Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e37322e302f32312d3234203d3e203130363230.roa
File:                     3139302e3234322e37322e302f32312d3234203d3e203130363230.roa (raw, json)
Hash identifier:          INZRNC153IbgtgfFfYPQ4ECWyGll09qohdobopy1tzs=
Subject key identifier:   B3:02:68:7F:72:89:DF:A4:03:D5:93:B0:62:58:A4:3E:AB:68:C8:A1
Certificate issuer:       /CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
Certificate serial:       2AE5E2ABE2D70EFFAA199141B6EA88995A455145
Authority key identifier: 76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e37322e302f32312d3234203d3e203130363230.roa
Signing time:             Tue 05 Mar 2024 18:14:21 +0000
ROA not before:           Tue 05 Mar 2024 18:09:21 +0000
ROA not after:            Tue 04 Mar 2025 18:14:21 +0000
asID:                     10620
IP address blocks:        190.242.72.0/21 maxlen: 24

Validation:               Failed, certificate revoked on Tue 30 Jul 2024 17:10:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2a:e5:e2:ab:e2:d7:0e:ff:aa:19:91:41:b6:ea:88:99:5a:45:51:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76ADD31F06A0B745CFDA6B93835E198DDB0DB784
        Validity
            Not Before: Mar  5 18:09:21 2024 GMT
            Not After : Mar  4 18:14:21 2025 GMT
        Subject: CN=B302687F7289DFA403D593B06258A43EAB68C8A1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:ba:31:ec:84:cd:78:76:1e:6c:cb:dc:a8:4c:
                    f3:d4:92:cf:e1:63:4e:a8:f4:62:cd:df:97:d8:c1:
                    5f:f7:68:39:35:fe:2f:ba:47:23:ba:64:ad:84:8f:
                    09:6e:ca:66:21:cc:11:62:71:77:9d:41:e3:65:ea:
                    f0:7a:a9:be:97:5c:27:fc:07:cb:d2:bf:f0:24:d7:
                    91:74:9f:ae:cf:e1:ab:14:d9:c5:88:41:f5:5f:4c:
                    38:5e:d1:27:7c:00:b9:e9:01:bb:f1:d5:77:f3:38:
                    7f:81:4b:c9:30:07:f3:d7:4b:79:4c:20:db:08:5a:
                    0a:2c:d7:60:e8:3f:91:9b:52:cf:71:06:d4:61:20:
                    ba:24:eb:1d:a6:87:f2:1b:ab:4e:5c:24:57:47:73:
                    8a:38:5b:dd:a5:d1:64:31:b6:3a:e4:78:e0:80:ea:
                    b2:b8:3f:b7:4f:e7:9a:3f:89:1e:1f:11:7c:41:17:
                    ac:b0:a2:6e:f1:d0:f5:de:d8:0c:99:00:a9:7d:fa:
                    e1:96:11:6b:a8:55:86:5f:cf:f4:46:31:d1:70:fd:
                    61:eb:6b:d6:f8:8c:60:dc:c9:d8:1f:e9:42:07:23:
                    44:5b:11:4f:72:18:93:89:4e:60:06:d5:95:d1:cf:
                    04:56:73:8d:2f:c1:0e:34:73:16:b0:ae:10:7e:8a:
                    03:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:02:68:7F:72:89:DF:A4:03:D5:93:B0:62:58:A4:3E:AB:68:C8:A1
            X509v3 Authority Key Identifier:
                keyid:76:AD:D3:1F:06:A0:B7:45:CF:DA:6B:93:83:5E:19:8D:DB:0D:B7:84

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76ADD31F06A0B745CFDA6B93835E198DDB0DB784.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/61E636F90E723CA159F8DF51B283A2A05C5A403D8E4A4661B9D86D892DB62D02/0/3139302e3234322e37322e302f32312d3234203d3e203130363230.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.242.72.0/21

    Signature Algorithm: sha256WithRSAEncryption
         8c:88:fd:d8:d0:91:f9:87:d3:a9:f5:28:85:02:16:d2:2e:44:
         6f:0b:b0:18:43:e7:d2:6e:f5:06:ed:4d:c2:1c:de:89:a8:46:
         22:1c:45:85:d7:f4:99:b1:6c:67:56:e7:24:65:3b:ff:c4:5d:
         90:ed:e8:e6:60:3c:c0:a8:c7:4b:99:52:13:70:f0:b9:d7:b7:
         f1:af:71:78:09:fb:99:62:aa:c2:fd:82:9a:1c:d6:b9:59:3a:
         76:7a:c8:af:59:37:5a:90:00:96:e8:a4:90:5f:c7:46:ce:9d:
         3c:28:3b:53:8e:32:b7:c4:7a:d3:81:ba:eb:7b:70:9e:32:d4:
         a7:be:8d:c4:cc:a3:c9:5c:ca:a2:6a:71:b5:13:d3:f4:58:3b:
         2e:1e:a9:4a:64:4e:2a:41:c0:1d:98:42:d3:5b:c1:8b:8f:ee:
         83:3f:0c:d6:df:43:c9:68:e9:74:15:05:1f:d7:24:3c:86:3a:
         03:1b:50:cc:2c:be:3a:b1:77:75:78:20:78:68:e6:85:67:07:
         77:63:94:9c:21:d5:fb:77:43:a8:9c:3e:bb:ef:9c:84:de:d9:
         0a:dc:07:06:c0:5f:bb:df:1c:b3:6e:11:8d:00:c3:18:d5:7d:
         c4:6e:2f:a2:dc:3b:fc:fd:cc:63:8a:93:a9:4e:59:3c:b4:f4:
         8e:56:74:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----