Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a323a3a2f34382d3438203d3e203238303031.roa
File:                     323830313a3136353a323a3a2f34382d3438203d3e203238303031.roa (raw, json)
Hash identifier:          DEjWZfKAXFOrKG/mXbfV5QLMoJMeky8BwEnsNSeh56w=
Subject key identifier:   19:4F:FB:97:8C:C9:A0:02:C0:F2:F1:6D:BB:02:7A:DF:7B:D4:9B:22
Certificate issuer:       /CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
Certificate serial:       53BB1C0F33D9E783A102999D893E6F3361E8310A
Authority key identifier: A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a323a3a2f34382d3438203d3e203238303031.roa
Signing time:             Sat 13 Apr 2024 17:15:00 +0000
ROA not before:           Sat 13 Apr 2024 17:10:00 +0000
ROA not after:            Sat 12 Apr 2025 17:15:00 +0000
asID:                     28001
IP address blocks:        2801:165:2::/48 maxlen: 48

Validation:               Failed, certificate revoked on Tue 07 May 2024 13:40:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            53:bb:1c:0f:33:d9:e7:83:a1:02:99:9d:89:3e:6f:33:61:e8:31:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
        Validity
            Not Before: Apr 13 17:10:00 2024 GMT
            Not After : Apr 12 17:15:00 2025 GMT
        Subject: CN=194FFB978CC9A002C0F2F16DBB027ADF7BD49B22
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:86:22:5b:b8:65:04:cc:5a:e2:4d:62:6c:b4:
                    59:5b:cf:fd:8e:3f:ea:92:39:77:ec:38:73:c9:d2:
                    05:02:7a:75:99:54:39:1a:b7:7e:8d:fa:03:d4:e3:
                    75:74:a9:0d:36:87:86:76:ff:0b:0e:07:16:6c:13:
                    de:f0:07:8c:70:49:df:bd:c2:29:35:60:2a:f2:ce:
                    9c:2d:00:28:93:91:e7:c7:36:bd:61:a3:e2:e3:a9:
                    ca:5e:27:f2:11:17:7d:10:60:fc:e5:c9:c2:67:65:
                    d4:fc:42:90:fa:d1:a1:4b:ea:0f:de:04:be:69:03:
                    77:52:5e:eb:f1:cd:44:94:17:21:93:97:2b:f9:54:
                    8b:df:de:ae:2d:f1:aa:73:c1:58:23:a4:5a:50:7e:
                    bd:d2:ff:5b:d5:19:c2:19:6a:8b:f8:24:53:4c:41:
                    b5:07:89:f0:92:62:25:f7:4c:2f:07:1d:c7:ba:92:
                    76:44:ac:f1:1d:07:19:20:7d:fd:7c:96:d1:ba:72:
                    db:fe:ce:9b:7e:7c:62:8a:3a:dc:42:97:1f:c3:ff:
                    f3:41:29:b3:57:18:69:ce:20:13:af:7e:c3:c5:2b:
                    a4:c6:9f:44:c9:18:7f:06:28:57:2e:87:1c:04:c2:
                    7f:a9:50:ff:83:4e:ec:da:f0:a2:3c:c4:8b:ca:ca:
                    5e:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:4F:FB:97:8C:C9:A0:02:C0:F2:F1:6D:BB:02:7A:DF:7B:D4:9B:22
            X509v3 Authority Key Identifier:
                keyid:A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a323a3a2f34382d3438203d3e203238303031.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:165:2::/48

    Signature Algorithm: sha256WithRSAEncryption
         10:b8:a7:d9:52:cf:2f:1e:4c:06:b7:94:c4:9f:b8:04:9f:57:
         7d:70:b6:10:e8:17:d6:ae:54:58:34:f1:80:30:33:38:c4:2d:
         e1:97:ef:78:6b:3e:b9:75:ec:8b:c8:6e:bf:ea:5a:b7:5d:02:
         51:77:ab:46:dc:2f:d1:f8:ed:08:08:e5:bb:95:d4:00:cd:bd:
         1e:13:cd:dd:0d:61:40:b4:64:83:25:37:15:d6:a4:7c:37:4b:
         0f:cf:2e:c7:12:32:86:29:36:89:d1:b1:06:06:92:74:44:32:
         c0:f4:95:91:b8:99:1f:18:99:dc:3a:4a:fc:63:e5:ae:91:a3:
         34:69:0e:38:f0:74:ca:f1:c9:b5:a3:41:ef:48:cf:6e:33:75:
         3b:30:68:5a:0d:07:07:19:63:a4:94:38:72:e4:d3:72:58:e2:
         d5:66:9f:66:e8:0b:05:f8:e4:93:96:9f:fe:d5:71:9a:30:57:
         36:cf:56:14:2d:3d:05:3d:8d:0e:13:05:a8:50:f9:8d:0f:40:
         46:37:32:ff:36:75:d2:9c:1a:66:21:0f:b3:5c:d6:21:70:59:
         08:53:56:1c:36:e5:4e:12:de:5f:ca:37:c9:5e:81:46:cc:12:
         b9:54:c4:59:4d:94:5d:17:db:73:6c:8a:eb:e8:69:77:95:0f:
         d6:70:c5:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:07 2024 by rpki-client on console-ams.rpki-client.org