Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/828DED2581B8EA4737C44ABDE8284F735073DE3038C2D8F8C618511FCCACE522/0/3133312e37322e32382e302f32322d3234203d3e203532333339.roa
File:                     3133312e37322e32382e302f32322d3234203d3e203532333339.roa (raw, json)
Hash identifier:          gtD9ljP3B97PoVsor4R5ptyMCiamXMRVcZL2VP0FOo8=
Subject key identifier:   51:9C:B7:EC:83:E4:50:E7:FB:87:81:66:97:B1:6C:B1:65:37:2D:1C
Certificate issuer:       /CN=59B4B5EBC1950B7FD52B09794CC53692ABB7F230
Certificate serial:       4A46B3A03EEBF2FD8E378944360F23708B06CDEF
Authority key identifier: 59:B4:B5:EB:C1:95:0B:7F:D5:2B:09:79:4C:C5:36:92:AB:B7:F2:30
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/59B4B5EBC1950B7FD52B09794CC53692ABB7F230.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/828DED2581B8EA4737C44ABDE8284F735073DE3038C2D8F8C618511FCCACE522/0/3133312e37322e32382e302f32322d3234203d3e203532333339.roa
Signing time:             Tue 05 Mar 2024 17:49:18 +0000
ROA not before:           Tue 05 Mar 2024 17:44:18 +0000
ROA not after:            Tue 04 Mar 2025 17:49:18 +0000
asID:                     52339
IP address blocks:        131.72.28.0/22 maxlen: 24

Validation:               Failed, certificate revoked on Sun 07 Jul 2024 02:55:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4a:46:b3:a0:3e:eb:f2:fd:8e:37:89:44:36:0f:23:70:8b:06:cd:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=59B4B5EBC1950B7FD52B09794CC53692ABB7F230
        Validity
            Not Before: Mar  5 17:44:18 2024 GMT
            Not After : Mar  4 17:49:18 2025 GMT
        Subject: CN=519CB7EC83E450E7FB87816697B16CB165372D1C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:ab:92:75:f2:c5:63:55:f1:4e:18:b9:99:5f:
                    36:fa:e0:3f:e7:8f:61:56:1a:3c:db:d3:83:02:38:
                    f7:01:d1:0b:92:8f:9a:ff:4c:cb:96:18:8a:63:f0:
                    e7:eb:a2:80:46:99:2f:5f:e8:05:78:65:27:ec:09:
                    c1:80:02:7b:a3:06:d7:2a:c1:31:f3:e5:a9:ea:c8:
                    3c:07:bb:ad:5d:a6:38:1c:46:fc:ea:8c:55:3e:af:
                    95:6e:1d:f8:db:41:47:d1:93:02:4f:2a:e7:1e:e5:
                    2b:ee:e2:50:0a:95:d5:8e:d3:27:33:09:91:cd:cd:
                    47:4f:36:42:ea:7f:ee:83:10:cc:f9:2b:31:e5:23:
                    f5:c3:b0:de:95:f3:3e:75:b1:be:4c:58:e3:60:69:
                    91:6a:98:1c:f1:cf:a4:f3:64:07:88:1a:50:74:44:
                    27:63:b4:92:0d:ff:d2:18:1c:2f:ae:3d:db:e8:22:
                    69:ce:92:9e:60:63:b1:a0:66:22:3d:48:a0:81:f6:
                    ee:66:f0:ff:2a:a3:d3:2b:fc:2e:61:98:b7:ff:6e:
                    74:12:01:17:04:ac:3c:45:86:27:8f:96:c0:62:7e:
                    41:b0:a2:fc:53:6a:3b:52:22:fe:44:c1:60:3a:d4:
                    3f:a4:b3:a4:e9:f4:d9:b0:be:7d:46:9f:91:4c:c6:
                    10:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:9C:B7:EC:83:E4:50:E7:FB:87:81:66:97:B1:6C:B1:65:37:2D:1C
            X509v3 Authority Key Identifier:
                keyid:59:B4:B5:EB:C1:95:0B:7F:D5:2B:09:79:4C:C5:36:92:AB:B7:F2:30

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/828DED2581B8EA4737C44ABDE8284F735073DE3038C2D8F8C618511FCCACE522/0/59B4B5EBC1950B7FD52B09794CC53692ABB7F230.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/59B4B5EBC1950B7FD52B09794CC53692ABB7F230.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/828DED2581B8EA4737C44ABDE8284F735073DE3038C2D8F8C618511FCCACE522/0/3133312e37322e32382e302f32322d3234203d3e203532333339.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  131.72.28.0/22

    Signature Algorithm: sha256WithRSAEncryption
         03:b0:09:c9:79:4c:63:20:ec:d6:02:83:ec:be:be:15:58:73:
         7e:be:62:30:66:93:f7:cd:48:ae:34:f9:94:9a:7c:57:59:11:
         04:42:58:dd:39:2b:7d:01:0d:d9:99:3d:d8:86:db:48:26:14:
         26:ea:c6:64:77:8c:23:8a:bd:8b:b5:e2:5d:64:1f:7b:9e:3f:
         25:1b:db:29:b5:20:39:7d:ab:21:03:f9:1d:d3:4f:95:e7:59:
         73:b7:4f:e9:64:de:d3:42:e2:65:ef:9f:00:7a:50:2e:56:e7:
         87:19:72:29:37:a2:d7:b5:ff:75:84:38:a2:a6:39:e2:23:bd:
         44:b6:11:eb:f6:61:4a:15:5e:a5:8c:a4:5a:6b:ae:a2:a2:e7:
         2e:fe:11:7a:57:96:b4:ec:c3:e8:9a:6d:82:e8:69:af:f3:cc:
         86:97:56:b6:9f:6a:b0:db:28:c6:a8:4d:63:b2:00:fb:25:f0:
         37:08:dd:23:30:7c:6c:d3:09:ab:00:79:f3:6d:1c:11:e0:49:
         9c:2b:76:ce:8e:ec:5f:71:61:78:91:ec:d1:bc:50:25:65:aa:
         28:0a:4b:c6:ef:ef:a7:d2:07:e9:f1:ca:04:7a:bb:1a:28:a7:
         64:02:db:61:a6:1c:53:01:5b:52:89:99:f0:fa:57:70:b4:86:
         2e:ea:03:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 04:18:50 2024 by rpki-client on console-fra.rpki-client.org