Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e3137312e302f32342d3234203d3e203233353230.roa
File:                     3139302e3234322e3137312e302f32342d3234203d3e203233353230.roa (raw, json)
Hash identifier:          //ta+OOVm+cvld4s/VdMoOLtj78KrdArIaIgz17s5ho=
Subject key identifier:   E7:05:99:AD:8A:81:B5:66:3E:3A:32:6B:A2:E6:31:0A:42:D2:1D:B8
Certificate issuer:       /CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
Certificate serial:       1544E5E7B9F8EF708A68DE7868D9AC41F9E23FD3
Authority key identifier: 76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e3137312e302f32342d3234203d3e203233353230.roa
Signing time:             Tue 05 Mar 2024 18:14:29 +0000
ROA not before:           Tue 05 Mar 2024 18:09:29 +0000
ROA not after:            Tue 04 Mar 2025 18:14:29 +0000
asID:                     23520
IP address blocks:        190.242.171.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 30 Jul 2024 17:10:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            15:44:e5:e7:b9:f8:ef:70:8a:68:de:78:68:d9:ac:41:f9:e2:3f:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
        Validity
            Not Before: Mar  5 18:09:29 2024 GMT
            Not After : Mar  4 18:14:29 2025 GMT
        Subject: CN=E70599AD8A81B5663E3A326BA2E6310A42D21DB8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:f4:61:a9:09:44:6f:66:da:a3:20:6c:ba:01:
                    66:30:fb:1e:b5:ba:28:37:33:45:ba:69:e3:6b:8b:
                    d8:35:ea:c4:b5:f8:ce:e8:bf:de:51:27:79:24:79:
                    f7:01:37:1b:04:81:b4:28:6d:f2:ef:91:f4:fa:cb:
                    38:f9:0b:da:5d:bf:59:72:18:9b:e8:ad:67:5d:d9:
                    a6:f8:17:1e:47:2e:bd:7a:71:ea:75:dc:6d:dd:87:
                    41:15:17:7e:c6:07:92:21:7d:5b:1c:06:1c:95:07:
                    bd:68:9a:42:21:ef:97:6b:da:21:f3:52:e2:51:61:
                    39:53:e3:b1:5a:d0:34:31:42:5c:03:96:9d:cc:c4:
                    36:bb:ac:3c:c4:11:44:ee:53:0c:26:c2:6e:13:60:
                    37:70:00:04:db:af:c8:56:fd:bd:0f:cd:df:df:e4:
                    65:57:ff:9f:9f:64:38:ab:f5:24:8a:1d:f6:5e:c0:
                    fb:20:cc:67:36:a3:88:0a:94:11:31:83:81:3d:f4:
                    28:de:fe:0d:c0:ec:a4:8e:6f:df:86:03:2d:68:f1:
                    76:ed:9a:4c:01:65:3e:6c:af:01:64:97:b2:87:fe:
                    9c:64:39:66:14:b3:db:9a:da:f4:8e:3a:ed:03:51:
                    58:9b:42:d6:34:54:e3:23:c7:55:3f:83:76:28:e9:
                    2d:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:05:99:AD:8A:81:B5:66:3E:3A:32:6B:A2:E6:31:0A:42:D2:1D:B8
            X509v3 Authority Key Identifier:
                keyid:76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e3137312e302f32342d3234203d3e203233353230.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.242.171.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a0:8a:af:23:30:15:86:9c:16:7b:f0:af:db:6b:00:fc:bd:c7:
         10:21:53:8d:27:33:30:e5:22:fc:5a:bb:13:72:36:32:3f:67:
         2a:8b:ba:ba:43:5a:69:03:b6:63:bb:f9:9a:e9:27:8c:75:6e:
         b2:40:e2:65:8f:06:8b:23:e8:42:86:1e:3b:50:17:ea:d8:c0:
         6f:de:bd:8b:fe:e1:4c:ea:c5:65:e4:7a:e2:2b:84:64:c0:dd:
         14:ff:68:15:54:25:09:f6:87:33:95:0e:60:3b:b4:2d:24:cd:
         d7:9b:bf:76:b5:51:bc:2e:4b:fd:54:47:61:7b:fb:7f:46:bb:
         4d:0b:db:5f:b1:25:0b:6b:b9:f5:88:c4:6d:ff:78:cb:24:bd:
         17:c0:c5:3e:38:44:2b:54:29:69:6b:fd:8b:4b:ac:15:b9:cc:
         1a:be:82:38:d8:9f:bf:4b:e9:1d:e6:b0:02:84:3d:ca:f8:80:
         eb:3d:c1:28:62:a4:ad:a6:9c:51:7e:24:41:9e:40:43:88:67:
         d0:4d:f5:d1:69:58:c6:6e:0a:a6:d0:d2:f6:9f:71:58:de:c6:
         1a:c0:fd:a8:17:8b:41:b4:df:6c:11:a1:af:69:8a:8d:f1:94:
         3b:e3:7f:90:b4:30:73:f2:88:4b:29:86:98:b7:48:cb:8d:95:
         73:8b:94:2e
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUFUTl57n473CKaN54aNmsQfniP9MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzZBREQzMUYwNkEwQjc0NUNGREE2QjkzODM1RTE5OERE
QjBEQjc4NDAeFw0yNDAzMDUxODA5MjlaFw0yNTAzMDQxODE0MjlaMDMxMTAvBgNV
BAMTKEU3MDU5OUFEOEE4MUI1NjYzRTNBMzI2QkEyRTYzMTBBNDJEMjFEQjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg9GGpCURvZtqjIGy6AWYw+x61
uig3M0W6aeNri9g16sS1+M7ov95RJ3kkefcBNxsEgbQobfLvkfT6yzj5C9pdv1ly
GJvorWdd2ab4Fx5HLr16cep13G3dh0EVF37GB5IhfVscBhyVB71omkIh75dr2iHz
UuJRYTlT47Fa0DQxQlwDlp3MxDa7rDzEEUTuUwwmwm4TYDdwAATbr8hW/b0Pzd/f
5GVX/5+fZDir9SSKHfZewPsgzGc2o4gKlBExg4E99Cje/g3A7KSOb9+GAy1o8Xbt
mkwBZT5srwFkl7KH/pxkOWYUs9ua2vSOOu0DUVibQtY0VOMjx1U/g3Yo6S0JAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQU5wWZrYqBtWY+OjJrouYxCkLSHbgwHwYDVR0j
BBgwFoAUdq3THwagt0XP2muTg14ZjdsNt4QwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy82MUU2MzZGOTBFNzIzQ0ExNTlGOERGNTFCMjgzQTJBMDVD
NUE0MDNEOEU0QTQ2NjFCOUQ4NkQ4OTJEQjYyRDAyLzAvNzZBREQzMUYwNkEwQjc0
NUNGREE2QjkzODM1RTE5OEREQjBEQjc4NC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83NkFERDMxRjA2QTBCNzQ1Q0ZE
QTZCOTM4MzVFMTk4RERCMERCNzg0LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNjFFNjM2RjkwRTcyM0NBMTU5RjhERjUxQjI4M0EyQTA1QzVBNDAzRDhF
NEE0NjYxQjlEODZEODkyREI2MkQwMi8wLzMxMzkzMDJlMzIzNDMyMmUzMTM3MzEy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMzMzUzMjMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvvKr
MA0GCSqGSIb3DQEBCwUAA4IBAQCgiq8jMBWGnBZ78K/bawD8vccQIVONJzMw5SL8
WrsTcjYyP2cqi7q6Q1ppA7Zju/ma6SeMdW6yQOJljwaLI+hChh47UBfq2MBv3r2L
/uFM6sVl5HriK4RkwN0U/2gVVCUJ9oczlQ5gO7QtJM3Xm792tVG8Lkv9VEdhe/t/
RrtNC9tfsSULa7n1iMRt/3jLJL0XwMU+OEQrVClpa/2LS6wVucwavoI42J+/S+kd
5rAChD3K+IDrPcEoYqStppxRfiRBnkBDiGfQTfXRaVjGbgqm0NL2n3FY3sYawP2o
F4tBtN9sEaGvaYqN8ZQ743+QtDBz8ohLKYaYt0jLjZVzi5Qu
-----END CERTIFICATE-----
Generated at Tue Jul 30 19:59:36 2024 by rpki-client on console-ams.rpki-client.org