Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6743DC458C31FB4BDD94CC5506944B66C36F4DDC8884E66D69F9F66BEB920FDD/0/323830333a656536303a32303a3a2f34332d3434203d3e20323637393139.roa
File:                     323830333a656536303a32303a3a2f34332d3434203d3e20323637393139.roa (raw, json)
Hash identifier:          /yfP0IgRpgvdssumH4Jy8+31keIblpFBA7Z5degU43g=
Subject key identifier:   43:89:0E:FB:63:F6:3F:96:28:95:07:DE:FB:AD:54:15:77:90:D2:C2
Certificate issuer:       /CN=C12AF1A8F8F23657299E9524D0D62F0E213FED62
Certificate serial:       6C5F4BBEACF7C6C6D4A74C7EDD603E2DB7B40F93
Authority key identifier: C1:2A:F1:A8:F8:F2:36:57:29:9E:95:24:D0:D6:2F:0E:21:3F:ED:62
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C12AF1A8F8F23657299E9524D0D62F0E213FED62.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/6743DC458C31FB4BDD94CC5506944B66C36F4DDC8884E66D69F9F66BEB920FDD/0/323830333a656536303a32303a3a2f34332d3434203d3e20323637393139.roa
Signing time:             Tue 05 Mar 2024 18:04:28 +0000
ROA not before:           Tue 05 Mar 2024 17:59:28 +0000
ROA not after:            Tue 04 Mar 2025 18:04:28 +0000
asID:                     267919
IP address blocks:        2803:ee60:20::/43 maxlen: 44

Validation:               Failed, certificate revoked on Thu 19 Sep 2024 12:15:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6c:5f:4b:be:ac:f7:c6:c6:d4:a7:4c:7e:dd:60:3e:2d:b7:b4:0f:93
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C12AF1A8F8F23657299E9524D0D62F0E213FED62
        Validity
            Not Before: Mar  5 17:59:28 2024 GMT
            Not After : Mar  4 18:04:28 2025 GMT
        Subject: CN=43890EFB63F63F96289507DEFBAD54157790D2C2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:61:e0:3e:cf:64:40:69:da:0a:03:d3:3d:af:
                    6d:68:55:70:47:e9:d8:fe:60:c3:dd:4e:2b:48:4c:
                    49:af:ee:12:08:9a:0d:cf:6a:42:b6:78:ff:c4:14:
                    a2:1a:5c:19:cd:f7:69:0d:37:81:4f:84:79:98:b2:
                    ab:c0:36:da:f8:b9:40:ed:52:c1:8a:6d:c9:1e:78:
                    6d:df:cd:31:92:3a:bb:bf:03:37:f8:95:fa:02:1f:
                    5c:15:e4:f0:65:ea:9c:49:67:81:e6:cc:f9:33:fe:
                    d3:32:1a:44:d9:e5:cc:fe:8c:cd:09:7a:60:84:9f:
                    da:86:f9:de:60:9b:23:44:2b:84:a8:c9:09:90:25:
                    28:e6:07:fc:d2:21:0b:23:10:27:e4:ab:59:15:c6:
                    02:11:2f:db:89:82:8c:9d:e1:cb:1e:2d:f8:b5:54:
                    91:d5:e7:ce:db:91:fb:c2:e0:d7:0a:db:0f:6c:9e:
                    f3:43:b1:0a:1f:15:16:15:90:44:d5:8d:3a:8f:10:
                    7d:89:9f:8b:5c:e7:51:44:dc:75:46:2f:5f:d2:d4:
                    1a:ef:8c:b4:96:d0:70:0f:d6:38:48:86:6f:e4:dc:
                    63:4f:cd:f8:65:b1:50:df:86:b3:db:03:74:31:90:
                    47:5c:b9:a7:a8:2d:e1:80:e2:06:23:1f:a9:b7:74:
                    f4:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:89:0E:FB:63:F6:3F:96:28:95:07:DE:FB:AD:54:15:77:90:D2:C2
            X509v3 Authority Key Identifier:
                keyid:C1:2A:F1:A8:F8:F2:36:57:29:9E:95:24:D0:D6:2F:0E:21:3F:ED:62

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/6743DC458C31FB4BDD94CC5506944B66C36F4DDC8884E66D69F9F66BEB920FDD/0/C12AF1A8F8F23657299E9524D0D62F0E213FED62.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C12AF1A8F8F23657299E9524D0D62F0E213FED62.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6743DC458C31FB4BDD94CC5506944B66C36F4DDC8884E66D69F9F66BEB920FDD/0/323830333a656536303a32303a3a2f34332d3434203d3e20323637393139.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:ee60:20::/43

    Signature Algorithm: sha256WithRSAEncryption
         a6:5c:4d:48:39:48:bd:46:60:77:99:da:34:13:66:a1:a1:9c:
         0a:be:94:64:bd:ea:39:e5:8b:c7:1d:0e:ff:b8:55:55:32:0e:
         5d:73:13:16:88:a7:de:6f:7c:8a:ba:10:e7:0c:a5:2e:e6:2d:
         a4:5b:2a:f5:5d:19:51:a8:e8:55:16:da:18:3a:f2:03:fd:a8:
         78:fe:33:56:0b:8b:da:f7:9b:34:c5:d1:88:d7:79:1e:92:e9:
         05:d8:a2:5b:33:d5:11:67:57:8d:f9:c7:41:30:58:31:36:6c:
         82:fa:c8:be:f2:6b:ac:3f:a0:74:c0:dd:66:05:5e:cb:a1:a4:
         9e:86:38:d8:f9:c2:88:04:7e:11:70:a4:f0:d3:0f:25:df:33:
         b7:25:09:ae:a1:bf:da:c3:97:1c:13:48:ac:65:6b:f7:05:22:
         7f:5c:a8:e5:41:a0:34:96:76:d4:ef:e9:6a:27:9e:83:b6:dc:
         d1:40:e7:f7:cf:3f:1b:a6:5f:f0:87:bf:17:d5:79:08:99:ea:
         a2:dc:b4:0e:4a:4f:90:e0:cc:98:7d:c6:29:b1:f1:ce:a2:e0:
         0b:a6:fc:f2:3b:f5:1f:56:eb:3d:52:f2:dc:63:b8:91:fe:0b:
         ee:09:95:7d:c3:b7:23:48:e5:97:2c:e3:1a:98:98:58:06:60:
         7f:f0:69:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 17:01:48 2024 by rpki-client on console-ams.rpki-client.org