 GMT
            Not After : Mar  4 17:54:07 2025 GMT
        Subject: CN=CFF05C2226A9AAF9E4CA2820E55247EEDECCD007
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:4e:78:45:b6:54:9a:28:07:2c:29:c5:46:ec:
                    39:f3:58:16:48:e7:17:70:21:75:cb:0b:33:4b:6d:
                    52:b5:43:0d:10:6d:f6:f1:9b:10:50:26:fd:fa:0f:
                    39:25:7a:49:f8:ad:c1:44:df:cf:12:47:70:14:62:
                    e9:9f:ff:46:62:1e:c9:19:78:da:d7:06:01:16:56:
                    45:0c:96:92:8c:59:54:c7:50:62:a6:4a:94:4b:33:
                    0a:e6:5e:77:6f:87:3e:96:4a:25:76:e8:51:f8:07:
                    a8:fb:3c:1a:9e:25:19:42:4b:03:e1:ea:16:5c:3e:
                    b6:c9:b4:2f:fa:5d:9d:82:d1:62:34:90:21:53:0c:
                    76:2b:a2:d9:cd:23:81:1f:60:00:8c:8c:62:7a:0f:
                    0a:97:86:12:d5:fd:ad:3e:9f:bb:ff:86:02:f4:d9:
                    cc:df:07:a3:7d:96:b0:7f:a1:99:10:4c:29:e8:33:
                    e8:5a:7a:a0:62:e3:0c:14:47:0a:da:ca:c5:a0:44:
                    22:72:61:e2:19:e6:0c:19:b8:4c:a6:fe:33:d9:0e:
                    dd:af:b9:b3:74:72:15:bd:20:e2:8e:44:78:2c:26:
                    cf:21:40:56:a5:c4:0d:c3:cd:a8:27:cc:2c:15:ba:
                    11:fc:f8:17:8b:ba:e2:22:e6:f5:76:8b:77:93:ac:
                    a9:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CF:F0:5C:22:26:A9:AA:F9:E4:CA:28:20:E5:52:47:EE:DE:CC:D0:07
            X509v3 Authority Key Identifier:
                keyid:85:B7:D9:68:5B:A8:DA:2D:6F:48:1C:32:36:11:ED:64:94:4F:62:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/317E94E3ECFEA74BED41FBB306A71B3CA8E717FF7BAB86F4CB4B3A5CF709964C/0/85B7D9685BA8DA2D6F481C323611ED64944F6273.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85B7D9685BA8DA2D6F481C323611ED64944F6273.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/317E94E3ECFEA74BED41FBB306A71B3CA8E717FF7BAB86F4CB4B3A5CF709964C/0/3230302e3131322e3230302e302f32322d3232203d3e20323635353534.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.112.200.0/22

    Signature Algorithm: sha256WithRSAEncryption
         78:ee:c9:b8:5e:5c:52:22:7f:4b:7f:a0:b4:83:c5:9d:a2:e5:
         49:0b:0c:5a:af:10:ad:18:5e:70:13:79:37:ac:3e:ff:59:a4:
         e5:c6:8b:4b:1a:79:41:71:36:54:9d:5b:5d:b8:d0:46:e5:fd:
         b6:49:c4:55:cc:f5:13:bb:27:f7:a8:55:d0:5d:ae:c2:59:f8:
         0b:dc:13:31:aa:9d:be:fc:02:6b:f6:d3:c8:6d:ea:23:6c:81:
         83:16:1c:a5:55:fa:5e:f4:69:8e:3a:d3:5d:7d:ca:04:b2:dc:
         32:4c:01:fa:38:fb:58:42:6b:f8:33:d4:6b:21:26:7a:22:d3:
         22:00:b7:c4:43:6e:fe:f2:62:50:a1:27:a1:66:a5:e0:28:55:
         6f:d3:c1:3b:d1:c0:c5:f1:d1:ac:86:8e:71:07:2d:da:cc:7a:
         12:6e:20:40:7b:a4:e3:ee:c3:59:e4:1a:12:f7:39:44:db:e4:
         69:cb:9b:02:30:21:9c:37:7b:3e:aa:2c:1a:39:91:5b:d6:36:
         4a:7f:ba:d0:2d:d5:ab:c2:f5:bd:62:f2:e0:cf:3c:47:b4:8c:
         d9:60:02:6b:41:4c:76:54:c7:cd:1c:8e:90:47:f7:d5:d1:c3:
         13:43:eb:d6:fb:93:88:ef:1f:c7:92:dd:c8:01:cb:0a:fd:5d:
         10:40:41:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 00:27:27 2024 by rpki-client on console-fra.rpki-client.org