Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/517E31B11E9E1C7780B38638B236300BA0D24C0F749E8D819BC14D5DD686EC2A/0/34352e3137302e3235352e302f32342d3234203d3e20313339323335.roa
File:                     34352e3137302e3235352e302f32342d3234203d3e20313339323335.roa (raw, json)
Hash identifier:          fpGOaarjnCjhkDofi3/MFqTG14etc6ZxIHMi1ypPq0o=
Subject key identifier:   61:B4:B8:03:AF:77:A9:65:C1:CD:2D:C2:F4:68:55:44:EF:F5:C7:5C
Certificate issuer:       /CN=6A86E783E5047079A17A5B8082BB89DADBE252A6
Certificate serial:       2C27D656A0A63A93D09C149CCF47D54A2B692A2B
Authority key identifier: 6A:86:E7:83:E5:04:70:79:A1:7A:5B:80:82:BB:89:DA:DB:E2:52:A6
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6A86E783E5047079A17A5B8082BB89DADBE252A6.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/517E31B11E9E1C7780B38638B236300BA0D24C0F749E8D819BC14D5DD686EC2A/0/34352e3137302e3235352e302f32342d3234203d3e20313339323335.roa
Signing time:             Tue 05 Mar 2024 18:18:23 +0000
ROA not before:           Tue 05 Mar 2024 18:13:23 +0000
ROA not after:            Tue 04 Mar 2025 18:18:23 +0000
asID:                     139235
IP address blocks:        45.170.255.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 06 Nov 2024 20:55:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2c:27:d6:56:a0:a6:3a:93:d0:9c:14:9c:cf:47:d5:4a:2b:69:2a:2b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6A86E783E5047079A17A5B8082BB89DADBE252A6
        Validity
            Not Before: Mar  5 18:13:23 2024 GMT
            Not After : Mar  4 18:18:23 2025 GMT
        Subject: CN=61B4B803AF77A965C1CD2DC2F4685544EFF5C75C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:43:23:00:52:61:71:cb:8d:d8:eb:3b:e5:51:
                    7b:65:02:5a:ff:4d:1f:c2:18:32:46:c6:ac:53:a6:
                    b0:ba:54:42:c4:8a:ce:ce:21:54:de:2e:57:cf:ff:
                    c5:04:f5:79:4d:80:50:72:54:50:84:39:b9:32:4b:
                    83:76:71:7f:3a:32:92:1c:05:ad:4e:67:47:9b:18:
                    ae:0b:ed:ca:9c:61:90:c2:b4:b1:f8:ed:1c:1e:be:
                    e7:b2:03:ea:d8:83:84:9f:81:14:ae:62:3c:e0:23:
                    7d:95:b4:4c:ca:e9:6c:fa:8f:3b:53:8c:06:5c:a0:
                    9c:42:80:f5:d6:77:e5:3e:70:03:92:1d:82:3b:a6:
                    c6:5a:f5:cb:85:02:30:bc:74:c2:0b:93:0b:f2:62:
                    95:3d:a3:df:1d:88:ca:a1:a4:af:66:84:a6:c0:94:
                    b5:a2:91:6e:14:b3:91:73:e4:ba:6d:ea:8a:13:83:
                    8e:3f:51:50:41:e0:86:3c:62:7a:a5:da:33:80:a3:
                    54:b6:1f:c1:ff:e3:2d:e5:3e:32:a0:bf:e0:22:2b:
                    97:c3:88:ed:bc:da:8b:58:42:48:85:fc:66:3a:f1:
                    e5:f6:57:00:65:64:7e:b6:52:56:9f:3f:bb:9f:00:
                    a7:51:1d:b4:46:28:60:a0:f4:15:f5:63:6f:16:6b:
                    6a:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:B4:B8:03:AF:77:A9:65:C1:CD:2D:C2:F4:68:55:44:EF:F5:C7:5C
            X509v3 Authority Key Identifier:
                keyid:6A:86:E7:83:E5:04:70:79:A1:7A:5B:80:82:BB:89:DA:DB:E2:52:A6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/517E31B11E9E1C7780B38638B236300BA0D24C0F749E8D819BC14D5DD686EC2A/0/6A86E783E5047079A17A5B8082BB89DADBE252A6.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6A86E783E5047079A17A5B8082BB89DADBE252A6.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/517E31B11E9E1C7780B38638B236300BA0D24C0F749E8D819BC14D5DD686EC2A/0/34352e3137302e3235352e302f32342d3234203d3e20313339323335.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.170.255.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3c:86:ed:ad:0e:25:23:4a:f1:21:e6:74:6b:fa:fc:88:1c:25:
         ea:85:34:5d:cc:f5:bd:00:a7:13:36:68:31:c3:b6:61:fe:6f:
         dc:2e:6b:d4:cd:b6:bb:92:ce:15:36:d3:3a:ea:19:20:4f:19:
         54:55:d6:c4:b1:4b:55:f6:df:60:ff:36:f3:65:99:c5:81:20:
         95:fc:24:18:53:e4:42:b4:93:c5:ea:f7:a6:ca:bd:11:90:30:
         bb:9d:7c:6a:f0:77:78:73:5b:6d:a0:3f:34:51:9b:4f:82:61:
         e2:a5:d6:95:e5:c3:42:f0:4f:08:e4:f1:82:97:c8:4e:62:8a:
         3c:94:90:46:30:80:9a:01:c1:34:20:8d:e3:ac:be:fe:28:21:
         11:24:c3:ef:30:53:b8:6c:da:cc:0f:0a:1a:d2:ad:ea:d1:28:
         c0:8d:0f:39:b1:08:d7:6d:3d:d2:d9:5c:47:a4:c8:95:42:05:
         5a:da:52:b9:ae:dc:01:fc:c9:4b:c2:45:42:0a:0e:b4:38:f6:
         47:f2:c6:4e:81:5f:6a:8c:df:a7:22:94:8e:17:7c:40:17:26:
         c2:9a:c1:e8:20:bd:1f:68:76:26:5d:fa:86:3d:15:67:af:26:
         7c:83:6a:59:ca:18:ff:45:d6:f9:ec:2e:b6:d1:00:66:2f:f3:
         dc:77:fe:fe
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIULCfWVqCmOpPQnBScz0fVSitpKiswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkE4NkU3ODNFNTA0NzA3OUExN0E1QjgwODJCQjg5REFE
QkUyNTJBNjAeFw0yNDAzMDUxODEzMjNaFw0yNTAzMDQxODE4MjNaMDMxMTAvBgNV
BAMTKDYxQjRCODAzQUY3N0E5NjVDMUNEMkRDMkY0Njg1NTQ0RUZGNUM3NUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOQyMAUmFxy43Y6zvlUXtlAlr/
TR/CGDJGxqxTprC6VELEis7OIVTeLlfP/8UE9XlNgFByVFCEObkyS4N2cX86MpIc
Ba1OZ0ebGK4L7cqcYZDCtLH47RwevueyA+rYg4SfgRSuYjzgI32VtEzK6Wz6jztT
jAZcoJxCgPXWd+U+cAOSHYI7psZa9cuFAjC8dMILkwvyYpU9o98diMqhpK9mhKbA
lLWikW4Us5Fz5Lpt6ooTg44/UVBB4IY8Ynql2jOAo1S2H8H/4y3lPjKgv+AiK5fD
iO282otYQkiF/GY68eX2VwBlZH62UlafP7ufAKdRHbRGKGCg9BX1Y28Wa2pzAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUYbS4A693qWXBzS3C9GhVRO/1x1wwHwYDVR0j
BBgwFoAUaobng+UEcHmheluAgruJ2tviUqYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81MTdFMzFCMTFFOUUxQzc3ODBCMzg2MzhCMjM2MzAwQkEw
RDI0QzBGNzQ5RThEODE5QkMxNEQ1REQ2ODZFQzJBLzAvNkE4NkU3ODNFNTA0NzA3
OUExN0E1QjgwODJCQjg5REFEQkUyNTJBNi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC82QTg2RTc4M0U1MDQ3MDc5QTE3
QTVCODA4MkJCODlEQURCRTI1MkE2LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTE3RTMxQjExRTlFMUM3NzgwQjM4NjM4QjIzNjMwMEJBMEQyNEMwRjc0
OUU4RDgxOUJDMTRENURENjg2RUMyQS8wLzM0MzUyZTMxMzczMDJlMzIzNTM1MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM5MzIzMzM1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALar/
MA0GCSqGSIb3DQEBCwUAA4IBAQA8hu2tDiUjSvEh5nRr+vyIHCXqhTRdzPW9AKcT
Nmgxw7Zh/m/cLmvUzba7ks4VNtM66hkgTxlUVdbEsUtV9t9g/zbzZZnFgSCV/CQY
U+RCtJPF6vemyr0RkDC7nXxq8Hd4c1ttoD80UZtPgmHipdaV5cNC8E8I5PGCl8hO
Yoo8lJBGMICaAcE0II3jrL7+KCERJMPvMFO4bNrMDwoa0q3q0SjAjQ85sQjXbT3S
2VxHpMiVQgVa2lK5rtwB/MlLwkVCCg60OPZH8sZOgV9qjN+nIpSOF3xAFybCmsHo
IL0faHYmXfqGPRVnryZ8g2pZyhj/Rdb57C620QBmL/Pcd/7+
-----END CERTIFICATE-----
Generated at Thu Nov 7 00:38:33 2024 by rpki-client on console-ams.rpki-client.org