Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e3135372e302f32342d3234203d3e203233353230.roa
File:                     3139302e3234322e3135372e302f32342d3234203d3e203233353230.roa (raw, json)
Hash identifier:          yeUqMneA+sUabevo5hVwtLlLauHgIquZZSrB7/vvnzc=
Subject key identifier:   30:CD:3F:FE:FB:A5:38:CC:0E:FB:34:02:62:0C:B3:EC:DE:75:C0:F7
Certificate issuer:       /CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
Certificate serial:       39814DC2C1B715E7FE613F6018CD63D8B7C08C0E
Authority key identifier: 76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e3135372e302f32342d3234203d3e203233353230.roa
Signing time:             Tue 05 Mar 2024 18:14:24 +0000
ROA not before:           Tue 05 Mar 2024 18:09:24 +0000
ROA not after:            Tue 04 Mar 2025 18:14:24 +0000
asID:                     23520
IP address blocks:        190.242.157.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 30 Jul 2024 17:10:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            39:81:4d:c2:c1:b7:15:e7:fe:61:3f:60:18:cd:63:d8:b7:c0:8c:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
        Validity
            Not Before: Mar  5 18:09:24 2024 GMT
            Not After : Mar  4 18:14:24 2025 GMT
        Subject: CN=30CD3FFEFBA538CC0EFB3402620CB3ECDE75C0F7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:6a:2d:c3:93:72:ef:eb:4b:49:91:e7:ef:6b:
                    38:13:16:0e:9a:c4:a9:3f:cd:b7:6f:cf:87:0d:c7:
                    e9:7c:99:a1:59:50:36:58:b3:7a:c1:d3:b3:e8:1a:
                    dd:4e:42:37:c6:e7:6d:29:f1:16:4f:8c:0c:00:91:
                    0e:eb:36:c3:f9:95:f0:42:d7:2b:c9:76:45:b1:ec:
                    0c:58:2f:21:f5:70:36:f7:22:d3:3c:d7:82:23:ea:
                    77:74:26:18:e4:40:34:de:5d:38:2b:fd:2c:bc:9d:
                    35:25:54:d1:d0:50:63:dc:68:d2:a8:f2:95:20:71:
                    01:d7:9f:a7:74:e2:77:eb:e8:3d:fe:81:89:f6:60:
                    d7:44:85:d0:e6:e5:ea:be:59:3a:10:5b:e0:00:1f:
                    8a:77:af:86:75:af:a0:e3:82:9d:58:48:3f:5e:94:
                    e3:e1:46:bb:43:ff:0d:e5:db:5e:f4:55:1b:77:7e:
                    71:d1:9a:00:3d:09:74:c7:b3:ca:fa:30:8f:90:6a:
                    41:1c:dd:5f:50:1e:88:68:8d:19:94:07:1b:21:92:
                    79:32:9f:59:eb:bb:7d:41:e8:e9:da:2d:63:97:13:
                    59:52:5e:d4:c5:0b:cf:9c:ba:dc:ff:57:48:a1:46:
                    6e:0a:68:f6:c9:db:30:e6:46:24:84:6d:54:43:58:
                    3d:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:CD:3F:FE:FB:A5:38:CC:0E:FB:34:02:62:0C:B3:EC:DE:75:C0:F7
            X509v3 Authority Key Identifier:
                keyid:76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e3135372e302f32342d3234203d3e203233353230.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.242.157.0/24

    Signature Algorithm: sha256WithRSAEncryption
         89:ec:3f:d9:f7:d3:71:ab:9e:17:33:5b:bf:29:57:85:ab:51:
         ed:67:3d:89:22:ff:d5:5a:94:7d:15:f8:53:76:3b:0d:5b:6f:
         23:4f:0e:63:95:14:75:37:5e:01:62:49:dc:50:a6:b3:55:c4:
         1a:20:be:f8:01:40:f5:50:b5:dc:86:a5:c7:95:e0:fb:eb:93:
         c1:31:b3:bd:be:f1:e6:0b:18:ba:54:18:1d:54:77:7d:0f:cf:
         27:72:4d:82:27:c5:5d:eb:f0:e2:38:49:0d:ec:ba:b2:f2:b6:
         18:b3:e1:6a:32:6d:e3:96:7a:b3:6a:3e:6c:7d:28:8d:81:61:
         1e:37:57:63:0a:00:1f:b2:0c:4d:3b:be:f2:c5:ca:5b:6f:ce:
         3d:13:ce:4c:19:2f:da:2b:ea:23:da:f1:ef:5f:aa:07:f9:5b:
         73:4a:d1:3e:fd:83:59:e3:6b:62:da:b6:2f:84:31:36:15:61:
         31:27:e2:79:1a:ba:8c:3e:10:aa:54:ed:fe:eb:0f:1e:30:02:
         87:15:3c:2d:42:4c:f5:00:b8:ec:d0:1a:41:a4:06:28:c0:b3:
         61:8f:8b:cb:ac:5a:d5:b8:d0:2a:b8:2f:16:4d:7f:2e:a1:10:
         cc:af:91:9c:c9:4a:a2:1e:b5:26:e3:3b:fe:33:78:94:3b:62:
         77:60:fe:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 19:59:36 2024 by rpki-client on console-ams.rpki-client.org