Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e3133322e302f32342d3234203d3e203233353230.roa
File:                     3139302e3234322e3133322e302f32342d3234203d3e203233353230.roa (raw, json)
Hash identifier:          rGIj9Yn2Y6VHwv3QdYniY+RvrYOeJy4PVzSFv8BYGjY=
Subject key identifier:   A2:43:B4:39:8F:CF:66:CD:0C:DE:9C:83:D3:79:59:0B:E0:94:DE:08
Certificate issuer:       /CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
Certificate serial:       1118AD97E9AE54A227DA67BA29C8083E86A0A1CF
Authority key identifier: 76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e3133322e302f32342d3234203d3e203233353230.roa
Signing time:             Tue 05 Mar 2024 18:14:41 +0000
ROA not before:           Tue 05 Mar 2024 18:09:41 +0000
ROA not after:            Tue 04 Mar 2025 18:14:41 +0000
asID:                     23520
IP address blocks:        190.242.132.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 30 Jul 2024 17:10:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            11:18:ad:97:e9:ae:54:a2:27:da:67:ba:29:c8:08:3e:86:a0:a1:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
        Validity
            Not Before: Mar  5 18:09:41 2024 GMT
            Not After : Mar  4 18:14:41 2025 GMT
        Subject: CN=A243B4398FCF66CD0CDE9C83D379590BE094DE08
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:41:85:ec:c6:0f:15:c5:c3:67:c5:a3:ce:97:
                    b3:ee:6c:00:31:9a:7f:8e:c4:b4:ca:80:59:45:b5:
                    0c:92:d3:4b:f9:1d:14:2f:e2:11:b7:ff:18:c4:bb:
                    63:46:f1:e5:68:6d:1f:ee:37:b1:e4:7c:9f:34:68:
                    22:e4:55:5b:26:fd:f8:d0:73:ea:6e:bc:d9:59:1b:
                    4f:e1:49:c8:82:07:7a:65:46:39:29:b6:1e:b9:b5:
                    49:f2:42:20:b9:75:26:82:9d:b5:20:6b:de:24:d5:
                    2f:3e:a4:ce:1b:8f:4d:5b:fc:a5:0a:e1:f5:c6:59:
                    21:5f:74:7c:c6:fb:47:9e:dc:c4:a0:6b:11:30:4b:
                    d6:62:f2:29:62:28:0c:cc:3b:11:ac:1a:ac:67:e7:
                    03:e2:f7:1a:e8:8d:9e:87:e0:dd:00:62:ee:a7:67:
                    96:ee:9a:9b:e3:68:5d:dd:e5:ad:b7:27:26:12:3c:
                    4c:c4:e3:9b:e9:84:7d:87:89:61:cd:bd:8a:4c:70:
                    f9:09:5e:79:ce:0c:40:52:92:01:64:3f:cf:5f:e8:
                    d1:cc:c3:55:f7:8f:3e:f9:a1:2c:fe:ad:59:48:1f:
                    78:1f:08:57:83:fe:68:09:dd:b6:2d:a5:a3:a0:ad:
                    f7:b9:a2:09:e5:90:fb:68:38:1b:f4:6c:f0:18:b3:
                    f4:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:43:B4:39:8F:CF:66:CD:0C:DE:9C:83:D3:79:59:0B:E0:94:DE:08
            X509v3 Authority Key Identifier:
                keyid:76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e3133322e302f32342d3234203d3e203233353230.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.242.132.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a4:d6:75:bc:42:36:24:7c:79:3c:13:64:14:d4:39:a0:80:87:
         77:ce:1b:10:13:66:1c:02:ca:c3:0a:af:b8:36:c4:6d:2b:14:
         77:ba:bf:a3:f7:95:d1:01:75:d6:01:51:73:24:7b:1b:c3:10:
         b6:9d:9e:56:1f:41:07:36:ea:7e:eb:f8:03:06:81:2a:68:b8:
         f6:e2:45:13:68:0c:48:11:67:63:f3:12:12:53:44:c7:a5:c6:
         05:7e:df:66:9c:b4:8d:8c:93:c5:f4:ef:35:11:98:5b:78:34:
         cb:e2:8c:b9:14:74:13:fb:08:ad:94:09:e3:0f:3e:4d:71:4e:
         b1:38:71:1a:bb:17:22:bb:a2:f6:51:ed:72:93:a7:ec:a3:f6:
         e9:5e:4d:3b:42:fa:57:95:3d:1f:82:b0:30:4c:c2:e3:13:a3:
         86:59:d1:89:11:50:06:a2:a5:17:cb:1f:a5:8f:3a:ea:c1:33:
         1d:b0:cd:cb:20:e4:23:00:87:9e:12:8c:9d:c5:b8:5e:f4:6c:
         fa:d5:55:b7:20:96:a6:d1:db:d5:27:55:74:6d:7e:84:e9:3d:
         68:d6:f5:bf:69:82:82:0a:b2:9f:e5:a5:31:bf:fc:b6:c3:5c:
         a5:f5:ec:14:09:fd:38:9c:f5:e2:13:21:b3:ab:c7:42:49:67:
         6f:8b:76:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 19:59:36 2024 by rpki-client on console-ams.rpki-client.org