Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/323830303a3830303a3935303a3a2f34382d3438203d3e203134303830.roa
File:                     323830303a3830303a3935303a3a2f34382d3438203d3e203134303830.roa (raw, json)
Hash identifier:          zkTM0SNUCKJiNHKVvcmQUjlrALjM4VSjZuqzGQLHnXg=
Subject key identifier:   CE:13:EC:2F:33:34:CC:54:30:F5:DA:2B:F0:1F:DA:0D:CA:C9:5A:01
Certificate issuer:       /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial:       359C3540546B1E36B6106A8A1517CDC14D207EAC
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/323830303a3830303a3935303a3a2f34382d3438203d3e203134303830.roa
Signing time:             Tue 04 Feb 2025 18:05:13 +0000
ROA not before:           Tue 04 Feb 2025 18:00:13 +0000
ROA not after:            Tue 03 Feb 2026 18:05:13 +0000
asID:                     14080
IP address blocks:        2800:800:950::/48 maxlen: 48
Validation:               Failed, certificate revoked on Thu 06 Feb 2025 19:25:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            35:9c:35:40:54:6b:1e:36:b6:10:6a:8a:15:17:cd:c1:4d:20:7e:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
        Validity
            Not Before: Feb  4 18:00:13 2025 GMT
            Not After : Feb  3 18:05:13 2026 GMT
        Subject: CN=CE13EC2F3334CC5430F5DA2BF01FDA0DCAC95A01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:b0:c9:b0:3c:6c:6f:19:d2:f2:52:5d:e3:7e:
                    7b:c2:be:d9:7d:0f:36:1f:1f:7f:e7:79:9d:80:8f:
                    b7:b8:8d:21:13:a5:2d:bf:e8:dc:dd:56:1a:66:2f:
                    4a:01:20:64:1a:0a:23:40:56:23:21:17:9a:d9:59:
                    05:f0:cc:01:71:c8:8c:03:3a:29:86:91:ec:bf:36:
                    3b:14:b8:1e:31:6e:e2:0d:83:24:fe:cb:4a:cb:32:
                    1e:c7:37:5d:2f:0c:4c:8e:03:8d:6a:ed:72:d6:a5:
                    3e:b4:d1:85:f2:2e:b6:9d:65:41:0b:7c:0c:26:10:
                    6e:b7:f0:f3:7b:28:3d:92:f5:a6:7e:a7:87:ad:de:
                    6d:35:b6:a6:5c:14:7d:c7:24:27:9c:3a:55:f2:1f:
                    b1:ec:35:24:4f:43:3f:52:74:f3:37:28:de:87:d0:
                    64:05:d4:22:71:a2:40:b2:ea:a3:b3:1d:ad:f2:3a:
                    1b:29:78:cf:b7:21:d1:3e:86:85:33:bd:c7:5a:a5:
                    61:d9:ad:09:95:a2:62:ec:f4:79:46:a1:80:e8:f6:
                    3e:5f:da:8c:92:39:bf:a4:c1:b8:b5:96:96:0a:b9:
                    29:ad:f0:b7:09:b1:ba:9d:56:f7:4b:4c:0e:03:f7:
                    6c:8b:c4:d2:96:5f:84:c7:62:67:4a:f5:fd:91:76:
                    6f:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:13:EC:2F:33:34:CC:54:30:F5:DA:2B:F0:1F:DA:0D:CA:C9:5A:01
            X509v3 Authority Key Identifier:
                keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/323830303a3830303a3935303a3a2f34382d3438203d3e203134303830.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2800:800:950::/48

    Signature Algorithm: sha256WithRSAEncryption
         22:36:e7:c9:b5:3e:e1:6f:5f:d7:78:c5:47:74:ce:4a:9c:b0:
         12:df:ae:7a:c0:ef:2a:09:0b:fc:9f:7c:61:5e:9e:63:f4:25:
         cc:a7:a5:ba:4b:b8:e2:73:fc:bd:4f:93:9c:75:f6:33:46:7d:
         04:3b:fa:06:68:da:ef:c3:cb:cf:97:a4:3f:9a:d8:78:94:63:
         eb:73:84:87:4a:13:d5:94:44:60:21:5e:a5:15:5f:7d:5c:48:
         f1:31:5c:00:cc:b0:df:35:bd:09:80:3e:7f:15:e0:98:ed:b2:
         5f:2d:1a:e5:2b:d5:d6:af:d2:6d:27:44:c9:9b:66:b4:49:78:
         2b:8d:cd:47:a6:19:a7:39:6e:28:38:81:fc:f2:2a:39:db:cd:
         25:7c:1e:92:5f:22:c7:3a:6f:f2:93:74:cb:6f:f0:38:59:e8:
         87:24:f4:80:91:6b:39:f3:83:f3:11:d9:e6:6c:26:54:92:33:
         83:e1:1a:f7:fd:a5:1f:27:36:cd:fc:36:02:0e:5a:4b:9a:d0:
         45:68:cf:d3:f0:7f:27:82:21:10:6a:57:f1:46:a7:89:09:c2:
         55:6b:90:fb:1e:60:14:de:e9:c3:39:13:4f:bb:c1:ae:51:84:
         e9:48:aa:4c:44:6c:aa:66:9a:97:6c:f2:29:f7:e8:e1:5f:db:
         77:6c:1d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 15 01:19:48 2025 by rpki-client