Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/76251F8493AFFAFEFB3D1C7C20D2F92267F838EFE6AB75B30207A170B1AF2609/0/3139302e3231312e3130322e302f32342d3234203d3e20323632313435.roa
File:                     3139302e3231312e3130322e302f32342d3234203d3e20323632313435.roa (raw, json)
Hash identifier:          XemJu/q6TMfInKkgY4g53/ztjn8r2qYkYU41EZfm/4s=
Subject key identifier:   28:16:F7:91:1D:0E:8C:B8:A4:F4:FF:46:D0:E3:AA:69:4C:E5:79:A9
Certificate issuer:       /CN=E7900D5ABF476151127E597F28F3B14E61AFB84C
Certificate serial:       28F883B90F81F931B5181E6452F4B8634536F34B
Authority key identifier: E7:90:0D:5A:BF:47:61:51:12:7E:59:7F:28:F3:B1:4E:61:AF:B8:4C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E7900D5ABF476151127E597F28F3B14E61AFB84C.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/76251F8493AFFAFEFB3D1C7C20D2F92267F838EFE6AB75B30207A170B1AF2609/0/3139302e3231312e3130322e302f32342d3234203d3e20323632313435.roa
Signing time:             Tue 05 Mar 2024 17:47:10 +0000
ROA not before:           Tue 05 Mar 2024 17:42:10 +0000
ROA not after:            Tue 04 Mar 2025 17:47:10 +0000
asID:                     262145
IP address blocks:        190.211.102.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 08 Aug 2024 21:30:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            28:f8:83:b9:0f:81:f9:31:b5:18:1e:64:52:f4:b8:63:45:36:f3:4b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E7900D5ABF476151127E597F28F3B14E61AFB84C
        Validity
            Not Before: Mar  5 17:42:10 2024 GMT
            Not After : Mar  4 17:47:10 2025 GMT
        Subject: CN=2816F7911D0E8CB8A4F4FF46D0E3AA694CE579A9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:19:45:73:ae:1a:b8:94:6b:ea:24:70:32:b7:
                    52:f0:8e:b2:77:7e:4d:62:fc:64:ed:49:47:65:d0:
                    61:78:9b:fc:ea:b8:da:08:44:22:f2:e8:22:c8:a6:
                    d6:67:c8:8e:98:87:ed:e4:98:a1:04:22:03:34:5e:
                    1b:b6:4b:c7:bf:f7:af:44:3c:09:e0:58:f3:49:b6:
                    34:f7:1a:dd:13:de:f0:ae:45:3d:b0:53:f2:38:3d:
                    3c:8c:dd:77:2d:94:57:ca:09:bf:bd:ee:b0:fb:2c:
                    9e:eb:fe:b3:66:09:59:fe:ea:d7:6a:da:81:28:5e:
                    cb:72:76:d3:0e:28:be:ae:72:81:eb:f5:78:bc:ef:
                    07:0d:c8:7b:79:f2:1f:52:61:51:e2:81:d6:05:b0:
                    70:cc:af:fa:51:20:9f:fa:82:82:47:97:ce:af:53:
                    12:b1:19:c9:3e:3b:13:99:06:e8:e6:a8:ba:1a:0d:
                    6c:b1:cf:a3:19:93:4e:d0:b9:f6:25:37:06:a1:f1:
                    df:cb:6b:b6:70:1d:10:0e:f7:0f:a5:10:20:9c:d4:
                    b3:28:69:e3:f0:13:3c:01:d3:65:68:2e:39:80:72:
                    38:31:0a:2d:eb:c9:02:79:87:a7:ae:e2:cf:b3:3f:
                    5c:5b:4d:06:5a:fc:18:78:50:ad:ff:1d:96:a0:de:
                    ca:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:16:F7:91:1D:0E:8C:B8:A4:F4:FF:46:D0:E3:AA:69:4C:E5:79:A9
            X509v3 Authority Key Identifier:
                keyid:E7:90:0D:5A:BF:47:61:51:12:7E:59:7F:28:F3:B1:4E:61:AF:B8:4C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/76251F8493AFFAFEFB3D1C7C20D2F92267F838EFE6AB75B30207A170B1AF2609/0/E7900D5ABF476151127E597F28F3B14E61AFB84C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E7900D5ABF476151127E597F28F3B14E61AFB84C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/76251F8493AFFAFEFB3D1C7C20D2F92267F838EFE6AB75B30207A170B1AF2609/0/3139302e3231312e3130322e302f32342d3234203d3e20323632313435.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.211.102.0/24

    Signature Algorithm: sha256WithRSAEncryption
         37:93:4d:0c:2f:8e:10:cf:c8:39:02:b4:28:6a:41:fa:7e:44:
         3a:e8:65:b5:3f:2e:02:ca:51:2f:88:df:29:ad:15:59:a0:33:
         7c:30:eb:9b:a4:0a:9b:bb:e0:dd:4c:ad:03:2a:a4:9b:ca:cc:
         5d:bd:bb:45:24:2b:42:76:6e:9a:86:71:5c:3a:d1:2a:80:f6:
         fe:87:de:28:cd:7f:8c:fd:9d:f6:fd:da:ba:d7:57:e5:21:9b:
         73:1f:77:84:b6:54:b1:82:e2:e5:eb:14:77:7e:d6:dc:d6:7e:
         ad:6b:9b:33:fa:78:c1:17:35:95:0c:7a:19:d2:fa:fd:72:4b:
         2d:cd:fa:b3:e0:87:81:00:dd:36:3f:4c:c2:ae:f4:07:c3:dd:
         b0:9e:ba:d8:f5:fc:29:96:fb:1a:07:a6:88:76:36:1b:a9:ca:
         a7:b2:14:8a:42:1f:72:c6:b9:71:14:26:ce:8b:6c:6d:07:ee:
         d1:b4:2d:18:ba:08:3e:73:2b:d8:2a:52:a6:7f:3d:e5:e6:dd:
         7a:5d:69:df:9e:40:d9:a6:87:2b:0c:87:97:5e:28:ed:52:19:
         b5:dc:cd:ca:c5:6d:74:d9:5e:1d:c6:20:97:4a:24:f3:f8:db:
         0d:1b:0e:d3:4e:67:30:89:bf:2d:9d:84:d2:6d:9f:30:05:66:
         48:69:8f:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 00:10:05 2024 by rpki-client on console-fra.rpki-client.org