Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6743DC458C31FB4BDD94CC5506944B66C36F4DDC8884E66D69F9F66BEB920FDD/0/323830333a656536303a34303a3a2f34332d3434203d3e20323637393139.roa
File:                     323830333a656536303a34303a3a2f34332d3434203d3e20323637393139.roa (raw, json)
Hash identifier:          FYKEsCD1t38jj03mK6sKFVXGtTgXIopf6ZB3y09tjXI=
Subject key identifier:   02:7F:85:AF:67:15:1C:66:A3:1E:99:45:6C:E2:55:27:CD:1A:31:20
Certificate issuer:       /CN=C12AF1A8F8F23657299E9524D0D62F0E213FED62
Certificate serial:       49E5885FBEDFC115DD580AA0A869FA8F8329B76C
Authority key identifier: C1:2A:F1:A8:F8:F2:36:57:29:9E:95:24:D0:D6:2F:0E:21:3F:ED:62
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C12AF1A8F8F23657299E9524D0D62F0E213FED62.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/6743DC458C31FB4BDD94CC5506944B66C36F4DDC8884E66D69F9F66BEB920FDD/0/323830333a656536303a34303a3a2f34332d3434203d3e20323637393139.roa
Signing time:             Tue 05 Mar 2024 18:04:28 +0000
ROA not before:           Tue 05 Mar 2024 17:59:28 +0000
ROA not after:            Tue 04 Mar 2025 18:04:28 +0000
asID:                     267919
IP address blocks:        2803:ee60:40::/43 maxlen: 44

Validation:               Failed, certificate revoked on Thu 19 Sep 2024 12:15:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            49:e5:88:5f:be:df:c1:15:dd:58:0a:a0:a8:69:fa:8f:83:29:b7:6c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C12AF1A8F8F23657299E9524D0D62F0E213FED62
        Validity
            Not Before: Mar  5 17:59:28 2024 GMT
            Not After : Mar  4 18:04:28 2025 GMT
        Subject: CN=027F85AF67151C66A31E99456CE25527CD1A3120
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:ce:e9:c9:5f:c9:38:53:b8:16:37:94:66:a4:
                    8c:56:ee:31:1d:0c:61:c7:a1:37:f5:31:c4:e3:f0:
                    96:87:64:3b:fd:aa:33:59:bd:5e:19:69:d1:78:c5:
                    9a:6c:ac:2b:ea:24:79:70:a4:f6:0f:47:88:f9:3d:
                    b7:d6:8e:48:ce:1e:7c:ab:49:bb:51:1f:19:69:ef:
                    32:2a:71:4b:99:f6:76:82:87:11:d3:e3:7d:da:21:
                    f1:fd:68:0f:7e:f1:e9:62:b4:87:10:3f:f7:2c:14:
                    38:b7:2b:c1:b0:04:69:cd:30:b1:6d:5b:87:eb:58:
                    45:0c:f5:58:b7:8c:e7:a2:a6:6b:17:21:6b:37:c3:
                    f5:70:b4:3a:7d:84:1b:e5:92:1a:5e:61:7a:ac:a5:
                    52:aa:1e:90:2e:07:17:80:56:35:7f:d0:b8:8f:fc:
                    b3:3f:ff:15:a3:bb:6d:15:0e:81:04:e9:ec:37:a7:
                    ef:b1:2a:4b:b8:5e:a7:e2:4b:61:30:3b:03:07:c7:
                    72:19:73:f4:0f:43:0b:4b:b6:eb:ad:63:81:f6:ce:
                    9a:1f:ce:72:e4:0e:3c:9a:fe:f7:82:c0:4a:fd:50:
                    f4:a3:08:b5:9a:0c:5d:b6:27:c7:fa:a9:72:13:0c:
                    ff:28:aa:4e:36:71:14:3b:c8:a5:6f:09:95:92:5e:
                    5e:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:7F:85:AF:67:15:1C:66:A3:1E:99:45:6C:E2:55:27:CD:1A:31:20
            X509v3 Authority Key Identifier:
                keyid:C1:2A:F1:A8:F8:F2:36:57:29:9E:95:24:D0:D6:2F:0E:21:3F:ED:62

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/6743DC458C31FB4BDD94CC5506944B66C36F4DDC8884E66D69F9F66BEB920FDD/0/C12AF1A8F8F23657299E9524D0D62F0E213FED62.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C12AF1A8F8F23657299E9524D0D62F0E213FED62.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6743DC458C31FB4BDD94CC5506944B66C36F4DDC8884E66D69F9F66BEB920FDD/0/323830333a656536303a34303a3a2f34332d3434203d3e20323637393139.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:ee60:40::/43

    Signature Algorithm: sha256WithRSAEncryption
         56:23:29:b5:75:0d:4d:e2:f5:88:38:bd:f1:8e:66:94:7c:6d:
         de:e5:e1:80:39:d1:7a:f0:91:1d:a2:d6:8a:3a:50:95:39:ef:
         68:78:af:e1:02:5e:60:34:be:da:23:60:a8:5e:85:35:e9:3b:
         25:83:a5:d6:a6:93:42:94:d9:3b:c5:ea:62:ed:53:0a:4e:a5:
         6d:a2:bf:1b:42:75:51:ee:ec:f2:10:b6:1a:b3:f0:db:35:88:
         2d:58:b7:fe:40:0e:39:5e:b6:4c:1d:bb:7d:21:66:d4:9b:32:
         31:23:9d:f7:0b:b1:b5:02:ac:35:ae:c7:ab:31:d1:a5:57:aa:
         cd:df:8a:9f:da:34:fc:8c:76:8a:29:02:fe:48:44:ee:79:aa:
         d3:5c:ba:df:23:5a:db:40:61:e8:52:a7:e7:11:a3:9a:ad:a1:
         ca:44:8f:85:00:46:26:0f:3e:31:3f:0c:52:2c:c9:81:02:39:
         46:eb:9b:d8:3f:c0:b5:3a:d3:3e:a5:b5:84:eb:f5:33:d2:bf:
         07:49:67:d8:d8:da:ae:a4:69:8f:22:ee:a1:33:c3:57:42:ec:
         86:cf:81:09:6c:d3:f6:3d:aa:da:af:7e:10:e1:3d:3e:57:49:
         34:d7:90:39:83:d1:5c:3d:8e:b6:c1:74:45:43:9c:37:a6:6d:
         54:af:95:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 17:07:54 2024 by rpki-client on console-fra.rpki-client.org