Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/3136382e3139362e3230382e302f32342d3234203d3e20323730313031.roa
File:                     3136382e3139362e3230382e302f32342d3234203d3e20323730313031.roa (raw, json)
Hash identifier:          2p47WpFHhsToIJBC43roaC5b32PdQj9lc4G6y+Z4rKM=
Subject key identifier:   DB:26:FB:29:0D:A7:6E:57:39:F6:2C:35:50:39:46:6E:FF:03:A9:37
Certificate issuer:       /CN=BD94D9821F379D20EA36D36736038ACA527A9932
Certificate serial:       2C440E5C75F45257A862FD81F34AC8B47D6FF538
Authority key identifier: BD:94:D9:82:1F:37:9D:20:EA:36:D3:67:36:03:8A:CA:52:7A:99:32
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD94D9821F379D20EA36D36736038ACA527A9932.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/3136382e3139362e3230382e302f32342d3234203d3e20323730313031.roa
Signing time:             Tue 05 Mar 2024 17:43:49 +0000
ROA not before:           Tue 05 Mar 2024 17:38:49 +0000
ROA not after:            Tue 04 Mar 2025 17:43:49 +0000
asID:                     270101
IP address blocks:        168.196.208.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Sat 01 Jun 2024 14:50:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2c:44:0e:5c:75:f4:52:57:a8:62:fd:81:f3:4a:c8:b4:7d:6f:f5:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BD94D9821F379D20EA36D36736038ACA527A9932
        Validity
            Not Before: Mar  5 17:38:49 2024 GMT
            Not After : Mar  4 17:43:49 2025 GMT
        Subject: CN=DB26FB290DA76E5739F62C355039466EFF03A937
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:66:6a:19:04:d2:af:e2:95:dc:6f:b6:40:d4:
                    fa:68:58:38:0c:b2:6d:0d:ce:eb:4d:cf:5a:af:36:
                    65:d9:26:48:0f:87:c8:33:fe:f1:ee:6c:ac:17:49:
                    5f:e0:9e:d4:f2:14:85:78:98:d0:76:da:93:ff:89:
                    68:11:a8:9e:f6:1f:f2:9a:5c:c9:f9:18:de:a9:02:
                    11:d0:d9:00:c1:7e:b2:28:7f:38:97:2e:75:de:55:
                    d7:9e:d1:3f:ce:6c:e8:9b:5d:da:21:43:f4:08:aa:
                    25:18:19:22:b9:76:eb:40:1f:e5:d0:a9:f6:d3:36:
                    b8:13:f5:58:08:b1:64:58:07:84:83:ba:fc:5b:b8:
                    3d:5c:fa:46:9a:24:77:6c:06:50:8e:6b:f8:ec:b3:
                    b6:7b:6d:80:61:e2:cb:6b:77:40:e9:6c:88:69:fc:
                    e8:24:68:3b:30:4f:18:77:54:5e:9d:57:fa:e0:9b:
                    95:b3:fd:af:d9:16:03:39:5e:2d:52:42:94:32:5f:
                    0b:36:cf:98:2d:95:9f:d9:c2:aa:2c:db:99:c2:b2:
                    4c:87:f5:d0:b1:10:e0:8c:b9:ee:ff:b3:ef:d0:5e:
                    47:7e:b7:a7:3b:b5:ab:61:ed:8a:a3:a1:06:39:5c:
                    fa:c9:ff:06:b5:76:f4:b2:28:1f:07:de:18:b0:56:
                    de:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:26:FB:29:0D:A7:6E:57:39:F6:2C:35:50:39:46:6E:FF:03:A9:37
            X509v3 Authority Key Identifier:
                keyid:BD:94:D9:82:1F:37:9D:20:EA:36:D3:67:36:03:8A:CA:52:7A:99:32

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/BD94D9821F379D20EA36D36736038ACA527A9932.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD94D9821F379D20EA36D36736038ACA527A9932.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/3136382e3139362e3230382e302f32342d3234203d3e20323730313031.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  168.196.208.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0b:f8:5a:1e:18:51:09:57:68:44:44:1d:8c:5e:f9:a4:80:46:
         aa:29:6d:1c:fd:57:7f:1f:5b:46:88:67:14:86:c8:28:19:0a:
         63:71:54:4f:e5:57:96:d3:94:7d:cd:60:95:cd:2b:6d:13:a9:
         ce:1d:e9:d5:85:ea:02:3b:bc:ad:c9:d6:db:95:77:f0:6f:e6:
         74:8d:5f:e2:4e:c6:bc:3d:8a:33:72:63:2d:69:d5:f0:9e:88:
         d1:e9:56:1a:2f:3a:0f:7d:74:ff:f2:ba:f6:4d:6f:23:a3:5d:
         00:d2:59:dc:a8:c6:72:2e:29:dd:d4:7a:7f:86:19:de:55:8c:
         75:10:77:d3:cb:54:3e:35:e2:3b:34:13:c9:0a:be:98:59:95:
         6e:2e:02:c1:bd:6f:1e:24:e3:ea:87:ce:72:dd:28:df:35:44:
         4a:6c:05:4d:e1:38:99:ae:6b:66:8e:3b:96:f0:10:6b:6f:85:
         29:e3:fe:2d:a6:80:e2:c8:dc:96:b0:0d:a5:6b:da:ad:e8:67:
         f8:cb:e6:78:15:7f:f3:66:84:85:39:20:29:be:0f:6d:81:96:
         77:32:57:20:a8:43:02:bf:f0:72:ac:d0:de:d4:b0:16:10:7c:
         cc:b6:09:4b:cc:be:13:83:3b:a5:9c:99:b9:41:4f:d4:d4:a6:
         dc:21:5b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----