Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e33362e302f32322d3234203d3e20323632313931.roa
File:                     3139302e3234322e33362e302f32322d3234203d3e20323632313931.roa (raw, json)
Hash identifier:          Xmp4du2DdoubjxwKihHZ2LwZnQNnYtjunT4CNdkJ+vw=
Subject key identifier:   3E:44:05:96:33:D2:0D:79:1E:7F:E1:34:82:E7:E0:51:FC:60:64:71
Certificate issuer:       /CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
Certificate serial:       2A6581D06D226E71D030692346EA442A56D7EFD6
Authority key identifier: 76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e33362e302f32322d3234203d3e20323632313931.roa
Signing time:             Tue 05 Mar 2024 18:14:35 +0000
ROA not before:           Tue 05 Mar 2024 18:09:35 +0000
ROA not after:            Tue 04 Mar 2025 18:14:35 +0000
asID:                     262191
IP address blocks:        190.242.36.0/22 maxlen: 24

Validation:               Failed, certificate revoked on Tue 30 Jul 2024 17:10:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2a:65:81:d0:6d:22:6e:71:d0:30:69:23:46:ea:44:2a:56:d7:ef:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
        Validity
            Not Before: Mar  5 18:09:35 2024 GMT
            Not After : Mar  4 18:14:35 2025 GMT
        Subject: CN=3E44059633D20D791E7FE13482E7E051FC606471
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:98:37:12:98:39:97:6e:35:02:87:46:9b:f7:
                    6c:5b:60:50:92:95:fa:36:0a:a1:a7:a4:bd:8e:d6:
                    9f:00:82:d0:90:98:d4:96:67:0b:f2:a8:2d:bf:85:
                    64:1c:6b:13:75:0d:77:73:4c:e9:39:f4:2c:fa:d3:
                    96:a2:d0:c2:86:4e:8c:ef:1d:bc:c0:3e:25:a8:16:
                    ea:82:45:5c:43:5f:35:7c:9a:e3:67:5e:ae:08:03:
                    fb:b1:d6:26:9f:eb:74:e1:09:5e:d7:91:30:38:2b:
                    76:e1:ec:11:22:88:f6:3b:47:c2:fe:e4:24:14:a6:
                    db:d3:09:0e:32:18:0a:f5:4d:96:d2:d8:39:36:e7:
                    6a:ed:c1:ca:4e:3d:32:ff:53:8c:51:53:6d:a0:ae:
                    4d:c7:86:78:51:5b:b5:be:91:d4:cc:cb:b4:45:21:
                    7d:31:a6:3c:44:ec:e8:03:6b:9b:ee:2b:8b:36:be:
                    4e:e2:dd:7a:1f:55:a4:9e:0c:38:a4:4c:76:8a:47:
                    a0:ee:70:27:fa:cd:cb:33:69:ed:22:7b:ce:ac:5d:
                    93:c8:75:50:ce:41:32:6b:ee:96:76:e1:be:da:bc:
                    8b:46:44:de:b1:93:e2:59:e7:49:d3:00:5b:de:c1:
                    b9:5e:48:3a:51:3f:ad:b0:2e:5c:4f:64:38:e6:67:
                    cf:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:44:05:96:33:D2:0D:79:1E:7F:E1:34:82:E7:E0:51:FC:60:64:71
            X509v3 Authority Key Identifier:
                keyid:76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e33362e302f32322d3234203d3e20323632313931.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.242.36.0/22

    Signature Algorithm: sha256WithRSAEncryption
         c3:41:bf:dc:0d:1d:de:49:8a:92:21:4e:1d:db:71:9c:b2:d0:
         20:6e:82:bc:34:50:e8:82:7f:7c:f9:92:e7:dd:e1:bc:58:c1:
         68:c0:60:04:91:6b:b4:51:f9:86:03:6c:ef:4a:a6:5e:b1:d2:
         94:c6:5e:eb:22:26:d7:b1:4a:77:9f:49:d6:be:85:e6:2a:c8:
         db:d8:9d:c1:6c:a7:8b:f4:ed:35:a7:e2:8e:89:a5:d9:99:16:
         eb:66:9f:a4:84:da:81:8f:a5:86:93:7e:59:a2:81:ca:6f:14:
         ad:8e:a2:4a:e3:1c:3e:56:af:88:f6:b2:a9:7c:e5:88:f0:3b:
         d3:59:c0:8a:b2:de:1d:1c:ee:ac:7a:22:30:63:e1:1c:99:56:
         ca:fc:80:aa:a5:5b:dc:0a:6c:df:52:74:82:3d:8a:35:99:21:
         79:0d:23:11:67:9a:97:cf:4c:41:3f:85:3a:1f:90:7c:7f:4a:
         22:d2:31:27:6d:45:5f:ea:ce:e7:e5:20:76:53:88:30:53:f9:
         79:fc:f4:69:58:86:6b:4a:ca:67:3e:47:8a:8b:54:c7:b4:bc:
         4e:92:52:5a:35:be:ab:a2:dc:57:de:42:da:49:47:0c:96:48:
         cf:30:dc:d4:73:9e:7e:fd:5e:cd:e0:e5:9a:89:74:68:aa:08:
         a2:84:b6:39
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUKmWB0G0ibnHQMGkjRupEKlbX79YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzZBREQzMUYwNkEwQjc0NUNGREE2QjkzODM1RTE5OERE
QjBEQjc4NDAeFw0yNDAzMDUxODA5MzVaFw0yNTAzMDQxODE0MzVaMDMxMTAvBgNV
BAMTKDNFNDQwNTk2MzNEMjBENzkxRTdGRTEzNDgyRTdFMDUxRkM2MDY0NzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKmDcSmDmXbjUCh0ab92xbYFCS
lfo2CqGnpL2O1p8AgtCQmNSWZwvyqC2/hWQcaxN1DXdzTOk59Cz605ai0MKGTozv
HbzAPiWoFuqCRVxDXzV8muNnXq4IA/ux1iaf63ThCV7XkTA4K3bh7BEiiPY7R8L+
5CQUptvTCQ4yGAr1TZbS2Dk252rtwcpOPTL/U4xRU22grk3HhnhRW7W+kdTMy7RF
IX0xpjxE7OgDa5vuK4s2vk7i3XofVaSeDDikTHaKR6DucCf6zcszae0ie86sXZPI
dVDOQTJr7pZ24b7avItGRN6xk+JZ50nTAFvewbleSDpRP62wLlxPZDjmZ8/jAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUPkQFljPSDXkef+E0gufgUfxgZHEwHwYDVR0j
BBgwFoAUdq3THwagt0XP2muTg14ZjdsNt4QwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy82MUU2MzZGOTBFNzIzQ0ExNTlGOERGNTFCMjgzQTJBMDVD
NUE0MDNEOEU0QTQ2NjFCOUQ4NkQ4OTJEQjYyRDAyLzAvNzZBREQzMUYwNkEwQjc0
NUNGREE2QjkzODM1RTE5OEREQjBEQjc4NC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83NkFERDMxRjA2QTBCNzQ1Q0ZE
QTZCOTM4MzVFMTk4RERCMERCNzg0LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNjFFNjM2RjkwRTcyM0NBMTU5RjhERjUxQjI4M0EyQTA1QzVBNDAzRDhF
NEE0NjYxQjlEODZEODkyREI2MkQwMi8wLzMxMzkzMDJlMzIzNDMyMmUzMzM2MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjMyMzEzOTMxLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvvIk
MA0GCSqGSIb3DQEBCwUAA4IBAQDDQb/cDR3eSYqSIU4d23GcstAgboK8NFDogn98
+ZLn3eG8WMFowGAEkWu0UfmGA2zvSqZesdKUxl7rIibXsUp3n0nWvoXmKsjb2J3B
bKeL9O01p+KOiaXZmRbrZp+khNqBj6WGk35ZooHKbxStjqJK4xw+Vq+I9rKpfOWI
8DvTWcCKst4dHO6seiIwY+EcmVbK/ICqpVvcCmzfUnSCPYo1mSF5DSMRZ5qXz0xB
P4U6H5B8f0oi0jEnbUVf6s7n5SB2U4gwU/l5/PRpWIZrSspnPkeKi1THtLxOklJa
Nb6rotxX3kLaSUcMlkjPMNzUc55+/V7N4OWaiXRoqgiihLY5
-----END CERTIFICATE-----
Generated at Tue Jul 30 19:59:36 2024 by rpki-client on console-ams.rpki-client.org