Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e33362e302f32322d3234203d3e203233353230.roa
File:                     3139302e3234322e33362e302f32322d3234203d3e203233353230.roa (raw, json)
Hash identifier:          fnq63n5vpuXJ0LqDgzStmZMamKLw1YtE4c4YKY7avis=
Subject key identifier:   D1:6A:1A:5C:44:08:05:5E:4A:A6:11:91:36:6A:E5:87:C9:63:5D:DB
Certificate issuer:       /CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
Certificate serial:       266330925D816252F2662B334BF82300AF4D43DB
Authority key identifier: 76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e33362e302f32322d3234203d3e203233353230.roa
Signing time:             Tue 05 Mar 2024 18:14:25 +0000
ROA not before:           Tue 05 Mar 2024 18:09:25 +0000
ROA not after:            Tue 04 Mar 2025 18:14:25 +0000
asID:                     23520
IP address blocks:        190.242.36.0/22 maxlen: 24

Validation:               Failed, certificate revoked on Tue 30 Jul 2024 17:10:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            26:63:30:92:5d:81:62:52:f2:66:2b:33:4b:f8:23:00:af:4d:43:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
        Validity
            Not Before: Mar  5 18:09:25 2024 GMT
            Not After : Mar  4 18:14:25 2025 GMT
        Subject: CN=D16A1A5C4408055E4AA61191366AE587C9635DDB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:21:98:3f:98:1f:1b:40:e7:40:a0:55:40:ea:
                    1c:80:58:0e:2b:54:51:5f:cc:0c:8f:e3:78:cd:48:
                    8f:de:47:b3:49:09:6b:6d:e5:00:a2:38:d0:06:ef:
                    bf:11:aa:2c:9b:f1:2f:cc:8a:73:fc:db:e9:3b:8a:
                    5a:a2:b8:67:67:0c:d9:21:ce:a8:5b:c9:bb:33:cc:
                    55:b6:43:4c:dd:e8:21:8c:d2:b3:a3:fd:70:2b:64:
                    50:7c:6c:bb:9d:7b:ae:c3:36:d3:d2:7c:50:2b:12:
                    38:e1:c3:f8:9b:ab:26:67:4b:0e:36:2a:fc:c5:b2:
                    a0:5c:04:55:5e:a4:d7:7c:01:ef:f1:5d:16:14:8e:
                    c8:ee:cf:80:ce:87:d7:f4:10:9d:b5:6b:7b:8f:f6:
                    85:24:30:e2:d3:41:d2:f9:6b:29:71:ae:58:c2:8b:
                    a1:3b:2f:14:44:5e:2a:73:c9:a3:fb:7d:79:49:f9:
                    a7:22:10:81:f5:8c:e2:88:e7:29:7f:21:8a:73:a9:
                    09:a1:cf:da:ee:be:92:ea:5a:af:a5:bb:7b:fd:c4:
                    1e:fa:57:a6:09:b1:52:13:ed:29:1c:2f:0b:48:1d:
                    5c:2e:97:52:22:a7:7f:59:6b:8b:2b:06:ba:36:cf:
                    ed:14:66:f8:c4:8b:d2:9d:d7:34:f8:8a:9d:1b:91:
                    c2:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:6A:1A:5C:44:08:05:5E:4A:A6:11:91:36:6A:E5:87:C9:63:5D:DB
            X509v3 Authority Key Identifier:
                keyid:76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e33362e302f32322d3234203d3e203233353230.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.242.36.0/22

    Signature Algorithm: sha256WithRSAEncryption
         89:96:85:f0:6b:3e:99:0e:ac:63:a1:15:74:0e:2b:42:3f:23:
         39:a5:81:e9:ad:0a:15:7d:39:9e:2b:11:bb:29:31:e2:2b:c2:
         c7:4a:0a:96:e8:64:23:56:2d:e8:d8:94:3c:d1:70:fb:ba:59:
         b0:f5:b4:cd:64:16:82:2e:77:93:af:5f:23:d7:66:cb:fa:c2:
         9d:1e:31:83:d4:58:22:0e:da:2a:de:27:fe:62:1b:22:5c:cd:
         eb:30:4d:17:57:23:3f:13:fc:55:e9:be:07:71:5a:13:9d:21:
         e8:f1:fd:29:eb:7d:f0:e7:c1:e3:fa:10:38:5a:40:cb:a3:39:
         56:14:52:a1:bb:4e:49:66:fe:00:82:41:d2:5d:42:22:48:73:
         65:67:41:6d:ad:86:7a:bd:bc:1a:5c:04:53:e1:7e:28:67:43:
         67:32:4a:f9:e4:1f:bc:cb:d5:b5:b8:63:45:17:be:7b:65:18:
         1a:86:46:fa:84:0d:e7:51:86:5e:4a:a6:8c:71:21:93:49:99:
         88:5a:9e:f9:8f:e0:81:ae:75:ea:f4:31:27:3a:08:b1:ea:f5:
         65:eb:ae:94:3c:0f:58:e7:72:ad:35:64:b0:8d:aa:e6:1b:de:
         22:7f:11:de:28:14:62:a0:04:b2:d0:da:fb:6e:65:f2:be:39:
         38:22:df:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 19:59:36 2024 by rpki-client on console-ams.rpki-client.org