Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9DF9937177B1EC160552C5AD2FA05E41CEA78C00D571BB4C755834E4C0DCD487/0/3133312e3139362e3138312e302f32342d3234203d3e20323635373538.roa
File:                     3133312e3139362e3138312e302f32342d3234203d3e20323635373538.roa (raw, json)
Hash identifier:          hlwCRUK+h03vbvEVQex0ayvmZFWkIE86iBL58/TErNM=
Subject key identifier:   B8:D3:7F:5E:65:D2:2B:08:DD:B8:40:61:8A:79:8F:D3:35:3F:70:0D
Certificate issuer:       /CN=596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F
Certificate serial:       11D59141C8B97A00CBA8261E99D02864C1BC44A9
Authority key identifier: 59:6D:2E:DA:6E:CC:42:DC:01:32:B3:F7:02:8F:4D:83:8C:A0:BF:5F
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/9DF9937177B1EC160552C5AD2FA05E41CEA78C00D571BB4C755834E4C0DCD487/0/3133312e3139362e3138312e302f32342d3234203d3e20323635373538.roa
Signing time:             Tue 05 Mar 2024 18:14:20 +0000
ROA not before:           Tue 05 Mar 2024 18:09:20 +0000
ROA not after:            Tue 04 Mar 2025 18:14:20 +0000
asID:                     265758
IP address blocks:        131.196.181.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 31 Oct 2024 00:25:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            11:d5:91:41:c8:b9:7a:00:cb:a8:26:1e:99:d0:28:64:c1:bc:44:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F
        Validity
            Not Before: Mar  5 18:09:20 2024 GMT
            Not After : Mar  4 18:14:20 2025 GMT
        Subject: CN=B8D37F5E65D22B08DDB840618A798FD3353F700D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:44:f3:dd:c4:ce:07:47:d0:36:1c:c2:60:aa:
                    ce:00:cf:67:e6:bb:8b:87:d2:5e:23:ac:f0:0b:d8:
                    ae:00:95:63:9d:6d:82:2a:52:f5:f8:5c:dc:64:92:
                    f5:c3:7f:26:a5:46:e0:ae:e4:06:2c:38:d7:0f:22:
                    9a:49:eb:bb:97:db:ff:5c:ce:80:71:84:6e:20:bf:
                    ab:9f:3b:c3:2b:d3:3d:a5:62:76:5e:1a:c0:f1:da:
                    7f:66:a2:ec:a2:99:44:a8:0b:7b:f1:e4:46:28:1b:
                    89:4d:07:8c:8d:75:a3:e9:b6:2c:d9:e1:e1:f9:d9:
                    40:dd:03:ee:02:81:5d:ef:9e:01:58:61:92:79:48:
                    5a:1f:c3:1c:13:78:fb:4e:90:fa:b7:86:e2:8c:88:
                    df:14:43:e9:77:ee:86:89:00:a6:5d:41:0a:b0:be:
                    5f:ca:bb:68:f0:76:11:57:d2:9d:e5:67:32:a5:a8:
                    cc:90:77:75:7a:7b:da:da:ea:83:15:21:29:83:18:
                    fd:32:47:12:77:ab:7a:26:79:51:41:4d:79:6f:bc:
                    d5:3a:c2:b3:43:da:24:37:51:6e:72:18:b6:44:e0:
                    8c:b9:9c:2d:71:47:4e:08:f8:b7:72:96:34:b3:46:
                    04:c1:b2:8c:1b:0e:e0:51:a3:d6:f1:01:90:9d:5b:
                    4e:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:D3:7F:5E:65:D2:2B:08:DD:B8:40:61:8A:79:8F:D3:35:3F:70:0D
            X509v3 Authority Key Identifier:
                keyid:59:6D:2E:DA:6E:CC:42:DC:01:32:B3:F7:02:8F:4D:83:8C:A0:BF:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/9DF9937177B1EC160552C5AD2FA05E41CEA78C00D571BB4C755834E4C0DCD487/0/596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/596D2EDA6ECC42DC0132B3F7028F4D838CA0BF5F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9DF9937177B1EC160552C5AD2FA05E41CEA78C00D571BB4C755834E4C0DCD487/0/3133312e3139362e3138312e302f32342d3234203d3e20323635373538.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  131.196.181.0/24

    Signature Algorithm: sha256WithRSAEncryption
         d2:70:53:b7:1c:5f:6e:20:a1:53:ed:98:f5:ee:b4:d9:17:3e:
         db:e8:48:10:6d:5f:89:cb:07:4e:52:01:47:cf:5c:e8:b4:42:
         ad:6d:e6:80:81:23:42:a3:7e:06:d4:78:1f:1a:48:c9:f2:f6:
         14:23:e0:34:81:ab:77:d9:61:96:1b:6e:f8:cb:92:f3:ef:c1:
         2d:e6:3a:03:c0:89:52:a9:a8:b3:bd:d7:9c:c4:d5:c8:34:05:
         8e:5c:44:83:ac:b8:e0:60:d7:8a:19:34:11:86:09:25:36:f3:
         72:d4:21:47:d9:dc:89:ec:73:7d:46:f9:0d:84:7b:a7:43:a5:
         0e:0a:55:e3:b7:23:dc:4f:1a:f2:2f:83:e1:2e:49:4b:a4:20:
         49:75:e1:72:a4:65:c3:65:c5:b4:92:42:ca:fc:b0:00:dc:45:
         eb:ce:9b:de:2e:28:c0:7f:38:ec:3e:be:74:8f:36:18:26:3f:
         85:91:03:95:4b:65:c5:3f:99:b3:89:5a:a7:98:0e:b2:fb:df:
         b8:95:75:51:2a:33:30:af:24:d7:be:7d:ad:1b:9f:ee:39:f8:
         f8:93:d2:5b:b2:88:0c:54:cf:fa:10:d2:86:c9:7c:1e:7c:67:
         50:6d:cc:c8:68:94:f2:96:87:53:8f:83:c6:a1:86:45:d1:b3:
         b5:b4:c1:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 02:48:41 2024 by rpki-client on console-ams.rpki-client.org