Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/947CF2F0ED33864F09153D6224E1FCF708034026D4A1FF0E00B41E2775ED029E/0/3230312e3231392e3235322e302f32332d3234203d3e20323634383435.roa
File:                     3230312e3231392e3235322e302f32332d3234203d3e20323634383435.roa (raw, json)
Hash identifier:          Bjbe/cHm38bMkuMqJH9JMZsoZXq2pICHxwb+5UJfGCw=
Subject key identifier:   FE:DF:2A:32:DF:DB:D6:FB:3C:40:C2:C4:5F:AA:70:00:EA:20:57:02
Certificate issuer:       /CN=B5F100D6FEF4DD1887095595838207E669CA7479
Certificate serial:       010880AC717A73802B14347B3C1C3C8FD50CBE51
Authority key identifier: B5:F1:00:D6:FE:F4:DD:18:87:09:55:95:83:82:07:E6:69:CA:74:79
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5F100D6FEF4DD1887095595838207E669CA7479.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/947CF2F0ED33864F09153D6224E1FCF708034026D4A1FF0E00B41E2775ED029E/0/3230312e3231392e3235322e302f32332d3234203d3e20323634383435.roa
Signing time:             Tue 05 Mar 2024 18:20:57 +0000
ROA not before:           Tue 05 Mar 2024 18:15:57 +0000
ROA not after:            Tue 04 Mar 2025 18:20:57 +0000
asID:                     264845
IP address blocks:        201.219.252.0/23 maxlen: 24

Validation:               Failed, certificate revoked on Fri 19 Jul 2024 13:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:08:80:ac:71:7a:73:80:2b:14:34:7b:3c:1c:3c:8f:d5:0c:be:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B5F100D6FEF4DD1887095595838207E669CA7479
        Validity
            Not Before: Mar  5 18:15:57 2024 GMT
            Not After : Mar  4 18:20:57 2025 GMT
        Subject: CN=FEDF2A32DFDBD6FB3C40C2C45FAA7000EA205702
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:22:92:70:d8:d2:29:f2:4e:bf:e9:10:d1:2c:
                    2c:06:ed:29:df:05:3e:36:47:05:97:34:53:f4:d4:
                    18:31:7c:ef:29:f4:4f:11:e7:64:6f:5c:56:9b:c8:
                    0a:c2:25:c7:2c:19:ea:6a:50:5b:e7:1e:3e:84:5d:
                    6d:63:fe:00:a0:29:7c:31:ac:7a:8e:73:f7:94:6d:
                    54:12:28:bf:78:30:f8:62:32:b8:93:38:85:87:c6:
                    9f:36:06:89:d3:6a:15:d1:1d:ee:55:ce:c1:60:75:
                    47:f1:f0:81:44:15:4b:f1:c5:41:f1:7a:2f:d3:42:
                    82:72:89:39:a8:a1:4e:72:08:57:11:e1:18:75:b4:
                    e0:63:27:5e:14:91:14:cc:00:0c:c5:00:f6:4a:be:
                    ee:01:4f:11:d8:c8:2b:34:6e:43:7c:7d:41:2e:a2:
                    b2:d4:ed:8b:e6:b8:56:db:db:d0:5b:19:20:0f:d3:
                    3c:bf:7b:fb:8a:3c:df:86:45:60:2d:7f:b2:7f:be:
                    82:4a:32:27:fc:70:f5:54:bc:0e:c0:15:20:c1:0c:
                    76:cf:f2:0e:24:15:be:8b:6b:8d:93:e8:09:a4:0c:
                    da:22:7f:da:93:ea:7e:3e:ad:ca:d7:93:13:20:5f:
                    26:bf:57:c8:46:ad:cc:26:1b:98:09:f3:9a:cc:10:
                    e6:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:DF:2A:32:DF:DB:D6:FB:3C:40:C2:C4:5F:AA:70:00:EA:20:57:02
            X509v3 Authority Key Identifier:
                keyid:B5:F1:00:D6:FE:F4:DD:18:87:09:55:95:83:82:07:E6:69:CA:74:79

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/947CF2F0ED33864F09153D6224E1FCF708034026D4A1FF0E00B41E2775ED029E/0/B5F100D6FEF4DD1887095595838207E669CA7479.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5F100D6FEF4DD1887095595838207E669CA7479.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/947CF2F0ED33864F09153D6224E1FCF708034026D4A1FF0E00B41E2775ED029E/0/3230312e3231392e3235322e302f32332d3234203d3e20323634383435.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  201.219.252.0/23

    Signature Algorithm: sha256WithRSAEncryption
         94:fe:6e:96:a2:b3:cd:c4:b6:a8:c8:cd:e7:1b:ab:cb:5c:b2:
         27:63:73:df:30:d9:9c:95:9e:96:90:d5:62:f3:a9:93:b9:78:
         c9:44:89:51:f6:12:9c:05:ac:a7:9e:dd:98:0f:d7:c6:9d:fc:
         31:97:17:03:f4:1e:9a:24:d7:3f:88:68:e7:8d:7e:b6:81:0b:
         5b:9b:b3:15:ff:95:c4:3e:45:20:d0:1f:10:4e:7f:a3:e8:2b:
         93:d2:70:6c:bc:fd:6d:58:74:e8:50:c8:54:95:f9:75:11:46:
         66:3b:e3:7d:ea:a8:31:3b:42:be:4b:4b:a1:40:b0:94:75:0e:
         5f:76:95:c4:1a:a8:76:f2:cb:86:ef:1f:dd:a7:b5:1c:76:dc:
         9f:f6:6c:7a:df:16:a7:6f:1f:da:f5:9e:30:93:a9:b0:e8:26:
         22:99:b9:a0:e2:37:b4:b9:cb:b7:56:0c:df:3c:da:70:1a:63:
         32:45:1f:6a:7f:bd:40:34:18:00:03:d2:ac:67:1f:cf:49:76:
         44:21:bf:54:36:3a:e5:ec:f3:51:df:f5:e6:4d:e8:0f:6e:9e:
         c8:96:f1:24:8f:20:e2:dc:58:6a:04:d7:77:b0:b0:93:8d:ec:
         d4:3c:e6:44:f3:fc:37:d0:d7:93:1b:64:ea:c9:23:1f:fa:ce:
         1c:ae:55:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----