Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/38341965AE766940A3EC2965818A70FE8AB95C2A5C48C696B384EB73088E208A/0/323830333a616463303a3a2f33322d3438203d3e20323635373232.roa
File:                     323830333a616463303a3a2f33322d3438203d3e20323635373232.roa (raw, json)
Hash identifier:          xMobCjTFjLzTFtYx1cLJLFH2J93rirG7/gUfKCVVxrU=
Subject key identifier:   BD:96:CD:37:03:59:97:2D:05:4E:21:59:4A:CF:D7:76:7E:94:2C:42
Certificate issuer:       /CN=FB037DD6ACAA6389722AF82D5B43CBAFA3A33153
Certificate serial:       049394F9AE58D86F05AA223BA155F0772B17371E
Authority key identifier: FB:03:7D:D6:AC:AA:63:89:72:2A:F8:2D:5B:43:CB:AF:A3:A3:31:53
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FB037DD6ACAA6389722AF82D5B43CBAFA3A33153.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/38341965AE766940A3EC2965818A70FE8AB95C2A5C48C696B384EB73088E208A/0/323830333a616463303a3a2f33322d3438203d3e20323635373232.roa
Signing time:             Fri 10 May 2024 22:05:00 +0000
ROA not before:           Fri 10 May 2024 22:00:00 +0000
ROA not after:            Fri 09 May 2025 22:05:00 +0000
asID:                     265722
IP address blocks:        2803:adc0::/32 maxlen: 48

Validation:               Failed, certificate revoked on Sun 07 Jul 2024 15:50:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:93:94:f9:ae:58:d8:6f:05:aa:22:3b:a1:55:f0:77:2b:17:37:1e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB037DD6ACAA6389722AF82D5B43CBAFA3A33153
        Validity
            Not Before: May 10 22:00:00 2024 GMT
            Not After : May  9 22:05:00 2025 GMT
        Subject: CN=BD96CD370359972D054E21594ACFD7767E942C42
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:fa:ab:89:94:f2:6c:7c:7c:a7:69:a2:6f:fb:
                    10:2d:46:19:ba:69:c2:b6:aa:05:21:dd:79:a1:ca:
                    44:3a:3c:f7:45:09:fa:13:65:a0:aa:6a:82:4d:bd:
                    11:4c:9c:0e:bf:70:d6:8c:27:b3:f0:f6:80:bf:c4:
                    c7:aa:a8:22:07:e6:94:94:5e:37:cd:f3:30:b8:a1:
                    68:cd:3a:c8:b0:ac:ca:29:1b:ec:7e:e4:ff:88:3b:
                    5f:c2:1e:c8:c9:5a:a0:c2:65:ad:b4:c1:bd:27:0a:
                    cc:c3:f9:4f:01:16:67:e1:75:19:f9:4c:00:c8:8a:
                    74:e2:4e:6d:7f:ab:4e:be:c8:fc:95:41:1b:e2:82:
                    c0:61:ef:22:4d:fe:f1:ab:00:eb:46:c2:51:a4:56:
                    b8:b3:5d:aa:67:cc:92:dd:0f:76:73:88:e2:c0:19:
                    2a:47:40:3c:07:93:ff:e8:cd:5e:93:3f:ea:4b:6e:
                    ab:79:eb:af:2c:a6:60:6e:7c:1c:a9:7b:7b:81:51:
                    ce:d9:b9:50:ab:04:77:d9:97:d7:a8:7f:14:da:6b:
                    22:73:0d:26:d5:21:ad:ad:93:d7:df:df:87:41:56:
                    fe:8b:9e:72:92:45:25:a9:96:da:7d:3c:6a:ca:ea:
                    15:ad:28:bc:38:34:e0:06:1f:e3:fd:d8:60:fc:b2:
                    a3:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:96:CD:37:03:59:97:2D:05:4E:21:59:4A:CF:D7:76:7E:94:2C:42
            X509v3 Authority Key Identifier:
                keyid:FB:03:7D:D6:AC:AA:63:89:72:2A:F8:2D:5B:43:CB:AF:A3:A3:31:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/38341965AE766940A3EC2965818A70FE8AB95C2A5C48C696B384EB73088E208A/0/FB037DD6ACAA6389722AF82D5B43CBAFA3A33153.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FB037DD6ACAA6389722AF82D5B43CBAFA3A33153.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/38341965AE766940A3EC2965818A70FE8AB95C2A5C48C696B384EB73088E208A/0/323830333a616463303a3a2f33322d3438203d3e20323635373232.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:adc0::/32

    Signature Algorithm: sha256WithRSAEncryption
         69:6a:44:40:ed:1b:36:fc:8b:91:da:7a:b2:51:5c:25:79:82:
         30:2f:a5:72:b0:19:24:86:10:0e:fc:67:62:18:c3:78:86:a5:
         2a:81:6e:ef:0b:1c:62:3a:e1:c6:24:04:67:7e:b4:78:3c:13:
         18:93:e3:31:fc:29:1f:30:99:03:1b:ea:96:66:ba:9e:4a:83:
         b3:10:9b:12:79:19:29:68:ed:bd:87:8f:c8:66:5e:66:17:2a:
         96:c4:d9:07:50:92:02:e5:f5:d0:59:26:5c:4c:83:c8:d6:e4:
         8b:7a:9c:e5:c7:50:04:49:ab:40:27:d9:0f:0e:d5:80:af:52:
         9a:52:95:20:e6:ac:f6:65:a9:33:7a:ff:4f:d7:36:39:e6:74:
         14:d2:ce:3a:b4:73:6d:71:7f:da:7f:27:64:94:91:9d:0f:da:
         44:0f:c2:55:d4:4e:89:4f:cc:36:7b:bb:3d:a5:82:99:58:eb:
         89:f9:a1:62:43:46:c9:d5:4c:25:de:24:5b:30:ed:33:8f:cb:
         7a:95:10:6c:c8:79:c7:a9:54:c2:6c:17:60:83:8b:dc:c6:56:
         ca:ae:4b:03:0c:07:af:05:a5:11:a5:e1:1e:2b:ba:5a:6c:04:
         9d:1e:56:e4:d7:18:a1:63:ea:02:7a:9e:19:58:91:16:43:18:
         09:ca:d3:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 18:29:07 2024 by rpki-client on console-ams.rpki-client.org